$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft File: MAKFsSjLjblfHkH_vS68Io1FPvw.mft (raw, json) Hash identifier: nI2uIMEWCrswMWqMFWB7NkWYwGemwd6VWWy7jbl/ZUM= Subject key identifier: 6C:01:52:69:4A:A5:93:00:9E:AD:95:22:35:7B:29:CA:71:52:D0:62 Authority key identifier: 30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC Certificate issuer: /CN=A91CD39D/serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft Manifest number: 04B2 Signing time: Sun 02 Nov 2025 23:53:13 +0000 Manifest this update: Sun 02 Nov 2025 23:53:12 +0000 Manifest next update: Sun 09 Nov 2025 23:53:12 +0000 Files and hashes: 1: MAKFsSjLjblfHkH_vS68Io1FPvw.crl (hash: panTjpqyNUxI9FVGaYHVShd0d1ZLauIxdXd1wBidhtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D, serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Validity Not Before: Nov 2 23:53:12 2025 GMT Not After : Nov 9 23:53:12 2025 GMT Subject: CN=6907eee9-6716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:be:9b:f2:64:c2:b5:c6:e6:3b:37:f6:32:e1: e4:8d:77:43:49:3c:22:7b:58:0e:6b:c3:5e:9a:2b: 5c:5d:48:61:41:01:04:a4:ed:0a:7f:6e:78:89:7a: 8a:6a:f6:8c:1b:2f:b9:5d:b4:04:a6:08:50:07:d7: d4:6f:4f:19:32:00:32:3e:76:d0:74:ee:a0:c9:72: f5:da:f7:b0:40:b0:a3:16:f8:e2:af:58:83:74:8a: 3c:4b:28:d8:3d:e7:89:61:fe:3b:9d:e8:bb:f4:71: 72:00:1c:d1:e7:9c:47:65:d9:92:47:13:a2:b0:72: 7b:0e:fc:03:3c:29:52:2d:02:1f:b4:f6:dc:4a:75: fb:fb:56:76:bb:06:b0:d4:73:a7:fa:49:f7:98:ee: c9:6f:90:40:98:0c:cd:a1:7e:0a:e1:f9:93:53:5a: 8f:bf:e6:18:af:86:58:35:b3:cc:27:0f:ef:ce:b9: 3b:94:86:15:33:e3:30:3b:7b:65:4a:67:91:8d:2a: d5:c5:d8:c7:6b:02:3c:eb:18:63:48:d7:8c:85:03: 52:2a:59:b8:6b:0a:57:a4:01:ff:04:33:dc:93:45: 19:81:25:b2:2c:a3:e8:28:fc:63:8d:7a:98:19:55: c8:14:d8:bf:56:f2:0c:3f:f4:ce:f3:5d:2f:d8:ed: 75:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:01:52:69:4A:A5:93:00:9E:AD:95:22:35:7B:29:CA:71:52:D0:62 X509v3 Authority Key Identifier: keyid:30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:c7:f6:cd:13:32:d2:04:9a:db:15:a5:bd:df:46:f4:f3:9a: d8:39:38:db:2d:36:f2:a5:d7:f4:f0:59:b0:b4:17:a5:05:01: 6c:01:8f:c9:d5:f0:29:d3:89:aa:cd:79:50:8c:4e:65:6d:cf: 05:79:04:06:f4:2d:69:f8:27:09:02:f1:33:36:21:5a:d4:b2: a9:5d:42:e3:62:09:f2:66:cd:06:c6:42:dc:bc:c5:12:ac:a7: 5e:eb:cb:29:2d:3f:55:69:42:d4:68:d4:04:77:64:a9:33:ba: c7:26:a5:dd:0c:3d:97:7e:16:fb:cf:ea:67:a6:ad:81:64:0a: 53:be:73:4c:9a:ed:68:2a:c0:ff:ed:ef:88:47:ee:72:22:97: f7:69:01:bb:83:41:af:73:60:78:b5:d4:26:0f:36:f5:62:62: 06:93:df:d6:03:9c:8e:f2:32:ac:c8:18:40:77:ba:38:cd:49: da:a4:81:f9:ef:ab:3f:17:2c:f0:32:79:4f:48:67:5e:bd:12: b7:d6:a5:07:b2:d8:c1:66:6e:b6:90:f8:79:dc:8e:0c:5e:1b: 73:da:14:b6:a2:ee:00:db:9c:82:1c:95:1d:66:39:be:98:e7: e6:96:bb:85:c1:e6:16:2d:e1:88:01:03:d6:2e:a3:83:c3:8d: a3:75:f7:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDMwMDI4NUIxMjhDQjhEQjk1RjFFNDFGRkJEMkVCQzIy OEQ0NTNFRkMwHhcNMjUxMTAyMjM1MzEyWhcNMjUxMTA5MjM1MzEyWjAYMRYwFAYD VQQDEw02OTA3ZWVlOS02NzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7L6b8mTCtcbmOzf2MuHkjXdDSTwie1gOa8NemitcXUhhQQEEpO0Kf254iXqK avaMGy+5XbQEpghQB9fUb08ZMgAyPnbQdO6gyXL12vewQLCjFvjir1iDdIo8SyjY PeeJYf47nei79HFyABzR55xHZdmSRxOisHJ7DvwDPClSLQIftPbcSnX7+1Z2uwaw 1HOn+kn3mO7Jb5BAmAzNoX4K4fmTU1qPv+YYr4ZYNbPMJw/vzrk7lIYVM+MwO3tl SmeRjSrVxdjHawI86xhjSNeMhQNSKlm4awpXpAH/BDPck0UZgSWyLKPoKPxjjXqY GVXIFNi/VvIMP/TO810v2O11/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwBUmlK pZMAnq2VIjV7KcpxUtBiMB8GA1UdIwQYMBaAFDAChbEoy425Xx5B/70uvCKNRT78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ENDRFMzZEMDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpibGZIa0hfdlM2OElvMUZQ dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BS0ZzU2pMamJsZkhrSF92UzY4SW8xRlB2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDM5RC9ENDRFMzZEMDRFNzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpi bGZIa0hfdlM2OElvMUZQdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBex/bNEzLSBJrbFaW930b085rYOTjbLTbypdf08FmwtBelBQFsAY/J 1fAp04mqzXlQjE5lbc8FeQQG9C1p+CcJAvEzNiFa1LKpXULjYgnyZs0GxkLcvMUS rKde68spLT9VaULUaNQEd2SpM7rHJqXdDD2Xfhb7z+pnpq2BZApTvnNMmu1oKsD/ 7e+IR+5yIpf3aQG7g0Gvc2B4tdQmDzb1YmIGk9/WA5yO8jKsyBhAd7o4zUnapIH5 76s/FyzwMnlPSGdevRK31qUHstjBZm62kPh53I4MXhtz2hS2ou4A25yCHJUdZjm+ mOfmlruFweYWLeGIAQPWLqODw42jdfdg -----END CERTIFICATE-----Generated at Tue Nov 4 21:17:32 2025 by rpki-client