$ rpki-client -vvf rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft File: asd5dN_kUIBzXNuQZqfiRpYEkrc.mft (raw, json) Hash identifier: pZ/GI/apKrAeHbeVT3SHjubiW7OWzaSFTxj0gBfTR5o= Subject key identifier: E4:22:C0:65:6C:0A:FD:36:14:F8:4A:AB:C2:AC:E8:95:CC:96:EE:BD Authority key identifier: 6A:C7:79:74:DF:E4:50:80:73:5C:DB:90:66:A7:E2:46:96:04:92:B7 Certificate issuer: /CN=A91F31A7/serialNumber=6AC77974DFE45080735CDB9066A7E246960492B7 Certificate serial: 10A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft Manifest number: 109C Signing time: Tue 04 Nov 2025 17:25:54 +0000 Manifest this update: Tue 04 Nov 2025 17:25:53 +0000 Manifest next update: Tue 11 Nov 2025 17:25:53 +0000 Files and hashes: 1: asd5dN_kUIBzXNuQZqfiRpYEkrc.crl (hash: d05QfEyO8XlbqgAp8hqgLfVJSN0PzJ2hAcpbSKDKVW4=) 2: DDEC8C2A39AA11E9B0166376C4F9AE02.roa (hash: P8zT0PniKGyPQKuaO/6cEK/Iz5vptBwIg6UXjylLbdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.crl rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4260 (0x10a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F31A7, serialNumber=6AC77974DFE45080735CDB9066A7E246960492B7 Validity Not Before: Nov 4 17:25:53 2025 GMT Not After : Nov 11 17:25:53 2025 GMT Subject: CN=690a3721-1c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:43:c8:ff:ff:9a:27:0b:f4:16:ed:a8:95:c4: 03:51:16:e8:e7:6d:6e:88:38:50:56:9d:10:a5:b8: 50:37:87:83:2c:6e:a7:57:1f:dd:1d:69:11:f1:1b: e4:f9:c0:c8:c6:a1:53:6b:8f:36:d6:73:78:20:72: 02:10:86:9c:a4:50:39:f2:69:64:31:30:08:5b:47: 70:eb:36:1e:83:fa:1b:20:3d:ad:df:b6:a9:3b:39: 9e:c9:68:c4:c9:29:f9:63:ef:1d:58:38:53:f3:69: ad:f5:df:72:25:e8:c9:2a:56:89:5b:f2:ee:bc:af: 1a:e2:25:26:5d:bd:47:e1:a5:3e:cc:b7:69:0c:b1: ec:19:a2:9d:e6:5b:69:02:39:6d:dd:b3:3d:1e:3b: ee:0d:82:0b:9b:2b:dc:83:c7:2c:9c:6c:07:d0:67: 20:66:27:56:db:f1:cb:44:79:40:d0:24:62:c8:3c: 0f:c2:d2:06:fd:5c:1b:80:ca:1d:24:52:4d:8d:e2: af:69:e0:17:a0:63:3f:82:8e:2d:cd:5f:ff:54:b2: a1:41:23:b8:0e:93:c0:8e:16:55:7e:99:23:c2:e0: 49:20:6b:6d:47:49:97:ab:e4:e2:e4:40:0f:22:e2: a1:71:17:f7:25:a9:8e:b2:52:1f:54:8a:75:b8:e4: 22:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:22:C0:65:6C:0A:FD:36:14:F8:4A:AB:C2:AC:E8:95:CC:96:EE:BD X509v3 Authority Key Identifier: keyid:6A:C7:79:74:DF:E4:50:80:73:5C:DB:90:66:A7:E2:46:96:04:92:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:69:02:e4:3a:35:c2:80:c1:6b:1b:05:d4:7c:6a:2d:4c:6d: 50:db:37:bf:52:76:62:dc:e2:3d:fd:5e:bf:dd:2d:f1:a8:3d: 15:36:f9:03:f4:a0:1d:d3:9f:8a:34:1b:e1:81:17:6e:1d:6e: 0b:17:f0:24:09:be:c6:4b:8e:5a:d8:4e:98:ac:b3:14:6c:1e: 2a:d9:e6:ed:31:38:bd:5b:87:72:15:5a:a6:46:55:4a:f8:67: cd:23:0c:f8:c5:15:8a:3b:7b:f0:52:3a:ee:d3:0e:11:9e:55: af:d4:31:c1:23:eb:a9:d1:3a:f1:9f:a7:1f:cc:71:2d:51:7c: 6c:c2:3f:ff:af:ed:0e:35:1c:4c:5e:58:a9:d7:d1:13:9d:bd: 99:eb:8d:4e:ee:8b:ed:fd:43:1d:b2:f5:59:b4:6f:af:65:a8: 7f:c2:e2:c6:9c:4b:8f:03:22:f7:0e:e5:3b:0d:e1:3f:9a:b0: 60:66:23:0f:e0:95:0b:3f:c6:bc:0a:d5:07:da:b5:48:c3:bf: 57:26:5f:02:17:bd:f2:6d:16:b6:e9:65:74:4f:db:2c:de:e8: aa:e9:f1:07:44:5c:ec:de:53:c4:d9:cf:05:46:d2:59:bd:ef: c3:c4:41:32:b8:c3:af:cd:8c:02:c1:7b:d8:7f:ab:b7:b8:69: 00:fa:58:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMxQTcxMTAvBgNVBAUTKDZBQzc3OTc0REZFNDUwODA3MzVDREI5MDY2QTdFMjQ2 OTYwNDkyQjcwHhcNMjUxMTA0MTcyNTUzWhcNMjUxMTExMTcyNTUzWjAYMRYwFAYD VQQDEw02OTBhMzcyMS0xYzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30PI//+aJwv0Fu2olcQDURbo521uiDhQVp0QpbhQN4eDLG6nVx/dHWkR8Rvk +cDIxqFTa4821nN4IHICEIacpFA58mlkMTAIW0dw6zYeg/obID2t37apOzmeyWjE ySn5Y+8dWDhT82mt9d9yJejJKlaJW/LuvK8a4iUmXb1H4aU+zLdpDLHsGaKd5ltp Ajlt3bM9HjvuDYILmyvcg8csnGwH0GcgZidW2/HLRHlA0CRiyDwPwtIG/VwbgMod JFJNjeKvaeAXoGM/go4tzV//VLKhQSO4DpPAjhZVfpkjwuBJIGttR0mXq+Ti5EAP IuKhcRf3JamOslIfVIp1uOQi5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQiwGVs Cv02FPhKq8Ks6JXMlu69MB8GA1UdIwQYMBaAFGrHeXTf5FCAc1zbkGan4kaWBJK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzFBNy83QjBCNjc4NDM5 QUExMUU5OEE4RTUyNzZDNEY5QUUwMi9hc2Q1ZE5fa1VJQnpYTnVRWnFmaVJwWUVr cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FzZDVkTl9rVUlCelhOdVFacWZpUnBZRWtyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzFBNy83QjBCNjc4NDM5QUExMUU5OEE4RTUyNzZDNEY5QUUwMi9hc2Q1ZE5fa1VJ QnpYTnVRWnFmaVJwWUVrcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaaQLkOjXCgMFrGwXUfGotTG1Q2ze/UnZi3OI9/V6/3S3xqD0VNvkD 9KAd05+KNBvhgRduHW4LF/AkCb7GS45a2E6YrLMUbB4q2ebtMTi9W4dyFVqmRlVK +GfNIwz4xRWKO3vwUjru0w4RnlWv1DHBI+up0Trxn6cfzHEtUXxswj//r+0ONRxM Xlip19ETnb2Z641O7ovt/UMdsvVZtG+vZah/wuLGnEuPAyL3DuU7DeE/mrBgZiMP 4JULP8a8CtUH2rVIw79XJl8CF73ybRa26WV0T9ss3uiq6fEHRFzs3lPE2c8FRtJZ ve/DxEEyuMOvzYwCwXvYf6u3uGkA+lja -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:35 2025 by rpki-client