$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft File: akXWGoN3DJDQWMdBUx2NnGtnk1o.mft (raw, json) Hash identifier: Ix1ByVslPEI4aImaKPNXysNOBevpX1nZLtadP3JTXlE= Subject key identifier: A6:2F:87:C6:5C:86:88:FB:31:F5:E5:6B:EB:1D:1E:FB:DE:32:02:E1 Authority key identifier: 6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A Certificate issuer: /CN=A91D1AC7/serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Certificate serial: 0A91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft Manifest number: 0A7C Signing time: Sun 02 Nov 2025 19:34:38 +0000 Manifest this update: Sun 02 Nov 2025 19:34:38 +0000 Manifest next update: Sun 09 Nov 2025 19:34:37 +0000 Files and hashes: 1: akXWGoN3DJDQWMdBUx2NnGtnk1o.crl (hash: aony+MdeExWe+noIQAp9E3U5Wbufqrd0q+efjEmm0MU=) 2: 57C25DB2E42811EA881AB667C4F9AE02.roa (hash: E9181+VVT+rwNNkc7uINFuNWW6wPgms9gTqr7A850dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2705 (0xa91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1AC7, serialNumber=6A45D61A83770C90D058C741531D8D9C6B67935A Validity Not Before: Nov 2 19:34:38 2025 GMT Not After : Nov 9 19:34:37 2025 GMT Subject: CN=6907b24e-3225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:eb:04:9f:85:82:6b:9a:d7:6f:c1:5a:36: cc:8f:30:ef:56:3c:8a:f3:07:a4:a4:dd:3d:93:26: 3c:4d:bd:86:26:66:87:3f:5f:15:92:8c:dd:bd:60: 69:32:2a:25:fc:f2:3f:a9:e0:77:3c:63:25:ea:fb: 0f:54:5e:b0:e8:25:52:d8:93:ef:98:25:dc:c0:c7: a6:11:f1:db:2b:55:67:b6:51:d9:08:91:ff:0e:cb: 8e:01:48:40:1e:90:03:28:92:7a:3c:e4:aa:99:7c: 26:21:f7:f3:85:6a:9c:93:4a:50:a6:2a:18:d1:e1: 34:bf:43:6a:63:21:d1:c3:95:7d:4d:29:e0:79:2e: 76:7d:40:8f:21:d2:3d:a1:52:22:09:df:cf:fc:63: 94:90:0a:e9:6a:ee:71:8b:28:ea:be:ea:5c:a8:de: 44:05:5d:7c:fb:df:54:d4:e5:d4:b6:5e:d4:0f:c2: 77:33:6b:5b:4d:d6:3e:3e:8d:a7:e3:16:34:fd:b8: 7a:1c:4c:ba:07:62:8d:9c:1f:d2:2d:ad:43:4e:50: 1b:41:ad:31:fa:f5:d1:66:a1:11:86:5d:ea:29:fb: cf:2a:36:48:1b:02:88:79:b9:c5:20:a7:8b:d2:e7: 75:9b:44:e0:5d:5a:ac:61:65:f3:52:2d:44:30:74: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:2F:87:C6:5C:86:88:FB:31:F5:E5:6B:EB:1D:1E:FB:DE:32:02:E1 X509v3 Authority Key Identifier: keyid:6A:45:D6:1A:83:77:0C:90:D0:58:C7:41:53:1D:8D:9C:6B:67:93:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akXWGoN3DJDQWMdBUx2NnGtnk1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1AC7/81A4C4D66E4311EA949D9922C4F9AE02/akXWGoN3DJDQWMdBUx2NnGtnk1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:8f:10:ab:54:69:3f:a9:1e:00:17:f5:ed:8f:3b:90:9c:ff: ce:1a:83:db:b8:0a:f1:d9:64:03:ed:06:ee:f8:d0:d3:f8:61: 3b:53:bb:ae:e6:51:30:8b:1f:2d:b9:d6:b6:5a:53:a1:d6:18: c4:17:30:c5:8a:d7:1b:99:04:6e:25:60:17:d1:91:77:f0:af: 04:37:7c:82:9f:2f:a6:f7:ba:59:be:08:5f:fb:ba:db:34:cc: 1c:9d:02:17:82:6b:a8:53:63:54:d2:34:7d:e1:98:c5:1f:99: e5:2b:2c:91:38:7b:07:58:ab:ce:0a:1f:34:2a:15:87:58:f1: 6a:16:4c:70:8d:76:3a:71:83:32:37:5d:1b:aa:80:51:d0:78: bd:35:87:48:b6:78:25:82:07:cf:f6:fd:a7:e2:25:68:94:cb: 6b:e0:89:bb:d2:88:22:3d:47:28:aa:a5:73:ef:be:c2:13:cf: 96:19:1e:0b:93:6e:f5:ec:9e:eb:03:49:d1:09:3e:f3:6e:5e: 12:eb:c4:77:84:71:92:22:77:53:44:c8:62:73:5c:53:0c:ff: 0b:87:54:a7:20:3d:d4:b8:9a:be:45:10:2f:61:02:e8:b5:d9: c9:07:90:09:25:8c:6e:9b:c1:80:e4:5a:8f:53:7c:7f:6c:91: bf:73:ae:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBQzcxMTAvBgNVBAUTKDZBNDVENjFBODM3NzBDOTBEMDU4Qzc0MTUzMUQ4RDlD NkI2NzkzNUEwHhcNMjUxMTAyMTkzNDM4WhcNMjUxMTA5MTkzNDM3WjAYMRYwFAYD VQQDEw02OTA3YjI0ZS0zMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZDrBJ+Fgmua12/BWjbMjzDvVjyK8wekpN09kyY8Tb2GJmaHP18VkozdvWBp Miol/PI/qeB3PGMl6vsPVF6w6CVS2JPvmCXcwMemEfHbK1VntlHZCJH/DsuOAUhA HpADKJJ6POSqmXwmIffzhWqck0pQpioY0eE0v0NqYyHRw5V9TSngeS52fUCPIdI9 oVIiCd/P/GOUkArpau5xiyjqvupcqN5EBV18+99U1OXUtl7UD8J3M2tbTdY+Po2n 4xY0/bh6HEy6B2KNnB/SLa1DTlAbQa0x+vXRZqERhl3qKfvPKjZIGwKIebnFIKeL 0ud1m0TgXVqsYWXzUi1EMHSwawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYvh8Zc hoj7MfXla+sdHvveMgLhMB8GA1UdIwQYMBaAFGpF1hqDdwyQ0FjHQVMdjZxrZ5Na MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUFDNy84MUE0QzRENjZF NDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RKRFFXTWRCVXgyTm5HdG5r MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrWFdHb04zREpEUVdNZEJVeDJObkd0bmsxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUFDNy84MUE0QzRENjZFNDMxMUVBOTQ5RDk5MjJDNEY5QUUwMi9ha1hXR29OM0RK RFFXTWRCVXgyTm5HdG5rMW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXjxCrVGk/qR4AF/XtjzuQnP/OGoPbuArx2WQD7Qbu+NDT+GE7U7uu 5lEwix8tuda2WlOh1hjEFzDFitcbmQRuJWAX0ZF38K8EN3yCny+m97pZvghf+7rb NMwcnQIXgmuoU2NU0jR94ZjFH5nlKyyROHsHWKvOCh80KhWHWPFqFkxwjXY6cYMy N10bqoBR0Hi9NYdItnglggfP9v2n4iVolMtr4Im70ogiPUcoqqVz777CE8+WGR4L k2717J7rA0nRCT7zbl4S68R3hHGSIndTRMhic1xTDP8Lh1SnID3UuJq+RRAvYQLo tdnJB5AJJYxum8GA5FqPU3x/bJG/c67G -----END CERTIFICATE-----Generated at Tue Nov 4 16:02:16 2025 by rpki-client