$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: rho4LPlmZgBf5XoQ7BInDQVva7M/0QQAKsESB3q+EFg= Subject key identifier: 6C:E5:82:93:8A:29:5C:EC:76:B5:33:C6:92:EC:25:FF:E0:39:F8:B4 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BCD Signing time: Tue 04 Nov 2025 19:00:41 +0000 Manifest this update: Tue 04 Nov 2025 19:00:41 +0000 Manifest next update: Tue 11 Nov 2025 19:00:41 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: dL/70+ItSuRfOwHJBojucRrUqpF3ksvaIa09iU4tRvY=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3035 (0xbdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Nov 4 19:00:41 2025 GMT Not After : Nov 11 19:00:41 2025 GMT Subject: CN=690a4d59-97dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:60:83:a9:ad:2a:ab:c5:06:27:e1:56:d9:93: 74:a7:4c:47:d2:28:5b:60:23:c5:70:e1:b6:02:38: cc:51:5f:07:ce:40:9f:57:10:c4:7f:a2:56:b4:65: f8:39:10:f8:2c:d8:e4:ec:6b:53:43:22:1a:5f:74: 26:cb:ef:e1:b7:26:41:c8:46:f4:dd:d6:13:81:40: 1f:0f:7c:47:ef:55:ae:db:6b:bb:73:06:c1:37:1b: c5:57:cf:c9:7a:b9:de:9c:fb:c3:f7:43:b7:45:b3: 44:d9:5c:52:a2:56:5f:d4:ad:44:d0:6e:e0:09:7d: be:c9:4e:aa:36:ae:44:15:52:10:86:fa:2c:ed:7f: 86:07:76:85:2f:a2:bf:ae:8a:88:f8:c2:9a:e6:15: 38:ac:80:e9:93:7d:3c:13:6a:ab:d9:58:57:d9:53: 32:1a:12:9e:da:9d:e2:d1:34:6a:ca:60:89:c3:b4: 07:cf:5e:06:07:fa:93:bc:de:f3:a5:4c:e0:98:4f: 90:31:a3:b4:fa:93:88:44:a9:84:74:9f:de:49:f6: 0f:e5:2a:58:05:25:54:dd:38:d4:9b:11:96:8d:94: 4c:b8:a1:e6:49:60:67:f3:32:93:83:89:9c:9f:ef: 2a:77:f8:76:a9:a2:bc:36:1a:da:b4:46:76:02:9c: 68:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E5:82:93:8A:29:5C:EC:76:B5:33:C6:92:EC:25:FF:E0:39:F8:B4 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:82:cd:06:96:c7:0e:42:7a:c5:47:a0:76:a6:b9:41:21:c9: 3b:72:cc:c0:09:91:7f:ea:c4:bb:11:0c:e6:55:4e:db:d9:6c: bf:8a:d8:4b:06:08:0a:ba:63:7b:08:31:68:7a:31:a4:01:6e: 96:3b:64:bc:d3:82:9a:a0:d0:55:ec:b1:6f:f6:d7:79:79:b7: 43:99:1e:19:ac:fc:97:1a:d3:f2:42:0f:25:60:8c:ee:58:fc: 38:19:ee:fc:12:07:e7:a7:7d:01:6b:00:85:bf:d3:5b:72:bf: 15:7a:60:11:0a:52:0a:44:b9:93:9c:13:d9:c2:22:eb:a8:b3: 93:ad:4e:86:48:47:c5:ef:4d:f4:0d:97:c5:d4:ec:d7:10:a5: f9:ba:9d:44:73:06:09:e3:28:c9:39:64:e5:d3:2e:e2:53:6a: fa:a3:9a:a2:16:47:2a:6e:e7:9d:d1:8b:a6:b7:4e:65:61:4a: 68:40:35:5c:72:23:d9:15:16:1e:80:22:0f:a3:e1:27:e0:6d: 1d:73:6f:d1:33:56:80:d1:a1:f0:0c:2d:67:84:f7:f6:23:ab: 06:5b:ac:b7:59:78:04:b6:86:2a:0c:65:8e:eb:bd:bb:e8:eb: 2b:eb:6e:fc:fc:db:5a:e2:30:22:97:66:d6:93:68:30:a9:ce: 71:9f:0b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUxMTA0MTkwMDQxWhcNMjUxMTExMTkwMDQxWjAYMRYwFAYD VQQDEw02OTBhNGQ1OS05N2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2CDqa0qq8UGJ+FW2ZN0p0xH0ihbYCPFcOG2AjjMUV8HzkCfVxDEf6JWtGX4 ORD4LNjk7GtTQyIaX3Qmy+/htyZByEb03dYTgUAfD3xH71Wu22u7cwbBNxvFV8/J ernenPvD90O3RbNE2VxSolZf1K1E0G7gCX2+yU6qNq5EFVIQhvos7X+GB3aFL6K/ roqI+MKa5hU4rIDpk308E2qr2VhX2VMyGhKe2p3i0TRqymCJw7QHz14GB/qTvN7z pUzgmE+QMaO0+pOIRKmEdJ/eSfYP5SpYBSVU3TjUmxGWjZRMuKHmSWBn8zKTg4mc n+8qd/h2qaK8NhratEZ2ApxoZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzlgpOK KVzsdrUzxpLsJf/gOfi0MB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/gs0GlscOQnrFR6B2prlBIck7cszACZF/6sS7EQzmVU7b2Wy/ithL BggKumN7CDFoejGkAW6WO2S804KaoNBV7LFv9td5ebdDmR4ZrPyXGtPyQg8lYIzu WPw4Ge78Egfnp30BawCFv9Nbcr8VemARClIKRLmTnBPZwiLrqLOTrU6GSEfF7030 DZfF1OzXEKX5up1EcwYJ4yjJOWTl0y7iU2r6o5qiFkcqbued0Yumt05lYUpoQDVc ciPZFRYegCIPo+En4G0dc2/RM1aA0aHwDC1nhPf2I6sGW6y3WXgEtoYqDGWO6727 6Osr6278/Nta4jAil2bWk2gwqc5xnwvZ -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:21 2025 by rpki-client