$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: NgPrW9w6oN3BRewG+92C5ukBd2D2J0RZHv0zunBn3CE= Subject key identifier: 2A:EF:D6:C5:93:C5:A6:AC:97:FE:58:30:33:07:B6:9A:09:E1:2D:DA Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 0460 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 0453 Signing time: Wed 05 Nov 2025 00:44:58 +0000 Manifest this update: Wed 05 Nov 2025 00:44:57 +0000 Manifest next update: Wed 12 Nov 2025 00:44:57 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: 6znqjPhxu3DxdVi3skrKB+T6RMBht7T9vZCnzNC2tcw=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: DlL3SJChckNOqua785W26axk8/KnPljvxeRS/X/r6xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD, serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: Nov 5 00:44:57 2025 GMT Not After : Nov 12 00:44:57 2025 GMT Subject: CN=690a9e09-f625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:d8:1f:07:65:a9:11:93:0c:a8:05:0b:d2: ad:bc:00:03:1b:cf:80:7a:73:d6:b4:0f:2c:aa:de: 07:9f:46:0c:bd:19:d8:79:5a:49:ad:ee:b1:f9:63: b5:23:d9:22:26:11:53:8d:af:e2:aa:e6:57:74:a9: 84:9b:65:38:93:15:9d:8b:6f:53:e5:ef:76:f4:50: f6:e8:9c:1f:ae:b4:5e:77:15:cf:a1:1b:72:d1:88: 82:3d:09:0e:96:d4:b7:21:55:20:46:7b:0c:e7:55: c0:3d:68:66:09:f9:f6:cf:b2:a0:10:70:8d:a5:eb: 2c:8f:96:55:31:2a:a3:d1:05:cf:e6:5a:ce:b4:26: 8e:83:2c:72:a1:ea:cf:35:87:a9:7f:6a:e9:8b:35: 06:67:81:84:21:68:a9:25:43:b5:7d:85:15:a9:bc: d5:a8:84:6e:1e:15:8a:12:7e:06:a1:30:ab:15:a4: 9c:11:eb:8e:01:b5:bf:9a:42:96:aa:a4:51:8a:ae: d2:ea:41:92:a0:70:c4:c0:77:7f:8c:91:5c:a2:91: e5:88:92:36:51:24:5d:f9:36:1c:4f:3d:dc:c0:e6: 1d:c5:88:80:80:2a:55:87:81:c8:af:8b:6c:e6:62: 32:75:61:2e:df:d1:0f:e8:f3:2c:92:e2:fe:c6:4e: 34:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EF:D6:C5:93:C5:A6:AC:97:FE:58:30:33:07:B6:9A:09:E1:2D:DA X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:db:7d:73:9e:69:f6:53:7f:54:e6:31:70:59:b7:81:1e:42: 28:95:48:de:11:26:fc:95:e2:f6:b2:c1:a1:cc:35:6e:ba:6f: 32:25:e4:f8:e3:08:c1:9e:92:da:c3:3e:ed:0e:ea:f0:f1:ac: c1:c9:38:ba:bb:8c:2b:17:5b:4b:b3:d8:47:13:03:58:f8:3b: 90:3b:9e:57:5d:5f:23:bd:f8:53:76:c2:85:12:95:0c:07:57: 06:6a:f7:16:1b:fa:b8:ac:e9:a2:8a:4d:b3:07:5a:65:84:bd: 02:8d:75:6f:7e:21:45:e4:5d:db:b9:07:98:5f:97:f7:61:68: da:35:76:a2:50:80:be:10:ab:15:79:4d:f6:47:cc:82:a6:90: cb:6f:a6:f3:54:75:ce:e8:f3:f9:1b:71:97:c0:30:18:b9:b4: f7:06:f7:f7:34:ca:c8:e2:3f:33:10:2b:d9:10:d8:c6:f7:9f: 9e:db:f9:44:58:dd:f5:cc:d0:ac:a9:7e:0b:81:12:31:1d:03: 18:1f:b2:c0:a6:cf:ef:4b:b6:94:bd:24:1c:c7:c1:02:69:6a: 5e:17:a0:0a:13:d9:e6:73:fe:04:dc:1a:8e:37:c4:47:9b:b9: 60:5f:6d:57:f8:0e:4a:df:56:4c:65:78:1f:1b:3c:bf:01:94: 16:8c:8a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjUxMTA1MDA0NDU3WhcNMjUxMTEyMDA0NDU3WjAYMRYwFAYD VQQDEw02OTBhOWUwOS1mNjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO7YHwdlqRGTDKgFC9KtvAADG8+AenPWtA8sqt4Hn0YMvRnYeVpJre6x+WO1 I9kiJhFTja/iquZXdKmEm2U4kxWdi29T5e929FD26JwfrrRedxXPoRty0YiCPQkO ltS3IVUgRnsM51XAPWhmCfn2z7KgEHCNpessj5ZVMSqj0QXP5lrOtCaOgyxyoerP NYepf2rpizUGZ4GEIWipJUO1fYUVqbzVqIRuHhWKEn4GoTCrFaScEeuOAbW/mkKW qqRRiq7S6kGSoHDEwHd/jJFcopHliJI2USRd+TYcTz3cwOYdxYiAgCpVh4HIr4ts 5mIydWEu39EP6PMskuL+xk40fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrv1sWT xaasl/5YMDMHtpoJ4S3aMB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn231znmn2U39U5jFwWbeBHkIolUjeESb8leL2ssGhzDVuum8yJeT4 4wjBnpLawz7tDurw8azByTi6u4wrF1tLs9hHEwNY+DuQO55XXV8jvfhTdsKFEpUM B1cGavcWG/q4rOmiik2zB1plhL0CjXVvfiFF5F3buQeYX5f3YWjaNXaiUIC+EKsV eU32R8yCppDLb6bzVHXO6PP5G3GXwDAYubT3Bvf3NMrI4j8zECvZENjG95+e2/lE WN31zNCsqX4LgRIxHQMYH7LAps/vS7aUvSQcx8ECaWpeF6AKE9nmc/4E3BqON8RH m7lgX21X+A5K31ZMZXgfGzy/AZQWjIpg -----END CERTIFICATE-----Generated at Wed Nov 5 21:13:39 2025 by rpki-client