$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: Va4bW37h/92KwIMURPBy+q87fFNF9mSe52s8iOrEqfM= Subject key identifier: DD:50:04:E1:6F:5B:D7:6E:23:74:2B:9B:3F:28:C5:A7:37:45:56:64 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 092B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 0925 Signing time: Tue 04 Nov 2025 20:20:04 +0000 Manifest this update: Tue 04 Nov 2025 20:20:04 +0000 Manifest next update: Tue 11 Nov 2025 20:20:04 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: Sq2HYv93S3BuL/7MDB1ogWN26gDbQAnL49N+2D0xS5g=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:20:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2347 (0x92b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Nov 4 20:20:04 2025 GMT Not After : Nov 11 20:20:04 2025 GMT Subject: CN=690a5ff4-da11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:86:aa:29:13:67:a4:58:c3:73:cd:6c:4e:ff: 75:bd:2d:f6:41:42:e9:0d:25:9d:85:d9:65:48:d6: bc:1c:14:d0:ab:a8:aa:e2:6d:bb:b5:8e:9c:39:f5: a8:46:21:d2:bb:89:ff:bb:53:f1:7f:90:af:7e:89: f1:ef:ed:62:32:a0:f9:27:fe:21:92:f7:05:4b:dc: bb:36:62:85:fd:f4:7d:a1:91:6f:77:41:48:85:7d: 7b:51:ad:f4:fc:d2:23:a9:04:73:a7:0c:5f:27:bf: c9:82:18:2c:08:6e:a2:b8:2d:63:30:bd:d6:6a:a1: 5d:03:63:3a:fa:28:3f:69:d3:c8:6a:3d:df:8d:ad: 96:d1:cd:e4:1d:74:4e:23:a9:d2:00:e7:1b:22:f7: 5f:7a:fb:dd:fd:aa:64:30:04:5c:7a:a0:ca:61:77: 93:5e:20:57:5b:e0:cf:95:17:32:7f:ed:b0:50:16: 3f:f0:e1:f3:c5:4b:d5:ce:bf:3d:ba:0a:2c:c7:45: 01:e2:ae:92:49:be:4b:40:ed:b6:01:2c:5a:4f:df: d2:f1:a9:83:39:13:e4:4a:62:29:c7:2b:cc:2b:a7: 0e:8a:d1:1b:e6:b8:0f:b7:ce:5c:6a:82:3b:76:7a: 71:24:a5:04:60:20:d0:24:e9:54:d0:fc:f4:d5:e8: 5c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:50:04:E1:6F:5B:D7:6E:23:74:2B:9B:3F:28:C5:A7:37:45:56:64 X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ef:45:be:cb:d7:30:92:65:ca:cd:a4:2b:96:cf:c1:f7:e6: aa:ae:eb:cb:22:15:43:ec:59:bf:85:10:ed:0a:bf:ee:6a:49: fa:08:1b:0e:0f:fc:91:30:c2:61:aa:13:83:54:9a:d4:90:e5: 6c:fb:30:4c:13:d4:fe:bb:16:15:6a:a4:5e:9d:c4:33:ce:f8: d5:26:98:4c:19:75:2e:68:78:b5:c0:d6:88:57:78:d8:a0:80: 8f:07:0a:09:7f:00:73:a5:eb:05:7f:42:25:bf:9e:0b:63:9c: 46:b2:a7:cc:1c:26:d7:13:78:83:98:94:ac:28:06:20:63:26: 3d:4d:7f:68:dd:04:73:1d:a1:ba:ef:e1:85:8e:b8:92:fb:ac: 9a:24:18:3f:05:51:8f:1b:74:c7:63:37:7c:79:96:44:30:e7: ed:00:92:ca:f5:a2:ee:d2:02:6e:40:c1:2d:34:22:be:8e:05: 0b:76:94:c2:63:8e:be:90:ff:4c:81:67:d2:ff:c6:08:b2:15: c8:50:b2:b7:9e:c7:16:86:6d:ac:fc:f0:fa:6f:21:d3:5d:91: 0b:ec:37:97:f1:b7:07:95:34:18:13:9a:3c:61:5b:96:28:a4: e6:10:77:71:5e:3b:f0:6c:c4:6f:0f:30:d2:20:5d:e3:c8:5d: c4:27:43:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUxMTA0MjAyMDA0WhcNMjUxMTExMjAyMDA0WjAYMRYwFAYD VQQDEw02OTBhNWZmNC1kYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IaqKRNnpFjDc81sTv91vS32QULpDSWdhdllSNa8HBTQq6iq4m27tY6cOfWo RiHSu4n/u1Pxf5Cvfonx7+1iMqD5J/4hkvcFS9y7NmKF/fR9oZFvd0FIhX17Ua30 /NIjqQRzpwxfJ7/JghgsCG6iuC1jML3WaqFdA2M6+ig/adPIaj3fja2W0c3kHXRO I6nSAOcbIvdfevvd/apkMARceqDKYXeTXiBXW+DPlRcyf+2wUBY/8OHzxUvVzr89 ugosx0UB4q6SSb5LQO22ASxaT9/S8amDORPkSmIpxyvMK6cOitEb5rgPt85caoI7 dnpxJKUEYCDQJOlU0Pz01ehckwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1QBOFv W9duI3Qrmz8oxac3RVZkMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc70W+y9cwkmXKzaQrls/B9+aqruvLIhVD7Fm/hRDtCr/uakn6CBsO D/yRMMJhqhODVJrUkOVs+zBME9T+uxYVaqRencQzzvjVJphMGXUuaHi1wNaIV3jY oICPBwoJfwBzpesFf0Ilv54LY5xGsqfMHCbXE3iDmJSsKAYgYyY9TX9o3QRzHaG6 7+GFjriS+6yaJBg/BVGPG3THYzd8eZZEMOftAJLK9aLu0gJuQMEtNCK+jgULdpTC Y46+kP9MgWfS/8YIshXIULK3nscWhm2s/PD6byHTXZEL7DeX8bcHlTQYE5o8YVuW KKTmEHdxXjvwbMRvDzDSIF3jyF3EJ0Mn -----END CERTIFICATE-----Generated at Wed Nov 5 03:02:24 2025 by rpki-client