$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft File: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft (raw, json) Hash identifier: Uxrkfj2HriBp+nOiQfqfSpVSvWv1hz+lW3b6MRyA56g= Subject key identifier: CB:84:B7:BA:70:76:8D:96:3D:B9:DF:57:CA:1B:50:DD:62:4F:2B:1D Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft Manifest number: 085F Signing time: Tue 04 Nov 2025 20:42:54 +0000 Manifest this update: Tue 04 Nov 2025 20:42:54 +0000 Manifest next update: Tue 11 Nov 2025 20:42:54 +0000 Files and hashes: 1: aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl (hash: 281A5vzDCIQqPzn1qvxJJoVXIhlhL3hLkI99pADvoSU=) 2: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (hash: Uilk1jJBfDMGY2sckuokao9InqlSOEodf+Dfn/tc4QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Nov 4 20:42:54 2025 GMT Not After : Nov 11 20:42:54 2025 GMT Subject: CN=690a654e-3179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bf:a6:2a:18:3c:08:e4:1a:ca:23:70:13:ec: be:7c:6b:91:8a:c2:0d:a8:0b:f7:68:28:77:7b:b1: 94:b9:df:f3:9e:06:cd:fe:6e:ee:0d:cd:bf:94:3f: 55:09:4f:05:6f:62:74:e5:57:d0:ce:2e:4e:c5:b8: 0b:e0:c2:9a:05:9c:8a:ed:f9:32:c8:23:96:40:64: 08:41:b9:e2:af:3c:3b:9c:55:34:16:a7:a4:38:0a: a7:82:da:14:f0:17:f9:16:4a:3b:9e:44:15:5e:b6: dc:79:4d:e3:80:87:57:00:a0:68:7e:3c:8c:ae:da: 8f:94:89:cb:9e:ec:78:c5:33:41:69:29:b9:79:af: 02:1b:63:94:1d:b4:83:b5:46:bf:c5:47:99:c0:8f: 77:37:18:96:c3:f2:1b:00:22:1c:b4:04:74:19:c4: 74:1d:52:d7:f1:7c:c4:62:bd:52:51:0c:c7:b3:07: 51:fc:b1:5e:70:cf:6c:b6:78:dc:e9:cd:ec:f1:d9: a2:97:83:cf:bd:46:2a:04:ae:12:a5:2e:33:60:6f: 15:77:05:9c:e7:b4:4c:fe:56:1e:2e:cf:82:86:2b: de:5c:22:1c:79:44:12:68:0c:6a:b0:82:7f:8d:d0: 8b:b1:85:8f:65:e8:d5:91:fb:60:a2:f3:1e:a7:79: 26:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:84:B7:BA:70:76:8D:96:3D:B9:DF:57:CA:1B:50:DD:62:4F:2B:1D X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:00:a7:18:55:40:fb:f1:65:e1:60:ce:ec:3e:93:0a:82:76: 1e:45:a9:72:ed:e0:1c:55:0e:8d:ef:82:e0:36:27:53:4f:1e: 38:06:01:f6:e9:a0:17:f5:f2:5d:1e:73:98:57:71:70:29:24: 73:a9:f0:6a:24:83:ef:62:c2:38:39:6e:02:2f:4b:3f:c0:4b: de:72:97:b4:bd:31:cc:ff:b8:1d:30:da:ab:c4:63:5f:ab:92: 6b:fa:54:db:50:ce:c8:e1:1e:a3:8f:fa:f5:d7:c0:50:5f:05: 31:9f:49:0b:b4:01:6b:51:6b:2d:f2:dd:18:e3:01:6c:09:e2: 94:5e:53:65:57:0c:d4:a8:63:5c:f4:aa:36:f0:0a:ca:9e:32: 37:17:81:fc:31:74:ad:8b:1c:ad:92:b4:f2:6d:21:a3:68:c8: 99:7c:d4:15:05:c1:82:3f:9e:22:d0:58:e3:44:37:1e:6b:76: 8e:08:a3:0e:4b:08:b1:69:59:fa:78:88:e2:82:17:81:a6:e3: 75:35:b0:06:24:63:ec:92:dc:77:ac:7e:64:e6:ea:b1:5f:1a: 47:f2:88:17:0a:0e:06:33:f0:5f:a3:a4:c6:da:d1:ff:0f:c1: 6f:d2:9e:e3:f0:4a:ff:ce:5a:05:50:14:7a:56:fa:34:ac:e7: 43:74:f2:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjUxMTA0MjA0MjU0WhcNMjUxMTExMjA0MjU0WjAYMRYwFAYD VQQDEw02OTBhNjU0ZS0zMTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0b+mKhg8COQayiNwE+y+fGuRisINqAv3aCh3e7GUud/zngbN/m7uDc2/lD9V CU8Fb2J05VfQzi5OxbgL4MKaBZyK7fkyyCOWQGQIQbnirzw7nFU0FqekOAqngtoU 8Bf5Fko7nkQVXrbceU3jgIdXAKBofjyMrtqPlInLnux4xTNBaSm5ea8CG2OUHbSD tUa/xUeZwI93NxiWw/IbACIctAR0GcR0HVLX8XzEYr1SUQzHswdR/LFecM9stnjc 6c3s8dmil4PPvUYqBK4SpS4zYG8VdwWc57RM/lYeLs+ChiveXCIceUQSaAxqsIJ/ jdCLsYWPZejVkftgovMep3kmVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuEt7pw do2WPbnfV8obUN1iTysdMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDc1MC85MEQ1RUM1QURBQkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVG TVdkWFpsRVFQNEgxbXMzQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXAKcYVUD78WXhYM7sPpMKgnYeRaly7eAcVQ6N74LgNidTTx44BgH2 6aAX9fJdHnOYV3FwKSRzqfBqJIPvYsI4OW4CL0s/wEvecpe0vTHM/7gdMNqrxGNf q5Jr+lTbUM7I4R6jj/r118BQXwUxn0kLtAFrUWst8t0Y4wFsCeKUXlNlVwzUqGNc 9Ko28ArKnjI3F4H8MXStixytkrTybSGjaMiZfNQVBcGCP54i0FjjRDcea3aOCKMO SwixaVn6eIjigheBpuN1NbAGJGPsktx3rH5k5uqxXxpH8ogXCg4GM/Bfo6TG2tH/ D8Fv0p7j8Er/zloFUBR6Vvo0rOdDdPKK -----END CERTIFICATE-----Generated at Thu Nov 6 01:12:59 2025 by rpki-client