$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: V0R+84cGa0Q5dQVl7kiTiBVZD9joncZvJV4uycsA3vw= Subject key identifier: 72:5A:88:2B:1F:3F:73:52:F6:04:52:42:C3:69:59:43:1D:DA:EF:98 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0809 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0803 Signing time: Sun 02 Nov 2025 20:56:30 +0000 Manifest this update: Sun 02 Nov 2025 20:56:29 +0000 Manifest next update: Sun 09 Nov 2025 20:56:29 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: BIMlXBi9VBtEEdEXoHO1lyyy8jBuMrnlAAqQNyPQCWU=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Nov 2 20:56:29 2025 GMT Not After : Nov 9 20:56:29 2025 GMT Subject: CN=6907c57d-cf85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0e:e9:41:a2:d5:61:83:80:1e:be:40:00:e7: 41:ae:0b:d8:2b:c9:ad:1b:93:3c:51:44:65:3e:b7: 81:d2:62:27:e4:84:a2:b1:eb:fe:ec:35:8a:61:89: 71:87:5b:ac:78:5a:1d:98:29:f7:3f:c2:93:47:79: 0d:6f:09:02:10:b6:aa:8a:36:d6:a1:a6:e5:36:e0: 0a:e7:81:a1:2c:46:00:ba:68:b6:57:ea:40:17:33: c8:d5:16:1d:79:26:99:a1:12:a6:75:10:84:08:f8: 34:79:5d:7a:0b:3d:57:3d:e6:1a:b6:df:b2:e9:05: 0d:6b:70:54:5d:7b:05:a4:20:e1:e8:74:d2:3b:a2: 64:af:49:c1:e6:35:10:6f:ad:c5:64:8c:e7:fc:99: 03:e2:82:60:5f:e9:f6:73:8e:8c:9c:ca:41:75:3e: 53:bd:6e:5c:5d:2d:2b:e8:bd:ad:68:72:3a:1a:33: 3d:f8:ef:09:ed:58:68:e3:33:31:80:be:95:0f:5f: 00:dd:9e:fa:78:61:80:72:72:4d:03:2d:f1:30:98: 15:0b:bd:86:ed:2f:ff:14:c5:db:87:dc:a4:8b:a2: 7e:d0:2b:46:77:4c:55:57:00:ae:83:8a:d1:b7:01: 3e:b6:fd:3c:d6:3c:16:10:42:29:6d:aa:f3:13:1d: 10:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5A:88:2B:1F:3F:73:52:F6:04:52:42:C3:69:59:43:1D:DA:EF:98 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:05:5e:8b:54:5b:c9:c9:0e:b1:6a:f9:67:c7:47:54:da:8a: 15:06:c1:40:14:52:6a:f8:82:0e:19:98:9b:ca:f2:21:f9:4c: 8e:cb:b3:89:67:8c:e6:42:15:59:2f:11:a7:33:d4:ab:2f:7a: f2:9a:f7:b6:bd:2b:9b:e5:6b:57:78:5b:17:18:f5:81:fb:9a: 8d:0b:4e:d3:25:ae:a6:5d:08:c4:6e:de:b8:67:e3:0c:22:1e: 52:58:7c:7b:a5:7a:9d:df:ce:e7:ef:61:63:f8:d1:5e:17:61: 68:25:e3:be:39:43:a1:aa:96:c2:19:c6:68:fe:5f:43:6e:00: 42:3a:ee:c2:9c:e3:16:d1:34:02:bc:3a:10:fe:ac:7e:2f:52: 66:8d:ef:5b:a3:dc:37:71:96:06:92:08:1f:c8:dd:b2:e1:3a: ec:ab:ab:83:6b:39:e5:e1:10:4a:9d:22:6e:e9:06:b1:1b:1d: d8:a7:0e:c2:5b:51:5a:8a:fe:86:aa:9b:05:39:8d:cb:81:58: 52:46:5c:d5:1b:11:97:39:96:d3:a2:a9:ee:d6:11:54:91:d5: 69:a7:3d:6b:d8:0a:1e:e0:d3:ae:2e:7b:3c:9b:aa:f2:0b:ec: a1:d6:1d:5b:0f:6d:aa:86:e7:41:d0:b0:aa:24:45:32:b2:df: e1:33:fc:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUxMTAyMjA1NjI5WhcNMjUxMTA5MjA1NjI5WjAYMRYwFAYD VQQDEw02OTA3YzU3ZC1jZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsA7pQaLVYYOAHr5AAOdBrgvYK8mtG5M8UURlPreB0mIn5ISisev+7DWKYYlx h1useFodmCn3P8KTR3kNbwkCELaqijbWoablNuAK54GhLEYAumi2V+pAFzPI1RYd eSaZoRKmdRCECPg0eV16Cz1XPeYatt+y6QUNa3BUXXsFpCDh6HTSO6Jkr0nB5jUQ b63FZIzn/JkD4oJgX+n2c46MnMpBdT5TvW5cXS0r6L2taHI6GjM9+O8J7Vho4zMx gL6VD18A3Z76eGGAcnJNAy3xMJgVC72G7S//FMXbh9yki6J+0CtGd0xVVwCug4rR twE+tv081jwWEEIpbarzEx0QHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJaiCsf P3NS9gRSQsNpWUMd2u+YMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNBV6LVFvJyQ6xavlnx0dU2ooVBsFAFFJq+IIOGZibyvIh+UyOy7OJ Z4zmQhVZLxGnM9SrL3rymve2vSub5WtXeFsXGPWB+5qNC07TJa6mXQjEbt64Z+MM Ih5SWHx7pXqd387n72Fj+NFeF2FoJeO+OUOhqpbCGcZo/l9DbgBCOu7CnOMW0TQC vDoQ/qx+L1Jmje9bo9w3cZYGkggfyN2y4Trsq6uDaznl4RBKnSJu6QaxGx3Ypw7C W1Faiv6GqpsFOY3LgVhSRlzVGxGXOZbToqnu1hFUkdVppz1r2Aoe4NOuLns8m6ry C+yh1h1bD22qhudB0LCqJEUyst/hM/yE -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:22 2025 by rpki-client