$ rpki-client -vvf rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft File: 0KCTtlEHkzVIStC6HXZhX1w2aIo.mft (raw, json) Hash identifier: /ygPWzn9rIpygXO2yV764Jo1OvF+FT9ee9qo14slL0U= Subject key identifier: 9F:1C:E0:6C:21:8A:77:73:FA:E0:EF:7C:DA:E8:35:36:9F:91:1A:A4 Authority key identifier: D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A Certificate issuer: /CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Certificate serial: 336A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft Manifest number: 9B14 Signing time: Tue 04 Nov 2025 15:19:10 +0000 Manifest this update: Tue 04 Nov 2025 15:19:10 +0000 Manifest next update: Tue 11 Nov 2025 15:19:10 +0000 Files and hashes: 1: 0KCTtlEHkzVIStC6HXZhX1w2aIo.crl (hash: Bv+sGW2KPbVrEn8HdulmPyargkVP4rB+scgjvtVe4KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13162 (0x336a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E275B, serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Validity Not Before: Nov 4 15:19:10 2025 GMT Not After : Nov 11 15:19:10 2025 GMT Subject: CN=690a196e-ee54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:08:a6:16:86:95:2c:48:6e:07:53:0e:e4:8e: e0:09:99:69:95:0b:14:cc:1b:53:57:2e:85:4f:47: 04:a0:50:12:a3:5d:67:6d:55:1e:f2:39:7d:c8:82: 4a:3a:34:e0:dd:34:a9:e1:e0:77:1d:6c:b7:ed:15: 6e:f9:c6:da:c7:1c:3e:4f:38:4e:55:9a:66:c8:db: 93:38:e5:e9:c5:f3:e8:0c:60:d0:6e:58:a0:4f:b6: e1:6e:98:f8:f7:9f:a1:a0:2f:ba:4b:2f:3a:3c:af: fe:60:8a:fd:3e:c1:bd:71:4c:c5:36:66:d9:af:8c: 5f:89:53:bf:42:20:2c:30:f8:c5:0f:ac:0b:2f:0c: 66:b5:9d:08:c4:ef:e0:4d:f8:2d:3f:04:02:07:99: 10:03:c8:6b:8c:66:7e:74:96:f9:19:8b:2a:8a:7a: b8:ef:49:b2:51:2b:4f:e1:52:b4:9f:c8:c0:d6:61: 97:af:e4:ba:29:66:ae:c8:9f:dc:e0:c8:ca:1e:c9: 18:0b:62:5f:6a:6d:a4:22:6b:b7:56:92:f7:b3:35: 13:d8:d6:44:0a:81:73:0b:de:f9:1a:b7:1f:dc:f4: 4d:9b:6d:70:de:8d:48:ee:77:44:7c:98:c4:2f:a9: 48:21:50:1b:e8:14:93:b5:37:7c:71:eb:84:07:2f: 19:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:1C:E0:6C:21:8A:77:73:FA:E0:EF:7C:DA:E8:35:36:9F:91:1A:A4 X509v3 Authority Key Identifier: keyid:D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:c1:1f:d1:69:82:9f:84:9d:8a:c7:b7:c3:9c:bc:7e:d6:99: 7a:7f:51:56:f3:90:bc:0d:6f:e1:78:5c:76:42:c2:d5:61:2f: 93:37:ac:5c:c4:74:b7:9b:17:e3:3a:25:16:b8:e0:8a:00:79: be:51:c8:0f:b1:51:66:ab:6d:d2:64:c1:aa:e4:2a:18:71:61: da:91:c2:43:18:ff:c3:a8:0b:85:76:6d:0d:e5:0d:39:7b:80: 05:f5:9d:b0:75:35:92:b5:93:26:58:67:5c:c7:21:82:d8:2d: ce:97:fe:aa:6c:e3:d3:28:00:ba:0e:03:46:24:f8:33:47:8b: c0:37:b9:0e:fa:26:e3:3e:ec:42:59:ec:ec:96:85:6b:88:b7: 70:d1:bc:2f:43:47:cc:9e:78:4f:37:c5:67:17:a4:c9:aa:37: ad:c8:3b:a6:73:63:f9:bb:54:00:cd:27:dc:62:7a:53:7f:ae: 70:7a:e7:20:7b:29:93:f9:52:13:14:93:28:9f:45:5b:61:77: 7d:88:13:34:b7:cc:b5:1f:6b:09:63:99:c7:78:7f:f9:96:e1: 08:06:fe:30:02:39:ae:5d:6f:0a:37:03:bd:dc:15:32:01:5f: 7b:60:1c:2b:25:d2:d3:50:b1:bc:9f:b5:f4:a7:6c:68:66:2f: 17:11:07:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3NUIxMTAvBgNVBAUTKEQwQTA5M0I2NTEwNzkzMzU0ODRBRDBCQTFENzY2MTVG NUMzNjY4OEEwHhcNMjUxMTA0MTUxOTEwWhcNMjUxMTExMTUxOTEwWjAYMRYwFAYD VQQDEw02OTBhMTk2ZS1lZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQimFoaVLEhuB1MO5I7gCZlplQsUzBtTVy6FT0cEoFASo11nbVUe8jl9yIJK OjTg3TSp4eB3HWy37RVu+cbaxxw+TzhOVZpmyNuTOOXpxfPoDGDQbligT7bhbpj4 95+hoC+6Sy86PK/+YIr9PsG9cUzFNmbZr4xfiVO/QiAsMPjFD6wLLwxmtZ0IxO/g TfgtPwQCB5kQA8hrjGZ+dJb5GYsqinq470myUStP4VK0n8jA1mGXr+S6KWauyJ/c 4MjKHskYC2Jfam2kImu3VpL3szUT2NZECoFzC975Grcf3PRNm21w3o1I7ndEfJjE L6lIIVAb6BSTtTd8ceuEBy8ZEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8c4Gwh indz+uDvfNroNTafkRqkMB8GA1UdIwQYMBaAFNCgk7ZRB5M1SErQuh12YV9cNmiK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjc1Qi9BQjIwMjIzMDFE QTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6VklTdEM2SFhaaFgxdzJh SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBLQ1R0bEVIa3pWSVN0QzZIWFpoWDF3MmFJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mjc1Qi9BQjIwMjIzMDFEQTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6 VklTdEM2SFhaaFgxdzJhSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPwR/RaYKfhJ2Kx7fDnLx+1pl6f1FW85C8DW/heFx2QsLVYS+TN6xc xHS3mxfjOiUWuOCKAHm+UcgPsVFmq23SZMGq5CoYcWHakcJDGP/DqAuFdm0N5Q05 e4AF9Z2wdTWStZMmWGdcxyGC2C3Ol/6qbOPTKAC6DgNGJPgzR4vAN7kO+ibjPuxC WezsloVriLdw0bwvQ0fMnnhPN8VnF6TJqjetyDumc2P5u1QAzSfcYnpTf65weucg eymT+VITFJMon0VbYXd9iBM0t8y1H2sJY5nHeH/5luEIBv4wAjmuXW8KNwO93BUy AV97YBwrJdLTULG8n7X0p2xoZi8XEQeN -----END CERTIFICATE-----Generated at Wed Nov 5 01:23:39 2025 by rpki-client