$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft File: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft (raw, json) Hash identifier: AizQP6eqdy4KK844+HgA6fdNfnd4HpUzFCw5lXr5XvY= Subject key identifier: D2:D3:7F:CE:55:25:24:66:E9:78:CF:00:B6:D7:82:C5:6D:37:1E:9C Authority key identifier: 99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA Certificate issuer: /CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft Manifest number: 0B0D Signing time: Tue 04 Nov 2025 19:26:10 +0000 Manifest this update: Tue 04 Nov 2025 19:26:10 +0000 Manifest next update: Tue 11 Nov 2025 19:26:10 +0000 Files and hashes: 1: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl (hash: 8tqhLY1Tz1Zb1d9n49kUGQPYgXnl13G8EI1QMWu8/78=) 2: EF44A44E51EB11EABC11800DC4F9AE02.roa (hash: wVjOHBRTAFBzywxmlgqw2C8A1H3crVXb96hs+TBB5RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD378, serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Validity Not Before: Nov 4 19:26:10 2025 GMT Not After : Nov 11 19:26:10 2025 GMT Subject: CN=690a5352-46c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:35:f8:30:02:c2:5e:5a:e8:fe:af:c2:5e:0f: 07:32:f5:7f:4e:3d:d8:5c:09:f1:cd:85:7f:43:2e: 47:47:4b:50:66:23:76:6f:da:b6:36:44:ac:d7:ba: fd:d8:fc:dd:a6:20:7e:4c:6a:82:ac:2e:38:c0:c4: ab:5d:9c:48:77:54:b0:77:42:64:88:9a:bd:59:5d: d5:18:ae:89:7d:7b:f8:bb:9e:86:bc:f1:cb:54:3b: c6:04:df:6a:70:d9:2b:ac:a8:5c:b3:36:1b:2e:eb: f2:d2:04:ec:db:b9:6e:7c:1b:32:a2:5b:b6:6e:a7: 47:95:5f:9c:ea:ab:02:69:8e:56:7d:cf:92:31:cc: 97:e8:bc:58:02:2b:17:fa:ef:00:4d:89:83:ad:b3: a5:02:97:2e:73:7b:9d:9f:e2:09:be:15:5a:34:ca: 7c:fb:d8:03:4c:4e:e1:bc:28:5a:2a:4a:45:36:3c: d7:7a:8f:17:4e:a7:d6:6a:f3:3b:f2:38:0d:d1:5d: c4:18:da:38:a6:54:80:81:14:63:96:37:cc:f5:91: d0:4e:8a:3b:df:e2:60:f2:21:dd:66:3c:f3:4a:71: c2:1e:6c:65:31:f1:9f:82:7d:72:cb:bd:33:ac:b8: 22:90:db:34:34:47:54:d7:c0:3e:d1:1d:09:3e:08: 95:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D3:7F:CE:55:25:24:66:E9:78:CF:00:B6:D7:82:C5:6D:37:1E:9C X509v3 Authority Key Identifier: keyid:99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a0:45:82:e9:ea:4a:96:35:32:c3:dc:b9:41:e7:de:a1:fe: 0d:cd:01:8a:a0:0c:08:69:76:7e:c2:06:1f:57:0c:b1:6d:d3: f6:28:2b:66:fa:f1:c2:38:a7:be:41:27:4f:ae:2a:9d:e6:f0: 57:42:e1:39:4d:bf:08:8f:83:13:75:f9:46:53:94:e9:e1:7c: bc:37:8f:cd:2b:f2:4c:e8:a4:d8:16:3f:ec:ed:16:0d:8d:17: 48:6b:ff:9d:db:73:b0:7c:e6:15:4c:ad:eb:6a:09:2f:6e:1b: 7c:3c:25:f4:57:a7:87:84:25:1e:0d:f2:4a:9a:e2:d5:51:8e: 54:e1:16:97:71:98:03:f7:be:ce:2f:10:bc:33:f9:cc:69:8b: 1a:43:3d:b9:c1:45:e5:d4:d5:4a:41:50:09:31:a5:50:a5:93: 64:45:dc:b4:f1:40:c3:84:84:d9:8b:3d:61:19:df:23:84:7e: f5:83:e5:4c:04:6c:9b:b2:da:b6:69:ea:cc:51:2f:e8:9c:96: 51:d7:72:29:cc:27:23:65:0f:44:a1:66:16:8f:d8:db:c2:ba: a0:5e:ea:a0:e3:f6:74:a7:7e:17:1a:14:95:46:ef:d3:97:d2: 94:a9:ef:59:0e:54:8f:d5:b5:df:50:34:04:00:f6:d5:0f:2d: 7c:48:c7:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzNzgxMTAvBgNVBAUTKDk5QkUwODVEMUM2OTZDQkMyMUI2NzhGOTE4OEVDQ0U1 REJDREQ0Q0EwHhcNMjUxMTA0MTkyNjEwWhcNMjUxMTExMTkyNjEwWjAYMRYwFAYD VQQDEw02OTBhNTM1Mi00NmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7DX4MALCXlro/q/CXg8HMvV/Tj3YXAnxzYV/Qy5HR0tQZiN2b9q2NkSs17r9 2PzdpiB+TGqCrC44wMSrXZxId1Swd0JkiJq9WV3VGK6JfXv4u56GvPHLVDvGBN9q cNkrrKhcszYbLuvy0gTs27lufBsyolu2bqdHlV+c6qsCaY5Wfc+SMcyX6LxYAisX +u8ATYmDrbOlApcuc3udn+IJvhVaNMp8+9gDTE7hvChaKkpFNjzXeo8XTqfWavM7 8jgN0V3EGNo4plSAgRRjljfM9ZHQToo73+Jg8iHdZjzzSnHCHmxlMfGfgn1yy70z rLgikNs0NEdU18A+0R0JPgiVwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLTf85V JSRm6XjPALbXgsVtNx6cMB8GA1UdIwQYMBaAFJm+CF0caWy8IbZ4+RiOzOXbzdTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM3OC82MzJGQThDRTUx RUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJMd2h0bmo1R0k3TTVkdk4x TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iNElYUnhwYkx3aHRuajVHSTdNNWR2TjFNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM3OC82MzJGQThDRTUxRUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJM d2h0bmo1R0k3TTVkdk4xTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNoEWC6epKljUyw9y5Qefeof4NzQGKoAwIaXZ+wgYfVwyxbdP2KCtm +vHCOKe+QSdPriqd5vBXQuE5Tb8Ij4MTdflGU5Tp4Xy8N4/NK/JM6KTYFj/s7RYN jRdIa/+d23OwfOYVTK3ragkvbht8PCX0V6eHhCUeDfJKmuLVUY5U4RaXcZgD977O LxC8M/nMaYsaQz25wUXl1NVKQVAJMaVQpZNkRdy08UDDhITZiz1hGd8jhH71g+VM BGybstq2aerMUS/onJZR13IpzCcjZQ9EoWYWj9jbwrqgXuqg4/Z0p34XGhSVRu/T l9KUqe9ZDlSP1bXfUDQEAPbVDy18SMdA -----END CERTIFICATE-----Generated at Wed Nov 5 00:14:36 2025 by rpki-client