$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft File: 8goyYNssxWGzO2TeFLAR8poeJBQ.mft (raw, json) Hash identifier: kF/G2zDYpozanm9bqY9gbS6wwZDZGfb+F8mJTMbov4A= Subject key identifier: CA:40:F8:0A:FE:4B:03:0D:C4:3B:8B:33:E4:E1:C8:C1:78:7D:F0:4F Authority key identifier: F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14 Certificate issuer: /CN=A91BD9B7/serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414 Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft Manifest number: 0583 Signing time: Sun 02 Nov 2025 23:14:31 +0000 Manifest this update: Sun 02 Nov 2025 23:14:30 +0000 Manifest next update: Sun 09 Nov 2025 23:14:30 +0000 Files and hashes: 1: 8goyYNssxWGzO2TeFLAR8poeJBQ.crl (hash: mdfQ+dpUU0W6tUyMyTvP3WgxHPA9Xs+SuS7YthfWuEs=) 2: 713C4814F9DC11EBA9C81A44C4F9AE02.roa (hash: 9gxRC5js1FiufwEU1KdLZ+ZBBpP4QjbLjPfn8nzB2wQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD9B7, serialNumber=F20A3260DB2CC561B33B64DE14B011F29A1E2414 Validity Not Before: Nov 2 23:14:30 2025 GMT Not After : Nov 9 23:14:30 2025 GMT Subject: CN=6907e5d6-9989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d4:06:25:56:31:71:ed:7d:9d:fd:4a:6c:59: 43:96:ef:8f:0f:2d:bb:37:08:f9:d2:6b:59:06:7a: 72:be:6d:fe:c8:e0:c7:b0:bb:66:7f:4e:93:c5:4f: 5a:6d:91:7d:12:50:88:73:8b:c9:47:93:1e:bc:28: 67:04:42:b7:cf:b2:53:ac:46:cc:c3:b2:9d:b7:2f: c8:89:6f:aa:dc:dd:80:92:a2:32:74:89:6b:72:51: eb:74:cd:e5:55:c3:69:1e:92:1b:80:8e:96:87:00: ad:44:64:5e:c1:19:c6:28:f3:11:8e:5b:86:7a:8e: 17:17:aa:76:14:9f:72:e9:6c:e9:36:a1:f0:6f:fe: e6:76:78:ca:f8:1a:50:d6:db:8d:f9:dc:b9:99:0c: 0d:bb:79:e0:2f:c5:9d:fd:9a:d6:bb:ae:75:b6:09: e7:b0:e3:51:f1:e5:f5:84:f4:b3:00:49:30:df:6f: 53:e4:1f:42:81:64:b6:38:81:d5:38:0d:1a:f1:e2: 2a:58:3c:27:84:e7:8e:79:9b:83:c1:1f:05:7d:be: 9c:eb:9b:81:96:d9:ea:60:65:e9:c9:49:b8:a9:6b: 20:db:51:c3:39:e7:db:40:f4:66:30:ce:8d:d8:d2: 11:35:ec:42:39:89:a4:bf:c8:62:cf:2c:9e:7c:35: 5f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:40:F8:0A:FE:4B:03:0D:C4:3B:8B:33:E4:E1:C8:C1:78:7D:F0:4F X509v3 Authority Key Identifier: keyid:F2:0A:32:60:DB:2C:C5:61:B3:3B:64:DE:14:B0:11:F2:9A:1E:24:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8goyYNssxWGzO2TeFLAR8poeJBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD9B7/14980498F9D911EB8D2B0E3EC4F9AE02/8goyYNssxWGzO2TeFLAR8poeJBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ee:2f:5d:38:c2:49:fa:b8:b7:33:36:fe:99:d9:a1:59:77: b3:c2:00:f9:30:c5:a8:d6:8c:e4:db:b5:34:a8:50:92:2b:3a: f2:31:73:bf:79:4b:18:63:56:a5:34:2f:3f:0b:ed:b4:c4:d5: c0:b9:5e:b7:a8:79:7c:79:48:0b:d8:ac:1b:e2:f7:b1:4a:6f: 15:0a:2e:44:9b:a3:2c:d4:69:01:09:9d:5a:d3:59:70:a5:29: 16:0b:6b:f0:77:0d:f9:3c:e0:50:19:62:94:be:d6:14:b9:85: 1a:d3:cc:6e:57:5e:07:4f:05:3b:64:67:1c:d7:cb:ab:33:98: 2e:89:7f:be:75:c0:b5:24:55:b0:3e:90:62:9c:ca:ab:0a:81: 1a:72:75:60:2e:d6:9d:e0:76:04:b8:c7:5d:c1:87:40:93:71: 75:fd:4c:dc:49:05:20:6b:57:5f:48:0f:93:d6:84:90:13:1f: 50:6a:95:ae:aa:86:c2:b8:de:88:64:29:eb:c4:df:a8:11:13: 0a:0d:c9:00:85:e5:28:ec:38:93:6f:16:f6:d2:2b:0c:1d:67: ff:79:af:a5:95:4d:ae:f8:22:83:a2:53:b9:00:ba:31:50:2e: d7:24:3e:c7:14:3f:76:1f:fe:7a:49:06:e6:77:57:70:00:ff: 9b:eb:1f:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ5QjcxMTAvBgNVBAUTKEYyMEEzMjYwREIyQ0M1NjFCMzNCNjRERTE0QjAxMUYy OUExRTI0MTQwHhcNMjUxMTAyMjMxNDMwWhcNMjUxMTA5MjMxNDMwWjAYMRYwFAYD VQQDEw02OTA3ZTVkNi05OTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmtQGJVYxce19nf1KbFlDlu+PDy27Nwj50mtZBnpyvm3+yODHsLtmf06TxU9a bZF9ElCIc4vJR5MevChnBEK3z7JTrEbMw7Kdty/IiW+q3N2AkqIydIlrclHrdM3l VcNpHpIbgI6WhwCtRGRewRnGKPMRjluGeo4XF6p2FJ9y6WzpNqHwb/7mdnjK+BpQ 1tuN+dy5mQwNu3ngL8Wd/ZrWu651tgnnsONR8eX1hPSzAEkw329T5B9CgWS2OIHV OA0a8eIqWDwnhOeOeZuDwR8Ffb6c65uBltnqYGXpyUm4qWsg21HDOefbQPRmMM6N 2NIRNexCOYmkv8hizyyefDVfqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpA+Ar+ SwMNxDuLM+ThyMF4ffBPMB8GA1UdIwQYMBaAFPIKMmDbLMVhsztk3hSwEfKaHiQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDlCNy8xNDk4MDQ5OEY5 RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hXR3pPMlRlRkxBUjhwb2VK QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnb3lZTnNzeFdHek8yVGVGTEFSOHBvZUpCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDlCNy8xNDk4MDQ5OEY5RDkxMUVCOEQyQjBFM0VDNEY5QUUwMi84Z295WU5zc3hX R3pPMlRlRkxBUjhwb2VKQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL7i9dOMJJ+ri3Mzb+mdmhWXezwgD5MMWo1ozk27U0qFCSKzryMXO/ eUsYY1alNC8/C+20xNXAuV63qHl8eUgL2Kwb4vexSm8VCi5Em6Ms1GkBCZ1a01lw pSkWC2vwdw35POBQGWKUvtYUuYUa08xuV14HTwU7ZGcc18urM5guiX++dcC1JFWw PpBinMqrCoEacnVgLtad4HYEuMddwYdAk3F1/UzcSQUga1dfSA+T1oSQEx9QapWu qobCuN6IZCnrxN+oERMKDckAheUo7DiTbxb20isMHWf/ea+llU2u+CKDolO5ALox UC7XJD7HFD92H/56SQbmd1dwAP+b6x/j -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:21 2025 by rpki-client