$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: sRYnvd9MFsnjG/c0wRC3/YRG5O3FSGuuGAIuBHcKWk4= Subject key identifier: 6B:63:FE:DA:41:9E:F7:DA:E3:38:BE:D8:E8:AE:FB:B0:19:40:C5:96 Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0C77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0C70 Signing time: Tue 04 Nov 2025 18:36:27 +0000 Manifest this update: Tue 04 Nov 2025 18:36:27 +0000 Manifest next update: Tue 11 Nov 2025 18:36:27 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: Kf9TNvJLEVsD6Q5yyleGJVjMi7VlHOLANVC/04TFe8I=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: JrgXyhe/ZBiLMiqpguwMxQYnYLTsK7NzW7LJdocKtjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Nov 4 18:36:27 2025 GMT Not After : Nov 11 18:36:27 2025 GMT Subject: CN=690a47ab-2155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:2a:9b:45:98:6a:0b:5e:d8:10:2e:43:4b: eb:85:56:06:be:79:44:c1:90:99:c3:e0:47:0d:e2: aa:f9:38:9d:c3:ef:80:38:09:32:c0:92:11:4e:76: 99:90:ee:be:e0:94:08:e1:1d:00:e3:1c:a8:16:cb: 83:43:3a:cc:b6:33:7e:f4:c1:64:65:28:7f:5a:74: eb:93:19:ff:49:a5:ff:04:5e:a9:93:66:1f:83:80: 20:a9:ad:f3:52:d6:5a:e4:b9:d4:b7:57:0a:cb:ee: 58:d3:3f:17:af:13:80:0d:8b:e6:84:51:13:a6:10: 69:46:9c:2c:5d:57:38:58:29:e7:0e:ce:d4:5d:41: 4c:76:9e:e2:e8:6a:f1:12:41:66:e3:68:9a:91:2e: f3:e5:64:8a:a4:aa:6d:8b:dc:61:75:38:55:9e:e0: 15:62:e5:5d:c4:f1:0f:ae:b9:82:31:52:85:9d:ee: 55:48:e9:49:fd:36:1d:06:39:a8:be:e6:4c:ff:bb: 97:0e:69:2d:21:b8:38:35:4f:f2:0a:71:54:72:ef: f0:1b:1e:f8:4b:55:2c:26:82:f8:5a:e8:bb:95:77: 1d:e7:b6:89:c2:5a:15:d0:cc:ee:49:f0:de:6b:94: 90:63:7a:25:91:9f:af:ee:32:0e:f1:07:fd:c0:4b: 92:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:63:FE:DA:41:9E:F7:DA:E3:38:BE:D8:E8:AE:FB:B0:19:40:C5:96 X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:e8:21:73:fa:f9:df:71:3b:ba:c6:0c:9b:ff:2b:f8:67:cf: ab:81:ab:63:8f:d9:b8:26:d0:85:f0:83:7a:85:b0:ba:43:54: a5:86:e9:bd:75:c0:62:da:7d:74:ea:9e:cf:a6:76:85:8a:6b: db:f4:88:2d:cf:a1:02:6f:a0:7c:02:83:22:1a:a7:49:56:36: 6a:f4:67:96:0c:06:9f:87:06:c1:df:fb:1f:f9:c7:2f:25:ab: 8f:2d:ca:17:13:7c:df:25:75:6b:9f:12:cf:02:b9:61:82:c2: 01:c6:fa:82:31:0e:8a:b0:8f:01:1c:32:01:3b:61:31:68:9a: c8:29:ed:76:d2:2a:36:d5:8b:b0:6c:ca:46:03:22:f8:c1:0c: 6a:5a:70:7e:a0:b6:af:f4:63:05:a6:37:7d:98:88:bc:06:df: 39:c4:94:16:8c:3f:1c:a5:69:d9:32:24:9d:94:d6:7a:02:51: a7:e7:55:16:4f:8c:96:64:f1:23:af:75:ca:84:93:e6:14:dc: a1:ef:57:44:5e:d5:3b:ad:69:c1:b6:84:53:a4:b5:78:16:10: d7:9d:42:92:5c:3f:cc:77:eb:30:0a:e0:f4:4c:b5:29:5f:da: 68:a9:80:f2:93:d0:28:fa:6f:9a:c9:fc:ad:32:c2:a6:10:a2: cc:bc:78:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUxMTA0MTgzNjI3WhcNMjUxMTExMTgzNjI3WjAYMRYwFAYD VQQDEw02OTBhNDdhYi0yMTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Icqm0WYagte2BAuQ0vrhVYGvnlEwZCZw+BHDeKq+Tidw++AOAkywJIRTnaZ kO6+4JQI4R0A4xyoFsuDQzrMtjN+9MFkZSh/WnTrkxn/SaX/BF6pk2Yfg4Agqa3z UtZa5LnUt1cKy+5Y0z8XrxOADYvmhFETphBpRpwsXVc4WCnnDs7UXUFMdp7i6Grx EkFm42iakS7z5WSKpKpti9xhdThVnuAVYuVdxPEPrrmCMVKFne5VSOlJ/TYdBjmo vuZM/7uXDmktIbg4NU/yCnFUcu/wGx74S1UsJoL4Wui7lXcd57aJwloV0MzuSfDe a5SQY3olkZ+v7jIO8Qf9wEuSQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtj/tpB nvfa4zi+2Oiu+7AZQMWWMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl6CFz+vnfcTu6xgyb/yv4Z8+rgatjj9m4JtCF8IN6hbC6Q1Slhum9 dcBi2n106p7PpnaFimvb9Igtz6ECb6B8AoMiGqdJVjZq9GeWDAafhwbB3/sf+ccv JauPLcoXE3zfJXVrnxLPArlhgsIBxvqCMQ6KsI8BHDIBO2ExaJrIKe120io21Yuw bMpGAyL4wQxqWnB+oLav9GMFpjd9mIi8Bt85xJQWjD8cpWnZMiSdlNZ6AlGn51UW T4yWZPEjr3XKhJPmFNyh71dEXtU7rWnBtoRTpLV4FhDXnUKSXD/Md+swCuD0TLUp X9poqYDyk9Ao+m+ayfytMsKmEKLMvHj5 -----END CERTIFICATE-----Generated at Wed Nov 5 22:00:24 2025 by rpki-client