$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3F7F/8A0B441A872911F09453627FC4F9AE02/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.mft File: AfpykgfkEOkMxx4ymH5ZtzbwK1Q.mft (raw, json) Hash identifier: sVOlLHpmBWUidNIip302aTptCuqhSw5laf38GSJqePM= Subject key identifier: 50:CD:B6:1B:B3:80:FF:37:62:46:43:9B:4F:D3:E4:94:49:4C:7E:39 Authority key identifier: 01:FA:72:92:07:E4:10:E9:0C:C7:1E:32:98:7E:59:B7:36:F0:2B:54 Certificate issuer: /CN=A91C3F7F/serialNumber=01FA729207E410E90CC71E32987E59B736F02B54 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3F7F/8A0B441A872911F09453627FC4F9AE02/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.mft Manifest number: 20 Signing time: Mon 03 Nov 2025 07:45:01 +0000 Manifest this update: Mon 03 Nov 2025 07:45:01 +0000 Manifest next update: Mon 10 Nov 2025 07:45:01 +0000 Files and hashes: 1: AfpykgfkEOkMxx4ymH5ZtzbwK1Q.crl (hash: embIovjCRT1e3Jlb5j4IADQyT1eUKjBNbM0qQMMUid4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3F7F/8A0B441A872911F09453627FC4F9AE02/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.crl rsync://rpki.apnic.net/member_repository/A91C3F7F/8A0B441A872911F09453627FC4F9AE02/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3F7F, serialNumber=01FA729207E410E90CC71E32987E59B736F02B54 Validity Not Before: Nov 3 07:45:01 2025 GMT Not After : Nov 10 07:45:01 2025 GMT Subject: CN=69085d7d-fcbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:3b:ea:4e:52:10:01:e3:a9:6e:b2:67:5e: 7e:68:fe:12:20:85:0a:3f:84:16:f2:e5:4e:6a:22: 09:3a:cd:8b:90:e4:e9:6d:ef:4c:ba:9a:7c:8b:b7: 2d:6a:81:f8:af:01:59:7c:61:e3:8e:a4:e6:ad:8e: 7e:7a:7e:d5:3a:14:24:a2:a5:95:98:1d:84:2e:c7: d3:48:54:4d:85:a6:b3:b2:1c:2d:9f:cc:9f:a4:a5: 11:09:61:4c:57:dd:30:97:0d:9a:f7:b4:7e:cc:ee: 9e:1a:ba:0b:36:fb:3f:1d:02:26:de:7f:ca:3e:08: 7d:e8:fc:7b:a8:b3:7c:ac:c1:e8:d4:5d:ed:c2:77: ed:d4:b2:24:c6:6c:c4:21:86:cb:0b:74:a4:22:ec: 18:10:33:45:ef:46:eb:d9:76:7d:63:a3:8b:16:82: 21:2e:e7:1a:64:fe:f2:50:0a:c3:2a:35:61:95:91: 99:c2:2d:71:ad:fb:f4:38:19:b3:68:fb:8f:3f:d5: 5f:9c:52:ed:d7:62:d0:cb:29:30:bc:30:1f:98:e5: 16:e7:3a:16:28:22:0c:d3:dd:06:ef:e4:24:ea:3f: 41:2f:af:02:5a:6b:4d:c7:60:73:9a:25:17:94:50: c9:f2:e8:7b:b3:c6:0b:c2:94:82:23:18:d1:7e:c1: 58:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:CD:B6:1B:B3:80:FF:37:62:46:43:9B:4F:D3:E4:94:49:4C:7E:39 X509v3 Authority Key Identifier: keyid:01:FA:72:92:07:E4:10:E9:0C:C7:1E:32:98:7E:59:B7:36:F0:2B:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3F7F/8A0B441A872911F09453627FC4F9AE02/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3F7F/8A0B441A872911F09453627FC4F9AE02/AfpykgfkEOkMxx4ymH5ZtzbwK1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:eb:3c:50:63:29:de:7c:b1:bf:20:2b:a9:d7:ad:93:3e:0e: 9e:e7:1f:11:3c:b7:8a:2d:8f:2e:8e:ec:2c:5f:9e:89:61:88: 50:fd:8a:18:c1:30:ed:43:dc:78:9b:83:89:3c:f6:85:c5:fd: af:77:7b:76:29:1c:8f:2f:38:79:9f:45:3b:ce:8e:50:66:4d: ff:da:6a:9c:b1:ae:e0:db:e0:b8:80:e6:ee:0b:ff:62:67:e5: c9:ce:26:4b:48:17:81:db:89:32:55:a5:2e:39:09:38:5d:75: f2:83:de:c4:6a:cf:bf:5f:60:cc:58:68:8d:c2:4a:6a:34:1b: ee:24:30:3b:9c:a5:8e:20:e5:00:46:a0:df:5f:95:c4:5c:f8: 63:b4:50:09:99:46:9f:b1:f9:51:ba:9b:c0:57:3f:73:37:6a: d4:eb:f5:d3:d5:a7:a1:db:8d:04:8f:1d:79:bd:6e:19:f7:33: 24:1c:ff:be:14:99:14:8a:81:90:61:31:b9:0b:34:ea:20:f5: c3:d6:79:7c:02:9c:69:33:62:d7:d6:a7:60:98:90:a2:5f:34: 38:f3:d6:a4:b0:7a:36:29:56:32:a1:78:97:9f:a5:11:0e:a9: c9:f9:b0:f6:93:c1:60:86:bd:6b:aa:11:d7:ff:dd:32:da:ca: 19:e2:39:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD M0Y3RjExMC8GA1UEBRMoMDFGQTcyOTIwN0U0MTBFOTBDQzcxRTMyOTg3RTU5Qjcz NkYwMkI1NDAeFw0yNTExMDMwNzQ1MDFaFw0yNTExMTAwNzQ1MDFaMBgxFjAUBgNV BAMTDTY5MDg1ZDdkLWZjYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnqDvqTlIQAeOpbrJnXn5o/hIghQo/hBby5U5qIgk6zYuQ5Olt70y6mnyLty1q gfivAVl8YeOOpOatjn56ftU6FCSipZWYHYQux9NIVE2FprOyHC2fzJ+kpREJYUxX 3TCXDZr3tH7M7p4augs2+z8dAibef8o+CH3o/Huos3yswejUXe3Cd+3UsiTGbMQh hssLdKQi7BgQM0XvRuvZdn1jo4sWgiEu5xpk/vJQCsMqNWGVkZnCLXGt+/Q4GbNo +48/1V+cUu3XYtDLKTC8MB+Y5RbnOhYoIgzT3Qbv5CTqP0EvrwJaa03HYHOaJReU UMny6HuzxgvClIIjGNF+wVj/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUM22G7OA /zdiRkObT9PklElMfjkwHwYDVR0jBBgwFoAUAfpykgfkEOkMxx4ymH5ZtzbwK1Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzRjdGLzhBMEI0NDFBODcy OTExRjA5NDUzNjI3RkM0RjlBRTAyL0FmcHlrZ2ZrRU9rTXh4NHltSDVadHpid0sx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWZweWtnZmtFT2tNeHg0eW1INVp0emJ3SzFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz RjdGLzhBMEI0NDFBODcyOTExRjA5NDUzNjI3RkM0RjlBRTAyL0FmcHlrZ2ZrRU9r TXh4NHltSDVadHpid0sxUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEHrPFBjKd58sb8gK6nXrZM+Dp7nHxE8t4otjy6O7CxfnolhiFD9ihjB MO1D3Hibg4k89oXF/a93e3YpHI8vOHmfRTvOjlBmTf/aapyxruDb4LiA5u4L/2Jn 5cnOJktIF4HbiTJVpS45CThddfKD3sRqz79fYMxYaI3CSmo0G+4kMDucpY4g5QBG oN9flcRc+GO0UAmZRp+x+VG6m8BXP3M3atTr9dPVp6HbjQSPHXm9bhn3MyQc/74U mRSKgZBhMbkLNOog9cPWeXwCnGkzYtfWp2CYkKJfNDjz1qSwejYpVjKheJefpREO qcn5sPaTwWCGvWuqEdf/3TLayhniOQg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:33 2025 by rpki-client