$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: DfF81h17Gqw60lOSKs5ZASpe9mZajZQZ/mLdHmZnZKs= Subject key identifier: 44:7A:67:49:21:5E:72:2A:7F:DC:31:14:6B:81:26:6C:75:A4:4E:29 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 0964 Signing time: Tue 04 Nov 2025 20:20:18 +0000 Manifest this update: Tue 04 Nov 2025 20:20:18 +0000 Manifest next update: Tue 11 Nov 2025 20:20:18 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: Fpa9rk0tKt5tBDQSRnitDTsYT1P1PWxwIyn49INYuEk=) 2: 6B7D02AEB4A111F08515F713C4F9AE02.roa (hash: 8dIXmowCXPZAD2UJ+5qefOaUBnMZVuWIuv6x5mQBQWI=) 3: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 4: 6BF6643CB4A111F08515F713C4F9AE02.roa (hash: Gt8jcc9BxYE0RKDJpKuGjcT4RRngdw+3k/tgoWee/f4=) 5: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 6: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Nov 4 20:20:18 2025 GMT Not After : Nov 11 20:20:18 2025 GMT Subject: CN=690a6002-1cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:e4:e4:44:66:ac:58:71:43:d3:74:e3:cd: 67:65:c6:86:f6:14:81:23:1a:82:9f:97:13:c5:c8: fb:75:4b:6d:82:8a:f5:87:f3:58:00:21:e7:25:10: 8c:f7:63:82:f7:0e:56:64:37:50:2c:b8:93:e2:3f: 5f:b1:01:76:d5:2f:c3:67:0a:26:7f:de:71:94:67: 0f:f0:b6:e6:61:55:8c:86:92:17:9e:9a:ae:45:c4: 5d:85:e1:63:78:8f:83:89:f4:cd:87:09:ec:80:54: a5:17:f6:1b:25:64:ad:9d:2c:47:b4:67:3c:ac:13: 19:2e:54:37:37:9e:b7:36:2e:79:e8:72:32:14:b5: 8c:47:46:3b:e0:92:ab:06:98:c4:fa:a4:f3:23:b3: 1e:52:92:bf:b0:7a:ac:2b:e5:eb:60:80:c1:07:38: 14:58:32:ff:c3:2b:21:e6:66:b6:fd:0f:a6:38:39: bc:20:5f:42:aa:04:47:4b:7a:7e:8a:9b:c8:3a:7a: 44:56:a3:fc:c9:99:1c:b7:d1:94:a5:20:78:0e:1d: bf:3f:78:8f:4d:f4:3d:38:4b:83:09:18:3c:46:9f: 58:9c:27:ea:cc:67:81:d9:e8:04:c2:2d:85:ad:66: f0:fb:3d:5d:ae:2e:3b:c8:3c:b3:5d:6d:79:2e:81: 27:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:7A:67:49:21:5E:72:2A:7F:DC:31:14:6B:81:26:6C:75:A4:4E:29 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d9:1f:2d:fc:d1:86:c3:7c:b8:c5:a3:80:c6:3d:7d:8e:5a: 99:30:8f:a1:d7:b0:e0:b8:ae:5f:01:f3:01:48:52:83:94:0a: 18:57:e5:68:23:83:4e:94:d0:07:57:23:df:97:67:83:94:3c: 97:cd:83:36:13:3e:9b:4e:50:29:20:19:4a:de:da:17:3c:91: fc:c8:e6:b7:06:b1:90:7a:5c:40:dd:52:3b:af:d5:e0:8c:2c: 45:2d:03:f6:e7:53:ac:fb:0b:6f:bb:3d:09:a5:74:a2:ea:eb: db:c1:fb:a9:f3:12:e6:c9:a7:59:0b:90:55:3d:bd:a9:0a:0b: f3:5d:65:a8:19:45:fc:76:92:93:8d:23:89:4d:6f:02:4b:59: 2c:29:5d:04:b7:44:8e:5a:07:da:88:a5:cd:8c:74:70:e6:53: 81:12:7c:84:6c:b8:45:d8:ad:53:1d:2f:97:19:f0:f7:25:e0: 1b:66:0b:92:d1:18:4f:92:95:b6:1b:2d:fc:66:ac:14:1a:4d: 8e:81:ff:f1:7a:0a:ff:19:29:71:ac:f0:66:37:f5:e7:3a:85: 44:5e:67:6f:ce:a9:48:dd:7c:a7:c9:3f:3d:60:a3:8a:f0:3a: a6:37:9a:87:e2:1c:df:53:b8:e9:6a:3a:c0:2a:8b:ea:c5:d5: c5:ec:d7:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUxMTA0MjAyMDE4WhcNMjUxMTExMjAyMDE4WjAYMRYwFAYD VQQDEw02OTBhNjAwMi0xY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHXk5ERmrFhxQ9N0481nZcaG9hSBIxqCn5cTxcj7dUttgor1h/NYACHnJRCM 92OC9w5WZDdQLLiT4j9fsQF21S/DZwomf95xlGcP8LbmYVWMhpIXnpquRcRdheFj eI+DifTNhwnsgFSlF/YbJWStnSxHtGc8rBMZLlQ3N563Ni556HIyFLWMR0Y74JKr BpjE+qTzI7MeUpK/sHqsK+XrYIDBBzgUWDL/wysh5ma2/Q+mODm8IF9CqgRHS3p+ ipvIOnpEVqP8yZkct9GUpSB4Dh2/P3iPTfQ9OEuDCRg8Rp9YnCfqzGeB2egEwi2F rWbw+z1dri47yDyzXW15LoEnPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFER6Z0kh XnIqf9wxFGuBJmx1pE4pMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa2R8t/NGGw3y4xaOAxj19jlqZMI+h17DguK5fAfMBSFKDlAoYV+Vo I4NOlNAHVyPfl2eDlDyXzYM2Ez6bTlApIBlK3toXPJH8yOa3BrGQelxA3VI7r9Xg jCxFLQP251Os+wtvuz0JpXSi6uvbwfup8xLmyadZC5BVPb2pCgvzXWWoGUX8dpKT jSOJTW8CS1ksKV0Et0SOWgfaiKXNjHRw5lOBEnyEbLhF2K1THS+XGfD3JeAbZguS 0RhPkpW2Gy38ZqwUGk2Ogf/xegr/GSlxrPBmN/XnOoVEXmdvzqlI3XynyT89YKOK 8DqmN5qH4hzfU7jpajrAKovqxdXF7NcP -----END CERTIFICATE-----Generated at Wed Nov 5 09:42:39 2025 by rpki-client