$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft File: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json) Hash identifier: EXXJJRKfyFpk+6K+9Cr4CM0Tj5++LoAc4vIvd3/D7oQ= Subject key identifier: 62:9D:04:3A:7C:AD:CF:A4:03:D4:37:72:9B:3C:A7:05:29:91:F6:00 Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0DAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft Manifest number: 0DA8 Signing time: Tue 04 Nov 2025 17:59:28 +0000 Manifest this update: Tue 04 Nov 2025 17:59:28 +0000 Manifest next update: Tue 11 Nov 2025 17:59:28 +0000 Files and hashes: 1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: d6kR5deUZp/143+FbSX6PnuBJUGGMua28CAo8+7qzSk=) 2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: EM624Ee5dZvup/p2NN7lZAjAZv2Q+/2EJL827rz91tU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3503 (0xdaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571, serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: Nov 4 17:59:28 2025 GMT Not After : Nov 11 17:59:28 2025 GMT Subject: CN=690a3f00-a145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2d:ab:2c:63:76:73:f1:50:01:aa:65:63:b6: 88:fc:86:12:f4:04:c5:bc:2b:a9:ef:50:d7:ba:63: 81:97:89:89:35:ea:41:6e:fd:89:a5:4e:af:fe:d8: 0a:28:a4:dc:89:59:d1:ba:10:6a:8b:47:af:70:98: e5:1e:61:d3:01:58:7f:16:c7:49:0f:00:87:20:ca: d3:2c:34:78:9c:96:bf:33:47:28:cf:9d:be:e9:8f: af:58:8d:7b:75:dc:9a:27:64:6f:db:f9:82:86:55: fc:c0:38:85:b7:8d:b3:31:2e:63:00:f8:7b:bf:01: 33:5d:6c:09:8b:b3:58:22:45:29:c2:2a:e1:b2:74: 9c:f6:41:09:ac:2a:31:cd:72:7f:09:25:e1:9b:eb: 5f:47:55:f6:9b:d6:53:08:27:93:4b:99:e5:b6:12: e1:d5:da:83:00:97:1d:ed:b0:eb:03:e8:b3:7e:bf: f1:49:a3:1b:03:e6:e7:20:b0:6a:db:ca:2c:f9:a0: 83:a8:ad:7d:73:a7:fb:f5:d7:12:c4:cb:09:8c:ac: 59:d8:24:82:c0:0e:18:8f:4c:e5:04:05:16:37:68: 12:af:49:d8:3b:d9:5d:cc:e3:7f:54:e1:e6:d5:07: 29:25:38:e7:66:7f:a4:5d:09:5b:47:bc:0e:f4:d8: 42:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9D:04:3A:7C:AD:CF:A4:03:D4:37:72:9B:3C:A7:05:29:91:F6:00 X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d6:a8:94:6f:df:b1:33:f7:ef:a8:a2:6b:45:aa:92:1e:1d: 62:6e:2d:65:75:b6:93:a1:0d:b9:2b:cd:cc:e3:72:a8:44:b0: 12:b4:12:0b:aa:36:7d:95:d4:14:f5:57:48:a1:3c:7a:cd:38: 47:a5:e9:44:7e:32:f3:f7:a0:23:40:68:a6:59:3b:a8:f2:dc: 47:15:0d:e0:a9:47:93:ee:bd:8a:8a:b1:a9:8a:99:17:cc:4f: 01:73:b5:09:c9:1b:70:e4:65:80:c7:5d:5b:bb:ab:e3:72:fe: 02:df:c0:81:4a:11:1b:01:51:43:8a:c7:78:62:d3:f0:c4:ee: 5b:95:60:7d:73:5e:0a:7c:59:36:5b:4e:0c:11:c6:ba:9a:0a: 2c:c1:88:c2:80:a4:57:2b:36:ad:2d:bb:b5:b8:8d:d5:b6:ec: 16:e9:9c:cc:ae:e2:d3:96:ad:a9:c4:52:81:b0:a2:3d:2d:bc: a2:5a:12:e8:40:08:fd:4e:ba:8a:e0:78:9b:14:e7:19:56:15: b6:3e:84:da:81:11:8e:5e:48:1b:d8:af:48:32:e4:e5:c9:a3: a5:a2:11:25:17:7e:8f:cb:51:81:04:d9:d3:97:ff:df:35:73: a7:5b:de:e1:e1:f3:38:29:ad:cc:6c:67:73:37:1a:23:f6:49: 7c:d5:d6:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjUxMTA0MTc1OTI4WhcNMjUxMTExMTc1OTI4WjAYMRYwFAYD VQQDEw02OTBhM2YwMC1hMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwy2rLGN2c/FQAaplY7aI/IYS9ATFvCup71DXumOBl4mJNepBbv2JpU6v/tgK KKTciVnRuhBqi0evcJjlHmHTAVh/FsdJDwCHIMrTLDR4nJa/M0coz52+6Y+vWI17 ddyaJ2Rv2/mChlX8wDiFt42zMS5jAPh7vwEzXWwJi7NYIkUpwirhsnSc9kEJrCox zXJ/CSXhm+tfR1X2m9ZTCCeTS5nlthLh1dqDAJcd7bDrA+izfr/xSaMbA+bnILBq 28os+aCDqK19c6f79dcSxMsJjKxZ2CSCwA4Yj0zlBAUWN2gSr0nYO9ldzON/VOHm 1QcpJTjnZn+kXQlbR7wO9NhCxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKdBDp8 rc+kA9Q3cps8pwUpkfYAMB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU3MS9FQ0QyREY5NkNFNkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBj TFJtVnNuLTFQX1lQOENTZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl1qiUb9+xM/fvqKJrRaqSHh1ibi1ldbaToQ25K83M43KoRLAStBIL qjZ9ldQU9VdIoTx6zThHpelEfjLz96AjQGimWTuo8txHFQ3gqUeT7r2KirGpipkX zE8Bc7UJyRtw5GWAx11bu6vjcv4C38CBShEbAVFDisd4YtPwxO5blWB9c14KfFk2 W04MEca6mgoswYjCgKRXKzatLbu1uI3VtuwW6ZzMruLTlq2pxFKBsKI9LbyiWhLo QAj9TrqK4HibFOcZVhW2PoTagRGOXkgb2K9IMuTlyaOlohElF36Py1GBBNnTl//f NXOnW97h4fM4Ka3MbGdzNxoj9kl81dZ3 -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:39 2025 by rpki-client