$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: wMVPeIqwVyut+uy2Z2HePkcQSKUYkq3fhsO04rg1AQg= Subject key identifier: D0:AA:B5:C4:AB:86:EA:AD:96:3A:D9:A4:BB:4A:A8:7A:BC:CD:E1:B1 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 01C3 Signing time: Wed 05 Nov 2025 03:09:59 +0000 Manifest this update: Wed 05 Nov 2025 03:09:58 +0000 Manifest next update: Wed 12 Nov 2025 03:09:58 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: YpUEzZSE7RM50xZjKG1v8l+DyctXzXlBSGbpHaq9K5U=) 2: 939530627B6311F0BF7B4936C4F9AE02.roa (hash: 3WTSm0ARO6OxYTvyrfdEmxZEWxigI2p51l76SgzYhn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Nov 5 03:09:58 2025 GMT Not After : Nov 12 03:09:58 2025 GMT Subject: CN=690ac006-5c2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:11:6c:b4:2c:ea:b9:76:8d:fd:0a:34:26: 95:04:b0:e6:a1:d8:e9:27:52:ce:af:e7:6e:46:8f: e3:2e:ba:7f:63:21:28:7e:02:1e:20:5c:c6:d6:8d: 61:78:33:6d:35:70:62:f0:a5:89:f5:40:60:8c:5b: 85:35:ad:bd:02:28:c1:47:5d:eb:0a:c7:46:26:e9: 74:53:4f:e7:7e:5e:1e:cd:8d:36:20:4f:83:41:e7: b1:ab:5c:03:7e:ad:17:36:be:ba:7e:55:9a:c0:53: 0b:96:dc:e6:b6:62:45:f5:cf:ff:b0:4d:ca:96:fc: bf:69:09:3b:d1:9b:e1:b8:10:b4:94:bc:ef:9b:ed: 85:96:e6:14:40:5e:20:38:d3:55:58:69:39:73:ff: f1:6c:ee:89:32:ed:77:de:09:70:11:67:98:8a:39: e1:5b:dc:3b:5f:e0:25:37:c2:fc:54:31:44:ef:ad: c2:41:3e:42:b7:76:ce:46:fe:ce:32:fe:9e:49:58: 5a:9a:1f:2a:18:d1:3a:31:a3:78:c0:bc:74:3d:0a: 13:dc:dd:c4:c6:93:ab:4a:b3:b8:7e:73:b0:dd:24: b0:0c:7b:bd:88:27:a8:08:57:80:5e:6e:ad:91:93: 24:d3:96:67:ef:3c:07:67:9d:e7:b6:11:1e:3f:b5: e1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AA:B5:C4:AB:86:EA:AD:96:3A:D9:A4:BB:4A:A8:7A:BC:CD:E1:B1 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:6b:89:c6:96:b9:c5:56:f4:f5:f6:16:f9:2b:ee:98:08:de: b8:65:45:16:73:07:77:3f:07:11:ef:c8:51:f3:89:de:81:aa: da:39:1d:d4:ad:11:dd:53:59:46:71:f8:e0:e4:0b:a5:c4:e4: 16:70:49:47:e2:e7:68:40:db:c4:d6:2c:40:d0:26:ae:d3:d6: 19:d0:36:78:71:f0:c7:74:cf:66:0a:4c:f5:ae:01:b0:f5:6c: 56:ae:76:ab:cb:ca:4f:c9:2f:14:44:24:2f:5e:ec:2c:61:99: b7:73:f2:52:55:6c:26:ca:13:96:9f:98:9f:55:07:da:c0:02: f2:85:7f:e3:53:c7:b6:16:c5:c1:af:8a:c9:71:e4:7a:c1:18: 31:23:0f:3a:46:a2:5c:95:f8:7e:63:34:c7:15:17:0c:49:ee: 1c:28:d4:73:e9:b9:f1:1b:3d:14:7f:37:c2:78:63:fb:36:47: 66:fc:6c:b9:06:c1:39:17:cb:44:89:6b:aa:8c:32:cf:08:4b: 2f:6d:68:c9:72:3d:a0:9f:c0:b2:58:73:e1:3a:25:59:b1:9b: 98:a8:f6:e9:55:9b:d0:b5:ec:89:64:2c:0e:dc:04:67:51:a2: 11:84:2a:b1:d9:37:94:4d:b4:e7:8c:3b:ff:55:20:e4:5a:eb: 73:bf:fa:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUxMTA1MDMwOTU4WhcNMjUxMTEyMDMwOTU4WjAYMRYwFAYD VQQDEw02OTBhYzAwNi01YzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5URbLQs6rl2jf0KNCaVBLDmodjpJ1LOr+duRo/jLrp/YyEofgIeIFzG1o1h eDNtNXBi8KWJ9UBgjFuFNa29AijBR13rCsdGJul0U0/nfl4ezY02IE+DQeexq1wD fq0XNr66flWawFMLltzmtmJF9c//sE3Klvy/aQk70ZvhuBC0lLzvm+2FluYUQF4g ONNVWGk5c//xbO6JMu133glwEWeYijnhW9w7X+AlN8L8VDFE763CQT5Ct3bORv7O Mv6eSVhamh8qGNE6MaN4wLx0PQoT3N3ExpOrSrO4fnOw3SSwDHu9iCeoCFeAXm6t kZMk05Zn7zwHZ53nthEeP7XhFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCqtcSr huqtljrZpLtKqHq8zeGxMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNa4nGlrnFVvT19hb5K+6YCN64ZUUWcwd3PwcR78hR84negaraOR3U rRHdU1lGcfjg5AulxOQWcElH4udoQNvE1ixA0Cau09YZ0DZ4cfDHdM9mCkz1rgGw 9WxWrnary8pPyS8URCQvXuwsYZm3c/JSVWwmyhOWn5ifVQfawALyhX/jU8e2FsXB r4rJceR6wRgxIw86RqJclfh+YzTHFRcMSe4cKNRz6bnxGz0UfzfCeGP7Nkdm/Gy5 BsE5F8tEiWuqjDLPCEsvbWjJcj2gn8CyWHPhOiVZsZuYqPbpVZvQteyJZCwO3ARn UaIRhCqx2TeUTbTnjDv/VSDkWutzv/ow -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:28 2025 by rpki-client