$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: l3ZaI+uQhnv9yHAIWA3n1GdduFI87lxtcYUhV8qHPC4= Subject key identifier: D3:77:5D:5E:1E:49:EA:EC:67:35:8E:C4:55:2D:3C:F7:3E:1F:BD:90 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 047D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0479 Signing time: Mon 03 Nov 2025 00:05:40 +0000 Manifest this update: Mon 03 Nov 2025 00:05:39 +0000 Manifest next update: Mon 10 Nov 2025 00:05:39 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: OpsJPCS0iYJrtMMOfUnq0OhkiRa6xB51p7TW6mikwjc=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1149 (0x47d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Nov 3 00:05:39 2025 GMT Not After : Nov 10 00:05:39 2025 GMT Subject: CN=6907f1d4-dff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:25:d3:c6:2b:12:3e:4a:93:70:09:68:c0: 4f:ae:a7:94:4b:fe:3f:ab:30:f2:04:3b:9a:fa:30: 89:a7:8d:84:5f:ae:d2:3a:9c:a3:e1:92:70:98:1f: 83:e9:cb:53:bc:e3:4d:7e:29:84:3c:53:89:0d:47: f3:d7:c2:9b:3a:92:f2:23:b8:3f:dd:54:c5:58:73: ee:6b:0c:aa:d4:d9:48:28:72:51:e9:30:81:e7:24: 03:b2:05:ea:9d:a0:c3:59:37:72:fd:98:49:db:e1: 10:19:dc:59:c2:50:67:0f:1b:c5:ad:3c:49:4a:0b: ac:e6:2d:ac:7c:5d:67:08:4f:71:82:75:fd:cb:3d: 36:9d:64:8a:91:b6:83:80:9a:54:48:a0:db:ed:0e: ce:72:59:43:92:33:b4:37:78:6e:e1:57:e8:34:f5: f0:01:ea:26:85:44:e1:91:92:22:46:35:5a:1c:89: ae:4d:f3:92:56:e7:2a:4f:2a:72:7f:83:6d:bb:ae: d8:8b:75:4d:4e:a7:f8:57:13:a6:c0:b2:b6:61:14: 80:70:d0:41:90:6a:f9:96:11:85:7d:14:08:f0:04: 1c:00:dd:18:fb:fd:bf:ca:17:3b:39:a6:bd:b7:cc: 50:b3:3e:ae:20:db:1d:c2:d0:3e:64:76:d9:6c:2e: a1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:77:5D:5E:1E:49:EA:EC:67:35:8E:C4:55:2D:3C:F7:3E:1F:BD:90 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e4:21:8a:44:e4:54:ed:20:e5:41:00:13:bb:f3:e8:50:ec: fb:b9:71:44:3e:ff:00:d2:4b:51:39:80:2b:c2:ba:f0:a4:64: dd:cb:9b:78:7c:5d:8b:5f:50:f8:05:19:74:c6:ec:bd:59:99: 54:1a:1d:ad:0c:3a:45:66:fe:18:8a:dc:9e:33:11:93:33:cd: cb:74:13:dc:d2:a9:dd:3d:53:5d:8d:2f:16:2a:ab:9d:8a:c2: 50:34:99:97:bb:13:f2:ee:27:2c:7c:8c:0e:09:43:dc:09:12: d5:80:af:c9:9b:14:9e:bf:85:f8:ea:8b:8e:54:ae:41:52:b7: 80:87:56:6e:0b:1c:fd:da:b1:c9:48:a9:7f:3c:4f:ad:9e:a8: 5e:48:44:e8:ee:88:2d:26:0e:d0:5f:b6:83:e9:3b:37:f3:ec: e2:51:2f:99:88:a2:f6:55:06:98:7e:d4:eb:46:3e:f0:ce:ad: 7d:6b:84:f4:4f:15:a5:2d:1e:48:0f:9e:e7:47:57:ec:0e:0c: 80:84:c4:a3:b0:a7:1d:a3:32:73:d6:09:0f:b8:d6:4f:1c:39: f0:33:86:3b:c8:da:0d:ed:2a:04:76:03:25:71:61:30:f8:70: a2:4d:2a:5d:c3:0f:d8:5d:58:17:64:f8:5f:a7:cc:d6:ac:b6: 4a:ae:71:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUxMTAzMDAwNTM5WhcNMjUxMTEwMDAwNTM5WjAYMRYwFAYD VQQDEw02OTA3ZjFkNC1kZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mIl08YrEj5Kk3AJaMBPrqeUS/4/qzDyBDua+jCJp42EX67SOpyj4ZJwmB+D 6ctTvONNfimEPFOJDUfz18KbOpLyI7g/3VTFWHPuawyq1NlIKHJR6TCB5yQDsgXq naDDWTdy/ZhJ2+EQGdxZwlBnDxvFrTxJSgus5i2sfF1nCE9xgnX9yz02nWSKkbaD gJpUSKDb7Q7OcllDkjO0N3hu4VfoNPXwAeomhUThkZIiRjVaHImuTfOSVucqTypy f4Ntu67Yi3VNTqf4VxOmwLK2YRSAcNBBkGr5lhGFfRQI8AQcAN0Y+/2/yhc7Oaa9 t8xQsz6uINsdwtA+ZHbZbC6hmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNN3XV4e SersZzWOxFUtPPc+H72QMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj5CGKRORU7SDlQQATu/PoUOz7uXFEPv8A0ktROYArwrrwpGTdy5t4 fF2LX1D4BRl0xuy9WZlUGh2tDDpFZv4YityeMxGTM83LdBPc0qndPVNdjS8WKqud isJQNJmXuxPy7icsfIwOCUPcCRLVgK/JmxSev4X46ouOVK5BUreAh1ZuCxz92rHJ SKl/PE+tnqheSETo7ogtJg7QX7aD6Ts38+ziUS+ZiKL2VQaYftTrRj7wzq19a4T0 TxWlLR5ID57nR1fsDgyAhMSjsKcdozJz1gkPuNZPHDnwM4Y7yNoN7SoEdgMlcWEw +HCiTSpdww/YXVgXZPhfp8zWrLZKrnEG -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:42 2025 by rpki-client