$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: 18UgFgDvQUEpBXcQ0TVDbTB+8TYOk2ExcOM9etx4ae0= Subject key identifier: 25:27:B4:6A:9E:4E:F1:EE:A2:C4:73:75:82:70:B3:51:77:4E:C7:FE Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0BBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0BB1 Signing time: Tue 04 Nov 2025 19:03:37 +0000 Manifest this update: Tue 04 Nov 2025 19:03:37 +0000 Manifest next update: Tue 11 Nov 2025 19:03:37 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: C6WJhoK5q79NyoQzEVNojEV1qJYGMIDj+G0AYRufqNY=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3004 (0xbbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Nov 4 19:03:37 2025 GMT Not After : Nov 11 19:03:37 2025 GMT Subject: CN=690a4e09-8030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:e4:1a:9c:9c:d1:c7:7c:90:c6:42:44:7c: 3e:2a:23:cf:a6:df:e4:e5:5b:68:c6:01:24:27:8e: 78:62:be:eb:be:a2:5e:c6:08:00:79:b5:a1:01:29: f3:94:09:7f:2d:1c:c0:62:cc:ff:df:1e:63:93:4a: 99:23:22:39:08:53:04:c2:bc:e0:af:33:31:76:7b: 73:0d:0f:f2:de:05:83:be:8b:09:ec:e6:88:99:be: 9f:f1:d3:dc:47:ac:ce:cc:79:71:4f:62:10:1a:0d: 11:ad:a9:85:5f:81:4e:98:4f:72:90:1e:6d:d7:fe: fd:08:84:87:cd:cc:c2:c0:dc:f6:7e:17:ef:49:9b: d6:d8:01:aa:13:fe:b1:e8:cb:e7:2a:61:28:bd:8a: d2:b4:9a:9f:74:6c:b9:3b:31:24:80:87:f9:f0:a0: 80:38:53:cf:55:5a:8d:02:f0:68:76:39:ac:c3:0f: 25:55:0c:67:53:33:fe:6e:74:4b:8a:13:80:4d:7f: 4b:81:a6:95:84:9b:94:2a:73:66:d6:8a:10:c4:84: a1:5e:60:a9:ca:51:de:63:a7:25:2a:cb:62:d6:7b: e8:a5:5a:c9:74:c6:80:28:92:22:30:d1:79:58:69: bc:9d:c0:fe:a4:95:f0:46:7f:bc:f8:67:e9:eb:26: 3e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:27:B4:6A:9E:4E:F1:EE:A2:C4:73:75:82:70:B3:51:77:4E:C7:FE X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:e8:2d:95:1f:c0:63:d5:0d:60:fe:17:d8:d9:d0:7d:67:7f: d8:b6:2b:7c:e0:9b:d2:e0:fe:64:cc:35:dc:72:97:fb:8e:53: 7f:68:c4:da:92:6c:e9:1a:7d:8c:ce:65:aa:77:83:a0:25:c9: eb:84:4c:ff:ea:e4:25:66:7b:40:5d:17:b9:e3:5e:5f:ab:28: fb:bf:b2:76:c3:f2:23:1f:59:59:c2:d1:8b:0c:01:13:5b:d4: ab:86:eb:b5:68:fb:ee:ea:65:7e:4e:d3:13:a9:4a:f4:6b:53: 47:e4:1f:ed:b4:6a:f4:59:e7:31:44:36:4f:c0:1d:2b:c7:b5: a3:b1:93:38:68:9a:87:87:ef:d9:97:78:60:0e:9f:8f:bc:79: 27:7c:e2:b1:ec:b7:e8:9f:4a:20:f6:d8:c2:20:d2:86:c9:36: c0:3e:9a:69:41:2b:94:17:7c:a0:25:31:61:e5:bc:df:ea:6d: 21:74:0a:a6:53:90:b2:a4:ff:56:72:76:5f:39:6d:e8:fc:9d: 43:89:ad:23:39:a8:a7:bc:80:83:52:4d:77:5c:87:7b:d3:af: 12:4b:48:b5:49:4d:ed:3b:9d:bf:d7:c8:f1:d5:8a:fa:a1:66: 74:53:9e:b3:b1:7d:df:d5:f0:8d:5f:2a:8f:75:54:8a:0d:99: 57:cb:77:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUxMTA0MTkwMzM3WhcNMjUxMTExMTkwMzM3WjAYMRYwFAYD VQQDEw02OTBhNGUwOS04MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUfkGpyc0cd8kMZCRHw+KiPPpt/k5VtoxgEkJ454Yr7rvqJexggAebWhASnz lAl/LRzAYsz/3x5jk0qZIyI5CFMEwrzgrzMxdntzDQ/y3gWDvosJ7OaImb6f8dPc R6zOzHlxT2IQGg0RramFX4FOmE9ykB5t1/79CISHzczCwNz2fhfvSZvW2AGqE/6x 6MvnKmEovYrStJqfdGy5OzEkgIf58KCAOFPPVVqNAvBodjmsww8lVQxnUzP+bnRL ihOATX9LgaaVhJuUKnNm1ooQxIShXmCpylHeY6clKsti1nvopVrJdMaAKJIiMNF5 WGm8ncD+pJXwRn+8+Gfp6yY+QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUntGqe TvHuosRzdYJws1F3Tsf+MB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH6C2VH8Bj1Q1g/hfY2dB9Z3/Ytit84JvS4P5kzDXccpf7jlN/aMTa kmzpGn2MzmWqd4OgJcnrhEz/6uQlZntAXRe5415fqyj7v7J2w/IjH1lZwtGLDAET W9Srhuu1aPvu6mV+TtMTqUr0a1NH5B/ttGr0WecxRDZPwB0rx7WjsZM4aJqHh+/Z l3hgDp+PvHknfOKx7Lfon0og9tjCINKGyTbAPpppQSuUF3ygJTFh5bzf6m0hdAqm U5CypP9WcnZfOW3o/J1Dia0jOainvICDUk13XId7068SS0i1SU3tO52/18jx1Yr6 oWZ0U56zsX3f1fCNXyqPdVSKDZlXy3cN -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:59 2025 by rpki-client