$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json) Hash identifier: 6NFGGsffNXNpT3BZUg5uDnOfE6wfjYhhNrVqeh9mCxo= Subject key identifier: 0F:5C:8D:D5:A2:8F:58:7C:4F:36:61:57:51:4A:71:FA:F4:31:6D:60 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 1033 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft Manifest number: 0FAE Signing time: Sun 02 Nov 2025 17:36:02 +0000 Manifest this update: Sun 02 Nov 2025 17:36:02 +0000 Manifest next update: Sun 09 Nov 2025 17:36:02 +0000 Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: kSWnuC/f91g2HwuxSVvMfRKUsn+KVVoBZGtQoEI5aH4=) 2: B2AB6010721811F09FD98A22C4F9AE02.roa (hash: zq3r2bqYk5JoyYAxGmuwDEsSoCRJP0AIOXoJJj3slFs=) 3: B35E5B46334111EF9770A542C4F9AE02.roa (hash: eo1b+Yq2Qt1v8H4Ltid7fTu6HkQPul0DLMpDr+LxnZs=) 4: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: ZKO21v7I5AsbeHedpQVwlDjC0YYOzEud39SdbR3CgmA=) 5: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (hash: wE9Ja7ZzAfw7/oCX8jXb3Mmdvu+AmH7Xr6q2xftQxQg=) 6: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: nicSmvXStk5YSg3xIJcJaFbSV0F719Jx8dhmknr9Hs0=) 7: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: 05k3Et6L9d2nE0FPEy+35+jv6KXbsZR/t8jrPFetuWc=) 8: 2EFFC95471DC11F0B648E61EC4F9AE02.roa (hash: IrKqf3WwcP3c1t/kdOeFbTBkd7MIU0BN08Rqrji/qUU=) 9: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: HvCeCNMd3cDYBcsUNmnAZgRE0yTF+p8FgFeiy4l06fs=) 10: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: PTHJR1ja6PHKnchzMzvjSZlwBo+yBYxt/AqG4ozJw5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4147 (0x1033) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Nov 2 17:36:02 2025 GMT Not After : Nov 9 17:36:02 2025 GMT Subject: CN=69079682-c19f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:65:1b:5f:29:1e:5a:a9:5b:43:35:6e:15:59: 89:aa:31:df:80:32:07:11:f1:e7:46:2f:74:3c:c2: 4e:e7:29:8b:bd:d3:89:62:03:4b:ee:d3:28:4d:f3: 15:d7:92:8a:ee:70:2e:31:65:e4:e0:03:43:98:09: a1:69:c7:60:4d:b3:50:bb:0f:a2:c4:35:52:eb:e9: 30:11:cf:aa:1d:26:ce:b5:c6:d1:1f:0b:aa:2e:04: fd:f4:45:74:8d:b4:6b:a2:21:dc:5b:ed:6c:8d:5f: 41:62:4b:b6:25:21:d9:e1:98:3f:8e:a7:fb:55:73: c8:7e:2b:f8:1b:4d:9f:01:fd:1b:69:62:0a:55:f8: 43:62:0b:c7:fa:1e:dc:6e:f6:98:38:50:11:a9:a7: 2e:fb:6e:a6:c9:38:af:b3:8b:f4:7a:93:97:91:d2: 4b:d7:c4:27:ff:0f:6e:b6:f8:a6:47:b0:af:54:ac: 75:27:72:b5:4e:d6:5f:7d:27:30:43:4d:0a:22:67: 55:70:c2:8c:b0:98:05:50:80:b5:88:26:f3:a4:e7: 80:cf:cc:03:3a:87:04:9f:f3:cc:10:83:21:9e:6e: 48:7f:30:fd:4f:c8:32:e1:95:97:b2:26:59:36:bc: 73:61:00:ad:0c:f3:5e:fc:eb:42:fc:50:5a:81:ac: 0a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5C:8D:D5:A2:8F:58:7C:4F:36:61:57:51:4A:71:FA:F4:31:6D:60 X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ac:a3:99:3c:ec:9a:ad:b7:8d:07:46:6d:b1:10:fd:8b:dd: 44:a4:00:c3:3d:79:e4:ab:5f:d6:d5:42:8a:79:2b:3c:36:11: f9:68:fe:22:b4:7b:75:a3:22:ed:d1:b9:3f:5a:8c:33:e6:03: 45:2d:6c:59:56:22:d9:23:d1:b9:e7:fa:1c:2a:18:81:a2:9f: a6:75:da:32:05:66:13:d6:ad:4f:ea:9f:47:45:9a:0d:f3:f6: cc:09:7a:24:a9:ac:8d:eb:ad:c4:5a:99:1b:ba:90:13:23:ea: 57:65:2a:1d:d5:02:ae:79:76:b8:04:14:c8:23:db:09:60:3e: 26:17:b0:d6:6f:d8:24:98:17:df:af:0d:d4:c5:eb:96:7c:23: c5:5e:16:75:39:8e:f7:28:52:e6:26:69:c8:2d:e0:23:b2:b5: 48:2f:ee:74:de:bc:d7:40:35:a7:54:5b:4f:39:0f:1d:20:22: a1:85:8a:57:c5:18:c2:b3:95:fb:a1:ef:dc:83:d7:b3:95:86: 70:ee:73:96:a5:ae:41:5a:cc:71:1a:5f:97:4a:b7:8e:e7:56: 7c:1c:17:c9:c6:0f:cb:55:c8:f2:83:45:60:3b:8e:49:10:7e: 92:b2:69:0c:e1:77:5e:7e:d0:f8:b6:c4:71:25:19:85:b4:9d: a3:14:a9:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUxMTAyMTczNjAyWhcNMjUxMTA5MTczNjAyWjAYMRYwFAYD VQQDEw02OTA3OTY4Mi1jMTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WUbXykeWqlbQzVuFVmJqjHfgDIHEfHnRi90PMJO5ymLvdOJYgNL7tMoTfMV 15KK7nAuMWXk4ANDmAmhacdgTbNQuw+ixDVS6+kwEc+qHSbOtcbRHwuqLgT99EV0 jbRroiHcW+1sjV9BYku2JSHZ4Zg/jqf7VXPIfiv4G02fAf0baWIKVfhDYgvH+h7c bvaYOFARqacu+26myTivs4v0epOXkdJL18Qn/w9utvimR7CvVKx1J3K1TtZffScw Q00KImdVcMKMsJgFUIC1iCbzpOeAz8wDOocEn/PMEIMhnm5IfzD9T8gy4ZWXsiZZ NrxzYQCtDPNe/OtC/FBagawKnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9cjdWi j1h8TzZhV1FKcfr0MW1gMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDNy83OTFDNkEzNDdCMzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91 dmFqeVZjVUJRUnNCOFlfMGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdrKOZPOyarbeNB0ZtsRD9i91EpADDPXnkq1/W1UKKeSs8NhH5aP4i tHt1oyLt0bk/Wowz5gNFLWxZViLZI9G55/ocKhiBop+mddoyBWYT1q1P6p9HRZoN 8/bMCXokqayN663EWpkbupATI+pXZSod1QKueXa4BBTII9sJYD4mF7DWb9gkmBff rw3UxeuWfCPFXhZ1OY73KFLmJmnILeAjsrVIL+503rzXQDWnVFtPOQ8dICKhhYpX xRjCs5X7oe/cg9ezlYZw7nOWpa5BWsxxGl+XSreO51Z8HBfJxg/LVcjyg0VgO45J EH6SsmkM4XdeftD4tsRxJRmFtJ2jFKlA -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:49 2025 by rpki-client