$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: D0KD7OUKG9gOJ0IUXnsBtukCCI8IlOVa6+1+7jwmloo= Subject key identifier: 16:0F:65:20:4E:7B:B5:62:22:E0:25:03:00:1D:19:1E:7A:A6:BE:50 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 1006 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 0FD0 Signing time: Sun 02 Nov 2025 17:30:41 +0000 Manifest this update: Sun 02 Nov 2025 17:30:40 +0000 Manifest next update: Sun 09 Nov 2025 17:30:40 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: 6g4IeDIgWm/gxr792oRCiLLWt62vZN+pJIVtiCckJeo=) 2: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: QtpDimKOHqXsxnqa4q87zCBuPpMrfxyNN2d7cp4WlrA=) 3: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 6uU1bRzcclFeMC/RnwQZxh3s9UKuJJHVwL7cdGjMFOc=) 4: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: XWm8GaGIPPLP9AKtaT6KRszth65jZeSEF8vfSa7oAA0=) 5: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: PNhMIJG2WqhTSsHQs6Q3B5W+HPqAu/8Af4Ot4nkDDLQ=) 6: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: t18G/jUeuq8lptvTyxkqs2wnq4jb4g41EOSptQznrUs=) 7: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: Jk6V50ct0NhfCUNeq2rSB6SPY6PZ86y8Zd5FDESJ7kI=) 8: B490CD0621C911EB991D562EC4F9AE02.roa (hash: WNk4We2Ht/Om3rf3IbH7SVRsK901hQ7kL7sR1ONDJ8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4102 (0x1006) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Nov 2 17:30:40 2025 GMT Not After : Nov 9 17:30:40 2025 GMT Subject: CN=69079541-ba96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a4:a7:ca:6d:2e:b6:bf:a5:d6:ff:d8:6a:4c: 34:1b:83:35:5e:7f:f2:85:89:ea:75:a7:59:9f:31: 54:0b:35:ec:aa:e4:bd:1e:28:ef:b8:76:9c:06:bd: 71:01:82:58:5d:fd:69:10:2c:03:85:f5:82:f9:14: b6:f2:c7:9e:69:bc:b4:67:5f:e1:3b:32:02:60:3d: c8:20:f1:19:f5:b8:82:62:c6:7e:95:0d:82:1d:0d: c6:55:fe:24:a7:b5:fa:fa:17:d3:c5:a8:ac:7d:60: 39:28:45:05:3e:da:68:bf:34:5a:4d:0f:44:83:88: a4:16:1c:f3:dd:25:08:f8:37:95:43:af:bd:d8:5e: 60:c4:21:cd:41:4c:b7:0c:e8:4a:bd:db:fa:32:f9: 3a:b4:3d:5d:7c:cc:55:8c:20:9e:8e:ca:48:d7:96: 8e:b4:1d:d9:0e:5e:19:1f:55:72:3a:3d:e6:15:44: fc:05:48:0e:af:d3:47:31:05:1d:e3:9c:9d:8f:55: d8:62:2f:22:7a:92:7e:02:a6:0c:9a:e3:0d:13:47: a8:02:3e:d6:17:61:c1:a9:33:33:56:8e:4f:25:69: c2:fd:85:41:8b:ea:8f:1d:8e:61:d3:49:17:85:58: 6a:a5:a4:92:44:e8:ec:a8:94:c9:2a:41:32:3f:1e: 70:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0F:65:20:4E:7B:B5:62:22:E0:25:03:00:1D:19:1E:7A:A6:BE:50 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:0d:d2:6a:51:f2:4f:25:2a:70:96:2f:67:18:21:32:e6:11: b3:6b:25:1f:be:5e:48:a0:01:e0:97:5c:b0:79:2e:7f:0a:27: 24:7a:86:43:e7:ee:39:ff:1e:f8:53:68:2d:cd:2f:5c:b2:90: e7:f1:53:0f:07:8e:c5:af:a2:8e:f4:2a:12:b2:3e:20:a9:d0: be:78:8a:6a:6b:33:c3:84:03:72:8a:61:28:6c:f2:55:f7:5a: 7e:7a:7f:2c:80:d0:3a:4a:d4:63:8e:54:cb:59:e8:1f:1f:01: 36:8b:5f:82:63:7c:3f:a1:3b:10:cb:c8:d5:30:6c:df:fc:75: 04:c8:91:13:f6:c8:2e:4b:1e:9f:b1:a9:1a:86:d4:fd:10:33: 86:f2:d5:a7:90:36:8f:33:4f:c8:f1:6c:24:45:ad:ed:7e:a6: 26:7d:6e:44:7c:43:d5:bf:62:f8:46:79:48:e1:05:9e:c1:d0: d3:4f:2e:d9:d8:cd:b7:6c:5c:26:e9:40:92:de:b3:2a:84:4f: fe:d2:d8:b5:39:94:b6:f8:c5:46:48:b8:bc:98:3c:1f:d0:6f: f4:f2:c9:d0:c0:6f:40:6d:f7:d0:06:d1:5c:ef:ff:cd:5d:5f: ed:e8:6f:19:74:84:38:b6:31:b4:04:9c:5d:bb:57:2e:67:d5: 97:44:e6:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUxMTAyMTczMDQwWhcNMjUxMTA5MTczMDQwWjAYMRYwFAYD VQQDEw02OTA3OTU0MS1iYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaSnym0utr+l1v/Yakw0G4M1Xn/yhYnqdadZnzFUCzXsquS9HijvuHacBr1x AYJYXf1pECwDhfWC+RS28seeaby0Z1/hOzICYD3IIPEZ9biCYsZ+lQ2CHQ3GVf4k p7X6+hfTxaisfWA5KEUFPtpovzRaTQ9Eg4ikFhzz3SUI+DeVQ6+92F5gxCHNQUy3 DOhKvdv6Mvk6tD1dfMxVjCCejspI15aOtB3ZDl4ZH1VyOj3mFUT8BUgOr9NHMQUd 45ydj1XYYi8iepJ+AqYMmuMNE0eoAj7WF2HBqTMzVo5PJWnC/YVBi+qPHY5h00kX hVhqpaSSROjsqJTJKkEyPx5weQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYPZSBO e7ViIuAlAwAdGR56pr5QMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMDdJqUfJPJSpwli9nGCEy5hGzayUfvl5IoAHgl1yweS5/CickeoZD 5+45/x74U2gtzS9cspDn8VMPB47Fr6KO9CoSsj4gqdC+eIpqazPDhANyimEobPJV 91p+en8sgNA6StRjjlTLWegfHwE2i1+CY3w/oTsQy8jVMGzf/HUEyJET9sguSx6f sakahtT9EDOG8tWnkDaPM0/I8WwkRa3tfqYmfW5EfEPVv2L4RnlI4QWewdDTTy7Z 2M23bFwm6UCS3rMqhE/+0ti1OZS2+MVGSLi8mDwf0G/08snQwG9AbffQBtFc7//N XV/t6G8ZdIQ4tjG0BJxdu1cuZ9WXROaR -----END CERTIFICATE-----Generated at Tue Nov 4 08:21:13 2025 by rpki-client