$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft File: vY48wqk9XbzYQnUJc4oxS_kMiH0.mft (raw, json) Hash identifier: 8ZhXlqucdQAi20JGFR2Ji6fGPtuVdHPoZyTD2nrbn0w= Subject key identifier: 0D:0A:B9:0A:90:40:42:A2:70:03:84:79:BC:10:E9:BF:6B:45:CB:5B Authority key identifier: BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D Certificate issuer: /CN=A91BFE76/serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Certificate serial: 02 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft Manifest number: 02 Signing time: Tue 04 Nov 2025 04:16:14 +0000 Manifest this update: Tue 04 Nov 2025 04:16:13 +0000 Manifest next update: Tue 11 Nov 2025 04:16:13 +0000 Files and hashes: 1: vY48wqk9XbzYQnUJc4oxS_kMiH0.crl (hash: z3Wfeo3e1h8mOll8uW+0/ix40sWM3/QKno92p4jm+hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 04:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE76, serialNumber=BD8E3CC2A93D5DBCD8427509738A314BF90C887D Validity Not Before: Nov 4 04:16:13 2025 GMT Not After : Nov 11 04:16:13 2025 GMT Subject: CN=69097e0e-f098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:85:87:15:0d:f1:bd:f8:5c:6d:c4:89:4a:06: 63:6a:25:9f:39:57:1b:b4:e5:c4:b7:7b:e2:86:b0: 6d:7a:96:6a:b0:9b:d9:91:de:bd:e2:59:47:bf:ff: e4:f4:c4:f8:31:a9:b7:2b:33:5a:7b:c4:45:ab:d4: f9:a0:77:3b:de:1a:1d:07:97:61:5c:0a:5c:e5:a6: 91:2e:0a:22:2a:18:56:72:f8:12:08:d8:a8:af:c4: bf:e6:11:49:f3:d8:60:31:e9:79:ca:a1:b1:cb:a2: b9:c4:f3:83:4a:8b:77:26:2c:e9:de:0e:4c:1b:86: 4e:a1:f8:77:a5:a5:17:d0:f2:cc:f3:ec:02:f9:92: 7d:17:cc:68:6d:82:77:65:23:53:58:0e:46:a0:8a: f0:34:05:11:54:4a:42:54:08:18:59:00:c9:15:6b: 82:65:20:54:91:5f:c6:7b:e0:f6:92:cd:7a:fb:0f: 4d:e4:a1:62:56:2b:4a:80:ad:e9:9a:40:51:cf:e1: 5c:84:0d:e0:21:6e:e8:9d:54:90:da:9f:6d:86:fd: e9:54:55:7b:1f:dc:91:ea:21:c9:50:fa:d7:b4:5a: cf:23:1f:ff:22:b2:2e:cc:0e:43:c0:b2:3f:aa:76: 82:b4:02:28:e4:16:4c:05:97:c5:b2:ef:35:1b:45: 29:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0A:B9:0A:90:40:42:A2:70:03:84:79:BC:10:E9:BF:6B:45:CB:5B X509v3 Authority Key Identifier: keyid:BD:8E:3C:C2:A9:3D:5D:BC:D8:42:75:09:73:8A:31:4B:F9:0C:88:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vY48wqk9XbzYQnUJc4oxS_kMiH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE76/D9E4C4CCB92711F0B80EC45EC4F9AE02/vY48wqk9XbzYQnUJc4oxS_kMiH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:39:59:c4:bb:cb:2c:b2:fc:71:9e:dd:51:33:4e:a4:35:54: 0f:8e:04:76:64:02:01:ce:4e:19:2b:1c:00:8e:c4:9c:e6:27: 8c:1a:7e:56:b5:90:5c:0d:70:4f:8d:ff:23:f6:39:00:40:a9: 7a:82:da:02:44:fb:ff:c7:4c:8f:c6:ae:2a:27:e3:d1:ed:23: a1:cc:9a:e7:71:50:b1:f1:67:98:28:0b:14:0a:2a:9d:83:77: 58:26:4f:85:51:64:c4:54:a9:64:ca:29:0d:6d:ea:d8:9f:37: 76:69:eb:2e:03:f5:b8:6e:80:f1:78:3d:9b:60:5a:f6:51:06: dd:01:3a:24:93:fe:fb:ea:de:8d:52:83:73:34:b9:da:96:67: cf:b0:31:6c:69:3e:d5:d2:49:25:eb:db:65:a1:7c:98:c4:6a: 88:67:a3:82:fd:0d:08:ba:20:d6:f4:c7:40:60:8f:79:1b:74: 1c:b8:94:1e:7b:20:ec:9a:51:15:74:fe:85:2c:92:9a:4d:45: 3f:eb:ab:f6:51:7d:b9:50:8c:13:eb:b1:bf:85:3b:bf:39:25: 54:e0:e1:f0:a5:6e:7c:cf:f4:ef:20:7d:5b:1d:c3:a9:3f:f2: bd:ca:dc:8c:0e:a5:15:54:36:1c:51:79:33:8c:6d:df:90:5d: 58:76:f7:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RkU3NjExMC8GA1UEBRMoQkQ4RTNDQzJBOTNENURCQ0Q4NDI3NTA5NzM4QTMxNEJG OTBDODg3RDAeFw0yNTExMDQwNDE2MTNaFw0yNTExMTEwNDE2MTNaMBgxFjAUBgNV BAMTDTY5MDk3ZTBlLWYwOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHhYcVDfG9+FxtxIlKBmNqJZ85Vxu05cS3e+KGsG16lmqwm9mR3r3iWUe//+T0 xPgxqbcrM1p7xEWr1PmgdzveGh0Hl2FcClzlppEuCiIqGFZy+BII2KivxL/mEUnz 2GAx6XnKobHLornE84NKi3cmLOneDkwbhk6h+HelpRfQ8szz7AL5kn0XzGhtgndl I1NYDkagivA0BRFUSkJUCBhZAMkVa4JlIFSRX8Z74PaSzXr7D03koWJWK0qArema QFHP4VyEDeAhbuidVJDan22G/elUVXsf3JHqIclQ+te0Ws8jH/8isi7MDkPAsj+q doK0AijkFkwFl8Wy7zUbRSkVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDQq5CpBA QqJwA4R5vBDpv2tFy1swHwYDVR0jBBgwFoAUvY48wqk9XbzYQnUJc4oxS/kMiH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGRTc2L0Q5RTRDNENDQjky NzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6WVFuVUpjNG94U19rTWlI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdlk0OHdxazlYYnpZUW5VSmM0b3hTX2tNaUgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG RTc2L0Q5RTRDNENDQjkyNzExRjBCODBFQzQ1RUM0RjlBRTAyL3ZZNDh3cWs5WGJ6 WVFuVUpjNG94U19rTWlIMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHM5WcS7yyyy/HGe3VEzTqQ1VA+OBHZkAgHOThkrHACOxJzmJ4wafla1 kFwNcE+N/yP2OQBAqXqC2gJE+//HTI/Grion49HtI6HMmudxULHxZ5goCxQKKp2D d1gmT4VRZMRUqWTKKQ1t6tifN3Zp6y4D9bhugPF4PZtgWvZRBt0BOiST/vvq3o1S g3M0udqWZ8+wMWxpPtXSSSXr22WhfJjEaohno4L9DQi6INb0x0Bgj3kbdBy4lB57 IOyaURV0/oUskppNRT/rq/ZRfblQjBPrsb+FO785JVTg4fClbnzP9O8gfVsdw6k/ 8r3K3IwOpRVUNhxReTOMbd+QXVh296k= -----END CERTIFICATE-----Generated at Tue Nov 4 19:13:46 2025 by rpki-client