$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft File: CK7T4dy27XdCMDzv9H3gLZKz7eU.mft (raw, json) Hash identifier: gm8zikRTMOdRjHxEMrbTngrwS1wc8sIIUHI48ry6Vn0= Subject key identifier: C0:19:AE:2A:56:EC:10:A3:03:DB:17:D0:5A:A6:65:11:7E:0B:13:BD Authority key identifier: 08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5 Certificate issuer: /CN=A91ED073/serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5 Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft Manifest number: 022C Signing time: Wed 05 Nov 2025 02:04:00 +0000 Manifest this update: Wed 05 Nov 2025 02:03:59 +0000 Manifest next update: Wed 12 Nov 2025 02:03:59 +0000 Files and hashes: 1: CK7T4dy27XdCMDzv9H3gLZKz7eU.crl (hash: HG+pAuJvwsLIA9raSqxCO65kEBxkc5IQ4GAlPXra4X8=) 2: 6DDD4756EEC411EEA4BB703CC4F9AE02.roa (hash: 8+VuZ7fIxTmaLVYpnHMJUk/ecoQHiqToC0QiVIOWMis=) 3: 6EB41DC6EEC411EEA4BB703CC4F9AE02.roa (hash: UKZjo7nlv5xaEfM2Q5iGETEP+0bko/kMccsOgiKgCVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED073, serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5 Validity Not Before: Nov 5 02:03:59 2025 GMT Not After : Nov 12 02:03:59 2025 GMT Subject: CN=690ab090-2ba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:01:24:05:4f:70:c6:14:30:b1:c7:88:45:dc: 29:33:8b:8e:86:aa:d1:7a:53:72:31:57:cd:d6:78: b5:43:50:ce:39:3f:e3:56:16:07:04:2d:52:6a:13: 95:c0:b0:8a:5c:0c:f5:1f:f3:62:51:4a:8c:26:9a: 68:9e:b7:d2:d3:c3:18:c6:79:4a:9b:f4:95:2c:c2: 6d:41:34:a2:d6:65:06:41:94:40:a1:21:14:77:14: b3:37:da:aa:fc:a0:eb:03:7c:7f:4d:be:38:bf:0d: ce:06:bc:da:75:36:35:14:5f:d0:92:f5:45:b4:96: af:75:a0:93:21:4e:cd:04:9f:83:c8:e7:8f:a6:1b: 75:5e:34:f8:31:9b:1a:d8:4c:24:f0:c9:41:da:6b: aa:36:58:4c:82:53:43:1d:54:d1:69:9b:cb:34:46: d9:62:27:0a:ec:43:c9:19:8b:d8:9a:ad:91:40:70: dc:7d:20:7d:a4:5c:de:67:22:51:0c:c3:bc:7c:7f: a1:6c:74:50:09:ea:14:a9:db:75:1d:ca:80:da:3e: 32:55:79:09:06:cf:1a:6d:ec:d8:dd:fd:6d:23:bc: 56:6f:2b:cc:da:cd:75:93:12:7f:1b:03:1f:f5:3a: 7e:99:5c:1f:ee:18:17:e8:54:e8:3e:49:4c:1b:a3: 50:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:19:AE:2A:56:EC:10:A3:03:DB:17:D0:5A:A6:65:11:7E:0B:13:BD X509v3 Authority Key Identifier: keyid:08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:4f:da:9c:a9:9f:c5:43:4a:d7:d3:59:5d:3a:c1:a7:bb:ad: 5b:3a:e2:64:54:7e:2a:e7:cd:10:1b:ad:1d:02:bb:a8:75:d2: 9f:c3:61:99:44:83:af:8a:b7:44:d4:fd:65:42:d4:47:85:fb: ad:04:e6:27:46:fc:3d:b2:de:7b:85:cd:32:fd:19:b3:89:ed: 58:64:32:29:ed:13:fa:fd:8f:c5:52:7d:a5:ae:71:32:61:31: 2c:37:18:c2:df:a0:9a:6a:ba:2c:ba:42:b5:f8:a4:09:1a:4d: a2:5e:dc:80:04:0d:55:0a:0f:04:03:76:20:25:57:d2:cd:78: ba:4b:00:f0:d6:20:8c:70:69:38:75:31:c8:83:ec:b7:41:03: 24:b3:91:d3:3f:c2:14:ab:95:a9:ac:54:b6:e9:6c:a9:dd:d4: a8:10:e0:83:2d:22:55:66:a3:a2:a1:23:4c:6f:a2:04:db:be: 99:fc:55:44:df:77:d9:ef:49:fc:c0:2c:60:29:d6:05:a9:23: ae:78:3c:2c:e2:04:2f:6a:8d:7c:4d:fc:6f:8e:f8:20:3c:f1: 27:46:7b:0b:9e:32:51:44:16:8a:02:d4:21:ac:9c:82:a0:76: 83:d3:a8:84:cd:7e:ec:d5:a4:a1:eb:f9:e9:dc:7a:46:85:e1: f1:8b:ba:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQwNzMxMTAvBgNVBAUTKDA4QUVEM0UxRENCNkVENzc0MjMwM0NFRkY0N0RFMDJE OTJCM0VERTUwHhcNMjUxMTA1MDIwMzU5WhcNMjUxMTEyMDIwMzU5WjAYMRYwFAYD VQQDEw02OTBhYjA5MC0yYmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswEkBU9wxhQwsceIRdwpM4uOhqrRelNyMVfN1ni1Q1DOOT/jVhYHBC1SahOV wLCKXAz1H/NiUUqMJpponrfS08MYxnlKm/SVLMJtQTSi1mUGQZRAoSEUdxSzN9qq /KDrA3x/Tb44vw3OBrzadTY1FF/QkvVFtJavdaCTIU7NBJ+DyOePpht1XjT4MZsa 2Ewk8MlB2muqNlhMglNDHVTRaZvLNEbZYicK7EPJGYvYmq2RQHDcfSB9pFzeZyJR DMO8fH+hbHRQCeoUqdt1HcqA2j4yVXkJBs8abezY3f1tI7xWbyvM2s11kxJ/GwMf 9Tp+mVwf7hgX6FToPklMG6NQ8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAZripW 7BCjA9sX0FqmZRF+CxO9MB8GA1UdIwQYMBaAFAiu0+Hctu13QjA87/R94C2Ss+3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDA3My9GNEI0Q0E1MjY0 QTQxMUVEQTA4NzZCMTZDNEY5QUUwMi9DSzdUNGR5MjdYZENNRHp2OUgzZ0xaS3o3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NLN1Q0ZHkyN1hkQ01EenY5SDNnTFpLejdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDA3My9GNEI0Q0E1MjY0QTQxMUVEQTA4NzZCMTZDNEY5QUUwMi9DSzdUNGR5MjdY ZENNRHp2OUgzZ0xaS3o3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCST9qcqZ/FQ0rX01ldOsGnu61bOuJkVH4q580QG60dAruoddKfw2GZ RIOvirdE1P1lQtRHhfutBOYnRvw9st57hc0y/Rmzie1YZDIp7RP6/Y/FUn2lrnEy YTEsNxjC36CaarosukK1+KQJGk2iXtyABA1VCg8EA3YgJVfSzXi6SwDw1iCMcGk4 dTHIg+y3QQMks5HTP8IUq5WprFS26Wyp3dSoEOCDLSJVZqOioSNMb6IE276Z/FVE 33fZ70n8wCxgKdYFqSOueDws4gQvao18TfxvjvggPPEnRnsLnjJRRBaKAtQhrJyC oHaD06iEzX7s1aSh6/np3HpGheHxi7qV -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:06 2025 by rpki-client