$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: WKPaCKme38hvrY/DPNRoVkL1g/TIOS2O0WYYKgXjqDs= Subject key identifier: 6B:D8:B5:F8:8B:F4:61:B0:79:31:05:F9:1F:A8:4F:EE:68:49:B3:BB Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 0231 Signing time: Wed 05 Nov 2025 02:00:14 +0000 Manifest this update: Wed 05 Nov 2025 02:00:14 +0000 Manifest next update: Wed 12 Nov 2025 02:00:14 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: sjBizSu6rmtHH3YWulSpiXLUgFfYBZLlFh9+8RaKnk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Nov 5 02:00:14 2025 GMT Not After : Nov 12 02:00:14 2025 GMT Subject: CN=690aafae-f2e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:14:4d:12:97:57:8a:94:fc:29:24:8d:0d:5c: b9:7e:a9:76:14:4c:ee:9a:10:29:16:e3:59:aa:80: c2:51:d0:07:fb:6b:68:96:90:1e:b8:ac:e2:e6:eb: ae:ca:69:45:ad:36:20:f2:42:82:34:a2:91:c6:cd: 4f:63:6d:79:e3:4e:55:98:e9:d0:07:8f:ce:82:53: 8a:8a:c6:08:48:a2:e8:01:86:98:0c:4f:51:79:1e: c6:84:b6:97:3e:51:73:89:ef:1e:96:15:9e:de:7f: a4:35:11:cc:08:26:bd:36:e4:e2:d4:8a:5b:cd:d7: c5:2a:aa:52:e9:05:a1:a4:18:c0:56:6f:06:91:ba: 1a:35:fe:ea:28:ca:5b:b6:32:76:46:7f:3a:a3:0c: 6d:5d:db:f0:16:36:e1:fd:38:57:04:6b:8d:f9:02: 5b:95:07:c8:3f:55:b4:fe:f8:f9:a7:6f:c6:3b:97: e1:96:3f:01:63:5d:f6:a6:13:2c:1c:a4:a9:d8:ad: 3a:b6:ec:97:65:cf:0c:56:5f:37:f3:1d:44:74:67: 95:96:15:12:55:95:de:64:ea:61:f0:84:69:07:59: 84:a9:1b:f1:42:b4:4a:0f:00:ea:0b:a2:6e:5f:83: 8b:d7:73:4a:9e:5a:ab:2e:43:29:c5:c2:06:cb:af: 81:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D8:B5:F8:8B:F4:61:B0:79:31:05:F9:1F:A8:4F:EE:68:49:B3:BB X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:ec:ae:90:07:04:ca:15:5a:6c:29:68:b8:1f:97:01:c7:b6: f2:ca:89:16:18:d5:3f:a6:1d:dc:f4:11:a9:4f:21:bc:5e:eb: b1:eb:c8:1d:8b:0d:97:0d:0e:41:f2:b7:38:7a:61:f7:fe:8f: 1e:ce:d8:af:11:98:e7:5c:c1:e5:d2:e2:19:d7:85:62:3e:d2: e2:7c:1c:39:65:d9:0d:66:d6:3a:c0:b2:ab:cd:4e:29:18:8b: b1:e6:c0:1d:0b:c1:f1:4b:b9:cb:09:9a:7d:af:13:c3:55:59: 20:0a:cf:20:6c:7b:b3:c7:5c:a8:16:66:9b:96:8f:f4:58:fa: 41:3f:2d:ff:e6:1a:71:48:f0:3f:8b:ea:d7:d4:0b:29:35:33: 6c:b3:7c:e6:dc:b8:7f:44:43:aa:b8:9a:9e:a0:9e:0b:37:4b: b4:0c:c0:a3:96:8e:0f:19:44:1f:8f:26:a9:71:32:5b:22:be: f3:ee:cf:2c:4c:de:4f:ff:20:8f:f1:99:33:a2:a8:07:08:77: b0:74:a1:fb:90:ae:9a:12:ee:28:ac:35:b1:2e:ed:b3:05:5e: 7a:ed:82:31:9c:83:26:31:0c:47:8a:3c:27:90:a7:ec:05:ba: 2d:d4:0e:76:81:fc:d0:a5:4c:90:91:8f:97:36:55:c4:d5:74: 36:23:74:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUxMTA1MDIwMDE0WhcNMjUxMTEyMDIwMDE0WjAYMRYwFAYD VQQDEw02OTBhYWZhZS1mMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BRNEpdXipT8KSSNDVy5fql2FEzumhApFuNZqoDCUdAH+2tolpAeuKzi5uuu ymlFrTYg8kKCNKKRxs1PY215405VmOnQB4/OglOKisYISKLoAYaYDE9ReR7GhLaX PlFzie8elhWe3n+kNRHMCCa9NuTi1IpbzdfFKqpS6QWhpBjAVm8GkboaNf7qKMpb tjJ2Rn86owxtXdvwFjbh/ThXBGuN+QJblQfIP1W0/vj5p2/GO5fhlj8BY132phMs HKSp2K06tuyXZc8MVl838x1EdGeVlhUSVZXeZOph8IRpB1mEqRvxQrRKDwDqC6Ju X4OL13NKnlqrLkMpxcIGy6+BpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvYtfiL 9GGweTEF+R+oT+5oSbO7MB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC77K6QBwTKFVpsKWi4H5cBx7byyokWGNU/ph3c9BGpTyG8Xuux68gd iw2XDQ5B8rc4emH3/o8eztivEZjnXMHl0uIZ14ViPtLifBw5ZdkNZtY6wLKrzU4p GIux5sAdC8HxS7nLCZp9rxPDVVkgCs8gbHuzx1yoFmablo/0WPpBPy3/5hpxSPA/ i+rX1AspNTNss3zm3Lh/REOquJqeoJ4LN0u0DMCjlo4PGUQfjyapcTJbIr7z7s8s TN5P/yCP8ZkzoqgHCHewdKH7kK6aEu4orDWxLu2zBV567YIxnIMmMQxHijwnkKfs Bbot1A52gfzQpUyQkY+XNlXE1XQ2I3R4 -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:04 2025 by rpki-client