$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: WFq6EFJheBITuOQbG1IXh+6noif9g+2M8Nsp2e7GrIc= Subject key identifier: 75:D0:85:B3:A9:A2:CC:4D:70:AE:B5:31:CB:AC:74:0C:AB:C3:3B:5C Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 01DC Signing time: Wed 05 Nov 2025 02:50:39 +0000 Manifest this update: Wed 05 Nov 2025 02:50:39 +0000 Manifest next update: Wed 12 Nov 2025 02:50:39 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: fa2Eo8XgwCs4OLTDvC4E55WkHtDbYbUZzyFB9WuBkLE=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: SAjkukJRb4ZF5aM/fUJAbMY1lnAEeXzzgnRTsvAlM7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Nov 5 02:50:39 2025 GMT Not After : Nov 12 02:50:39 2025 GMT Subject: CN=690abb7f-51fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:73:74:74:f2:98:65:ab:14:ee:96:47:6b:02: 55:d8:fc:ad:94:0c:22:a3:e6:cd:56:2f:92:cf:4e: ea:4f:7e:6f:70:ec:b2:b2:37:13:38:ff:a5:3e:0d: f7:0a:a6:3c:60:35:aa:f5:c2:ca:ff:d0:0b:f8:fa: 2e:f4:ed:d9:44:82:5a:df:ed:c5:36:80:3f:40:21: 6a:55:22:17:12:ff:c8:31:f5:32:b5:4b:8f:ef:db: df:02:37:09:4a:9d:0c:09:ee:ee:8d:ce:8b:db:87: b0:30:9d:34:d7:de:da:bf:53:ac:45:96:ab:e7:7a: 49:ec:9d:a5:9a:2f:92:46:a6:e8:28:3a:b9:d3:f9: 25:2b:8e:85:ac:b8:88:c3:63:02:7a:cd:b0:bf:aa: a0:7d:57:e9:3d:4f:a0:ba:24:91:cd:9f:23:79:cc: e3:6f:84:8f:d3:60:fb:14:bb:8c:2f:b0:6c:71:d6: b0:af:ec:8b:1f:ee:ad:a3:5e:3d:2c:c9:dc:58:65: 78:b2:48:a5:00:da:10:a5:df:de:09:e1:d3:f0:3d: cf:37:ab:1d:03:9d:48:90:88:f7:ad:6f:97:41:71: 13:1d:20:35:4c:da:a4:9a:25:c2:56:19:c1:0a:bc: 59:2c:4e:89:a8:e1:bf:f4:23:c3:d5:ca:8d:85:99: 13:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D0:85:B3:A9:A2:CC:4D:70:AE:B5:31:CB:AC:74:0C:AB:C3:3B:5C X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:33:34:bc:35:62:31:83:2a:e2:96:76:f6:c2:26:d3:f0:05: be:c8:ec:60:b8:a4:1c:b6:7b:dd:80:a4:ad:85:c2:bf:c4:d8: 1c:e6:8e:9e:4d:04:c0:1b:e9:b9:e7:a4:ea:8c:18:37:62:46: 91:09:72:db:ce:17:51:ab:3b:c7:76:bf:cf:c1:69:56:55:2d: af:b2:24:c5:b7:9e:7b:e9:29:23:d7:b4:6c:33:12:94:1a:65: 0d:ee:4a:e9:90:f4:65:bf:0f:1d:9e:b1:c8:4e:b5:de:92:e3: 0b:24:92:58:05:55:a8:6d:2e:5c:84:29:b6:b2:94:98:fd:a7: 11:46:cf:1a:ed:f7:57:7a:c0:10:8b:e9:73:99:57:6a:d6:86: 7b:46:b7:87:20:82:06:26:4a:f9:18:35:e8:73:5c:3f:ee:ad: 2a:7d:75:db:06:a7:58:dc:06:24:49:9d:b8:aa:e7:a5:9f:13: ae:c1:ec:a5:0a:99:49:41:1b:fa:a1:d7:42:6d:a5:ae:6b:ca: 0e:31:89:31:74:08:22:dd:da:c7:d8:f2:a1:a1:b6:db:37:f1: 94:01:70:10:b8:af:2a:f5:90:ec:6a:a5:5d:a0:04:cc:c2:12: 8a:2e:fa:7d:89:f6:2b:10:3a:3d:f1:7d:5d:9e:33:2c:5c:25: 3a:08:0f:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjUxMTA1MDI1MDM5WhcNMjUxMTEyMDI1MDM5WjAYMRYwFAYD VQQDEw02OTBhYmI3Zi01MWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HN0dPKYZasU7pZHawJV2PytlAwio+bNVi+Sz07qT35vcOyysjcTOP+lPg33 CqY8YDWq9cLK/9AL+Pou9O3ZRIJa3+3FNoA/QCFqVSIXEv/IMfUytUuP79vfAjcJ Sp0MCe7ujc6L24ewMJ00197av1OsRZar53pJ7J2lmi+SRqboKDq50/klK46FrLiI w2MCes2wv6qgfVfpPU+guiSRzZ8jeczjb4SP02D7FLuML7Bscdawr+yLH+6to149 LMncWGV4skilANoQpd/eCeHT8D3PN6sdA51IkIj3rW+XQXETHSA1TNqkmiXCVhnB CrxZLE6JqOG/9CPD1cqNhZkTIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXQhbOp osxNcK61McusdAyrwztcMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABMzS8NWIxgyrilnb2wibT8AW+yOxguKQctnvdgKSthcK/xNgc5o6e TQTAG+m556TqjBg3YkaRCXLbzhdRqzvHdr/PwWlWVS2vsiTFt5576Skj17RsMxKU GmUN7krpkPRlvw8dnrHITrXekuMLJJJYBVWobS5chCm2spSY/acRRs8a7fdXesAQ i+lzmVdq1oZ7RreHIIIGJkr5GDXoc1w/7q0qfXXbBqdY3AYkSZ24quelnxOuweyl CplJQRv6oddCbaWua8oOMYkxdAgi3drH2PKhobbbN/GUAXAQuK8q9ZDsaqVdoATM whKKLvp9ifYrEDo98X1dnjMsXCU6CA+t -----END CERTIFICATE-----Generated at Thu Nov 6 00:22:32 2025 by rpki-client