$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: QE03iGfWaQzuWPTr2legLQv9unEgYUC3zn5EIdfK9I4= Subject key identifier: 14:3A:D9:B1:B0:B4:A8:77:EE:7D:57:4A:45:53:71:FB:2D:CA:4F:F9 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 34F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 34E7 Signing time: Tue 04 Nov 2025 14:58:00 +0000 Manifest this update: Tue 04 Nov 2025 14:58:00 +0000 Manifest next update: Tue 11 Nov 2025 14:58:00 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: R6BtUUTIrPKmcSoa5znngTqZAMf6xA2xFdOpMR4hMLk=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: rK0c8XECyvN9kLfaJ8Yz0Teq8RiIt0v2rBtEKSM98ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13559 (0x34f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8, serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Nov 4 14:58:00 2025 GMT Not After : Nov 11 14:58:00 2025 GMT Subject: CN=690a1478-8d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:8d:86:38:ce:5e:e8:cd:5d:9d:35:b9:aa: 3c:0d:10:d3:55:ef:81:81:95:5f:68:5d:85:61:02: 66:90:b0:d9:3d:9e:fc:6c:07:66:c5:36:23:4f:66: 02:ac:aa:32:9b:78:32:a3:3d:02:e6:8a:2d:45:b6: 78:35:b7:08:71:ef:16:f3:a4:40:8c:4c:25:e8:c4: 1e:53:be:49:6e:be:83:ba:63:08:d3:6b:08:8c:ee: ae:a6:89:90:61:a1:1b:f9:19:d6:19:9e:d4:de:53: 90:f0:36:29:b0:e3:e9:e1:c4:55:2e:c2:ba:55:38: b0:8e:1a:cd:cb:62:3a:f4:c5:2f:6e:d3:29:bb:30: 8a:0d:2b:15:c7:f8:7d:2f:96:50:65:9d:2d:27:d0: d2:c3:32:9e:d5:1c:08:fd:6c:22:0b:82:f2:c1:31: 14:2d:d5:25:d3:a5:df:1d:1b:97:bb:2e:d0:37:eb: e9:07:b7:c9:8c:fd:82:c3:1d:2c:2d:fb:75:1b:fb: 3c:6c:b0:96:b0:32:51:fd:66:6a:0c:1a:d4:f9:26: e9:2e:b7:5e:d2:72:54:e0:26:c2:a5:c3:a6:5e:0c: 34:20:a7:0a:f9:88:3f:61:59:6a:53:74:f1:66:0e: d4:50:f9:de:29:b6:94:69:b5:1c:26:60:1e:bc:04: 8d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3A:D9:B1:B0:B4:A8:77:EE:7D:57:4A:45:53:71:FB:2D:CA:4F:F9 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:d7:b6:6e:34:7a:0e:1a:ac:fa:5c:3b:e8:79:12:ad:bc:c7: f3:70:db:07:a7:4d:4a:b3:13:cb:65:96:79:91:75:32:84:a1: b1:25:a7:15:a7:e2:3a:07:c6:ad:17:3c:9f:23:5f:6f:e4:c1: 95:b6:8e:89:9f:0a:a4:92:e7:66:af:22:08:a7:e7:12:ba:c8: 56:c2:79:ac:11:a2:9e:7e:da:a1:b9:87:37:ac:2b:06:c4:67: 3f:8a:b9:65:4f:2c:09:33:0e:00:08:0d:0c:44:b0:6b:33:9b: e5:5f:67:92:0d:15:55:9e:ea:2b:70:8a:36:ad:a4:d1:7a:a6: 22:cb:7a:e9:99:d8:fd:b8:e1:e1:d2:14:47:79:b1:47:1a:c5: 81:df:fe:e1:fa:7c:6e:99:9e:2a:36:fc:2a:eb:84:53:c8:af: 10:99:24:80:49:7e:d4:e4:29:21:4c:ca:50:8e:d8:d7:b6:04: 28:96:19:f5:ca:7b:62:a3:54:8f:c7:2c:e2:51:15:24:fd:0e: 15:03:24:cc:cc:5a:6c:92:1a:64:8d:7f:bb:4f:69:b4:be:c7: 65:c3:27:fe:43:5d:79:e6:ea:dc:ee:02:c8:12:aa:3c:4e:5c: d4:cc:a6:76:1c:3f:df:a1:ca:3d:a7:67:58:63:5c:f4:4e:27: 99:74:5f:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjUxMTA0MTQ1ODAwWhcNMjUxMTExMTQ1ODAwWjAYMRYwFAYD VQQDEw02OTBhMTQ3OC04ZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV+NhjjOXujNXZ01uao8DRDTVe+BgZVfaF2FYQJmkLDZPZ78bAdmxTYjT2YC rKoym3gyoz0C5ootRbZ4NbcIce8W86RAjEwl6MQeU75Jbr6DumMI02sIjO6upomQ YaEb+RnWGZ7U3lOQ8DYpsOPp4cRVLsK6VTiwjhrNy2I69MUvbtMpuzCKDSsVx/h9 L5ZQZZ0tJ9DSwzKe1RwI/WwiC4LywTEULdUl06XfHRuXuy7QN+vpB7fJjP2Cwx0s Lft1G/s8bLCWsDJR/WZqDBrU+SbpLrde0nJU4CbCpcOmXgw0IKcK+Yg/YVlqU3Tx Zg7UUPneKbaUabUcJmAevASN2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQ62bGw tKh37n1XSkVTcfstyk/5MB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE17ZuNHoOGqz6XDvoeRKtvMfzcNsHp01KsxPLZZZ5kXUyhKGxJacV p+I6B8atFzyfI19v5MGVto6JnwqkkudmryIIp+cSushWwnmsEaKeftqhuYc3rCsG xGc/irllTywJMw4ACA0MRLBrM5vlX2eSDRVVnuorcIo2raTReqYiy3rpmdj9uOHh 0hRHebFHGsWB3/7h+nxumZ4qNvwq64RTyK8QmSSASX7U5CkhTMpQjtjXtgQolhn1 yntio1SPxyziURUk/Q4VAyTMzFpskhpkjX+7T2m0vsdlwyf+Q1155urc7gLIEqo8 TlzUzKZ2HD/foco9p2dYY1z0TieZdF8v -----END CERTIFICATE-----Generated at Wed Nov 5 02:18:45 2025 by rpki-client