$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: cO9EpRhLPtv2xi6wx6/sN3iId0WmGyPtvra0hArE6QE= Subject key identifier: 15:97:30:98:C7:1F:75:AA:30:60:96:8A:1F:E0:CE:AB:72:60:05:83 Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34D1 Signing time: Tue 04 Nov 2025 15:06:57 +0000 Manifest this update: Tue 04 Nov 2025 15:06:57 +0000 Manifest next update: Tue 11 Nov 2025 15:06:57 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: tYaJNMxFAZYmnsNW9qv46ofxwueHwkssjIfK05ApVgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13521 (0x34d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Nov 4 15:06:57 2025 GMT Not After : Nov 11 15:06:57 2025 GMT Subject: CN=690a1691-b4dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:40:39:19:04:4b:75:1b:f7:08:a4:1e:33:ce: 67:67:63:ce:8f:33:b3:f5:2d:7f:16:80:15:47:bb: 94:34:d6:13:11:98:dc:30:4c:71:ae:fb:f4:21:5d: 3c:29:78:5c:fd:84:f8:0a:be:bf:e8:30:94:f6:28: 7e:9b:0f:b7:ab:b9:9d:a7:74:5e:b4:b6:2b:58:58: 5b:51:33:9c:1a:f6:08:0b:1a:51:c5:19:c0:77:c5: eb:57:67:85:56:e6:1f:64:dd:eb:6b:19:09:2a:d0: c9:b1:86:05:f9:fc:aa:59:38:f4:d8:c8:d9:9a:36: fc:1a:67:9f:1e:87:c0:46:35:df:02:ac:ef:ed:28: 12:ee:f4:b3:c3:ae:04:c3:c8:78:b9:ea:eb:1d:e5: fc:df:9f:b4:6f:52:4f:82:9d:89:f1:e7:62:fc:05: 04:4c:11:7e:30:d5:8f:32:a7:28:c0:82:30:8e:c0: 2b:7f:48:16:31:ef:20:c0:d1:2c:49:5a:1c:1b:ce: e6:28:66:cb:a2:b1:ef:58:8b:05:52:d8:ae:67:28: ea:a0:13:7c:6b:34:0f:c5:83:0a:e3:bf:29:73:39: ce:d4:98:7d:79:e9:39:01:23:23:b6:22:b9:b9:0b: be:7b:21:1a:2e:98:fc:08:b4:19:5a:98:e2:99:9e: c1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:97:30:98:C7:1F:75:AA:30:60:96:8A:1F:E0:CE:AB:72:60:05:83 X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:11:6a:2f:ba:c2:b9:06:57:b1:5c:e9:77:24:05:8c:d3:ea: ff:f5:a4:02:49:51:7f:96:e4:f0:56:9e:23:7e:0d:cb:f9:ea: a4:24:9b:b9:a5:c4:2f:87:79:38:20:ae:d6:90:e9:45:a3:41: 2b:f3:c9:2e:2a:e1:6f:83:6d:3c:e4:69:78:95:5b:f5:db:d0: 8c:97:3a:15:d2:ab:44:d5:11:20:6d:35:9c:45:ed:ec:53:dc: 48:6e:cd:7a:6b:de:de:8f:5f:db:4c:cc:dc:29:52:a4:b2:98: 22:06:2d:62:04:4e:2b:98:30:ba:c9:29:c9:7e:e7:d2:6e:8a: 4f:3d:9e:ee:de:de:a0:82:89:9c:43:0d:09:9d:f8:3e:14:47: 0a:53:7f:62:38:3d:42:ed:43:6d:e9:16:a0:ad:35:dd:7c:28: 5a:16:84:94:a7:01:3d:8c:ac:09:3f:01:c4:2c:61:74:eb:23: e3:67:6c:f6:5c:ca:c3:d5:bf:2c:6f:42:f1:ba:72:c0:2b:08: 3c:5d:d7:64:06:2d:f6:2a:75:25:17:03:95:56:96:ab:e4:3b: 68:01:35:b4:ae:2e:2d:2c:8c:de:19:95:b1:e8:49:7b:ad:36: 3c:3c:a2:89:ab:43:1d:72:a6:88:6c:46:77:62:d2:b4:c5:9b: 33:da:ad:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUxMTA0MTUwNjU3WhcNMjUxMTExMTUwNjU3WjAYMRYwFAYD VQQDEw02OTBhMTY5MS1iNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0A5GQRLdRv3CKQeM85nZ2POjzOz9S1/FoAVR7uUNNYTEZjcMExxrvv0IV08 KXhc/YT4Cr6/6DCU9ih+mw+3q7mdp3RetLYrWFhbUTOcGvYICxpRxRnAd8XrV2eF VuYfZN3raxkJKtDJsYYF+fyqWTj02MjZmjb8GmefHofARjXfAqzv7SgS7vSzw64E w8h4uerrHeX835+0b1JPgp2J8edi/AUETBF+MNWPMqcowIIwjsArf0gWMe8gwNEs SVocG87mKGbLorHvWIsFUtiuZyjqoBN8azQPxYMK478pcznO1Jh9eek5ASMjtiK5 uQu+eyEaLpj8CLQZWpjimZ7BcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWXMJjH H3WqMGCWih/gzqtyYAWDMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2EWovusK5BlexXOl3JAWM0+r/9aQCSVF/luTwVp4jfg3L+eqkJJu5 pcQvh3k4IK7WkOlFo0Er88kuKuFvg2085Gl4lVv129CMlzoV0qtE1REgbTWcRe3s U9xIbs16a97ej1/bTMzcKVKkspgiBi1iBE4rmDC6ySnJfufSbopPPZ7u3t6ggomc Qw0Jnfg+FEcKU39iOD1C7UNt6RagrTXdfChaFoSUpwE9jKwJPwHELGF06yPjZ2z2 XMrD1b8sb0LxunLAKwg8XddkBi32KnUlFwOVVpar5DtoATW0ri4tLIzeGZWx6El7 rTY8PKKJq0MdcqaIbEZ3YtK0xZsz2q0p -----END CERTIFICATE-----Generated at Tue Nov 4 16:32:44 2025 by rpki-client