$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: Ceru07fyeq7rrvzFMjOg0Nd/T6CGTA+L5Xtl958Wl90= Subject key identifier: AF:6C:01:4C:17:FF:40:2D:FC:38:1F:52:23:C2:DC:DD:01:52:D3:58 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: DF Signing time: Mon 03 Nov 2025 05:30:34 +0000 Manifest this update: Mon 03 Nov 2025 05:30:33 +0000 Manifest next update: Mon 10 Nov 2025 05:30:33 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: Y8ohGajaYCGyqAsd0x/02qM2wlkxh5up64XdvqqW4YE=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Nov 3 05:30:33 2025 GMT Not After : Nov 10 05:30:33 2025 GMT Subject: CN=69083df9-22db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:50:0e:dd:d2:ef:1e:d2:ab:da:c3:30:e5:bf: 86:75:b0:6d:ed:b3:3e:72:25:d6:83:42:a7:82:31: b3:3b:70:b4:db:00:14:d9:9b:e9:34:90:22:17:08: b6:a1:7e:f6:2f:0a:80:da:a5:ec:a2:71:05:3d:89: 63:fa:13:35:16:ba:c5:e3:6d:d2:13:c0:41:1c:82: f4:73:9f:69:a2:b5:0c:d0:8f:25:55:de:06:64:66: 4a:02:e6:dc:39:e9:aa:41:28:f4:6d:75:4b:79:ce: f2:24:38:15:e2:70:b9:6b:a2:ee:44:ff:a1:01:41: 7d:66:b6:fe:f4:18:33:ff:07:94:01:08:03:32:64: f4:ab:f4:66:91:07:2d:df:92:75:14:15:1c:4c:b2: 36:f0:ef:7a:db:01:8c:17:fa:c9:25:21:b9:2b:4e: 11:e0:d8:a6:50:d1:71:54:b4:0e:fc:8f:c6:57:db: 26:7f:fe:1c:30:4b:60:ab:b3:14:8c:28:df:ea:8b: 17:ff:6e:78:11:81:3b:cb:b9:d8:82:da:9b:dc:48: 65:a0:d7:37:c7:aa:72:73:e6:1e:e6:d2:54:b7:6c: 69:23:17:ef:2f:8c:2e:eb:72:4e:2d:05:30:cf:65: 45:c3:4a:e7:4c:aa:ee:2e:d7:f1:4d:7c:91:5f:fa: 5a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6C:01:4C:17:FF:40:2D:FC:38:1F:52:23:C2:DC:DD:01:52:D3:58 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:a0:0f:ec:ba:a9:83:14:9a:19:de:ee:55:a9:37:36:b4:fc: 09:9d:26:9d:3d:0a:02:9a:f8:14:3a:3d:50:26:73:f1:33:aa: d0:f7:99:25:47:07:f3:78:d6:af:7f:f1:ce:61:fc:18:24:08: 2f:2b:8d:50:f6:15:21:45:30:f9:47:b2:42:0e:e1:06:f3:20: b5:96:94:94:fb:4f:ed:a5:3d:65:a1:4f:01:9c:b7:47:e2:8b: e2:32:c7:62:be:d2:60:f5:71:4e:1a:e6:c5:ea:f3:e3:fa:61: c6:bd:1d:e8:b1:cf:c1:60:c3:15:44:9c:8e:a0:d9:77:71:01: 60:c5:78:42:c0:53:c0:5a:63:b2:63:9a:40:55:c0:a6:48:ed: c5:63:a5:d9:d4:23:30:83:43:7f:b8:ea:31:e1:df:09:b7:1b: 24:16:26:43:de:c7:54:9b:e4:11:e7:a8:65:dd:46:02:65:7c: 63:ae:d3:86:1d:1e:93:c3:b5:d3:90:c4:cd:57:39:0d:fa:f4: 41:23:66:81:0d:81:d9:00:95:79:ea:3d:f6:5f:c1:a1:75:e2: d8:8e:06:0c:e8:49:94:76:01:74:d6:8a:32:5e:66:b2:e4:b2: 47:62:a7:59:43:67:89:2e:c4:2d:5b:da:60:66:bd:41:fb:56: 87:9f:df:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUxMTAzMDUzMDMzWhcNMjUxMTEwMDUzMDMzWjAYMRYwFAYD VQQDEw02OTA4M2RmOS0yMmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFAO3dLvHtKr2sMw5b+GdbBt7bM+ciXWg0KngjGzO3C02wAU2ZvpNJAiFwi2 oX72LwqA2qXsonEFPYlj+hM1FrrF423SE8BBHIL0c59porUM0I8lVd4GZGZKAubc OemqQSj0bXVLec7yJDgV4nC5a6LuRP+hAUF9Zrb+9Bgz/weUAQgDMmT0q/RmkQct 35J1FBUcTLI28O962wGMF/rJJSG5K04R4NimUNFxVLQO/I/GV9smf/4cMEtgq7MU jCjf6osX/254EYE7y7nYgtqb3EhloNc3x6pyc+Ye5tJUt2xpIxfvL4wu63JOLQUw z2VFw0rnTKruLtfxTXyRX/paawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9sAUwX /0At/DgfUiPC3N0BUtNYMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYoA/suqmDFJoZ3u5VqTc2tPwJnSadPQoCmvgUOj1QJnPxM6rQ95kl RwfzeNavf/HOYfwYJAgvK41Q9hUhRTD5R7JCDuEG8yC1lpSU+0/tpT1loU8BnLdH 4oviMsdivtJg9XFOGubF6vPj+mHGvR3osc/BYMMVRJyOoNl3cQFgxXhCwFPAWmOy Y5pAVcCmSO3FY6XZ1CMwg0N/uOox4d8JtxskFiZD3sdUm+QR56hl3UYCZXxjrtOG HR6Tw7XTkMTNVzkN+vRBI2aBDYHZAJV56j32X8GhdeLYjgYM6EmUdgF01ooyXmay 5LJHYqdZQ2eJLsQtW9pgZr1B+1aHn9/L -----END CERTIFICATE-----Generated at Wed Nov 5 03:53:19 2025 by rpki-client