$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: aeEb3CynGDzxST540je+ZO4lF94SaWERiMrsMMFB+SI= Subject key identifier: F4:B7:B9:D6:99:B7:2E:8A:35:DC:63:8D:72:11:92:1E:88:D9:C9:81 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B94 Signing time: Tue 04 Nov 2025 16:21:14 +0000 Manifest this update: Tue 04 Nov 2025 16:21:14 +0000 Manifest next update: Tue 11 Nov 2025 16:21:14 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: FPZACXW5bUBg4lkCqgXC49wWMSp58vNXcmgvt74HtMM=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7070 (0x1b9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Nov 4 16:21:14 2025 GMT Not After : Nov 11 16:21:14 2025 GMT Subject: CN=690a27fa-e220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c3:4a:a3:55:c0:5a:ed:76:73:f2:94:0a:91: 34:13:49:db:f0:a2:aa:60:55:3f:33:d8:13:47:64: 4a:ce:a7:29:97:91:a1:65:87:b6:f5:84:b7:55:65: 4b:e9:cc:9a:56:e7:8b:e6:14:d6:71:d1:da:a3:13: fa:1b:33:99:6a:2a:1c:bf:1a:33:c3:08:65:91:51: bc:f7:b6:a0:61:48:d6:4c:df:71:91:31:d0:e4:3e: 11:2e:e8:6c:2a:5f:8d:7a:41:3f:9e:5e:7e:c9:b9: d2:e3:3d:83:40:9b:5b:e1:a1:e9:96:a0:d9:87:08: 04:a0:ad:e9:8e:7e:99:d8:9d:be:a2:51:0b:f1:bf: c2:97:64:2d:1f:6d:f6:01:a8:ff:e2:c0:8f:d0:e4: dd:11:cd:e5:f7:12:4d:e0:e1:da:d6:05:7b:7b:48: 4b:73:89:b7:18:d4:af:16:eb:58:dd:e7:60:04:a5: 89:fe:09:3b:4d:64:b5:9a:ba:af:f2:9d:21:ef:9d: 36:bd:9b:35:f6:5e:ed:ab:97:37:1f:97:a2:79:51: 1e:89:68:ce:a8:e0:43:a0:80:73:e9:ad:00:b8:ca: b5:2f:60:2e:7d:e9:83:43:f0:29:32:cb:84:9d:29: 8f:90:2b:20:90:d8:0f:83:2f:66:1b:1c:c4:a6:37: 42:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B7:B9:D6:99:B7:2E:8A:35:DC:63:8D:72:11:92:1E:88:D9:C9:81 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:31:1e:e2:7a:83:b9:f7:f9:1f:8b:91:81:f9:26:31:d9:43: 58:1d:c3:e5:b4:da:58:45:7b:02:1a:9f:4c:ae:59:8f:af:db: db:66:4b:95:84:b0:0f:b2:d7:d3:3e:a3:19:20:de:22:93:ee: cd:2c:7b:89:85:09:84:0a:1d:79:d1:b5:78:9d:9a:2c:a6:49: 52:59:40:ce:e7:d4:40:9d:42:d5:14:72:ad:51:2a:4e:b6:59: 84:49:a5:1b:b0:2f:6a:42:c5:8d:5a:da:f7:e4:56:40:8f:8a: ed:59:dc:84:32:c0:06:d9:2e:f8:fc:75:b9:9b:60:e5:38:06: e4:e3:8e:a7:e6:d5:aa:74:e2:f8:88:94:02:c4:c1:44:6f:57: 12:a4:3c:24:2b:d1:a4:26:15:06:15:c6:a5:ab:56:eb:2c:a5: e4:f0:67:f8:43:14:24:86:c5:7b:f6:49:c0:fa:ed:75:a8:fe: 13:04:78:c0:1b:4e:8b:d1:df:c7:f7:7d:85:ef:57:bc:0e:15: ce:61:ac:a9:f5:3a:78:4d:15:1c:a2:93:e0:b9:d1:ce:4f:9e: ac:40:79:52:ba:22:01:e3:fb:6f:a1:75:0b:b6:2d:03:65:6a: 98:f4:a3:43:a7:d0:52:7e:38:4e:20:5f:5b:e9:fc:41:2c:30: 23:3c:59:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUxMTA0MTYyMTE0WhcNMjUxMTExMTYyMTE0WjAYMRYwFAYD VQQDEw02OTBhMjdmYS1lMjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcNKo1XAWu12c/KUCpE0E0nb8KKqYFU/M9gTR2RKzqcpl5GhZYe29YS3VWVL 6cyaVueL5hTWcdHaoxP6GzOZaiocvxozwwhlkVG897agYUjWTN9xkTHQ5D4RLuhs Kl+NekE/nl5+ybnS4z2DQJtb4aHplqDZhwgEoK3pjn6Z2J2+olEL8b/Cl2QtH232 Aaj/4sCP0OTdEc3l9xJN4OHa1gV7e0hLc4m3GNSvFutY3edgBKWJ/gk7TWS1mrqv 8p0h7502vZs19l7tq5c3H5eieVEeiWjOqOBDoIBz6a0AuMq1L2AufemDQ/ApMsuE nSmPkCsgkNgPgy9mGxzEpjdCAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPS3udaZ ty6KNdxjjXIRkh6I2cmBMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQMR7ieoO59/kfi5GB+SYx2UNYHcPltNpYRXsCGp9MrlmPr9vbZkuV hLAPstfTPqMZIN4ik+7NLHuJhQmECh150bV4nZospklSWUDO59RAnULVFHKtUSpO tlmESaUbsC9qQsWNWtr35FZAj4rtWdyEMsAG2S74/HW5m2DlOAbk446n5tWqdOL4 iJQCxMFEb1cSpDwkK9GkJhUGFcalq1brLKXk8Gf4QxQkhsV79knA+u11qP4TBHjA G06L0d/H932F71e8DhXOYayp9Tp4TRUcopPgudHOT56sQHlSuiIB4/tvoXULti0D ZWqY9KNDp9BSfjhOIF9b6fxBLDAjPFnu -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:56 2025 by rpki-client