$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: FreZmE97tyJ6ox12GZ3Rx8kfuzHVvi/SQhOy3dKqGH0= Subject key identifier: 7C:A4:DC:2C:AE:A5:D1:E0:EC:3A:BC:61:42:11:ED:19:1A:C7:4D:33 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0E1B Signing time: Sun 02 Nov 2025 17:50:42 +0000 Manifest this update: Sun 02 Nov 2025 17:50:42 +0000 Manifest next update: Sun 09 Nov 2025 17:50:42 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: Wffsp7nuuyOhQyU63ma1E2oa91IL8AhLvGqSMDuj0qE=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3621 (0xe25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Nov 2 17:50:42 2025 GMT Not After : Nov 9 17:50:42 2025 GMT Subject: CN=690799f2-7403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ca:6a:a1:00:10:28:b0:ae:9b:43:a3:b2:bc: 1b:c2:26:17:38:7d:fe:58:61:36:ab:50:8b:95:a6: 0d:ff:05:ef:be:32:74:c9:fd:93:18:b9:ed:e1:88: 25:22:b0:75:2e:f7:0f:df:fe:72:08:02:97:de:2a: 5e:01:a5:a1:b4:c6:e3:05:ec:15:67:c6:32:3f:8b: f4:13:a6:d7:97:23:cf:cf:36:58:9c:d6:d3:a1:0f: 22:23:45:32:f1:f5:68:c2:81:48:74:20:af:11:0a: b3:62:ca:ec:54:34:5b:5b:a5:2e:65:a9:9a:a0:d4: 8a:9c:62:f1:8e:74:23:e1:88:68:10:47:e1:76:9f: 47:9a:a6:02:d6:ca:07:ed:f5:b0:43:82:cf:26:62: a8:47:bf:21:f8:b3:70:06:15:9b:d6:ca:49:70:c7: 0a:7c:88:1f:25:04:14:81:be:74:29:d1:00:c6:6c: 93:a0:93:34:0a:e4:8b:e0:58:74:a8:b7:6a:76:89: 9c:a4:2d:5a:78:c0:7e:8c:d5:02:d7:41:14:11:33: 1d:be:5f:20:b9:a2:69:80:7b:0a:68:fa:d2:7f:49: 3e:91:be:b8:d4:cc:e9:44:59:33:fa:6d:6e:3b:fe: 8c:3e:28:41:75:51:cf:65:14:d3:e6:4c:76:9f:e6: 4a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A4:DC:2C:AE:A5:D1:E0:EC:3A:BC:61:42:11:ED:19:1A:C7:4D:33 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f3:b1:dc:3a:aa:cf:00:18:05:15:8e:24:b0:89:e0:b6:dd: d3:0e:21:cc:6e:ef:3a:1b:a4:9c:59:fd:d1:12:5b:ba:be:b5: f2:9e:ae:e6:16:25:88:8c:7a:9a:01:19:67:95:d1:16:73:48: f3:a1:e8:6e:94:df:8b:76:5f:1b:95:4e:7e:54:b3:cb:f5:c5: 60:9e:92:d5:63:db:11:6b:03:d3:a0:56:7b:b9:4a:5f:98:53: 09:e1:a8:43:a6:dd:bd:95:4c:60:c7:e0:3c:2e:a1:67:f4:43: 1b:5e:bc:07:25:62:24:a4:74:a1:d2:97:c4:39:74:56:35:ec: 23:7a:6b:f3:10:b8:73:7f:65:a0:91:d0:19:74:98:e2:2f:9b: 4d:47:1f:a8:c6:63:ab:0b:22:43:65:65:89:b5:07:c2:de:db: 34:7c:15:45:23:b6:a3:ca:0f:a4:b4:59:f2:36:c7:87:e6:f2: fa:78:cd:fc:bb:f8:d0:22:72:6a:a2:c9:c6:60:48:2d:f9:de: ec:33:e1:08:09:59:92:a7:a8:a1:50:df:ba:37:fb:e8:2e:9b: dc:79:49:2d:53:c0:a1:56:5a:6b:be:da:45:d6:f0:f3:00:e2: fe:89:53:7f:5e:cb:d6:da:14:35:64:88:6d:7a:bb:84:a5:e7: fa:f8:9c:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUxMTAyMTc1MDQyWhcNMjUxMTA5MTc1MDQyWjAYMRYwFAYD VQQDEw02OTA3OTlmMi03NDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08pqoQAQKLCum0OjsrwbwiYXOH3+WGE2q1CLlaYN/wXvvjJ0yf2TGLnt4Ygl IrB1LvcP3/5yCAKX3ipeAaWhtMbjBewVZ8YyP4v0E6bXlyPPzzZYnNbToQ8iI0Uy 8fVowoFIdCCvEQqzYsrsVDRbW6UuZamaoNSKnGLxjnQj4YhoEEfhdp9HmqYC1soH 7fWwQ4LPJmKoR78h+LNwBhWb1spJcMcKfIgfJQQUgb50KdEAxmyToJM0CuSL4Fh0 qLdqdomcpC1aeMB+jNUC10EUETMdvl8guaJpgHsKaPrSf0k+kb641MzpRFkz+m1u O/6MPihBdVHPZRTT5kx2n+ZKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyk3Cyu pdHg7Dq8YUIR7Rkax00zMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr87HcOqrPABgFFY4ksIngtt3TDiHMbu86G6ScWf3RElu6vrXynq7m FiWIjHqaARlnldEWc0jzoehulN+Ldl8blU5+VLPL9cVgnpLVY9sRawPToFZ7uUpf mFMJ4ahDpt29lUxgx+A8LqFn9EMbXrwHJWIkpHSh0pfEOXRWNewjemvzELhzf2Wg kdAZdJjiL5tNRx+oxmOrCyJDZWWJtQfC3ts0fBVFI7ajyg+ktFnyNseH5vL6eM38 u/jQInJqosnGYEgt+d7sM+EICVmSp6ihUN+6N/voLpvceUktU8ChVlprvtpF1vDz AOL+iVN/XsvW2hQ1ZIhteruEpef6+JwG -----END CERTIFICATE-----Generated at Tue Nov 4 12:46:29 2025 by rpki-client