$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: c0+BGYruuF72r5oFP0Lt9eizgYZcFgWT/vIuu85viCI= Subject key identifier: CB:EE:75:30:2A:96:78:EB:FF:1D:C9:96:B0:62:1D:76:D7:81:95:BE Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0885 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 087B Signing time: Tue 04 Nov 2025 20:41:12 +0000 Manifest this update: Tue 04 Nov 2025 20:41:12 +0000 Manifest next update: Tue 11 Nov 2025 20:41:12 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: mP8mKsrpHXbpsPB8vXihHlqrHSmQ3iY1zeNt9C/0YDo=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: xQNJE/wFi8JMz2ss0ss1yj9BAf/VPU6rBNzmi8uV9UI=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Nov 4 20:41:12 2025 GMT Not After : Nov 11 20:41:12 2025 GMT Subject: CN=690a64e8-7961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8c:6b:55:b4:29:27:bc:2a:18:c3:18:97:e2: b0:80:07:4b:0e:93:94:33:99:e3:5f:a4:5d:d6:4d: 78:97:92:b4:e7:aa:6b:4b:9d:4d:f1:47:37:a8:79: 95:d1:3f:f3:af:2f:dd:b3:b0:0b:1d:51:54:87:d6: 0e:51:83:9f:31:50:99:01:04:3d:25:7b:4e:09:24: c6:1a:8c:3e:b2:08:9d:7e:85:f5:2b:c4:93:7e:84: ab:11:42:d9:71:b4:f2:d4:17:10:10:fd:3b:cf:80: 6b:8f:28:95:4c:9a:85:85:e4:9a:f9:4d:bd:14:68: 7a:ba:83:b4:33:c2:1c:1b:30:7f:fb:e8:09:a6:f9: 4d:94:ab:18:a8:26:6c:22:ac:9f:24:a1:f3:8a:d4: 4e:c6:a6:d3:d7:fc:95:9d:d4:b7:8a:31:d3:b9:eb: 5d:f9:bc:67:7c:1b:08:1c:8e:83:02:f0:6e:52:8f: eb:35:e0:dc:f2:2c:2a:86:67:79:da:68:41:05:0c: 3e:ba:9d:7c:a2:9f:6a:0a:9e:49:42:58:cc:3b:5c: e6:91:2c:c9:40:a4:d0:02:47:27:09:22:35:36:82: 79:3a:c3:f4:df:c8:1c:43:ec:07:d3:22:ab:ca:e4: e5:36:49:74:85:5c:5e:b3:b7:8a:05:e5:56:ef:91: eb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:EE:75:30:2A:96:78:EB:FF:1D:C9:96:B0:62:1D:76:D7:81:95:BE X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:db:bf:c4:9f:b1:7d:97:8c:55:a8:09:4f:58:7f:a4:b8:08: f7:41:f6:f9:6e:b9:ec:5a:13:69:3a:06:17:83:7e:3c:13:b7: f9:7f:6a:76:ed:a0:57:eb:43:2f:d1:a3:c7:1d:64:a1:0d:18: ed:ad:a0:78:f4:0c:0f:29:40:7d:05:78:c4:18:99:a8:0e:40: 12:35:0c:37:87:23:70:7f:0b:07:0e:bd:56:23:34:a3:b8:13: 07:90:58:15:cc:26:11:7c:aa:e9:92:c1:a0:2d:26:02:7d:b8: 6e:48:f9:84:ef:dd:09:4c:fc:8c:21:46:d2:52:c5:43:22:25: 7a:98:93:4e:44:38:a8:31:f3:b8:fd:8e:c5:cd:71:76:f8:29: da:f4:43:45:b7:b6:1a:ce:a6:ab:8c:f4:d1:f5:8a:a1:db:ee: b3:a7:cb:8c:c5:1a:b8:fe:1a:24:4c:d3:f7:b8:49:5f:2c:7a: 8a:cb:6a:3e:da:9a:70:63:83:70:61:4a:89:3a:a1:b3:9c:ca: 24:2a:b2:43:03:12:15:e1:51:8d:1c:82:70:28:87:61:c3:20: aa:f8:ec:6e:10:f4:f7:b4:c8:30:02:aa:cc:bd:27:ba:81:d1: 51:b3:df:37:5d:b6:fc:6b:59:33:56:80:45:32:14:f5:47:26: 00:3c:3b:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUxMTA0MjA0MTEyWhcNMjUxMTExMjA0MTEyWjAYMRYwFAYD VQQDEw02OTBhNjRlOC03OTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoxrVbQpJ7wqGMMYl+KwgAdLDpOUM5njX6Rd1k14l5K056prS51N8Uc3qHmV 0T/zry/ds7ALHVFUh9YOUYOfMVCZAQQ9JXtOCSTGGow+sgidfoX1K8STfoSrEULZ cbTy1BcQEP07z4BrjyiVTJqFheSa+U29FGh6uoO0M8IcGzB/++gJpvlNlKsYqCZs IqyfJKHzitROxqbT1/yVndS3ijHTuetd+bxnfBsIHI6DAvBuUo/rNeDc8iwqhmd5 2mhBBQw+up18op9qCp5JQljMO1zmkSzJQKTQAkcnCSI1NoJ5OsP038gcQ+wH0yKr yuTlNkl0hVxes7eKBeVW75HrSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvudTAq lnjr/x3JlrBiHXbXgZW+MB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo27/En7F9l4xVqAlPWH+kuAj3Qfb5brnsWhNpOgYXg348E7f5f2p2 7aBX60Mv0aPHHWShDRjtraB49AwPKUB9BXjEGJmoDkASNQw3hyNwfwsHDr1WIzSj uBMHkFgVzCYRfKrpksGgLSYCfbhuSPmE790JTPyMIUbSUsVDIiV6mJNORDioMfO4 /Y7FzXF2+Cna9ENFt7YazqarjPTR9Yqh2+6zp8uMxRq4/hokTNP3uElfLHqKy2o+ 2ppwY4NwYUqJOqGznMokKrJDAxIV4VGNHIJwKIdhwyCq+OxuEPT3tMgwAqrMvSe6 gdFRs983Xbb8a1kzVoBFMhT1RyYAPDtm -----END CERTIFICATE-----Generated at Wed Nov 5 09:59:39 2025 by rpki-client