$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft File: rHzRY2nXDaZnWZ2jaOICQknLAvw.mft (raw, json) Hash identifier: XR3JuiEUNdf6HXVhdIPqDflU420fYIgehhYdXkStI5s= Subject key identifier: D2:4D:AF:53:52:66:D0:4B:69:F7:42:BD:FA:E3:9C:90:2D:03:8D:B3 Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft Manifest number: 1D Signing time: Mon 03 Nov 2025 07:46:39 +0000 Manifest this update: Mon 03 Nov 2025 07:46:39 +0000 Manifest next update: Mon 10 Nov 2025 07:46:39 +0000 Files and hashes: 1: rHzRY2nXDaZnWZ2jaOICQknLAvw.crl (hash: aovwvrdBeFVnprjrJVX5KJsBuaSBohQT/cpDkjDXwiw=) 2: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (hash: bltQP8R8HZQyv1HSKxR7BSQwCkOH7hsa3qOC3GHr4Dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Nov 3 07:46:39 2025 GMT Not After : Nov 10 07:46:39 2025 GMT Subject: CN=69085ddf-4ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:34:c9:db:3e:33:4b:b8:16:8a:23:f8:37: 7a:a7:d4:7a:b9:da:06:59:75:d8:33:81:cf:96:9c: 77:28:b3:4d:63:d4:03:73:bb:72:e8:72:ff:b3:ac: d2:09:13:ac:f2:5e:50:c8:49:50:e9:7a:c3:8d:52: fb:7f:3e:bf:4b:55:15:05:ad:83:4c:c2:88:96:a0: 2f:c8:c8:e6:09:76:9f:cf:62:7f:d8:9e:0e:05:f4: 7a:ee:29:f5:3a:d5:cb:ae:6a:b9:66:54:e6:5b:37: 91:eb:88:f7:69:6f:41:fb:c2:8f:15:0c:a0:58:8a: f8:ee:68:b3:6e:d7:07:31:8e:fd:30:4a:8a:8f:03: 7c:9a:2f:be:79:d1:d4:65:05:2e:bc:06:20:33:f7: a5:cf:dc:77:81:cc:b5:d7:69:5c:af:08:26:8d:d1: f7:30:d2:c4:f1:c5:ed:90:d2:3b:3a:ab:c1:79:45: 42:3e:8e:9e:f3:67:1a:cc:ae:a9:63:14:2a:6a:7a: 2a:bf:8b:e5:c7:d5:b2:66:36:7b:43:fb:17:d4:ba: 04:5f:57:b6:0d:f7:60:7c:db:d3:a6:d1:b7:ab:76: fd:b7:33:aa:71:43:6c:7f:1e:93:2b:7f:3f:d0:e9: 82:b5:2f:5a:74:32:8f:b0:3e:14:32:1e:17:85:5d: f5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4D:AF:53:52:66:D0:4B:69:F7:42:BD:FA:E3:9C:90:2D:03:8D:B3 X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:dc:ba:e3:ee:9c:e2:e0:b7:49:ae:26:31:92:6c:3e:cf:bc: 68:1a:5a:41:10:a3:8b:ea:3e:60:ad:0e:0f:57:a3:c5:fa:82: 98:74:9a:ce:98:b7:8d:54:94:5d:2e:44:a4:f6:8a:dc:0c:3f: 32:20:0a:f9:af:38:49:ba:47:a7:a9:4a:86:71:df:fc:65:bc: 19:46:a6:7f:04:e6:ae:f2:f6:56:9a:35:17:fc:ea:0b:e0:fb: 4a:10:55:b0:da:a9:b0:d0:64:13:69:2d:77:cd:53:41:ca:9b: e7:a7:ec:50:0e:6b:ab:30:93:55:bc:be:48:35:72:a4:b9:a8: a8:ef:68:bf:ae:58:16:28:fe:9d:b6:04:d3:dc:31:51:5c:f4: b4:5f:ed:59:d8:7e:3c:e1:26:40:af:86:98:10:bd:01:50:c2: 68:61:8d:09:bb:05:b7:58:0b:9e:16:89:6d:a3:de:5b:f1:0b: aa:bb:36:a5:b8:d3:95:3c:f4:c4:46:ea:8e:e9:4e:b7:0d:ee: f4:ab:8d:49:f6:74:cb:5b:98:88:e0:b3:dc:af:b7:04:68:ac: 87:df:d0:04:47:a7:c9:4a:ee:4c:bf:01:4b:17:f4:6b:f6:5b: b5:2a:fb:24:6c:19:e2:d4:00:b2:17:8a:5f:dc:b0:7f:03:3d: 5f:f1:fc:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNTExMDMwNzQ2MzlaFw0yNTExMTAwNzQ2MzlaMBgxFjAUBgNV BAMTDTY5MDg1ZGRmLTRjZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzYDTJ2z4zS7gWiiP4N3qn1Hq52gZZddgzgc+WnHcos01j1ANzu3Locv+zrNIJ E6zyXlDISVDpesONUvt/Pr9LVRUFrYNMwoiWoC/IyOYJdp/PYn/Yng4F9HruKfU6 1cuuarlmVOZbN5HriPdpb0H7wo8VDKBYivjuaLNu1wcxjv0wSoqPA3yaL7550dRl BS68BiAz96XP3HeBzLXXaVyvCCaN0fcw0sTxxe2Q0js6q8F5RUI+jp7zZxrMrqlj FCpqeiq/i+XH1bJmNntD+xfUugRfV7YN92B829Om0berdv23M6pxQ2x/HpMrfz/Q 6YK1L1p0Mo+wPhQyHheFXfXLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0k2vU1Jm 0Etp90K9+uOckC0DjbMwHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NEY3LzEyQkFCODk2OEM2RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFa bldaMmphT0lDUWtuTEF2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD7cuuPunOLgt0muJjGSbD7PvGgaWkEQo4vqPmCtDg9Xo8X6gph0ms6Y t41UlF0uRKT2itwMPzIgCvmvOEm6R6epSoZx3/xlvBlGpn8E5q7y9laaNRf86gvg +0oQVbDaqbDQZBNpLXfNU0HKm+en7FAOa6swk1W8vkg1cqS5qKjvaL+uWBYo/p22 BNPcMVFc9LRf7VnYfjzhJkCvhpgQvQFQwmhhjQm7BbdYC54WiW2j3lvxC6q7NqW4 05U89MRG6o7pTrcN7vSrjUn2dMtbmIjgs9yvtwRorIff0ARHp8lK7ky/AUsX9Gv2 W7Uq+yRsGeLUALIXil/csH8DPV/x/EA= -----END CERTIFICATE-----Generated at Wed Nov 5 08:51:07 2025 by rpki-client