$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: h7r12JZpMYkfbh8MRZ7erSFgzO/5Klv/Y6dZNDzmRV8= Subject key identifier: 0B:17:05:CD:BC:0D:54:A2:46:C4:F4:E7:1E:17:29:90:A3:62:89:AB Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 0484 Signing time: Wed 05 Nov 2025 00:10:24 +0000 Manifest this update: Wed 05 Nov 2025 00:10:24 +0000 Manifest next update: Wed 12 Nov 2025 00:10:24 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: OTO9tFM2UMVPdeI4iSSzsBg7ZPGCpZt+mBYrwGB86wY=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Nov 5 00:10:24 2025 GMT Not After : Nov 12 00:10:24 2025 GMT Subject: CN=690a95f0-8cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c2:f6:9c:73:e1:6d:24:aa:f6:0f:f8:de:40: cd:98:e4:81:69:66:d8:7b:24:c4:b9:56:68:8c:e2: 3c:ca:90:c8:9e:76:69:13:88:a2:34:cf:de:53:d8: 04:d5:e2:fa:ab:e7:09:02:5a:56:f9:7f:19:a2:70: 84:1a:1b:d7:de:1a:8f:fa:86:8c:24:56:d6:f2:3e: 49:c3:ba:0e:03:3f:ad:93:7d:16:a8:0e:42:a3:21: 76:ba:3f:32:af:67:a7:bc:73:5b:5d:d2:9a:2f:6e: c5:40:42:3c:d3:8a:61:37:38:b5:71:81:90:2a:5e: e0:81:55:e3:ac:b9:fc:ee:8c:d6:62:2e:b3:d0:f1: 2a:e0:49:91:fc:38:ea:b2:1b:bb:d9:8e:f1:7d:f0: 6a:a0:59:66:58:ba:f7:dd:89:94:d5:78:2a:7d:f1: 10:e8:59:50:79:ff:e9:cc:7d:ad:e5:9f:37:55:59: f2:4d:61:b5:26:86:69:f4:b4:35:8c:79:c8:95:40: 26:9f:56:29:d2:34:d3:1e:f5:80:85:b5:73:eb:22: ab:c3:4a:4e:cb:82:78:e7:39:07:fb:1d:ca:67:a6: e1:6d:56:87:14:dd:7f:b2:a0:09:a0:51:80:cf:a1: f2:b3:57:1c:0c:2f:87:1a:db:09:59:8b:70:a6:92: a0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:17:05:CD:BC:0D:54:A2:46:C4:F4:E7:1E:17:29:90:A3:62:89:AB X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:38:94:09:26:fd:73:0c:79:2d:4d:e3:7e:ec:aa:47:05:b7: 02:e5:9d:3c:0f:dd:e4:3f:1b:e4:c6:2f:86:83:6d:7c:87:4f: 51:50:72:ee:1f:b2:a7:93:98:4a:ec:6a:21:9f:03:69:84:51: 2a:98:9f:4e:74:c9:81:fa:25:78:d7:e9:e3:80:ad:3a:0a:fa: 0e:95:04:a3:bc:78:91:8d:7b:81:5f:07:b2:8e:75:24:b3:e2: b7:7c:37:8a:e2:44:7a:4a:e7:d0:de:e1:f0:be:fd:a3:89:e5: a4:16:8f:9d:bf:f1:1f:7c:af:8a:05:31:24:ff:d8:f2:08:8d: 9e:22:09:34:fd:18:4c:0a:01:bc:fe:2e:88:01:aa:f7:90:49: 2d:9a:2c:13:c2:59:9a:0b:e5:49:7e:2d:65:5e:29:43:c1:5b: e9:8a:2a:61:c2:c9:5c:85:0b:47:74:40:52:91:e9:e5:1d:cd: 27:00:8a:8d:43:f9:3d:8a:b7:f7:65:be:2b:13:f0:e5:b9:3d: fa:bb:6b:1e:4e:7d:36:8d:af:c0:21:90:e9:ce:b4:6e:74:61: a7:2a:cf:a1:65:6c:c8:21:52:ec:6b:2e:7a:ee:93:b8:ca:c6: b3:da:af:79:fc:06:07:2f:1d:19:ec:24:24:4c:e1:80:f3:44: 2e:e0:f7:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUxMTA1MDAxMDI0WhcNMjUxMTEyMDAxMDI0WjAYMRYwFAYD VQQDEw02OTBhOTVmMC04Y2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcL2nHPhbSSq9g/43kDNmOSBaWbYeyTEuVZojOI8ypDInnZpE4iiNM/eU9gE 1eL6q+cJAlpW+X8ZonCEGhvX3hqP+oaMJFbW8j5Jw7oOAz+tk30WqA5CoyF2uj8y r2envHNbXdKaL27FQEI804phNzi1cYGQKl7ggVXjrLn87ozWYi6z0PEq4EmR/Djq shu72Y7xffBqoFlmWLr33YmU1XgqffEQ6FlQef/pzH2t5Z83VVnyTWG1JoZp9LQ1 jHnIlUAmn1Yp0jTTHvWAhbVz6yKrw0pOy4J45zkH+x3KZ6bhbVaHFN1/sqAJoFGA z6Hys1ccDC+HGtsJWYtwppKgNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsXBc28 DVSiRsT05x4XKZCjYomrMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnOJQJJv1zDHktTeN+7KpHBbcC5Z08D93kPxvkxi+Gg218h09RUHLu H7Knk5hK7GohnwNphFEqmJ9OdMmB+iV41+njgK06CvoOlQSjvHiRjXuBXweyjnUk s+K3fDeK4kR6SufQ3uHwvv2jieWkFo+dv/EffK+KBTEk/9jyCI2eIgk0/RhMCgG8 /i6IAar3kEktmiwTwlmaC+VJfi1lXilDwVvpiiphwslchQtHdEBSkenlHc0nAIqN Q/k9irf3Zb4rE/DluT36u2seTn02ja/AIZDpzrRudGGnKs+hZWzIIVLsay567pO4 ysaz2q95/AYHLx0Z7CQkTOGA80Qu4PfQ -----END CERTIFICATE-----Generated at Wed Nov 5 11:59:06 2025 by rpki-client