$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: o6SACEJdIzqluDkdpe9UWxJwO1xk3/JCjLGgqHmw8hc= Subject key identifier: 87:02:50:77:B7:BE:A1:0D:D5:50:99:61:84:F4:ED:40:33:CB:AF:C0 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 3105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 3100 Signing time: Tue 04 Nov 2025 15:27:33 +0000 Manifest this update: Tue 04 Nov 2025 15:27:33 +0000 Manifest next update: Tue 11 Nov 2025 15:27:33 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: wV9CzEuC+XNcO9TZSj92aNTPFeb/+L5QHJcQ2qyp2R0=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: +n1EkVjGqmRIN2F0mYDcDpolX9s17cHIyXg+OPTXZ6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12549 (0x3105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Nov 4 15:27:33 2025 GMT Not After : Nov 11 15:27:33 2025 GMT Subject: CN=690a1b65-cc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:d8:85:93:91:7a:aa:f5:96:33:49:e9:d7: 6a:fb:cf:77:f5:4e:24:7d:9c:2d:16:25:42:93:4a: 25:1f:6a:41:97:9d:f6:32:ab:f3:a9:e0:56:e7:01: 8c:29:5a:91:7e:17:76:96:1f:0d:33:52:33:90:a5: 22:9f:5b:a4:c7:6a:d9:e3:df:ae:ea:3e:d2:27:a6: 9c:d5:5c:d4:c4:28:93:e2:d7:44:1d:f9:da:26:0e: 07:1a:52:c0:21:6a:14:c9:62:68:e2:07:22:0f:ab: b7:8c:b3:7d:6d:55:55:16:a4:99:98:f3:70:61:38: 1a:83:cc:e3:67:da:3f:1c:50:70:93:2d:a9:f5:71: 21:14:c2:6d:c2:d2:eb:08:d8:61:b2:cc:f1:ad:ee: 1c:30:fb:b3:25:14:23:cb:d9:ea:54:17:a3:2b:00: 11:16:56:02:82:5b:77:81:bb:e5:a5:68:44:b2:ea: 8d:9d:22:1f:79:d8:27:9e:fe:86:7f:4f:7b:8d:6d: 71:77:a2:95:fd:51:32:a2:9e:42:da:01:ef:65:32: 15:a1:ce:02:77:dd:eb:c9:da:84:b3:05:b2:d7:a7: 06:3e:5b:11:8c:a0:bf:83:3c:7e:28:95:38:69:b7: 4d:1f:58:44:12:2f:35:03:84:14:59:39:e0:ad:2c: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:02:50:77:B7:BE:A1:0D:D5:50:99:61:84:F4:ED:40:33:CB:AF:C0 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:75:12:9f:32:7a:a9:0a:9a:5b:c7:af:e0:03:6c:1e:be:a4: b9:73:f8:1a:75:86:0d:ef:b2:02:7d:6e:53:b1:f2:d7:fe:41: 30:80:42:ab:ad:45:f9:90:75:e5:ac:36:ea:75:66:8c:54:fc: bd:aa:0c:fe:7d:4d:17:4e:ac:2a:ce:37:49:60:69:ca:01:58: f5:94:44:61:0f:02:be:cc:26:90:a6:29:46:d2:71:47:63:6f: 59:28:e0:03:75:ec:c6:a3:ef:1c:2e:b9:e4:bc:38:72:74:e5: 25:f7:cf:eb:97:3c:0e:26:d6:58:c7:2f:fa:4d:19:0a:78:c0: 8a:b7:79:64:68:d7:7f:74:f0:8f:40:08:df:2c:58:d3:39:1a: 45:44:b3:10:81:37:16:da:d4:a5:66:fc:fa:64:1d:70:6a:77: 96:7f:1c:8a:59:92:25:5b:fa:1b:3f:07:00:e6:92:90:9e:63: b1:ae:49:2d:90:fa:d6:0a:2e:92:77:73:1f:ca:d8:18:2f:78: f6:36:d1:64:45:0a:91:ac:d5:97:56:ae:f1:ad:2a:34:ff:97: 8a:16:e9:7b:e3:76:d5:c6:2a:b2:9f:2f:3c:83:77:ff:f5:51: fc:40:97:3b:5d:9f:43:41:1d:00:eb:34:5a:a3:32:7f:02:1e: c9:d0:0c:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUxMTA0MTUyNzMzWhcNMjUxMTExMTUyNzMzWjAYMRYwFAYD VQQDEw02OTBhMWI2NS1jYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHvYhZOReqr1ljNJ6ddq+8939U4kfZwtFiVCk0olH2pBl532MqvzqeBW5wGM KVqRfhd2lh8NM1IzkKUin1ukx2rZ49+u6j7SJ6ac1VzUxCiT4tdEHfnaJg4HGlLA IWoUyWJo4gciD6u3jLN9bVVVFqSZmPNwYTgag8zjZ9o/HFBwky2p9XEhFMJtwtLr CNhhsszxre4cMPuzJRQjy9nqVBejKwARFlYCglt3gbvlpWhEsuqNnSIfedgnnv6G f097jW1xd6KV/VEyop5C2gHvZTIVoc4Cd93rydqEswWy16cGPlsRjKC/gzx+KJU4 abdNH1hEEi81A4QUWTngrSxTjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcCUHe3 vqEN1VCZYYT07UAzy6/AMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvdRKfMnqpCppbx6/gA2wevqS5c/gadYYN77ICfW5TsfLX/kEwgEKr rUX5kHXlrDbqdWaMVPy9qgz+fU0XTqwqzjdJYGnKAVj1lERhDwK+zCaQpilG0nFH Y29ZKOADdezGo+8cLrnkvDhydOUl98/rlzwOJtZYxy/6TRkKeMCKt3lkaNd/dPCP QAjfLFjTORpFRLMQgTcW2tSlZvz6ZB1waneWfxyKWZIlW/obPwcA5pKQnmOxrkkt kPrWCi6Sd3MfytgYL3j2NtFkRQqRrNWXVq7xrSo0/5eKFul743bVxiqyny88g3f/ 9VH8QJc7XZ9DQR0A6zRaozJ/Ah7J0AzS -----END CERTIFICATE-----Generated at Tue Nov 4 20:18:36 2025 by rpki-client