$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft File: vvMhsD2CRd537IDdAzG_uo0IWdg.mft (raw, json) Hash identifier: tYyQXSj29fvg/LX1l/NyHl73tR73hF0haA8wZNz+784= Subject key identifier: A1:46:E7:25:8F:C3:2E:50:4C:B1:5A:C1:A1:EB:3B:B8:5E:F9:B0:76 Authority key identifier: BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 Certificate issuer: /CN=A91EE8AC/serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft Manifest number: 0351 Signing time: Mon 03 Nov 2025 02:08:17 +0000 Manifest this update: Mon 03 Nov 2025 02:08:17 +0000 Manifest next update: Mon 10 Nov 2025 02:08:17 +0000 Files and hashes: 1: vvMhsD2CRd537IDdAzG_uo0IWdg.crl (hash: cgVWeTHNCnC3C+K/7mHDPUNHjYm60jv1IHDJwthTiao=) 2: 5F3C0F26EAEF11EE8CCDB375C4F9AE02.roa (hash: Ds7R3+sBBZEG01JWJaEnAvs9QgVWz9hGRIlkayRqHKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:08:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=BEF321B03D8245DE77EC80DD0331BFBA8D0859D8 Validity Not Before: Nov 3 02:08:17 2025 GMT Not After : Nov 10 02:08:17 2025 GMT Subject: CN=69080e91-c38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:df:4e:7c:e5:b2:9b:b5:d9:16:49:9a:bb:f8: 61:df:34:82:09:a3:22:09:cb:a7:00:22:61:cf:66: 80:4a:81:e7:48:6a:31:01:45:19:67:00:d7:45:e2: f0:b5:de:5c:bf:2d:6e:fe:09:5a:9b:5f:07:c5:5b: 99:79:cb:68:4a:0f:41:40:b9:22:eb:44:aa:95:78: bd:ae:28:56:a8:b2:b5:84:88:55:42:bb:73:bd:1b: 28:55:63:50:ad:cd:ce:94:93:5b:24:dd:ac:34:74: 4c:6f:ff:fa:ac:cf:28:ae:ce:7b:8c:21:b2:5c:ac: b4:8a:83:61:af:3c:d8:01:30:1a:a8:79:f8:af:c2: a2:c2:30:ad:94:89:56:41:fa:a3:53:a7:00:35:54: 5b:84:a0:c9:e7:23:8d:90:15:69:9d:3c:c7:ea:5c: 54:7f:2c:fa:49:38:1e:b5:9f:d3:31:6c:04:fd:dc: be:59:19:b4:2b:69:66:7d:54:7a:3b:c2:73:42:22: ef:79:36:4f:f0:7b:a8:b4:77:d4:69:25:2c:5d:47: 98:f2:59:61:34:4b:98:c8:c5:53:cb:0b:7d:94:7f: 0b:c6:00:38:a2:34:c7:e3:ea:9c:17:7c:f3:4b:7c: c5:d2:bc:57:f1:29:55:bb:fd:c1:90:da:a8:1e:11: a5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:46:E7:25:8F:C3:2E:50:4C:B1:5A:C1:A1:EB:3B:B8:5E:F9:B0:76 X509v3 Authority Key Identifier: keyid:BE:F3:21:B0:3D:82:45:DE:77:EC:80:DD:03:31:BF:BA:8D:08:59:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vvMhsD2CRd537IDdAzG_uo0IWdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/vvMhsD2CRd537IDdAzG_uo0IWdg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:1b:af:fa:ca:15:0b:73:dd:37:b8:77:1a:fd:0d:db:ad:cf: d3:9f:71:99:7a:17:7c:5e:36:67:df:45:44:93:29:24:25:25: e1:82:3d:e6:07:c2:fa:eb:07:cc:c6:cf:97:e7:3a:62:8a:86: 1f:57:0f:ac:8e:88:cb:07:4a:f0:3b:61:09:ce:08:f8:b2:37: 99:78:a8:31:34:18:f0:58:2a:22:f6:96:52:9f:00:f6:be:7f: 65:43:1a:24:26:35:95:57:99:d0:88:a8:ff:cd:a4:10:4b:c5: 67:61:d7:93:f0:5c:d4:ee:7c:99:45:1d:ec:b9:a0:40:62:9a: a5:2e:78:1e:55:5b:fe:af:08:e3:67:98:9a:b2:c5:2a:e5:37: 09:38:a7:2e:7c:a3:a2:78:00:d7:01:00:fb:fb:82:6c:2a:3f: 65:ad:28:7c:1c:43:28:19:2b:99:51:ef:d8:46:78:19:28:bb: 65:97:b1:b9:b8:79:ad:bb:46:43:d8:cd:97:6e:fb:f5:27:0e: ad:51:57:29:91:75:7b:31:64:56:93:5d:4e:ae:31:86:7e:ad: 5c:40:b1:fc:81:7d:05:3f:53:45:2f:e0:db:c8:62:b0:78:a5: 53:fe:93:84:7b:2a:a3:30:71:60:38:6b:e2:b3:00:00:e4:4b: 73:29:49:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKEJFRjMyMUIwM0Q4MjQ1REU3N0VDODBERDAzMzFCRkJB OEQwODU5RDgwHhcNMjUxMTAzMDIwODE3WhcNMjUxMTEwMDIwODE3WjAYMRYwFAYD VQQDEw02OTA4MGU5MS1jMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA899OfOWym7XZFkmau/hh3zSCCaMiCcunACJhz2aASoHnSGoxAUUZZwDXReLw td5cvy1u/glam18HxVuZectoSg9BQLki60SqlXi9rihWqLK1hIhVQrtzvRsoVWNQ rc3OlJNbJN2sNHRMb//6rM8ors57jCGyXKy0ioNhrzzYATAaqHn4r8KiwjCtlIlW QfqjU6cANVRbhKDJ5yONkBVpnTzH6lxUfyz6STgetZ/TMWwE/dy+WRm0K2lmfVR6 O8JzQiLveTZP8HuotHfUaSUsXUeY8llhNEuYyMVTywt9lH8LxgA4ojTH4+qcF3zz S3zF0rxX8SlVu/3BkNqoHhGljwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFG5yWP wy5QTLFawaHrO7he+bB2MB8GA1UdIwQYMBaAFL7zIbA9gkXed+yA3QMxv7qNCFnY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1JkNTM3SURkQXpHX3VvMElX ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z2TWhzRDJDUmQ1MzdJRGRBekdfdW8wSVdkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi92dk1oc0QyQ1Jk NTM3SURkQXpHX3VvMElXZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUG6/6yhULc903uHca/Q3brc/Tn3GZehd8XjZn30VEkykkJSXhgj3m B8L66wfMxs+X5zpiioYfVw+sjojLB0rwO2EJzgj4sjeZeKgxNBjwWCoi9pZSnwD2 vn9lQxokJjWVV5nQiKj/zaQQS8VnYdeT8FzU7nyZRR3suaBAYpqlLngeVVv+rwjj Z5iassUq5TcJOKcufKOieADXAQD7+4JsKj9lrSh8HEMoGSuZUe/YRngZKLtll7G5 uHmtu0ZD2M2Xbvv1Jw6tUVcpkXV7MWRWk11OrjGGfq1cQLH8gX0FP1NFL+DbyGKw eKVT/pOEeyqjMHFgOGviswAA5EtzKUlP -----END CERTIFICATE-----Generated at Tue Nov 4 23:36:17 2025 by rpki-client