$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft File: CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft (raw, json) Hash identifier: xtlhgqWxd5OvtNb35j1Ms9wGOAh6MCPuT1fMntX0Duw= Subject key identifier: C8:EC:A1:32:1A:0D:55:4F:BE:60:5D:76:0E:52:59:1E:1B:3E:64:41 Authority key identifier: 08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F Certificate issuer: /CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft Manifest number: 01A0 Signing time: Wed 05 Nov 2025 03:30:57 +0000 Manifest this update: Wed 05 Nov 2025 03:30:57 +0000 Manifest next update: Wed 12 Nov 2025 03:30:57 +0000 Files and hashes: 1: CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl (hash: Y8HgflAb8XmxcPqo5Df+8d8QKOXHxQ6NCuL+YZ1gsYg=) 2: E62F8796D1BD11EFBCCC0B68C4F9AE02.roa (hash: fNs1z1deex6fcIdqMxez0n/drhicpYWMQnLuUAo17fo=) 3: 86D7DAE6D1C211EF9AA9410EC4F9AE02.roa (hash: ygqqEQTyg2IH19vlQAL4kX0HHDThJX4eE1C7WPj4wYg=) 4: C698E13ED1BD11EF9C00D867C4F9AE02.roa (hash: xRbmb+/1S1f8++5LVT2TgnO4g2wWlkEYjHuBK2BLWRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D33, serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Validity Not Before: Nov 5 03:30:57 2025 GMT Not After : Nov 12 03:30:57 2025 GMT Subject: CN=690ac4f1-cb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e2:10:ff:5e:36:ac:8f:14:e8:6f:91:b7:00: 75:00:a7:b7:71:dc:0d:91:49:c4:af:bb:c8:42:aa: 17:75:e7:f2:bd:e8:43:dc:86:aa:26:3d:ff:78:a5: c8:b7:da:a6:38:52:47:bf:08:f0:52:a6:b8:47:fc: 0d:1e:a8:c8:d4:ce:09:31:6b:4f:61:58:ad:5d:ff: 8c:50:13:e8:76:93:dc:b3:41:c1:6b:42:17:bd:a9: 9e:94:76:32:b0:38:9c:62:c8:bc:a4:94:d0:c7:dc: a3:53:f7:b6:ff:78:20:bb:83:7f:d1:03:61:9b:d5: db:ed:39:97:81:ba:6e:aa:00:0f:23:62:2e:79:0e: 95:f1:67:fc:c1:0d:b0:28:ba:4d:40:f7:b0:2c:06: 15:2c:7d:c8:d1:e7:91:87:53:20:03:23:02:8c:3f: a4:e8:74:b2:bb:c1:a8:1d:ac:5c:12:95:9c:1e:d9: 7b:d2:b4:3f:c7:ce:ee:bf:49:6e:3d:97:d8:58:7d: 40:0e:b2:04:e3:bc:8e:00:e1:cf:b9:d0:72:f2:a8: bf:85:ed:23:93:33:5f:cd:6e:23:38:74:66:d5:23: 3d:39:30:1e:5a:74:23:2d:d1:bc:5f:0f:24:20:b4: 7b:cb:1a:33:8b:47:b7:57:dd:7c:83:7f:f0:7b:60: 11:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EC:A1:32:1A:0D:55:4F:BE:60:5D:76:0E:52:59:1E:1B:3E:64:41 X509v3 Authority Key Identifier: keyid:08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:6c:e7:10:e1:be:56:89:9b:a3:1c:50:e9:a2:3e:1c:6b:82: fd:7f:53:f3:d8:8c:da:bf:ee:82:5e:31:fb:72:72:bb:d9:64: 68:78:de:71:87:d7:46:c0:4b:26:97:97:7e:03:03:1c:71:1c: 9e:42:dc:8e:e5:98:42:4c:90:14:71:e4:ed:ea:60:d3:6c:6f: 84:bf:3f:9f:74:c0:52:8b:c3:47:75:31:02:1b:d3:a9:54:76: af:3e:38:85:42:da:be:44:c9:bb:75:ad:7e:2d:84:7f:61:fa: d1:b0:b4:d0:5b:48:68:04:f2:3e:a7:ed:9b:16:30:ea:b6:d0: 65:64:45:fc:b3:92:bf:8c:c4:ff:b2:90:fc:f0:9c:fb:8e:ec: d7:00:ec:fb:5a:02:73:d0:e4:c4:88:db:5f:2e:16:0d:fe:34: 65:6c:7d:0c:84:c8:b5:88:8a:d1:f4:20:e8:99:2e:11:a6:b6: f9:23:30:73:6e:15:a3:e9:87:7f:65:a4:4f:5e:a5:12:36:47: df:37:ed:a7:db:61:fd:63:56:b4:a1:e8:63:0c:c5:7b:e6:78: 4a:15:a0:1a:9a:69:b8:24:c7:06:ff:88:f1:cc:fb:20:42:ea: f0:e7:ea:68:51:1f:60:d1:78:47:ee:ba:8e:4d:9d:92:3c:05: ba:9b:25:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhEMzMxMTAvBgNVBAUTKDA4RDY4Q0Y0NTAwNzQ1Mzc1RkYyQ0M1ODRCQTVGQkU1 NzdCRUUzM0YwHhcNMjUxMTA1MDMzMDU3WhcNMjUxMTEyMDMzMDU3WjAYMRYwFAYD VQQDEw02OTBhYzRmMS1jYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OIQ/142rI8U6G+RtwB1AKe3cdwNkUnEr7vIQqoXdefyvehD3IaqJj3/eKXI t9qmOFJHvwjwUqa4R/wNHqjI1M4JMWtPYVitXf+MUBPodpPcs0HBa0IXvamelHYy sDicYsi8pJTQx9yjU/e2/3ggu4N/0QNhm9Xb7TmXgbpuqgAPI2IueQ6V8Wf8wQ2w KLpNQPewLAYVLH3I0eeRh1MgAyMCjD+k6HSyu8GoHaxcEpWcHtl70rQ/x87uv0lu PZfYWH1ADrIE47yOAOHPudBy8qi/he0jkzNfzW4jOHRm1SM9OTAeWnQjLdG8Xw8k ILR7yxozi0e3V918g3/we2ARUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjsoTIa DVVPvmBddg5SWR4bPmRBMB8GA1UdIwQYMBaAFAjWjPRQB0U3X/LMWEul++V3vuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQzMy81OTYyNjcxMDQ3 NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJUZGY4c3hZUzZYNzVYZS00 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOYU05RkFIUlRkZjhzeFlTNlg3NVhlLTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQzMy81OTYyNjcxMDQ3NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJU ZGY4c3hZUzZYNzVYZS00ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwbOcQ4b5WiZujHFDpoj4ca4L9f1Pz2Izav+6CXjH7cnK72WRoeN5x h9dGwEsml5d+AwMccRyeQtyO5ZhCTJAUceTt6mDTbG+Evz+fdMBSi8NHdTECG9Op VHavPjiFQtq+RMm7da1+LYR/YfrRsLTQW0hoBPI+p+2bFjDqttBlZEX8s5K/jMT/ spD88Jz7juzXAOz7WgJz0OTEiNtfLhYN/jRlbH0MhMi1iIrR9CDomS4Rprb5IzBz bhWj6Yd/ZaRPXqUSNkffN+2n22H9Y1a0oehjDMV75nhKFaAammm4JMcG/4jxzPsg Qurw5+poUR9g0XhH7rqOTZ2SPAW6myWb -----END CERTIFICATE-----Generated at Thu Nov 6 00:09:34 2025 by rpki-client