$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft File: cPEzmWaoGrwgfjvuM3CR2fLzydc.mft (raw, json) Hash identifier: fu06+555By+5JowvcWkbFjWYrHp81is7d6I1kUunaOk= Subject key identifier: 78:82:1B:E9:9C:F7:59:15:74:3E:60:DE:EC:12:F9:CB:74:41:9C:89 Authority key identifier: 70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 Certificate issuer: /CN=A91C9324/serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft Manifest number: 01DA Signing time: Mon 03 Nov 2025 00:52:35 +0000 Manifest this update: Mon 03 Nov 2025 00:52:34 +0000 Manifest next update: Mon 10 Nov 2025 00:52:34 +0000 Files and hashes: 1: cPEzmWaoGrwgfjvuM3CR2fLzydc.crl (hash: XBxDi3+C/nxoHYlAqQNVNloCPZYuJfg0uQc3Xc5bFZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324, serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Validity Not Before: Nov 3 00:52:34 2025 GMT Not After : Nov 10 00:52:34 2025 GMT Subject: CN=6907fcd2-d985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:28:fb:f5:4c:95:f7:22:fa:bb:f0:05:33:d4: 10:f9:47:47:81:36:03:0a:41:72:d2:04:bb:95:9d: dc:f7:12:b5:0c:58:c4:09:c9:6c:ef:b9:67:5c:d9: 17:ea:48:29:18:fe:7f:9d:8e:0a:c7:a9:b4:d9:ce: 4b:31:0a:c8:70:1d:a9:9b:4f:79:f7:6c:e2:33:70: fd:3a:11:a5:56:87:cd:b7:98:dc:22:37:bf:2b:0a: 40:fb:57:67:4f:89:b5:15:39:3b:1f:17:f9:1e:99: a4:96:4b:db:bd:f4:2f:28:51:3f:b1:61:bd:4c:29: 09:44:9b:1b:26:ba:0a:c4:28:66:bb:84:10:14:c6: ce:f1:d7:c7:13:31:54:75:60:62:7f:30:14:94:59: 2f:7a:cb:11:a4:13:e8:21:62:48:fb:4b:8a:98:88: 80:d4:c6:9e:e0:c3:7f:24:81:81:67:ab:ea:2b:fb: 7a:5f:0d:03:bc:06:c2:a2:5e:df:06:17:a3:61:a5: f0:cb:dc:9e:87:66:28:27:78:52:41:ed:96:72:3c: 49:2e:93:2c:4b:1d:38:67:88:e2:65:46:6b:00:02: 48:3b:05:04:5c:34:4b:1d:d5:1b:55:b9:3c:84:53: a1:12:24:3a:c7:2e:30:de:3b:28:b5:a0:08:c3:52: da:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:82:1B:E9:9C:F7:59:15:74:3E:60:DE:EC:12:F9:CB:74:41:9C:89 X509v3 Authority Key Identifier: keyid:70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d9:e6:22:14:06:e6:d3:14:63:5f:3e:62:24:fc:5b:0f:36: 50:dc:24:5c:8a:bc:a0:5e:71:c3:63:69:09:5e:4c:9c:25:20: ec:d3:de:aa:d4:ed:dd:17:db:7b:f4:ab:5c:99:73:c1:bc:8f: 80:05:b2:a9:f5:bb:a9:35:94:26:e2:c2:0f:b7:c6:93:4f:90: 80:6a:61:27:6a:a6:a1:3a:cb:0b:3f:e9:65:b0:4b:d3:2f:6d: 20:c2:e7:a7:e1:68:da:bc:57:5f:02:98:32:81:87:5e:7c:0d: 0e:54:63:9a:c8:c5:78:40:a0:bc:71:6c:44:83:cc:25:72:4d: b5:b1:11:09:70:bc:e5:6e:8e:96:be:70:fa:17:a8:b1:52:56: 61:e6:4a:1a:f3:24:31:cf:c5:f2:fe:7b:0c:2f:8b:a5:94:0d: b4:a5:b5:a0:44:df:81:27:0b:97:08:47:d5:45:45:36:a1:21: 0a:de:6d:0e:81:c9:0b:da:6d:bb:1f:1c:74:b7:68:a1:1e:9f: 92:65:21:e2:62:4e:7b:69:89:17:67:9f:05:77:42:96:bd:8a: 20:1a:be:0f:a3:13:40:4a:34:76:e1:0d:0f:fe:e8:b7:97:99: 89:fc:54:a9:d0:ab:3a:d8:e8:94:c6:b6:c6:6b:f8:e2:c1:26: 64:14:1b:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDcwRjEzMzk5NjZBODFBQkMyMDdFM0JFRTMzNzA5MUQ5 RjJGM0M5RDcwHhcNMjUxMTAzMDA1MjM0WhcNMjUxMTEwMDA1MjM0WjAYMRYwFAYD VQQDEw02OTA3ZmNkMi1kOTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxij79UyV9yL6u/AFM9QQ+UdHgTYDCkFy0gS7lZ3c9xK1DFjECcls77lnXNkX 6kgpGP5/nY4Kx6m02c5LMQrIcB2pm09592ziM3D9OhGlVofNt5jcIje/KwpA+1dn T4m1FTk7Hxf5HpmklkvbvfQvKFE/sWG9TCkJRJsbJroKxChmu4QQFMbO8dfHEzFU dWBifzAUlFkvessRpBPoIWJI+0uKmIiA1Mae4MN/JIGBZ6vqK/t6Xw0DvAbCol7f BhejYaXwy9yeh2YoJ3hSQe2WcjxJLpMsSx04Z4jiZUZrAAJIOwUEXDRLHdUbVbk8 hFOhEiQ6xy4w3jsotaAIw1LagQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiCG+mc 91kVdD5g3uwS+ct0QZyJMB8GA1UdIwQYMBaAFHDxM5lmqBq8IH477jNwkdny88nX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC8yMkJGOEQzMkUw MkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dyd2dmanZ1TTNDUjJmTHp5 ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NQRXptV2FvR3J3Z2ZqdnVNM0NSMmZMenlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNC8yMkJGOEQzMkUwMkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dy d2dmanZ1TTNDUjJmTHp5ZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH2eYiFAbm0xRjXz5iJPxbDzZQ3CRcirygXnHDY2kJXkycJSDs096q 1O3dF9t79KtcmXPBvI+ABbKp9bupNZQm4sIPt8aTT5CAamEnaqahOssLP+llsEvT L20gwuen4WjavFdfApgygYdefA0OVGOayMV4QKC8cWxEg8wlck21sREJcLzlbo6W vnD6F6ixUlZh5koa8yQxz8Xy/nsML4ullA20pbWgRN+BJwuXCEfVRUU2oSEK3m0O gckL2m27Hxx0t2ihHp+SZSHiYk57aYkXZ58Fd0KWvYogGr4PoxNASjR24Q0P/ui3 l5mJ/FSp0Ks62OiUxrbGa/jiwSZkFBuu -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:33 2025 by rpki-client