$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: 3RqGOXVfAG5+0iSSuSHZqFCSQOqwTfdpSdXu8XGdWgU= Subject key identifier: F6:12:CE:56:A4:E5:5B:F7:D4:65:28:A4:B7:C1:26:89:E2:84:D5:F6 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: 010C Signing time: Mon 03 Nov 2025 04:55:54 +0000 Manifest this update: Mon 03 Nov 2025 04:55:54 +0000 Manifest next update: Mon 10 Nov 2025 04:55:54 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: ZVVezkPJ55qBkcdp51kSGeahzHjv28tMMMaioYqyTJU=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Nov 3 04:55:54 2025 GMT Not After : Nov 10 04:55:54 2025 GMT Subject: CN=690835da-df4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d0:cf:c3:11:c9:0e:6e:1d:cd:93:85:9d:29: 5d:ba:2f:6d:15:e2:6a:b2:2f:8f:84:0f:9c:2c:84: c8:b6:31:36:25:02:90:ea:3f:35:a3:81:4f:d7:19: 37:dc:96:09:76:73:73:85:2f:06:e4:77:79:ee:d1: 58:89:dd:d7:cd:21:9e:f6:99:9c:65:a6:03:c0:85: 83:5c:66:1c:42:cb:1c:a2:14:d0:33:f1:b5:68:41: b2:5c:e9:91:60:36:ca:a5:bc:a2:fd:8b:b0:28:92: d5:5e:1b:c4:d8:fe:cd:27:b8:e4:f3:44:b9:80:e3: dd:b8:02:1a:ba:a5:e1:0f:26:7a:3c:8b:6d:41:86: a8:49:16:ec:ab:61:62:17:19:f0:34:95:50:51:d6: c4:e3:64:97:af:2e:24:e6:3d:9f:21:12:8f:cf:f2: 33:da:9e:d7:dc:5d:05:d3:93:65:67:c0:37:42:a7: 49:15:a6:43:6f:d3:07:77:3f:aa:8f:c1:c3:2f:3d: 90:40:52:19:f7:2f:7e:b8:23:d8:53:93:cb:92:6a: b9:0d:67:71:c5:d5:96:7f:8c:26:09:bb:9c:03:9b: f8:3c:83:05:95:2f:ec:11:76:d1:4d:e7:60:00:ed: b4:d2:7e:03:2c:00:6a:49:36:b4:49:12:9d:70:eb: 34:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:12:CE:56:A4:E5:5B:F7:D4:65:28:A4:B7:C1:26:89:E2:84:D5:F6 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ab:79:98:e1:14:fc:1e:19:a5:c0:aa:09:42:d5:34:bc:74: b4:f9:ec:fc:d9:1f:16:5d:6e:22:ce:7b:1a:8d:af:fa:b2:1b: b2:43:06:5f:85:6a:f4:84:08:b2:23:e5:a3:c1:f4:c9:78:0f: 91:4c:17:2b:2d:0f:99:3d:bd:9a:fa:2a:c3:2d:71:ad:65:61: 3d:13:d7:04:a7:1d:ff:c4:73:9a:dc:f8:69:76:06:fa:4c:24: de:0d:c6:d5:0a:7e:34:bd:f8:ec:fa:3e:85:f2:c8:75:dd:2f: 8d:19:dc:8b:7b:67:ff:97:a8:90:a9:c9:6d:e0:09:81:2a:a1: ee:59:92:d2:6c:49:2b:2f:7c:e8:a2:20:0b:d9:7d:4a:40:d0: d4:9a:ea:eb:9a:e9:6f:cb:91:75:43:3c:80:55:a6:7b:d7:11: 5d:16:a0:d0:66:3a:7e:52:b5:93:f8:b6:b9:c3:31:5e:f6:c0: 94:f1:e3:43:40:5d:27:64:9a:46:ab:87:d8:07:ef:5a:cd:f0: dc:24:28:6d:be:32:9f:c4:41:db:35:f4:68:0f:b8:25:19:5f: 80:2e:84:97:82:74:bd:08:8c:d5:1f:ee:40:cf:12:d5:d2:0e: 6a:f8:bc:2d:c5:1d:23:3f:14:11:a0:a9:a5:71:9b:30:c1:57: 4a:43:8b:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUxMTAzMDQ1NTU0WhcNMjUxMTEwMDQ1NTU0WjAYMRYwFAYD VQQDEw02OTA4MzVkYS1kZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNDPwxHJDm4dzZOFnSldui9tFeJqsi+PhA+cLITItjE2JQKQ6j81o4FP1xk3 3JYJdnNzhS8G5Hd57tFYid3XzSGe9pmcZaYDwIWDXGYcQsscohTQM/G1aEGyXOmR YDbKpbyi/YuwKJLVXhvE2P7NJ7jk80S5gOPduAIauqXhDyZ6PIttQYaoSRbsq2Fi FxnwNJVQUdbE42SXry4k5j2fIRKPz/Iz2p7X3F0F05NlZ8A3QqdJFaZDb9MHdz+q j8HDLz2QQFIZ9y9+uCPYU5PLkmq5DWdxxdWWf4wmCbucA5v4PIMFlS/sEXbRTedg AO200n4DLABqSTa0SRKdcOs0VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYSzlak 5Vv31GUopLfBJonihNX2MB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuq3mY4RT8HhmlwKoJQtU0vHS0+ez82R8WXW4iznsaja/6shuyQwZf hWr0hAiyI+WjwfTJeA+RTBcrLQ+ZPb2a+irDLXGtZWE9E9cEpx3/xHOa3Phpdgb6 TCTeDcbVCn40vfjs+j6F8sh13S+NGdyLe2f/l6iQqclt4AmBKqHuWZLSbEkrL3zo oiAL2X1KQNDUmurrmulvy5F1QzyAVaZ71xFdFqDQZjp+UrWT+La5wzFe9sCU8eND QF0nZJpGq4fYB+9azfDcJChtvjKfxEHbNfRoD7glGV+ALoSXgnS9CIzVH+5AzxLV 0g5q+LwtxR0jPxQRoKmlcZswwVdKQ4um -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:16 2025 by rpki-client