$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft File: WkoaHy2STehVVccdPbZrm7DkNkM.mft (raw, json) Hash identifier: tgrRzt/ZlIP4be1CwuvZcPzOu+zPaB6qZm1VmoJUECk= Subject key identifier: 7B:BC:D2:41:04:8D:19:82:88:05:C7:9B:33:05:E0:0D:DA:83:75:05 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft Manifest number: 0C53 Signing time: Tue 04 Nov 2025 18:42:59 +0000 Manifest this update: Tue 04 Nov 2025 18:42:58 +0000 Manifest next update: Tue 11 Nov 2025 18:42:58 +0000 Files and hashes: 1: WkoaHy2STehVVccdPbZrm7DkNkM.crl (hash: WsNeIt3/DN1Oa60zSoktbJai0kQXtSp5M0eeQvuTB9M=) 2: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (hash: 5Pl69Ojf2kmCxfLr0FSueU3iqe1LbesPtFydiCfx1IQ=) 3: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (hash: 5dNjtUvyRJQ8rKds7M86B2djQAg4WheDaP9EfyZTla8=) 4: 504C179A3CDE11EAB553996BC4F9AE02.roa (hash: bqf4/Z70iNIgP7UdmtL9Kr8ESUyHQDpHnkrIZZGc+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3179 (0xc6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Nov 4 18:42:58 2025 GMT Not After : Nov 11 18:42:58 2025 GMT Subject: CN=690a4932-a42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:cb:e7:2e:d0:82:96:ff:86:53:18:1f:77: 82:a7:4c:da:7d:13:8e:f8:7a:07:c3:25:4d:c5:84: bb:ac:45:15:0d:05:9c:37:73:e6:28:0e:a2:48:8f: 94:bd:3c:c1:da:77:ed:85:24:6b:2a:31:d1:2d:3c: 33:2a:bc:10:52:d8:9f:03:ae:35:4d:e1:86:73:14: f0:05:bf:35:bf:23:eb:ce:d3:87:29:27:9a:32:44: 98:bd:c2:c7:2a:0e:6d:50:00:6b:33:ba:37:ad:15: b4:bd:62:ac:45:e8:73:7b:88:46:06:8d:a7:c2:5f: 5a:dd:66:c3:3a:b1:05:5c:96:f0:a4:63:6b:51:9f: 0f:5c:4d:4f:fc:a0:12:71:08:2e:e2:bf:13:44:5b: 2e:47:bb:76:2f:90:42:a8:dd:b1:22:2d:d4:e0:35: ff:a5:44:2b:b9:51:67:5d:3f:d3:e8:08:92:d0:e5: 41:d1:43:7a:69:dc:08:52:88:cc:b9:53:06:86:67: d0:d4:a2:4a:07:fd:13:94:da:47:9f:70:6d:99:e1: a6:b5:d6:3b:90:90:bd:d6:1f:2d:b3:96:3b:92:9f: 35:c2:72:57:d1:73:d6:82:6d:f5:25:f7:c0:c1:8f: ac:64:27:cc:18:be:78:0d:d4:5d:8e:20:c5:7d:16: de:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BC:D2:41:04:8D:19:82:88:05:C7:9B:33:05:E0:0D:DA:83:75:05 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:23:57:f2:4e:3a:ee:63:f1:69:9f:94:6c:8d:a7:5b:37:87: b0:98:5b:69:d1:4b:bc:d8:99:86:da:e3:b7:9b:f5:33:cc:a4: ce:21:55:70:a5:0b:61:5d:da:34:9c:87:45:4d:8a:82:21:10: 6d:01:18:ac:03:12:6c:61:6a:6d:7f:1d:44:40:63:11:1b:16: fa:7c:23:b1:d8:28:39:5f:d6:9f:2e:82:45:5d:7b:a4:71:42: 19:fa:4e:0b:a1:19:fe:ea:ec:57:d3:71:b0:61:44:da:3e:8e: 34:06:d6:5d:14:bf:a7:9f:cb:ac:e7:82:2e:55:8d:18:94:2a: 7f:3a:fd:04:f1:ee:a8:47:64:46:14:2d:e4:8c:91:5e:45:49: d5:a7:7b:78:dc:ac:af:4e:a8:61:39:c2:d9:2e:29:8d:16:e1: 73:98:61:26:ec:b5:31:82:da:3b:d1:33:5e:fc:29:90:75:1c: d1:19:86:2f:e4:0b:65:73:bb:13:d1:f3:82:61:f5:2c:fd:67: ac:3e:53:2d:b7:78:58:79:a2:ec:02:ca:ab:4f:e3:c3:10:c7: c9:dc:0d:9e:7b:a0:0e:47:d3:91:b7:0c:f7:7a:d1:88:1b:f6: fb:51:08:a8:5c:45:16:00:bb:f1:ec:fc:ff:db:1b:97:67:6e: e0:d5:1e:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUxMTA0MTg0MjU4WhcNMjUxMTExMTg0MjU4WjAYMRYwFAYD VQQDEw02OTBhNDkzMi1hNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnrL5y7Qgpb/hlMYH3eCp0zafROO+HoHwyVNxYS7rEUVDQWcN3PmKA6iSI+U vTzB2nfthSRrKjHRLTwzKrwQUtifA641TeGGcxTwBb81vyPrztOHKSeaMkSYvcLH Kg5tUABrM7o3rRW0vWKsRehze4hGBo2nwl9a3WbDOrEFXJbwpGNrUZ8PXE1P/KAS cQgu4r8TRFsuR7t2L5BCqN2xIi3U4DX/pUQruVFnXT/T6AiS0OVB0UN6adwIUojM uVMGhmfQ1KJKB/0TlNpHn3BtmeGmtdY7kJC91h8ts5Y7kp81wnJX0XPWgm31JffA wY+sZCfMGL54DdRdjiDFfRbeQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu80kEE jRmCiAXHmzMF4A3ag3UFMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkU4Ny9BOUYzQzZFRTEyOUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1Rl aFZWY2NkUGJacm03RGtOa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPI1fyTjruY/Fpn5RsjadbN4ewmFtp0Uu82JmG2uO3m/UzzKTOIVVw pQthXdo0nIdFTYqCIRBtARisAxJsYWptfx1EQGMRGxb6fCOx2Cg5X9afLoJFXXuk cUIZ+k4LoRn+6uxX03GwYUTaPo40BtZdFL+nn8us54IuVY0YlCp/Ov0E8e6oR2RG FC3kjJFeRUnVp3t43KyvTqhhOcLZLimNFuFzmGEm7LUxgto70TNe/CmQdRzRGYYv 5Atlc7sT0fOCYfUs/WesPlMtt3hYeaLsAsqrT+PDEMfJ3A2ee6AOR9ORtwz3etGI G/b7UQioXEUWALvx7Pz/2xuXZ27g1R5P -----END CERTIFICATE-----Generated at Wed Nov 5 04:05:08 2025 by rpki-client