$ rpki-client -vvf rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft File: grMfodzgxL8vZjl3hqbAjkfGuP4.mft (raw, json) Hash identifier: 6h0qW4VcUXXGdLQnqkiEeWpgunCZSimiq4Ywse0piyM= Subject key identifier: 9D:7A:52:EC:33:60:47:DD:49:B5:DB:F3:AA:79:65:E2:DC:17:A3:88 Authority key identifier: 82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE Certificate issuer: /CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Certificate serial: 0578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft Manifest number: 0573 Signing time: Sun 02 Nov 2025 23:17:32 +0000 Manifest this update: Sun 02 Nov 2025 23:17:31 +0000 Manifest next update: Sun 09 Nov 2025 23:17:31 +0000 Files and hashes: 1: grMfodzgxL8vZjl3hqbAjkfGuP4.crl (hash: 4TJFQ1NhdoEstjbcdCtTzTURdHoNtf3KcEGbpO3G8KY=) 2: F7307C08FFCA11EB93268E6DC4F9AE02.roa (hash: 68/9CqYRkzm0ius//S97EiCu+9Aa9Wpy/boYkEQX4yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91294F7, serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Validity Not Before: Nov 2 23:17:31 2025 GMT Not After : Nov 9 23:17:31 2025 GMT Subject: CN=6907e68b-64e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:c8:40:c1:a2:b0:f7:2b:ce:ab:f8:8f:2d: ed:26:63:e6:28:c8:63:b8:66:dc:45:98:9d:16:7a: 13:34:88:d8:2c:d0:7c:b4:c2:fd:a3:9d:63:31:c2: 62:75:b2:7e:cb:81:d3:94:f8:d4:b1:65:2b:a2:8c: c9:56:e9:ce:f6:13:1f:b0:8c:7f:0d:10:a1:e5:bc: bf:0c:be:14:f5:75:ee:73:36:1c:29:44:8c:67:1c: d1:ac:15:b8:79:06:0c:6c:1d:ea:96:d3:09:ce:9b: aa:2f:59:b2:b6:55:05:f9:b9:2a:ac:9a:56:8a:f4: 28:9d:95:c9:6f:ec:1f:b9:2b:13:53:84:5e:00:10: 47:a0:58:4d:e3:20:c1:17:3a:df:0a:ca:69:cb:a2: 9e:08:48:28:37:4a:af:5a:8d:89:55:e3:8a:63:80: d0:7b:9e:82:73:9e:53:e4:a2:30:22:07:3b:67:9e: c9:a5:00:cd:ab:6b:81:2e:b1:d2:bf:8d:5c:d1:23: b8:b3:ad:cf:65:98:19:ac:35:18:4a:c9:10:37:eb: ff:3f:fc:29:a1:34:5c:8b:57:10:e2:83:26:cd:d8: 57:22:e8:08:58:9b:de:f4:0f:55:b6:5c:28:27:ac: 2e:76:fb:9d:4d:51:64:07:f6:30:b2:7d:30:10:9f: d9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:7A:52:EC:33:60:47:DD:49:B5:DB:F3:AA:79:65:E2:DC:17:A3:88 X509v3 Authority Key Identifier: keyid:82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:15:8e:c6:97:68:04:11:55:37:1b:b2:f4:2f:9c:d2:e1:32: cd:f2:b7:57:c2:44:6c:95:9d:8a:08:63:f9:ed:d1:81:81:f9: bc:88:54:ad:aa:41:69:91:32:d8:22:a9:b7:dc:1c:55:67:18: 06:8a:13:54:34:45:f3:a6:60:3e:7b:c8:6b:f1:a4:a1:4a:1b: 13:6f:f2:24:1a:8d:ff:20:0d:7f:d2:f9:da:bd:81:67:f9:f9: c8:76:d7:58:7d:9b:f3:0b:ae:0e:e9:eb:44:a4:b6:32:a9:8b: 0c:17:a1:a6:7c:46:4d:d5:1b:69:63:e5:3e:15:27:08:14:f0: 58:f8:f5:cd:65:82:d2:0c:fd:0c:78:94:e2:0a:af:66:6f:cc: 13:2c:d3:92:f5:ce:f2:9a:9e:83:e8:5c:95:9a:37:10:62:07: 5d:f4:4f:91:5b:61:86:0e:a3:89:c5:43:d1:57:13:5f:8b:dd: ef:00:22:18:16:a7:b8:79:73:e9:f1:50:fc:6c:d2:e0:47:0d: f5:9d:a8:ef:1e:ea:ab:19:e6:f8:6e:a4:c9:ce:9f:68:ff:6a: fe:cb:6c:ba:b7:25:5c:c0:cd:cf:b6:3c:18:1d:7a:e6:70:6a: d3:80:89:9b:2b:8f:8a:47:86:ac:b5:a5:71:e6:15:b5:55:7e: e4:7d:3e:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk0RjcxMTAvBgNVBAUTKDgyQjMxRkExRENFMEM0QkYyRjY2Mzk3Nzg2QTZDMDhF NDdDNkI4RkUwHhcNMjUxMTAyMjMxNzMxWhcNMjUxMTA5MjMxNzMxWjAYMRYwFAYD VQQDEw02OTA3ZTY4Yi02NGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3q/IQMGisPcrzqv4jy3tJmPmKMhjuGbcRZidFnoTNIjYLNB8tML9o51jMcJi dbJ+y4HTlPjUsWUroozJVunO9hMfsIx/DRCh5by/DL4U9XXuczYcKUSMZxzRrBW4 eQYMbB3qltMJzpuqL1mytlUF+bkqrJpWivQonZXJb+wfuSsTU4ReABBHoFhN4yDB FzrfCsppy6KeCEgoN0qvWo2JVeOKY4DQe56Cc55T5KIwIgc7Z57JpQDNq2uBLrHS v41c0SO4s63PZZgZrDUYSskQN+v/P/wpoTRci1cQ4oMmzdhXIugIWJve9A9Vtlwo J6wudvudTVFkB/Ywsn0wEJ/ZfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ16Uuwz YEfdSbXb86p5ZeLcF6OIMB8GA1UdIwQYMBaAFIKzH6Hc4MS/L2Y5d4amwI5Hxrj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTRGNy81OUZGMDVBQUZG QzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hMOHZaamwzaHFiQWprZkd1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyTWZvZHpneEw4dlpqbDNocWJBamtmR3VQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTRGNy81OUZGMDVBQUZGQzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hM OHZaamwzaHFiQWprZkd1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXFY7Gl2gEEVU3G7L0L5zS4TLN8rdXwkRslZ2KCGP57dGBgfm8iFSt qkFpkTLYIqm33BxVZxgGihNUNEXzpmA+e8hr8aShShsTb/IkGo3/IA1/0vnavYFn +fnIdtdYfZvzC64O6etEpLYyqYsMF6GmfEZN1RtpY+U+FScIFPBY+PXNZYLSDP0M eJTiCq9mb8wTLNOS9c7ymp6D6FyVmjcQYgdd9E+RW2GGDqOJxUPRVxNfi93vACIY Fqe4eXPp8VD8bNLgRw31najvHuqrGeb4bqTJzp9o/2r+y2y6tyVcwM3PtjwYHXrm cGrTgImbK4+KR4astaVx5hW1VX7kfT4D -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:28 2025 by rpki-client