$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: 88K7aWG/dqVWPG1ySwyGIe61IwHnStZX4fXVBj4zUtM= Subject key identifier: C1:6B:03:1F:9E:13:22:86:09:6F:02:75:B8:B7:4E:94:58:84:51:3A Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 75 Signing time: Mon 03 Nov 2025 06:52:06 +0000 Manifest this update: Mon 03 Nov 2025 06:52:05 +0000 Manifest next update: Mon 10 Nov 2025 06:52:05 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: Hrgh8VJoYZVPELD0LAQHY3hwBpHt340ELqPDYqgbyP0=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Nov 3 06:52:05 2025 GMT Not After : Nov 10 06:52:05 2025 GMT Subject: CN=69085115-3a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:f0:ec:44:6c:a6:e5:ac:b9:af:b1:13:f6: a1:70:bb:3f:d3:54:ac:12:96:e2:1b:17:04:d3:76: 18:0b:9f:f0:da:3d:62:39:50:c1:98:23:a5:dd:8f: 63:f7:06:4c:ee:df:69:da:ad:bb:d4:96:86:1f:95: 60:18:df:ff:de:07:3d:92:eb:83:d7:6d:2a:f3:24: 07:75:9d:0a:7b:e9:6d:f8:40:ea:e1:4c:54:bd:84: 5c:e8:12:a4:49:01:8a:dc:e4:ed:6e:27:9c:48:35: c9:fe:54:f1:b6:58:e8:0d:a0:8b:94:a2:6b:3a:fc: b0:aa:20:cc:0c:9f:ad:42:92:75:9b:f6:b8:91:e7: db:1f:23:6e:1b:9f:8a:f6:33:bb:93:82:5d:90:38: 73:33:0d:06:d7:35:bd:1e:cc:91:41:c5:4e:94:57: ab:7c:c7:9d:48:43:23:3f:c4:6f:77:4d:5b:1c:ea: 41:ff:3e:2b:3d:3a:75:40:db:12:97:96:55:a4:66: fe:90:df:e0:25:44:75:4c:88:a3:aa:df:81:0c:bd: 28:74:61:98:f9:57:f9:40:7d:c5:f1:7f:44:b4:fb: 6e:0f:24:1d:19:6e:29:6e:94:c4:ac:13:d7:3d:f2: e5:d2:55:7f:b7:67:38:b9:7c:a5:79:7d:73:66:99: 0e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6B:03:1F:9E:13:22:86:09:6F:02:75:B8:B7:4E:94:58:84:51:3A X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ad:fd:6c:d9:3e:d2:b3:99:12:a9:10:c6:95:1e:a5:59:09: fb:38:9e:d3:b8:ef:ab:d1:78:27:3d:8d:c7:11:5e:df:f9:a5: b7:34:85:2b:37:46:c3:41:d9:a7:3e:ef:ef:bd:fb:db:77:7e: 67:78:cc:54:72:5f:50:09:9e:92:20:c9:3f:76:f0:2d:1f:41: ff:3b:38:85:74:68:89:ad:df:9e:c8:a5:47:e1:d9:5b:93:9f: 0a:06:41:9b:48:34:18:c3:86:cf:1b:cd:a5:16:a6:52:b5:6c: 56:3f:2e:9e:ad:99:85:72:ca:97:36:67:0d:e1:32:d9:5c:ba: 61:c8:ce:a5:9d:e4:0e:fd:a7:a4:b9:16:a2:e3:e5:6a:3e:cd: b6:3e:24:ac:9b:86:75:e6:74:50:85:6f:e0:fd:55:d6:a9:96: c1:79:a1:f3:d1:31:cb:9b:c4:48:b4:39:da:cf:82:6b:7f:59: aa:74:1c:a6:cd:0e:af:a1:61:d1:f4:b4:b0:a3:1e:06:09:23: 25:a6:6e:07:b9:56:61:af:b3:6e:a7:a0:e2:07:72:0e:f6:82: 6a:5d:91:bb:81:25:e9:fc:f2:4f:fc:a4:ae:57:f8:a0:96:ca: 49:59:2c:a9:0b:77:98:8a:47:2f:f1:c1:47:6c:c2:da:a0:ce: 6b:ab:66:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REJCMDExMC8GA1UEBRMoRkVEODRFOUZFMDE1OUE5OTM3QTIxOTNBMEI3REJBMjNC NkMyNjVCODAeFw0yNTExMDMwNjUyMDVaFw0yNTExMTAwNjUyMDVaMBgxFjAUBgNV BAMTDTY5MDg1MTE1LTNhMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiYPDsRGym5ay5r7ET9qFwuz/TVKwSluIbFwTTdhgLn/DaPWI5UMGYI6Xdj2P3 Bkzu32narbvUloYflWAY3//eBz2S64PXbSrzJAd1nQp76W34QOrhTFS9hFzoEqRJ AYrc5O1uJ5xINcn+VPG2WOgNoIuUoms6/LCqIMwMn61CknWb9riR59sfI24bn4r2 M7uTgl2QOHMzDQbXNb0ezJFBxU6UV6t8x51IQyM/xG93TVsc6kH/Pis9OnVA2xKX llWkZv6Q3+AlRHVMiKOq34EMvSh0YZj5V/lAfcXxf0S0+24PJB0ZbilulMSsE9c9 8uXSVX+3Zzi5fKV5fXNmmQ7dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwWsDH54T IoYJbwJ1uLdOlFiEUTowHwYDVR0jBBgwFoAU/thOn+AVmpk3ohk6C326I7bCZbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEQkIwL0U2NTNFNTEyMDdF RDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1pi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3RoT24tQVZtcGszb2hrNkMzMjZJN2JDWmJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE QkIwL0U2NTNFNTEyMDdFRDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBr M29oazZDMzI2STdiQ1piZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADmt/WzZPtKzmRKpEMaVHqVZCfs4ntO476vReCc9jccRXt/5pbc0hSs3 RsNB2ac+7++9+9t3fmd4zFRyX1AJnpIgyT928C0fQf87OIV0aImt357IpUfh2VuT nwoGQZtINBjDhs8bzaUWplK1bFY/Lp6tmYVyypc2Zw3hMtlcumHIzqWd5A79p6S5 FqLj5Wo+zbY+JKybhnXmdFCFb+D9VdaplsF5ofPRMcubxEi0OdrPgmt/Wap0HKbN Dq+hYdH0tLCjHgYJIyWmbge5VmGvs26noOIHcg72gmpdkbuBJen88k/8pK5X+KCW yklZLKkLd5iKRy/xwUdswtqgzmurZho= -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:57 2025 by rpki-client