$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: P70LhLBGXbRDWYeAu7DlJ6X2zIZ20wnWLq323irsLaI= Subject key identifier: 8D:E4:A5:2B:8D:64:7D:38:8B:E6:58:EE:E1:D8:2B:AC:69:64:54:FB Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: B2 Signing time: Mon 03 Nov 2025 06:04:15 +0000 Manifest this update: Mon 03 Nov 2025 06:04:15 +0000 Manifest next update: Mon 10 Nov 2025 06:04:15 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: 53bSv8y7hX947QvRNJLL2DpvL/6yUir28vNMbQ6X440=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC, serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Nov 3 06:04:15 2025 GMT Not After : Nov 10 06:04:15 2025 GMT Subject: CN=690845df-c0c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:78:73:d5:83:1f:e5:da:06:2f:d9:ca:46:10: ac:59:89:2e:3f:b5:e1:82:78:28:24:67:5f:5f:31: 6a:85:6e:26:4e:24:36:0a:79:25:9b:74:ca:26:07: 36:78:fa:79:c4:16:25:7c:74:4a:79:aa:64:8d:9a: bf:61:65:3f:0a:6d:fe:df:d3:ba:af:75:0d:bf:e3: 4b:83:11:69:8d:76:e7:35:24:36:08:56:a8:20:4d: 07:bd:2e:c4:ae:d6:3a:17:ac:9d:62:cb:f1:01:f7: 1b:87:fd:f2:32:58:81:5a:fe:e4:23:b6:4b:08:3f: 4a:13:15:57:5c:12:55:57:66:db:8d:e2:48:92:e9: 3d:f6:4b:c3:67:e4:6a:43:93:84:b2:53:0a:ab:43: 02:c0:3c:f1:88:cd:c8:e5:71:74:07:29:77:4f:38: 6d:66:0b:3e:75:5c:e0:12:39:c2:94:08:dd:e4:bd: 60:cc:63:c4:2f:35:0e:df:51:65:94:99:e6:10:b0: 17:38:b1:02:5b:e4:11:13:af:2e:09:c8:e0:e5:2b: 20:4f:43:bb:08:b8:e1:2c:a2:6f:bd:38:cc:b7:3b: 72:33:bc:4b:c0:3d:dd:78:9d:16:d0:5f:24:49:84: cf:72:4d:bb:f3:ad:c6:7b:f9:bc:e2:13:78:38:8c: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E4:A5:2B:8D:64:7D:38:8B:E6:58:EE:E1:D8:2B:AC:69:64:54:FB X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:94:42:dc:4f:af:7a:7c:fd:0a:9c:16:92:a0:09:cf:28:7d: d7:9f:2a:4d:27:48:4e:20:f1:0d:8a:a2:1a:5f:98:3a:04:bc: 41:0e:45:2b:91:25:50:c5:e6:7b:2a:c0:97:76:4d:58:fd:fe: 43:55:44:ff:fe:31:55:e9:b4:83:48:0f:9a:a0:08:22:c4:31: ab:44:ff:4b:89:28:e9:a8:5b:43:4c:a5:74:3b:9f:db:25:85: f4:d5:94:d4:65:cf:ee:db:7f:37:ca:89:79:e3:6e:32:83:22: 46:98:5a:33:ea:67:ce:02:c9:46:d1:06:da:c8:72:c6:b1:74: fb:db:fc:91:2b:93:2e:5a:e3:53:3a:2d:e5:2d:26:64:7a:44: 19:58:c6:fb:2b:b7:39:b3:6d:b7:82:1e:69:18:9f:6b:75:e2: 89:89:9b:2d:25:e0:e5:21:2d:a8:0c:f0:f0:2d:f3:fc:cb:d7: 47:21:75:22:bd:a2:6c:2a:70:43:a9:7a:64:e7:d1:d6:36:58: 0e:ab:9a:70:98:a0:13:42:da:cc:e3:be:85:ea:78:e7:e4:d4: 80:55:05:16:e1:5c:11:1a:27:e7:da:ec:0f:f1:41:38:53:aa: e2:a4:84:87:e6:75:90:9e:a9:c6:03:e5:51:e6:ef:ca:72:b1: 75:92:a9:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA5QkMxMTAvBgNVBAUTKDAxRjA1QzdFQTVGMkEyRURGQzE4Mzg5N0Y1ODM1OTgy QjJDRjAzQkYwHhcNMjUxMTAzMDYwNDE1WhcNMjUxMTEwMDYwNDE1WjAYMRYwFAYD VQQDEw02OTA4NDVkZi1jMGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Xhz1YMf5doGL9nKRhCsWYkuP7XhgngoJGdfXzFqhW4mTiQ2Cnklm3TKJgc2 ePp5xBYlfHRKeapkjZq/YWU/Cm3+39O6r3UNv+NLgxFpjXbnNSQ2CFaoIE0HvS7E rtY6F6ydYsvxAfcbh/3yMliBWv7kI7ZLCD9KExVXXBJVV2bbjeJIkuk99kvDZ+Rq Q5OEslMKq0MCwDzxiM3I5XF0Byl3TzhtZgs+dVzgEjnClAjd5L1gzGPELzUO31Fl lJnmELAXOLECW+QRE68uCcjg5SsgT0O7CLjhLKJvvTjMtztyM7xLwD3deJ0W0F8k SYTPck27863Ge/m84hN4OIyLPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3kpSuN ZH04i+ZY7uHYK6xpZFT7MB8GA1UdIwQYMBaAFAHwXH6l8qLt/Bg4l/WDWYKyzwO/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDlCQy9EMzVCMDgyRUE3 MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91MzhHRGlYOVlOWmdyTFBB NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDlCQy9EMzVCMDgyRUE3MDcxMUVGOTlBNTc3NDFDNEY5QUUwMi9BZkJjZnFYeW91 MzhHRGlYOVlOWmdyTFBBNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSlELcT696fP0KnBaSoAnPKH3XnypNJ0hOIPENiqIaX5g6BLxBDkUr kSVQxeZ7KsCXdk1Y/f5DVUT//jFV6bSDSA+aoAgixDGrRP9LiSjpqFtDTKV0O5/b JYX01ZTUZc/u2383yol5424ygyJGmFoz6mfOAslG0QbayHLGsXT72/yRK5MuWuNT Oi3lLSZkekQZWMb7K7c5s223gh5pGJ9rdeKJiZstJeDlIS2oDPDwLfP8y9dHIXUi vaJsKnBDqXpk59HWNlgOq5pwmKATQtrM476F6njn5NSAVQUW4VwRGifn2uwP8UE4 U6ripISH5nWQnqnGA+VR5u/KcrF1kqlr -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:06 2025 by rpki-client