$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft File: 0gZrYZNOd88mep3MOL9d7iHwe6M.mft (raw, json) Hash identifier: vHryN8L4uAz89rW9rot8d/zOJR5wxLtU2mLb4jkq+wk= Subject key identifier: 37:4A:D9:D7:20:54:79:94:84:63:C5:34:3A:CC:9C:BF:77:98:C6:77 Authority key identifier: D2:06:6B:61:93:4E:77:CF:26:7A:9D:CC:38:BF:5D:EE:21:F0:7B:A3 Certificate issuer: /CN=A91EBBAF/serialNumber=D2066B61934E77CF267A9DCC38BF5DEE21F07BA3 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft Manifest number: 56 Signing time: Mon 03 Nov 2025 07:12:24 +0000 Manifest this update: Mon 03 Nov 2025 07:12:24 +0000 Manifest next update: Mon 10 Nov 2025 07:12:24 +0000 Files and hashes: 1: 0gZrYZNOd88mep3MOL9d7iHwe6M.crl (hash: rqQMLl2B8C3+AtYtmbydF8Kym9/LLc3BvvOHD8BrxOY=) 2: C3C056A636DD11F08C82E269C4F9AE02.roa (hash: HBKXI2AjuuTAqBzBKbi8y9q49xdsPFITyMYY5p5WuOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:12:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=D2066B61934E77CF267A9DCC38BF5DEE21F07BA3 Validity Not Before: Nov 3 07:12:24 2025 GMT Not After : Nov 10 07:12:24 2025 GMT Subject: CN=690855d8-eb9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:2f:8b:6a:4d:18:79:26:22:ec:3d:ff:49: 3a:91:43:6b:87:97:fe:5f:65:81:7f:25:63:27:d3: 26:9e:38:24:27:a9:96:17:ac:3f:d4:9c:84:d0:c7: e8:d7:08:4a:bc:26:46:11:27:56:e6:c2:a9:17:77: 93:0f:66:9d:95:02:d2:44:86:fd:3c:ab:3d:a7:39: c7:70:fb:d0:87:84:57:59:08:91:b2:2f:04:a0:ed: 85:ce:79:55:a6:9b:7a:62:5a:61:8a:9e:16:57:8f: 46:68:91:3b:70:4f:52:8a:c3:f6:12:3c:04:51:7c: 61:7d:ff:87:d0:2f:87:ef:d8:5f:58:3b:30:e2:07: 1a:22:14:ad:cc:52:a0:ee:02:2a:0e:d9:0c:e6:44: b8:a4:e4:95:7c:71:61:76:13:59:89:97:1f:ee:1f: 6b:3d:80:37:e3:3f:13:f2:77:ed:20:72:c7:87:2f: 31:9f:77:2c:01:ac:de:46:30:5d:f9:1d:b0:4d:b3: 67:a9:a3:f0:35:b5:64:d8:2b:c6:de:8d:3b:59:af: 01:db:54:81:40:f6:b8:ba:8e:25:d7:de:e6:6e:4f: 87:c8:5a:79:ff:77:a3:b7:5b:3f:1b:4a:25:60:3f: 0f:1f:bb:ee:ce:20:4d:c8:d7:39:21:f7:d2:ee:98: 10:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4A:D9:D7:20:54:79:94:84:63:C5:34:3A:CC:9C:BF:77:98:C6:77 X509v3 Authority Key Identifier: keyid:D2:06:6B:61:93:4E:77:CF:26:7A:9D:CC:38:BF:5D:EE:21:F0:7B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:7e:e4:3b:28:75:a7:de:e0:12:c2:fb:3d:f1:bd:fe:cc:e3: f1:76:a4:a0:e7:ab:35:41:b2:e7:d2:f0:20:e0:60:46:c3:cb: b5:ee:3d:da:05:33:f0:d1:1e:5a:9e:fc:f5:eb:de:06:6f:a5: 27:4d:4d:f1:8e:31:95:12:51:46:01:ff:51:e1:74:23:ef:6d: c9:b5:2e:ba:a4:1d:d9:f1:cd:e3:70:38:cc:76:cf:44:3a:a6: 9f:01:aa:f9:ab:a3:db:dc:b0:db:97:9a:61:b1:0e:df:44:18: b4:4d:9a:b0:f4:f6:3e:a4:be:ce:12:a0:ce:10:9c:2f:83:7c: a9:99:36:b1:b7:50:87:b5:c4:73:70:f7:4a:5c:f0:1c:f2:5b: 59:e9:9b:91:e0:d9:c9:77:55:cd:4f:49:1e:86:33:80:d1:95: ff:8d:f2:02:64:59:49:61:fe:c8:75:d1:c6:0a:2e:fa:f3:8a: e8:f6:59:35:cb:95:76:18:96:2f:8e:b2:f9:63:1f:5e:5c:d1: 84:71:88:c3:f6:db:30:65:f8:a8:9b:ca:d5:10:19:0b:0d:87: b1:49:73:e1:2d:3d:2b:06:c7:e9:ea:48:7c:be:06:fa:ec:23: 76:10:11:3f:c9:41:b6:c0:77:3e:3e:28:ea:be:c0:fc:79:5f: e1:f1:dc:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoRDIwNjZCNjE5MzRFNzdDRjI2N0E5RENDMzhCRjVERUUy MUYwN0JBMzAeFw0yNTExMDMwNzEyMjRaFw0yNTExMTAwNzEyMjRaMBgxFjAUBgNV BAMTDTY5MDg1NWQ4LWViOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS9C+Lak0YeSYi7D3/STqRQ2uHl/5fZYF/JWMn0yaeOCQnqZYXrD/UnITQx+jX CEq8JkYRJ1bmwqkXd5MPZp2VAtJEhv08qz2nOcdw+9CHhFdZCJGyLwSg7YXOeVWm m3piWmGKnhZXj0ZokTtwT1KKw/YSPARRfGF9/4fQL4fv2F9YOzDiBxoiFK3MUqDu AioO2QzmRLik5JV8cWF2E1mJlx/uH2s9gDfjPxPyd+0gcseHLzGfdywBrN5GMF35 HbBNs2epo/A1tWTYK8bejTtZrwHbVIFA9ri6jiXX3uZuT4fIWnn/d6O3Wz8bSiVg Pw8fu+7OIE3I1zkh99LumBAFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN0rZ1yBU eZSEY8U0Osycv3eYxncwHwYDVR0jBBgwFoAU0gZrYZNOd88mep3MOL9d7iHwe6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzEwQzE5RDMwMzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyLzBnWnJZWk5PZDg4bWVwM01PTDlkN2lId2U2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGdacllaTk9kODhtZXAzTU9MOWQ3aUh3ZTZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzEwQzE5RDMwMzZERDExRjA5Njg2MjE2NkM0RjlBRTAyLzBnWnJZWk5PZDg4 bWVwM01PTDlkN2lId2U2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAId+5Dsodafe4BLC+z3xvf7M4/F2pKDnqzVBsufS8CDgYEbDy7XuPdoF M/DRHlqe/PXr3gZvpSdNTfGOMZUSUUYB/1HhdCPvbcm1LrqkHdnxzeNwOMx2z0Q6 pp8Bqvmro9vcsNuXmmGxDt9EGLRNmrD09j6kvs4SoM4QnC+DfKmZNrG3UIe1xHNw 90pc8BzyW1npm5Hg2cl3Vc1PSR6GM4DRlf+N8gJkWUlh/sh10cYKLvrziuj2WTXL lXYYli+OsvljH15c0YRxiMP22zBl+KibytUQGQsNh7FJc+EtPSsGx+nqSHy+Bvrs I3YQET/JQbbAdz4+KOq+wPx5X+Hx3MI= -----END CERTIFICATE-----Generated at Wed Nov 5 07:21:41 2025 by rpki-client