$ rpki-client -vvf rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft File: 0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft (raw, json) Hash identifier: IA01td0EQa+VpsWfrtSFwH0idv43DVnS2BESFL+vEcE= Subject key identifier: 55:DE:11:44:56:D6:63:8B:C4:2A:D9:49:A8:2D:8A:BA:68:B9:9B:2C Authority key identifier: D1:8F:FC:C5:04:D3:69:3D:7F:8A:38:D8:6D:C1:2E:88:CD:96:0E:56 Certificate issuer: /CN=A91443DC/serialNumber=D18FFCC504D3693D7F8A38D86DC12E88CD960E56 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft Manifest number: 0100 Signing time: Mon 03 Nov 2025 05:03:44 +0000 Manifest this update: Mon 03 Nov 2025 05:03:44 +0000 Manifest next update: Mon 10 Nov 2025 05:03:44 +0000 Files and hashes: 1: 0Y_8xQTTaT1_ijjYbcEuiM2WDlY.crl (hash: vAjHzvv4nVBf8x+NULJohkDDQT3ayFqQ56VN0ummqRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.crl rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443DC, serialNumber=D18FFCC504D3693D7F8A38D86DC12E88CD960E56 Validity Not Before: Nov 3 05:03:44 2025 GMT Not After : Nov 10 05:03:44 2025 GMT Subject: CN=690837b0-5cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:9f:de:34:51:01:c6:86:72:8f:18:62:a6: 90:e1:3a:a2:ac:3c:f1:00:52:da:52:45:30:64:a2: dc:27:cd:99:f7:58:41:62:cf:6d:ec:a4:c5:14:87: 4a:73:03:d7:36:0b:b9:13:f6:5c:a2:f6:2a:5f:c4: 9d:97:7b:b8:d5:0f:f1:d0:1b:19:6c:ed:ff:96:7a: 66:be:e9:93:52:0d:2b:9e:e1:9a:c0:d9:a2:13:7e: 6a:8c:89:f6:e1:3a:25:56:1d:33:a5:03:81:9f:51: 0f:f9:7f:32:5a:77:4e:a2:d0:42:dd:98:80:5f:96: fe:fc:8d:b8:fc:e2:ce:cf:c6:9c:98:e8:30:fd:e8: 86:a1:72:68:3a:7b:5f:0c:6c:bf:79:7c:3f:5d:51: 43:0b:de:9b:ed:b2:97:95:d7:4b:4b:f7:97:b1:95: a8:82:3c:89:2f:52:5f:20:db:af:cb:4a:8b:12:2d: 2b:13:42:b3:f3:2b:43:09:f0:0c:4c:7c:e7:ab:49: f4:0e:1c:df:5d:43:cc:30:cb:da:9a:e0:75:36:3a: cb:c8:b8:27:cf:34:f2:57:63:eb:c5:a5:5c:96:76: 6f:f4:52:0a:67:17:8e:9f:32:17:68:6b:bd:92:80: 04:00:5c:00:bc:22:69:4a:1b:ec:bc:21:cd:c1:91: ea:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DE:11:44:56:D6:63:8B:C4:2A:D9:49:A8:2D:8A:BA:68:B9:9B:2C X509v3 Authority Key Identifier: keyid:D1:8F:FC:C5:04:D3:69:3D:7F:8A:38:D8:6D:C1:2E:88:CD:96:0E:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f4:7b:e7:a1:4c:7a:4f:5c:02:9a:4d:8f:67:e5:3f:86:7b: b6:d7:c3:60:58:6b:f8:90:c7:2d:9a:e1:1b:4f:f5:f0:28:fc: 8c:0c:7b:68:24:a6:9f:a9:06:ee:22:15:bd:ad:c6:f8:3d:a0: b8:05:59:14:78:ed:20:13:ca:44:50:0d:6f:9d:a5:16:29:0a: 40:e9:51:66:1d:cc:4d:44:60:69:99:cc:4e:2f:52:6e:ce:2b: 44:07:b8:3f:9b:e3:c2:6a:6f:78:7c:c7:fb:2d:1e:25:ac:dc: 05:25:3e:c5:00:4f:3b:fb:0f:98:f9:e0:4c:aa:e8:f2:50:c9: 94:70:f3:4e:94:03:b0:32:e6:50:61:6d:bf:0d:45:72:29:c4: 0c:ee:02:8e:a2:18:ee:51:1a:3a:5b:83:25:cb:c2:91:e3:e4: 7f:38:bb:ab:46:2a:91:87:54:c9:0c:c8:1b:25:f4:c7:65:e2: 24:75:76:25:69:7b:f7:72:a9:d5:4f:a1:19:dd:bf:41:fd:61: 45:a0:5b:76:b2:4c:eb:cb:04:7d:db:f7:b8:6b:63:5b:ea:67: 43:3d:bb:27:34:2b:5e:0e:c4:40:b8:3e:cf:2a:93:5f:40:24: d3:d2:54:1c:1a:14:02:a0:1f:3a:41:1d:90:7d:81:fc:2d:25: 95:38:05:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzREMxMTAvBgNVBAUTKEQxOEZGQ0M1MDREMzY5M0Q3RjhBMzhEODZEQzEyRTg4 Q0Q5NjBFNTYwHhcNMjUxMTAzMDUwMzQ0WhcNMjUxMTEwMDUwMzQ0WjAYMRYwFAYD VQQDEw02OTA4MzdiMC01Y2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtif3jRRAcaGco8YYqaQ4TqirDzxAFLaUkUwZKLcJ82Z91hBYs9t7KTFFIdK cwPXNgu5E/ZcovYqX8Sdl3u41Q/x0BsZbO3/lnpmvumTUg0rnuGawNmiE35qjIn2 4TolVh0zpQOBn1EP+X8yWndOotBC3ZiAX5b+/I24/OLOz8acmOgw/eiGoXJoOntf DGy/eXw/XVFDC96b7bKXlddLS/eXsZWogjyJL1JfINuvy0qLEi0rE0Kz8ytDCfAM THznq0n0DhzfXUPMMMvamuB1NjrLyLgnzzTyV2PrxaVclnZv9FIKZxeOnzIXaGu9 koAEAFwAvCJpShvsvCHNwZHqrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXeEURW 1mOLxCrZSagtirpouZssMB8GA1UdIwQYMBaAFNGP/MUE02k9f4o42G3BLojNlg5W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDNEQy9BMDY1RDFFQTMw NjIxMUVGOTc4QjQ3NjRDNEY5QUUwMi8wWV84eFFUVGFUMV9pampZYmNFdWlNMldE bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZXzh4UVRUYVQxX2lqalliY0V1aU0yV0RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDNEQy9BMDY1RDFFQTMwNjIxMUVGOTc4QjQ3NjRDNEY5QUUwMi8wWV84eFFUVGFU MV9pampZYmNFdWlNMldEbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA19HvnoUx6T1wCmk2PZ+U/hnu218NgWGv4kMctmuEbT/XwKPyMDHto JKafqQbuIhW9rcb4PaC4BVkUeO0gE8pEUA1vnaUWKQpA6VFmHcxNRGBpmcxOL1Ju zitEB7g/m+PCam94fMf7LR4lrNwFJT7FAE87+w+Y+eBMqujyUMmUcPNOlAOwMuZQ YW2/DUVyKcQM7gKOohjuURo6W4Mly8KR4+R/OLurRiqRh1TJDMgbJfTHZeIkdXYl aXv3cqnVT6EZ3b9B/WFFoFt2skzrywR92/e4a2Nb6mdDPbsnNCteDsRAuD7PKpNf QCTT0lQcGhQCoB86QR2QfYH8LSWVOAXg -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:09 2025 by rpki-client