$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft File: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft (raw, json) Hash identifier: FIR4bPibzxxRH+tbRF1bGhJOxJ8GfwzZvQfDBSag2os= Subject key identifier: FF:C4:42:AD:1C:BF:6E:6A:AF:E0:7D:A9:42:1B:FB:49:8E:5F:FC:BD Authority key identifier: F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 Certificate issuer: /CN=A91F8928/serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Certificate serial: 0CB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft Manifest number: 0C91 Signing time: Sun 02 Nov 2025 18:28:39 +0000 Manifest this update: Sun 02 Nov 2025 18:28:38 +0000 Manifest next update: Sun 09 Nov 2025 18:28:38 +0000 Files and hashes: 1: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl (hash: lLYNLzZLMzincGrYhRtywht3jfSNsHOM4TJTfr9fjE8=) 2: 93840DE204E611ED89D3B27BC4F9AE02.roa (hash: cegor5RnBc3HGGToc+6Lymvpp6wumcl5jw4jwYNABG8=) 3: E6C1F0003C7E11F08A874435C4F9AE02.roa (hash: HGkfh3dEEIqv+3vFhSnMi2VsaDRfK/TUjKt6kaMeksE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8928, serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Validity Not Before: Nov 2 18:28:38 2025 GMT Not After : Nov 9 18:28:38 2025 GMT Subject: CN=6907a2d6-f8f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:a7:1e:7b:2b:44:61:c5:b5:ba:37:13:34: 1b:c9:e9:23:c5:c2:20:12:af:df:7d:f2:0d:3d:d7: 3b:c5:a4:f4:c1:62:8f:18:1d:8c:54:03:94:4c:a2: 56:5d:f0:dc:bf:ea:1f:80:7b:ff:68:53:a3:54:5e: 41:4d:10:6e:6d:d9:60:73:d8:02:fb:02:72:3d:50: f8:f8:cc:0d:cd:79:0d:95:d3:9d:2e:d4:69:8b:97: 06:41:63:bd:c3:ab:45:5a:08:f8:48:a5:aa:fa:a5: b4:61:92:19:1f:85:16:91:5b:de:1b:69:89:2a:b4: 40:ea:2a:32:0b:e1:f2:92:e7:a6:30:a2:b9:ec:e0: 67:9d:d1:5d:a8:80:92:51:87:e9:4d:13:54:99:fb: 7c:06:66:81:3d:7e:d0:8d:7c:82:f3:a3:d1:ff:7f: b3:5c:20:e2:1a:98:4b:b4:71:5f:48:12:e1:ff:c0: 49:96:94:e0:c8:38:ed:95:91:c4:10:50:31:01:07: 66:01:c8:f6:02:73:4b:7e:4d:45:4e:f0:49:92:d4: 40:b9:6e:eb:79:7f:3b:7d:ea:16:03:50:02:b6:b6: 0d:e1:55:1b:bd:70:79:d0:17:76:fd:42:96:28:0f: 9a:95:fd:aa:76:6e:ad:e4:ce:2c:7e:79:b8:14:64: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C4:42:AD:1C:BF:6E:6A:AF:E0:7D:A9:42:1B:FB:49:8E:5F:FC:BD X509v3 Authority Key Identifier: keyid:F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ed:b5:3a:2e:6e:e6:4a:18:ed:f4:ee:c1:e5:71:32:b5:d2: 77:4e:c2:96:96:7f:c9:dc:44:cd:da:b2:b0:97:78:46:40:51: b5:5a:f8:e4:95:00:4c:84:5f:a4:5b:26:c7:7a:3a:84:45:4b: d8:93:8a:fc:9c:a9:ac:5e:09:82:1c:ee:89:67:3d:d9:07:a4: 58:0d:ed:de:9d:8f:55:9b:11:8c:bc:72:5b:36:fb:21:e7:0e: 24:83:74:88:d8:63:58:04:e9:7e:84:18:bb:40:43:45:7a:4a: 66:64:13:af:f9:04:9c:92:7f:83:f8:19:c4:11:08:1b:76:07: a6:60:b2:0d:8c:01:75:c2:70:c5:da:55:08:da:a3:f7:1b:d3: 5a:fd:98:62:0e:b8:2b:2b:ad:ee:b4:76:f5:2f:c7:96:b8:0b: 9e:29:1e:b4:3c:b4:fe:2b:b7:0a:40:f4:92:a1:04:4b:ec:58: d7:2a:3d:30:ce:e0:dd:15:fd:09:3a:e9:32:9f:cf:05:f3:13: cf:d4:29:87:15:44:d6:b7:5f:d1:89:73:3b:e1:7c:15:8d:37: 5a:9a:5b:ad:e0:03:3d:84:16:38:76:64:75:5b:7f:4f:cd:6a: 4e:bc:be:bb:e1:33:d5:32:83:c3:59:99:8f:ea:7c:00:65:0e: 07:fd:4c:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5MjgxMTAvBgNVBAUTKEY1QzlEMzBFOUQwNzcxQ0QwN0U1MUIyRTRBNTJCNTIy NTNBQkQwMjYwHhcNMjUxMTAyMTgyODM4WhcNMjUxMTA5MTgyODM4WjAYMRYwFAYD VQQDEw02OTA3YTJkNi1mOGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwunHnsrRGHFtbo3EzQbyekjxcIgEq/fffINPdc7xaT0wWKPGB2MVAOUTKJW XfDcv+ofgHv/aFOjVF5BTRBubdlgc9gC+wJyPVD4+MwNzXkNldOdLtRpi5cGQWO9 w6tFWgj4SKWq+qW0YZIZH4UWkVveG2mJKrRA6ioyC+HykuemMKK57OBnndFdqICS UYfpTRNUmft8BmaBPX7QjXyC86PR/3+zXCDiGphLtHFfSBLh/8BJlpTgyDjtlZHE EFAxAQdmAcj2AnNLfk1FTvBJktRAuW7reX87feoWA1ACtrYN4VUbvXB50Bd2/UKW KA+alf2qdm6t5M4sfnm4FGRndwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/EQq0c v25qr+B9qUIb+0mOX/y9MB8GA1UdIwQYMBaAFPXJ0w6dB3HNB+UbLkpStSJTq9Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODkyOC80REE3QkIyMDBC NUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNjMEg1UnN1U2xLMUlsT3Iw Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljblREcDBIY2MwSDVSc3VTbEsxSWxPcjBDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODkyOC80REE3QkIyMDBCNUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNj MEg1UnN1U2xLMUlsT3IwQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr7bU6Lm7mShjt9O7B5XEytdJ3TsKWln/J3ETN2rKwl3hGQFG1Wvjk lQBMhF+kWybHejqERUvYk4r8nKmsXgmCHO6JZz3ZB6RYDe3enY9VmxGMvHJbNvsh 5w4kg3SI2GNYBOl+hBi7QENFekpmZBOv+QSckn+D+BnEEQgbdgemYLINjAF1wnDF 2lUI2qP3G9Na/ZhiDrgrK63utHb1L8eWuAueKR60PLT+K7cKQPSSoQRL7FjXKj0w zuDdFf0JOukyn88F8xPP1CmHFUTWt1/RiXM74XwVjTdamlut4AM9hBY4dmR1W39P zWpOvL674TPVMoPDWZmP6nwAZQ4H/Uxu -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:13 2025 by rpki-client