$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: FtvcMbTtoXsMW06l4Hytsu+SEv12HC4AN+Wz10siPPs= Subject key identifier: 3D:1A:E7:34:8B:FB:11:1F:85:10:C4:60:76:55:3E:FA:A8:1C:77:07 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0EDC Signing time: Sun 02 Nov 2025 17:48:50 +0000 Manifest this update: Sun 02 Nov 2025 17:48:50 +0000 Manifest next update: Sun 09 Nov 2025 17:48:50 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: mSSVFQJAaVvJYUWqFHe+C38i9chJkMo02iMW/NREtnE=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: Dfnpdx7fQvQO0Rh8jNA5Tx09pBgCccW2N8IKNsboZGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Nov 2 17:48:50 2025 GMT Not After : Nov 9 17:48:50 2025 GMT Subject: CN=69079982-1c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6e:28:b6:84:83:17:9b:02:4b:5c:43:83:fa: a7:1e:ae:c9:52:b6:cf:f5:21:a0:0f:67:bf:85:ab: 2c:6b:49:94:2c:cf:36:d5:c8:be:03:83:01:10:c8: 6c:ae:38:45:99:f2:a3:60:a2:74:d4:02:63:c4:7a: c2:77:b8:f5:cc:8c:41:05:0e:48:22:1d:e5:3c:78: b3:6a:34:93:b1:46:fc:e8:12:47:dd:cf:7d:63:ae: 5d:82:a7:8e:47:76:ff:ad:dc:80:54:1f:28:5f:4a: f6:48:31:e4:2d:01:f9:4f:70:5d:b0:77:31:17:dc: 9c:e5:11:72:5b:3b:b3:24:fd:ec:38:d9:21:e7:f7: b6:2f:5c:62:a2:24:bd:5a:00:ae:1f:70:25:2a:42: 32:3b:d7:0c:25:d0:b5:37:c5:b4:da:5b:05:ec:a2: b8:a4:46:5e:34:c9:85:7f:41:8b:dd:97:fd:46:3a: 0c:77:e6:7e:72:03:54:0b:5d:ef:f5:b1:f6:98:4f: f8:83:fb:9f:88:ad:f2:48:f3:73:b2:7a:39:18:93: b7:cc:5e:17:4b:ed:da:33:fc:3d:e0:15:85:12:a9: b9:50:8c:af:75:6e:78:6d:d6:b1:96:58:0e:b7:f7: 5c:8c:57:d5:00:dd:ae:1f:9a:d5:60:3a:6a:e1:57: 90:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:1A:E7:34:8B:FB:11:1F:85:10:C4:60:76:55:3E:FA:A8:1C:77:07 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:3e:24:8e:3a:b0:47:8e:aa:26:98:54:d2:99:97:49:58:e5: 8e:f0:b0:a1:a9:34:95:a4:4b:90:f0:49:d1:a2:a2:78:30:a0: 38:bf:2b:3a:ef:e2:74:24:db:28:4f:c4:fc:0e:2b:16:2b:fa: 02:f8:1e:7e:09:7f:c4:eb:4f:40:5d:35:ed:27:11:ec:88:b9: c9:a4:bb:5a:45:7f:5f:bd:0a:a3:55:7b:95:b3:d2:21:d0:09: 4f:23:f7:e3:9b:ff:99:5d:a1:6d:e9:b8:b8:02:86:55:c0:0c: c3:a3:ef:1a:dd:1a:44:1e:10:96:8b:c2:8c:b0:8e:a7:73:8a: 9a:ef:db:14:b4:bc:63:55:5a:60:bf:18:dc:df:87:9b:c2:10: 61:bf:1e:f0:c4:89:60:a0:b9:20:c5:79:02:72:e0:b2:ea:e2: 92:e5:c2:f2:a0:b2:90:dc:60:9c:b6:3a:6c:12:7c:38:90:72: 81:53:53:5a:0d:66:db:25:e3:6a:97:cb:19:5a:2f:11:d8:cc: 34:b3:87:0f:88:27:75:8a:81:f2:58:84:26:6b:7a:2b:af:8d: 6f:36:25:66:e8:37:94:8f:45:f2:50:45:74:19:96:d5:ad:50: f0:07:58:5c:96:d8:42:64:ef:84:de:b7:7d:a9:52:97:e1:49: d3:d5:e8:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKERCNzhEOUY5MzU4RTU2N0QzMDZFRTNCRDFFQUM3NDhF OTYwNkJGOEYwHhcNMjUxMTAyMTc0ODUwWhcNMjUxMTA5MTc0ODUwWjAYMRYwFAYD VQQDEw02OTA3OTk4Mi0xYzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW4otoSDF5sCS1xDg/qnHq7JUrbP9SGgD2e/hassa0mULM821ci+A4MBEMhs rjhFmfKjYKJ01AJjxHrCd7j1zIxBBQ5IIh3lPHizajSTsUb86BJH3c99Y65dgqeO R3b/rdyAVB8oX0r2SDHkLQH5T3BdsHcxF9yc5RFyWzuzJP3sONkh5/e2L1xioiS9 WgCuH3AlKkIyO9cMJdC1N8W02lsF7KK4pEZeNMmFf0GL3Zf9RjoMd+Z+cgNUC13v 9bH2mE/4g/ufiK3ySPNzsno5GJO3zF4XS+3aM/w94BWFEqm5UIyvdW54bdaxllgO t/dcjFfVAN2uH5rVYDpq4VeQQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0a5zSL +xEfhRDEYHZVPvqoHHcHMB8GA1UdIwQYMBaAFNt42fk1jlZ9MG7jvR6sdI6WBr+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1ZuMHdidU85SHF4MGpwWUd2 NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1Zu MHdidU85SHF4MGpwWUd2NDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIPiSOOrBHjqommFTSmZdJWOWO8LChqTSVpEuQ8EnRoqJ4MKA4vys6 7+J0JNsoT8T8DisWK/oC+B5+CX/E609AXTXtJxHsiLnJpLtaRX9fvQqjVXuVs9Ih 0AlPI/fjm/+ZXaFt6bi4AoZVwAzDo+8a3RpEHhCWi8KMsI6nc4qa79sUtLxjVVpg vxjc34ebwhBhvx7wxIlgoLkgxXkCcuCy6uKS5cLyoLKQ3GCctjpsEnw4kHKBU1Na DWbbJeNql8sZWi8R2Mw0s4cPiCd1ioHyWIQma3orr41vNiVm6DeUj0XyUEV0GZbV rVDwB1hclthCZO+E3rd9qVKX4UnT1ejQ -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:46 2025 by rpki-client