$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft File: AEu7wBxXH6cPIOpEBQBX2dyeutI.mft (raw, json) Hash identifier: UG57TURfJ1Z96s2TJLK76L7qpeSXrRGMyeLZYS4b5hs= Subject key identifier: 41:DA:B1:DF:EE:B5:8F:36:6D:55:E4:6C:50:69:21:9B:C0:1E:A4:6D Authority key identifier: 00:4B:BB:C0:1C:57:1F:A7:0F:20:EA:44:05:00:57:D9:DC:9E:BA:D2 Certificate issuer: /CN=A91326B3/serialNumber=004BBBC01C571FA70F20EA44050057D9DC9EBAD2 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft Manifest number: 012F Signing time: Mon 03 Nov 2025 04:33:59 +0000 Manifest this update: Mon 03 Nov 2025 04:33:59 +0000 Manifest next update: Mon 10 Nov 2025 04:33:59 +0000 Files and hashes: 1: AEu7wBxXH6cPIOpEBQBX2dyeutI.crl (hash: xfsqqokai/Zp/+j2Rl85ZX9s1OFPJzleH8ormWK2u/0=) 2: C4BA1CE6E69211EE99E71B6AC4F9AE02.roa (hash: y3j/TCNZc4+9GUOHxfPGcXJYdNwoHrgSAKMjnwhnAHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.crl rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=004BBBC01C571FA70F20EA44050057D9DC9EBAD2 Validity Not Before: Nov 3 04:33:59 2025 GMT Not After : Nov 10 04:33:59 2025 GMT Subject: CN=690830b7-f064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6a:38:d5:e4:c8:db:a4:99:db:f2:fb:92:37: ee:fe:ca:58:a9:cc:55:88:17:da:26:e2:3e:ad:89: 38:c9:1a:53:95:24:35:6d:a7:4d:b1:56:0e:4a:15: 2b:2f:00:47:fa:f8:c3:de:9f:2e:c1:d6:22:f4:fc: c3:79:b5:8d:07:cf:3a:f7:0a:d6:ce:41:b9:13:e0: 83:79:9b:84:28:75:06:71:6f:e0:22:b7:c3:9f:53: 76:1f:91:d7:96:7b:cc:e8:1b:27:38:ad:e7:72:61: 67:68:68:f7:b9:e3:58:58:35:1a:95:81:4f:6a:e6: e6:11:ae:99:15:92:ee:7e:1c:c1:de:89:6e:1f:3b: 3a:da:8a:be:42:55:ef:90:41:50:ff:36:42:02:02: ef:85:b5:06:1c:94:f7:99:ba:95:2c:89:e1:2b:bb: 74:96:f4:12:1d:83:82:3d:91:e5:d7:4c:a4:e9:4c: f1:67:7d:01:4e:b3:a1:48:6a:dc:cf:7d:71:75:12: 15:a0:c0:1c:65:c9:40:ae:84:4d:51:29:65:64:a7: 26:db:f8:10:ba:a8:56:e3:78:14:73:3d:20:a3:47: 4a:d8:43:ab:9d:48:28:7b:17:98:56:a1:bb:91:aa: d1:c3:bf:d3:b5:5e:f9:85:29:7b:fd:2e:74:4c:5e: dd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DA:B1:DF:EE:B5:8F:36:6D:55:E4:6C:50:69:21:9B:C0:1E:A4:6D X509v3 Authority Key Identifier: keyid:00:4B:BB:C0:1C:57:1F:A7:0F:20:EA:44:05:00:57:D9:DC:9E:BA:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:84:9f:49:d3:37:a5:3f:85:ec:1e:ba:05:58:ad:84:17:72: c4:64:89:ca:fb:b3:83:8c:82:9a:0f:65:fe:fd:af:71:a0:75: 57:17:0a:74:7e:99:cd:e9:cc:05:7d:da:d1:5d:2d:b4:ae:cd: 49:0b:7d:cd:65:fb:18:bf:cd:4f:a0:b6:3f:d0:6f:4a:b8:5d: 4c:dd:cb:25:04:ee:87:f4:2e:19:1d:b2:fa:12:ca:8b:2f:e5: 77:71:ab:4b:4b:2e:88:cb:f1:13:68:b5:55:02:63:85:11:6e: f9:7a:c7:ee:e4:0d:d9:f9:cf:24:5e:17:1c:70:06:f8:b8:b9: 5e:15:96:3e:62:01:89:79:e8:78:1d:1a:95:88:f8:07:06:94: 1a:99:4a:b3:9b:ca:c7:34:f2:7a:d0:b8:7f:db:c2:d8:1a:bd: 80:b9:16:d0:2b:8a:05:2c:08:32:db:21:68:99:1e:06:76:f6: 62:7f:0f:ea:fb:45:75:fb:cd:b7:45:bc:64:96:4f:09:3a:07: 1f:4b:cd:61:f6:55:0c:ac:cc:8b:ea:c2:d3:df:24:68:e8:c4: c5:4c:bc:2e:35:af:97:e4:be:4d:1e:16:7f:7b:f9:d0:da:e7: 1a:3b:b4:86:9e:99:74:30:d9:32:97:35:fa:2a:d9:f0:c6:2e: 6a:3f:49:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDAwNEJCQkMwMUM1NzFGQTcwRjIwRUE0NDA1MDA1N0Q5 REM5RUJBRDIwHhcNMjUxMTAzMDQzMzU5WhcNMjUxMTEwMDQzMzU5WjAYMRYwFAYD VQQDEw02OTA4MzBiNy1mMDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42o41eTI26SZ2/L7kjfu/spYqcxViBfaJuI+rYk4yRpTlSQ1badNsVYOShUr LwBH+vjD3p8uwdYi9PzDebWNB8869wrWzkG5E+CDeZuEKHUGcW/gIrfDn1N2H5HX lnvM6BsnOK3ncmFnaGj3ueNYWDUalYFPaubmEa6ZFZLufhzB3oluHzs62oq+QlXv kEFQ/zZCAgLvhbUGHJT3mbqVLInhK7t0lvQSHYOCPZHl10yk6UzxZ30BTrOhSGrc z31xdRIVoMAcZclAroRNUSllZKcm2/gQuqhW43gUcz0go0dK2EOrnUgoexeYVqG7 karRw7/TtV75hSl7/S50TF7d7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHasd/u tY82bVXkbFBpIZvAHqRtMB8GA1UdIwQYMBaAFABLu8AcVx+nDyDqRAUAV9ncnrrS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DRTlGMTZGRUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9BRXU3d0J4WEg2Y1BJT3BFQlFCWDJkeWV1 dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FFdTd3QnhYSDZjUElPcEVCUUJYMmR5ZXV0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DRTlGMTZGRUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9BRXU3d0J4WEg2 Y1BJT3BFQlFCWDJkeWV1dEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIhJ9J0zelP4XsHroFWK2EF3LEZInK+7ODjIKaD2X+/a9xoHVXFwp0 fpnN6cwFfdrRXS20rs1JC33NZfsYv81PoLY/0G9KuF1M3cslBO6H9C4ZHbL6EsqL L+V3catLSy6Iy/ETaLVVAmOFEW75esfu5A3Z+c8kXhcccAb4uLleFZY+YgGJeeh4 HRqViPgHBpQamUqzm8rHNPJ60Lh/28LYGr2AuRbQK4oFLAgy2yFomR4GdvZifw/q +0V1+823Rbxklk8JOgcfS81h9lUMrMyL6sLT3yRo6MTFTLwuNa+X5L5NHhZ/e/nQ 2ucaO7SGnpl0MNkylzX6Ktnwxi5qP0k+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:19 2025 by rpki-client