$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft File: jM5ORhldFXBPtWKTLgq2Kg65iiY.mft (raw, json) Hash identifier: Yq7YzVH+SJ2UNz3+hzfEFOMepX70RFPuq7lm890ETMI= Subject key identifier: 26:6E:35:90:3B:52:D6:B0:8D:21:C0:BD:50:8F:46:01:49:1A:57:ED Authority key identifier: 8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 Certificate issuer: /CN=A91F7334/serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Certificate serial: 045E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft Manifest number: 0451 Signing time: Mon 03 Nov 2025 00:10:41 +0000 Manifest this update: Mon 03 Nov 2025 00:10:40 +0000 Manifest next update: Mon 10 Nov 2025 00:10:40 +0000 Files and hashes: 1: jM5ORhldFXBPtWKTLgq2Kg65iiY.crl (hash: rdpDKLx+8bwu5Z84fBbbXemI+f4EkAUjDEoiaMdLK0k=) 2: 96F24818744F11ECBFE4A57DC4F9AE02.roa (hash: Jq+BJa5bIC2ga/tgIn6ID1FhPZxllAOIKx3OxJo/dLg=) 3: 8B8B954E6C9011ED9AAF427AC4F9AE02.roa (hash: h3fylE+2YBgfkc7GqGmNPtjnF3D2D39dQ6blUneghIY=) 4: 0B7C7B7C751311ECA43F7D3BC4F9AE02.roa (hash: Q81s5XKL5iVaVaoWayTQR37y4XfCEhNVP+1tJwtC+bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7334, serialNumber=8CCE4E46195D15704FB562932E0AB62A0EB98A26 Validity Not Before: Nov 3 00:10:40 2025 GMT Not After : Nov 10 00:10:40 2025 GMT Subject: CN=6907f301-207d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0d:aa:ff:74:37:2c:c8:e5:77:5c:53:98:6e: 33:10:8d:e7:ff:40:bd:b7:09:f0:ce:80:c0:f7:d5: a7:9e:97:f5:53:35:b1:c1:c9:7e:8a:09:3b:2b:a4: 2d:6c:e2:72:7a:31:83:33:6e:b2:55:98:3a:59:76: 06:fa:81:28:04:87:ea:cf:fb:83:cc:1a:e6:c5:16: db:a4:6c:d7:8e:aa:d3:96:5f:22:c1:c0:7a:28:70: 50:97:98:0b:9d:b2:39:da:30:c5:aa:a3:3d:21:ef: 20:60:d2:4e:7f:68:01:d4:bb:bc:6c:b1:b0:64:e2: 96:c3:dc:ca:92:6a:00:61:d7:30:09:eb:f9:f4:5e: 94:cc:03:23:f7:d1:85:d5:16:11:4b:aa:46:7d:d2: 58:73:78:15:06:62:9f:e1:b1:3d:29:31:df:ba:9c: ec:46:34:d2:54:93:be:63:5e:e7:81:17:7e:dd:24: 7b:12:fa:04:0d:b6:e2:4c:f4:a5:e9:b8:81:e4:52: 18:c5:5c:3c:54:26:aa:cc:b0:7a:8b:75:27:0e:69: f6:76:8a:66:2a:aa:21:c4:e7:40:54:0e:ed:84:7d: 8b:51:95:4f:c5:70:ce:b1:c5:22:25:53:38:01:8b: 12:b2:ae:7d:3d:f0:7a:d4:d5:3b:ac:b8:65:a5:ad: f9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6E:35:90:3B:52:D6:B0:8D:21:C0:BD:50:8F:46:01:49:1A:57:ED X509v3 Authority Key Identifier: keyid:8C:CE:4E:46:19:5D:15:70:4F:B5:62:93:2E:0A:B6:2A:0E:B9:8A:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jM5ORhldFXBPtWKTLgq2Kg65iiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7334/7A4049DA744B11ECB9AA8D74C4F9AE02/jM5ORhldFXBPtWKTLgq2Kg65iiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3f:90:03:8a:aa:c2:72:5e:3b:20:5d:03:c8:1b:d5:43:44: 34:d3:d0:35:f6:02:68:11:fb:39:9c:81:08:96:17:50:17:b1: 8b:c9:24:73:c7:85:68:0a:78:81:ff:d2:10:c7:0e:de:c7:0c: 71:29:45:c6:02:74:33:3a:04:fb:1b:ef:ec:80:93:0c:bd:83: 92:6b:69:99:d2:16:a0:80:f5:13:29:b7:50:e6:40:97:e7:f9: 59:d0:09:fe:57:02:89:1a:e2:8f:ab:32:7b:7e:de:2d:51:3b: 7d:f5:62:2b:54:e0:1c:c6:79:fd:b2:14:f9:7e:1f:5a:3c:6e: 61:77:6f:44:cb:2e:66:b6:76:f8:e3:d9:f0:b8:4b:a2:b1:25: 62:96:ea:99:57:3a:4a:5a:ab:9e:55:5a:18:94:06:22:72:fc: e7:8a:c3:bc:ad:9b:c8:34:17:7f:9c:9f:a1:1c:93:76:2c:7f: 5d:52:14:96:a8:1d:4b:e7:e2:ef:4b:fe:1c:5d:20:67:e2:62: 94:7c:97:59:2d:d6:d1:6a:3c:35:a3:c4:6f:f9:c9:e0:00:8e: dd:6e:75:ce:e6:fd:c2:32:87:ee:95:a5:1b:ab:9f:89:d8:38: 66:a2:26:c7:eb:24:67:5d:df:aa:f1:f4:f0:27:3a:b9:ec:d6: 26:5a:4f:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMzQxMTAvBgNVBAUTKDhDQ0U0RTQ2MTk1RDE1NzA0RkI1NjI5MzJFMEFCNjJB MEVCOThBMjYwHhcNMjUxMTAzMDAxMDQwWhcNMjUxMTEwMDAxMDQwWjAYMRYwFAYD VQQDEw02OTA3ZjMwMS0yMDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ2q/3Q3LMjld1xTmG4zEI3n/0C9twnwzoDA99Wnnpf1UzWxwcl+igk7K6Qt bOJyejGDM26yVZg6WXYG+oEoBIfqz/uDzBrmxRbbpGzXjqrTll8iwcB6KHBQl5gL nbI52jDFqqM9Ie8gYNJOf2gB1Lu8bLGwZOKWw9zKkmoAYdcwCev59F6UzAMj99GF 1RYRS6pGfdJYc3gVBmKf4bE9KTHfupzsRjTSVJO+Y17ngRd+3SR7EvoEDbbiTPSl 6biB5FIYxVw8VCaqzLB6i3UnDmn2dopmKqohxOdAVA7thH2LUZVPxXDOscUiJVM4 AYsSsq59PfB61NU7rLhlpa35QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZuNZA7 UtawjSHAvVCPRgFJGlftMB8GA1UdIwQYMBaAFIzOTkYZXRVwT7Viky4KtioOuYom MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMzNC83QTQwNDlEQTc0 NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZYQlB0V0tUTGdxMktnNjVp aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNNU9SaGxkRlhCUHRXS1RMZ3EyS2c2NWlpWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMzNC83QTQwNDlEQTc0NEIxMUVDQjlBQThENzRDNEY5QUUwMi9qTTVPUmhsZEZY QlB0V0tUTGdxMktnNjVpaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWP5ADiqrCcl47IF0DyBvVQ0Q009A19gJoEfs5nIEIlhdQF7GLySRz x4VoCniB/9IQxw7exwxxKUXGAnQzOgT7G+/sgJMMvYOSa2mZ0haggPUTKbdQ5kCX 5/lZ0An+VwKJGuKPqzJ7ft4tUTt99WIrVOAcxnn9shT5fh9aPG5hd29Eyy5mtnb4 49nwuEuisSViluqZVzpKWqueVVoYlAYicvznisO8rZvINBd/nJ+hHJN2LH9dUhSW qB1L5+LvS/4cXSBn4mKUfJdZLdbRajw1o8Rv+cngAI7dbnXO5v3CMofulaUbq5+J 2DhmoibH6yRnXd+q8fTwJzq57NYmWk9Y -----END CERTIFICATE-----Generated at Tue Nov 4 20:03:17 2025 by rpki-client