$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft File: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft (raw, json) Hash identifier: UDzZPb6mjxrikW0MvyYWT1YDh/+8COQ5XUtGFB2HeZM= Subject key identifier: 7D:3E:28:84:BB:11:81:71:38:2A:E2:F8:DD:3B:95:6B:62:B0:07:EF Authority key identifier: 08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F Certificate issuer: /CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Certificate serial: 0512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft Manifest number: 050C Signing time: Sun 02 Nov 2025 23:34:48 +0000 Manifest this update: Sun 02 Nov 2025 23:34:47 +0000 Manifest next update: Sun 09 Nov 2025 23:34:47 +0000 Files and hashes: 1: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl (hash: EAS2LBVlW2aAk6dKcePNk/MBg4PIUZHBZC6t05guDbA=) 2: 5CA72CF82A6911EC94518740C4F9AE02.roa (hash: 0jqnSn+Cm10EtK5JT/NKDy8k+JGjQ6fCGa+uxrmRYyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF7FC, serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Validity Not Before: Nov 2 23:34:47 2025 GMT Not After : Nov 9 23:34:47 2025 GMT Subject: CN=6907ea98-88e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e3:be:37:a2:a2:ef:d8:b2:7d:b8:5f:c7:fa: b3:db:06:a8:f0:fc:bf:c6:d0:af:f2:a9:e9:1b:14: 24:4a:80:60:c3:6d:1d:6b:5e:d7:2a:8d:b2:db:ef: 08:66:4f:97:bb:73:dd:b6:3f:5b:76:d6:24:78:f4: 1a:c2:75:7a:25:ec:1d:0d:81:a9:a1:37:de:bc:5c: d8:ab:93:10:25:a6:e0:0a:35:5b:83:77:8c:16:5d: 5d:0d:20:8c:bf:0b:45:bd:f1:7f:32:43:20:3c:4a: 2a:77:95:e7:a3:6b:c9:4a:36:22:a4:b0:f3:de:34: 56:7d:c5:cd:c7:4e:d8:34:e8:2f:09:63:30:33:ad: a5:6a:da:f9:b5:71:21:ad:3b:d3:cb:d6:7f:e2:24: 80:ef:62:5e:21:06:25:28:ee:4c:09:ef:6b:a8:fb: d8:3b:45:cf:66:a4:26:a3:31:8b:12:77:29:aa:aa: c6:cf:69:36:55:6a:52:86:56:ac:09:d9:3e:88:6a: 35:f9:8c:19:a2:5d:d8:b1:98:48:31:ab:13:1d:db: ab:0f:d7:db:33:cd:3e:c3:12:13:fb:9e:89:1a:ef: 02:63:45:cc:e2:fc:fd:37:9b:69:42:2e:14:52:24: 34:7b:6b:86:3a:e9:08:eb:11:ee:51:06:b1:07:73: e6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3E:28:84:BB:11:81:71:38:2A:E2:F8:DD:3B:95:6B:62:B0:07:EF X509v3 Authority Key Identifier: keyid:08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b5:91:db:80:d5:67:57:48:9f:2d:7e:77:a1:1c:14:e0:ef: c0:d9:78:ec:83:7e:59:3c:5c:2f:25:58:8c:d4:ed:2e:31:38: f0:10:1d:4c:2e:8d:71:dc:b1:d5:5b:66:d5:f6:4f:7e:e5:ef: 6d:79:49:0d:f5:4d:74:2d:8d:0f:e9:ba:5e:b1:bc:54:12:2e: a0:a1:dd:49:e5:5c:bf:dd:32:7e:73:06:aa:a1:81:77:dc:13: 38:68:da:90:bf:9b:02:e7:50:29:8d:25:76:37:32:43:8a:93: b1:b4:9d:3e:39:6e:96:35:9c:47:af:29:af:00:d4:bc:72:02: 27:b5:9d:e7:05:d8:ac:f4:e5:8c:a4:f6:b1:b4:ee:28:a8:e8: 83:74:71:cb:c2:43:32:94:71:08:fb:e6:99:50:5b:00:33:79: c9:22:21:3e:7c:2c:a2:2b:76:48:32:1b:e1:80:38:6b:a2:21: d1:64:53:ff:85:bd:a7:3c:dc:9d:81:db:df:9f:ff:80:75:1a: b7:e2:8e:30:d9:31:7b:3c:f6:22:f3:b1:b9:db:90:c5:e8:2a: d7:33:56:f6:13:89:bd:bb:39:23:08:e8:3e:97:95:d0:f7:e4: 7c:28:5f:4c:35:90:05:87:4c:a7:4a:76:e2:a6:02:5f:b9:67: 1d:54:dd:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3RkMxMTAvBgNVBAUTKDA4RDlGNDgzRTQ1NDIxNThGNjJDQkU3MDU4NjlFQkVE NzdGQjkyN0YwHhcNMjUxMTAyMjMzNDQ3WhcNMjUxMTA5MjMzNDQ3WjAYMRYwFAYD VQQDEw02OTA3ZWE5OC04OGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9eO+N6Ki79iyfbhfx/qz2wao8Py/xtCv8qnpGxQkSoBgw20da17XKo2y2+8I Zk+Xu3Pdtj9bdtYkePQawnV6JewdDYGpoTfevFzYq5MQJabgCjVbg3eMFl1dDSCM vwtFvfF/MkMgPEoqd5Xno2vJSjYipLDz3jRWfcXNx07YNOgvCWMwM62latr5tXEh rTvTy9Z/4iSA72JeIQYlKO5MCe9rqPvYO0XPZqQmozGLEncpqqrGz2k2VWpShlas Cdk+iGo1+YwZol3YsZhIMasTHdurD9fbM80+wxIT+56JGu8CY0XM4vz9N5tpQi4U UiQ0e2uGOukI6xHuUQaxB3PmswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0+KIS7 EYFxOCri+N07lWtisAfvMB8GA1UdIwQYMBaAFAjZ9IPkVCFY9iy+cFhp6+13+5J/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjdGQy80RTIzQjM5QzJB NjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlWajJMTDV3V0ducjdYZjdr bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NObjBnLVJVSVZqMkxMNXdXR25yN1hmN2tuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjdGQy80RTIzQjM5QzJBNjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlW ajJMTDV3V0ducjdYZjdrbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAtZHbgNVnV0ifLX53oRwU4O/A2Xjsg35ZPFwvJViM1O0uMTjwEB1M Lo1x3LHVW2bV9k9+5e9teUkN9U10LY0P6bpesbxUEi6god1J5Vy/3TJ+cwaqoYF3 3BM4aNqQv5sC51ApjSV2NzJDipOxtJ0+OW6WNZxHrymvANS8cgIntZ3nBdis9OWM pPaxtO4oqOiDdHHLwkMylHEI++aZUFsAM3nJIiE+fCyiK3ZIMhvhgDhroiHRZFP/ hb2nPNydgdvfn/+AdRq34o4w2TF7PPYi87G525DF6CrXM1b2E4m9uzkjCOg+l5XQ 9+R8KF9MNZAFh0ynSnbipgJfuWcdVN07 -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:23 2025 by rpki-client