$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: y37wMLNQSx9V8RcZo3Gjb4bK2MDjaYPfIQWrow7FKuw= Subject key identifier: 18:B3:C2:72:E9:C6:C7:5A:AA:3F:34:26:B3:F1:5E:EE:47:FD:43:A9 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C2C Signing time: Tue 04 Nov 2025 16:17:55 +0000 Manifest this update: Tue 04 Nov 2025 16:17:54 +0000 Manifest next update: Tue 11 Nov 2025 16:17:54 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: WaNS2m2JkcKnFz1YmQCvszBcgVkn18KXuN2F6fFS3ls=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7229 (0x1c3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Nov 4 16:17:54 2025 GMT Not After : Nov 11 16:17:54 2025 GMT Subject: CN=690a2732-18f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d7:81:9d:5b:f1:e5:7b:34:47:d9:63:d4:8b: 47:bc:0d:fe:1d:94:0b:51:6e:e4:6f:2b:33:97:3e: 96:65:9d:48:4e:ca:b2:77:d8:1c:96:c5:07:ae:af: 51:09:94:39:9f:1d:9e:6f:32:25:e7:6f:8a:0b:7c: 1e:41:c8:57:09:59:a2:b7:ed:3e:77:04:14:32:a5: 24:c5:3f:e9:32:91:da:d7:62:ca:85:cf:6c:bd:5f: 04:01:11:fa:ed:6e:a5:3f:7a:de:1d:13:f5:02:42: 55:02:9c:5b:ef:90:04:19:01:a6:7d:5d:7d:0d:ea: fe:1a:a7:b6:94:2a:d0:72:21:6b:8f:cc:12:a6:15: b3:e2:42:a7:42:4b:7b:22:ff:0f:16:2e:b1:20:74: 07:9e:24:35:ad:23:ff:0b:36:a7:8c:8c:eb:f6:12: 82:15:ac:9d:c9:a2:ca:85:01:23:cf:64:88:50:ff: 4f:9b:cd:35:5a:8b:de:5f:bf:73:f7:e8:7d:9c:39: cd:d0:8b:bc:fd:25:bd:25:d4:49:2a:d5:02:b4:b3: ac:40:80:bd:67:5b:d0:4b:06:d4:ff:e4:17:a0:5c: bb:67:80:4f:a0:5d:de:7c:2c:49:90:dc:2e:9f:4f: 7e:9e:5e:04:0a:77:64:24:a6:97:07:99:37:c7:97: 49:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B3:C2:72:E9:C6:C7:5A:AA:3F:34:26:B3:F1:5E:EE:47:FD:43:A9 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:25:d4:e1:78:84:82:86:ab:6f:35:64:ae:d8:5d:36:25:be: 7f:91:85:60:2d:78:d7:03:97:35:57:16:fb:83:8e:15:35:90: 2d:92:07:92:d5:38:14:3d:f4:f9:25:0f:e4:8f:e1:c2:66:c5: 50:a9:19:26:78:c9:3d:e9:bd:7f:c3:3c:74:37:45:0a:62:7d: a5:89:d8:a4:6e:b2:6a:4c:b2:fd:ef:09:39:ab:0a:d2:02:c3: 6d:9d:94:7b:b9:13:f2:ae:a9:26:82:ea:68:e4:4d:58:11:5d: eb:24:ea:72:38:e3:ef:82:05:f3:fe:b8:d1:6c:89:fc:3d:24: f0:b2:60:d8:e1:e4:9f:57:3c:bb:d1:74:ce:73:fe:c9:f6:eb: ac:f0:ba:dc:ee:59:1c:15:f3:a2:93:2f:58:a6:9c:b3:ed:68: d1:24:72:5d:f1:40:5a:32:09:80:6e:74:a9:50:3e:a8:9f:87: a9:26:4d:4a:e6:33:e7:d6:a7:1a:cc:87:5a:b0:33:a9:9a:5c: e2:cd:ea:fe:6a:dc:f9:75:3b:fd:54:5f:1f:95:28:62:77:4b: 4e:89:76:86:99:c1:0c:e2:e1:34:13:a6:34:78:18:be:7e:7a: 15:13:7d:92:8b:1d:4b:53:1a:91:69:9d:12:82:d7:ba:72:2d: d3:2c:44:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUxMTA0MTYxNzU0WhcNMjUxMTExMTYxNzU0WjAYMRYwFAYD VQQDEw02OTBhMjczMi0xOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9eBnVvx5Xs0R9lj1ItHvA3+HZQLUW7kbyszlz6WZZ1ITsqyd9gclsUHrq9R CZQ5nx2ebzIl52+KC3weQchXCVmit+0+dwQUMqUkxT/pMpHa12LKhc9svV8EARH6 7W6lP3reHRP1AkJVApxb75AEGQGmfV19Der+Gqe2lCrQciFrj8wSphWz4kKnQkt7 Iv8PFi6xIHQHniQ1rSP/CzanjIzr9hKCFaydyaLKhQEjz2SIUP9Pm801WoveX79z 9+h9nDnN0Iu8/SW9JdRJKtUCtLOsQIC9Z1vQSwbU/+QXoFy7Z4BPoF3efCxJkNwu n09+nl4ECndkJKaXB5k3x5dJCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBizwnLp xsdaqj80JrPxXu5H/UOpMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsJdTheISChqtvNWSu2F02Jb5/kYVgLXjXA5c1Vxb7g44VNZAtkgeS 1TgUPfT5JQ/kj+HCZsVQqRkmeMk96b1/wzx0N0UKYn2lidikbrJqTLL97wk5qwrS AsNtnZR7uRPyrqkmgupo5E1YEV3rJOpyOOPvggXz/rjRbIn8PSTwsmDY4eSfVzy7 0XTOc/7J9uus8Lrc7lkcFfOiky9Yppyz7WjRJHJd8UBaMgmAbnSpUD6on4epJk1K 5jPn1qcazIdasDOpmlzizer+atz5dTv9VF8flShid0tOiXaGmcEM4uE0E6Y0eBi+ fnoVE32Six1LUxqRaZ0Sgte6ci3TLEQH -----END CERTIFICATE-----Generated at Thu Nov 6 00:25:25 2025 by rpki-client