$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft File: CekFd0f2O6Ciga54ATZozt6kCrQ.mft (raw, json) Hash identifier: gV+CnwWh1L+XWKhqO88MHPsXahGXthOgC4mxjR+0UCo= Subject key identifier: 04:39:87:F8:74:3B:E0:78:0D:FD:E3:B5:4B:47:A2:56:C9:13:2F:4C Authority key identifier: 09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 Certificate issuer: /CN=A91CDAFB/serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft Manifest number: 01C4 Signing time: Wed 05 Nov 2025 03:02:52 +0000 Manifest this update: Wed 05 Nov 2025 03:02:51 +0000 Manifest next update: Wed 12 Nov 2025 03:02:51 +0000 Files and hashes: 1: CekFd0f2O6Ciga54ATZozt6kCrQ.crl (hash: 58NYLjgDyPUnaqbQ1aatPry9Tkmmo+uGf8SCd73BF0s=) 2: 2815D106041A11EEA67A6B4DC4F9AE02.roa (hash: SwrvoVYgU6/JlbNtHbJmqe4zyeb9jSsFgyQPBZNxoww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDAFB, serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Validity Not Before: Nov 5 03:02:51 2025 GMT Not After : Nov 12 03:02:51 2025 GMT Subject: CN=690abe5b-1c2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a8:30:93:26:6b:16:6c:f0:c9:7f:9a:92:4c: 2d:81:2f:55:29:fc:43:5b:ca:95:0b:64:7d:58:3c: f1:83:12:aa:ec:ed:ec:ab:d6:63:2f:c8:f7:ae:dd: 64:b7:77:b5:da:60:64:d7:21:42:e9:3c:6f:7a:9e: be:12:73:fd:5e:e5:28:50:9c:d4:fa:03:b4:a3:d3: 97:3c:d8:6c:79:98:be:8b:cb:75:47:52:76:cd:4b: d8:74:75:f8:12:63:e7:07:d6:2c:74:45:fe:3a:b8: 2c:96:9a:d5:f7:a9:1f:05:cf:57:6d:0f:2b:fc:74: 5b:7b:53:ae:8c:8c:91:12:91:8d:97:0c:1f:e3:11: 01:c6:6f:98:74:de:ab:c8:17:1c:4a:92:11:4c:5a: 9d:fb:0f:70:76:0e:6a:6f:2a:27:98:9f:8f:22:24: 28:65:d2:57:5f:d2:2c:1e:d6:7d:f4:2e:51:a2:1e: e1:14:a0:69:eb:0d:1f:ca:96:75:0c:29:33:ad:59: 82:1f:08:9b:46:47:bd:0c:2b:0e:a2:4d:8f:01:3e: 97:c1:e9:eb:4c:0c:8e:62:75:9a:4a:1a:5e:66:24: ab:25:23:db:5a:50:80:6b:60:80:38:2e:47:87:73: 2f:77:1d:23:80:42:2b:6c:a7:16:0c:7e:5d:c9:ae: 05:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:39:87:F8:74:3B:E0:78:0D:FD:E3:B5:4B:47:A2:56:C9:13:2F:4C X509v3 Authority Key Identifier: keyid:09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:7a:47:7d:ee:50:da:7a:38:8f:5f:dc:d1:39:38:df:34:16: 5a:6c:22:0d:22:e5:01:18:f7:39:2f:59:b0:97:83:eb:6e:0c: 2d:31:8c:c7:fc:cb:db:20:d4:0f:ff:3f:3e:80:0f:f6:43:40: 48:57:53:48:74:a7:9e:7a:c8:34:af:3c:ed:10:98:e3:82:1b: 84:6a:78:86:df:2b:86:fb:c4:4d:bd:a8:42:7a:22:c6:08:26: 7e:9f:cb:dd:1f:6c:82:e7:87:2a:9e:bf:6f:b1:d9:05:f5:a7: 41:01:33:49:77:59:37:c7:3f:c3:6b:52:ec:3f:38:23:d6:da: 2a:df:ff:5c:fc:66:02:ad:10:a8:16:cd:24:0c:61:71:e6:d5: 45:a1:ad:95:d0:de:54:57:36:0c:cc:cf:39:63:46:35:33:b6: d7:ca:7e:30:d9:74:4e:19:a4:07:20:b1:cf:de:e6:1e:14:63: 58:07:de:84:61:12:40:6c:a8:8c:dc:16:6a:dd:de:23:8b:e0: f7:b4:59:14:1c:0a:4d:9a:3c:4c:43:ed:9d:83:f5:e5:53:6b: ff:3f:6d:38:3a:00:ba:94:f1:42:cf:f8:3d:a2:d1:8d:3d:f3: 93:22:3a:62:61:d2:bf:f2:50:8c:95:0c:61:1d:38:82:47:cc: 55:81:26:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RBRkIxMTAvBgNVBAUTKDA5RTkwNTc3NDdGNjNCQTBBMjgxQUU3ODAxMzY2OENF REVBNDBBQjQwHhcNMjUxMTA1MDMwMjUxWhcNMjUxMTEyMDMwMjUxWjAYMRYwFAYD VQQDEw02OTBhYmU1Yi0xYzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qgwkyZrFmzwyX+akkwtgS9VKfxDW8qVC2R9WDzxgxKq7O3sq9ZjL8j3rt1k t3e12mBk1yFC6Txvep6+EnP9XuUoUJzU+gO0o9OXPNhseZi+i8t1R1J2zUvYdHX4 EmPnB9YsdEX+OrgslprV96kfBc9XbQ8r/HRbe1OujIyREpGNlwwf4xEBxm+YdN6r yBccSpIRTFqd+w9wdg5qbyonmJ+PIiQoZdJXX9IsHtZ99C5Roh7hFKBp6w0fypZ1 DCkzrVmCHwibRke9DCsOok2PAT6XwenrTAyOYnWaShpeZiSrJSPbWlCAa2CAOC5H h3Mvdx0jgEIrbKcWDH5dya4FHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQ5h/h0 O+B4Df3jtUtHolbJEy9MMB8GA1UdIwQYMBaAFAnpBXdH9jugooGueAE2aM7epAq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREFGQi9FQzBGNkEzODAz NDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82Q2lnYTU0QVRab3p0NmtD clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nla0ZkMGYyTzZDaWdhNTRBVFpvenQ2a0NyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REFGQi9FQzBGNkEzODAzNDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82 Q2lnYTU0QVRab3p0NmtDclEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQekd97lDaejiPX9zROTjfNBZabCINIuUBGPc5L1mwl4PrbgwtMYzH /MvbINQP/z8+gA/2Q0BIV1NIdKeeesg0rzztEJjjghuEaniG3yuG+8RNvahCeiLG CCZ+n8vdH2yC54cqnr9vsdkF9adBATNJd1k3xz/Da1LsPzgj1toq3/9c/GYCrRCo Fs0kDGFx5tVFoa2V0N5UVzYMzM85Y0Y1M7bXyn4w2XROGaQHILHP3uYeFGNYB96E YRJAbKiM3BZq3d4ji+D3tFkUHApNmjxMQ+2dg/XlU2v/P204OgC6lPFCz/g9otGN PfOTIjpiYdK/8lCMlQxhHTiCR8xVgSa3 -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:48 2025 by rpki-client