$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: hQN16mdfUxO5ezyR/WoURdvwgAfNYD2rGJkJueBOXiA= Subject key identifier: C4:D4:F6:9F:A5:ED:E7:E6:1D:1C:57:58:2C:12:32:62:50:14:5C:C2 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0543 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 0534 Signing time: Sun 02 Nov 2025 23:28:58 +0000 Manifest this update: Sun 02 Nov 2025 23:28:58 +0000 Manifest next update: Sun 09 Nov 2025 23:28:58 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: Noo3qO85zviDdVaSLigPKZ8snSsynLTUB9EpeUQG89A=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: K6zEQIX3Xs70jZXyUBIkq7itCCV+/w4+T7TPTazGJDw=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: K4Tk1pgMDNh5SKenYzBLQtmFUIf8LUH33Tf6G2W39As=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1347 (0x543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Nov 2 23:28:58 2025 GMT Not After : Nov 9 23:28:58 2025 GMT Subject: CN=6907e93a-b2cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d0:e8:d9:a2:0b:71:b8:a8:13:8c:41:cb:56: f2:95:ad:7c:6f:ec:af:69:d0:54:2a:66:d0:f1:07: 50:a3:31:b8:dc:3b:f5:ad:91:39:4c:57:e7:5f:37: ef:5d:b8:6a:81:3f:06:24:1d:6d:9a:88:aa:25:11: 0e:99:8b:52:71:78:60:bc:db:63:3e:3c:d3:59:db: c0:bb:7e:33:04:66:72:9e:01:62:79:a0:94:86:6e: 94:c2:0b:b1:7a:0b:6e:d1:b8:34:5a:9e:9b:92:be: 7a:72:96:39:0c:34:c3:16:be:9f:61:93:82:69:7d: 92:09:6e:a0:a3:85:fe:c7:1b:21:79:51:97:7a:8a: e6:56:e0:bf:56:a4:d0:ca:9a:ad:46:b7:7a:01:95: 7a:5f:1f:20:7a:37:89:a0:81:cd:5c:66:64:c6:95: 9a:4a:bb:53:e1:df:b7:ed:d4:dd:bd:c2:2c:53:db: 16:a2:7a:41:2e:e3:ef:c3:23:19:7f:47:06:a3:64: e0:63:9f:fb:93:95:0f:73:b0:c6:af:aa:c0:e2:62: 73:a1:72:bc:b3:3a:0f:55:3b:36:1f:87:16:20:f9: 55:12:70:49:b4:a2:49:7a:be:1e:24:78:c4:d3:53: 50:3f:01:1d:38:eb:99:29:e4:2d:f5:dd:15:c2:4c: 64:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D4:F6:9F:A5:ED:E7:E6:1D:1C:57:58:2C:12:32:62:50:14:5C:C2 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:df:43:0c:5c:1e:3d:5e:20:c9:b6:c6:49:9c:76:43:d6:f7: b5:50:df:bf:91:31:cd:43:22:44:68:d0:f8:58:87:aa:32:c0: c2:da:a7:a1:c5:9c:57:b0:a4:fa:93:ea:bf:10:87:9f:c5:eb: 72:24:af:c6:5e:9f:db:e9:3d:c8:aa:6f:2d:9a:68:1b:11:d3: d3:0a:02:ea:ad:07:b4:b6:14:a6:4d:99:6c:a5:b4:1e:60:4c: a9:6c:5c:30:49:83:f7:97:2f:92:c0:a7:82:fa:c0:dc:b7:16: 0d:a0:49:59:8a:b2:b0:c0:0f:87:ca:86:5a:28:f6:a2:6e:9c: 6c:c4:35:ed:6d:2e:00:95:a1:50:67:45:78:81:17:b5:1e:6f: 52:f4:4b:bc:1a:73:4b:f9:3c:56:94:ee:3d:5c:95:9a:7e:62: 98:83:56:8a:77:67:4c:50:6e:95:9b:26:78:f4:d2:48:79:72: fa:fd:ae:72:68:20:b5:6d:d7:25:fe:e9:70:9d:fe:2a:eb:9a: c1:34:b1:ed:90:0a:d3:82:f7:03:b7:c1:e1:0b:84:d7:a2:25: 06:49:94:8c:d8:36:20:3d:b5:30:17:9b:a7:2d:da:58:10:1e: dc:40:01:83:fb:22:6a:74:85:f3:47:68:31:b6:51:fd:2c:2b: 97:05:d1:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUxMTAyMjMyODU4WhcNMjUxMTA5MjMyODU4WjAYMRYwFAYD VQQDEw02OTA3ZTkzYS1iMmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztDo2aILcbioE4xBy1byla18b+yvadBUKmbQ8QdQozG43Dv1rZE5TFfnXzfv XbhqgT8GJB1tmoiqJREOmYtScXhgvNtjPjzTWdvAu34zBGZyngFieaCUhm6Uwgux egtu0bg0Wp6bkr56cpY5DDTDFr6fYZOCaX2SCW6go4X+xxsheVGXeormVuC/VqTQ ypqtRrd6AZV6Xx8gejeJoIHNXGZkxpWaSrtT4d+37dTdvcIsU9sWonpBLuPvwyMZ f0cGo2TgY5/7k5UPc7DGr6rA4mJzoXK8szoPVTs2H4cWIPlVEnBJtKJJer4eJHjE 01NQPwEdOOuZKeQt9d0VwkxklQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTU9p+l 7efmHRxXWCwSMmJQFFzCMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC30MMXB49XiDJtsZJnHZD1ve1UN+/kTHNQyJEaND4WIeqMsDC2qeh xZxXsKT6k+q/EIefxetyJK/GXp/b6T3Iqm8tmmgbEdPTCgLqrQe0thSmTZlspbQe YEypbFwwSYP3ly+SwKeC+sDctxYNoElZirKwwA+HyoZaKPaibpxsxDXtbS4AlaFQ Z0V4gRe1Hm9S9Eu8GnNL+TxWlO49XJWafmKYg1aKd2dMUG6VmyZ49NJIeXL6/a5y aCC1bdcl/ulwnf4q65rBNLHtkArTgvcDt8HhC4TXoiUGSZSM2DYgPbUwF5unLdpY EB7cQAGD+yJqdIXzR2gxtlH9LCuXBdEy -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:28 2025 by rpki-client