$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: 8OlRqxAY5ZU/yTmjj75lgurCM5pSUOhXjOtfvJJCwgo= Subject key identifier: 4D:4D:04:35:23:F2:ED:76:24:5E:F8:19:AC:0D:63:B7:08:A5:FA:A0 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: A0 Signing time: Mon 03 Nov 2025 06:21:10 +0000 Manifest this update: Mon 03 Nov 2025 06:21:10 +0000 Manifest next update: Mon 10 Nov 2025 06:21:10 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: psn6AW11pLgsiSaiH4b5/8tCBS+Hc/1hpyixcIeGHuA=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Nov 3 06:21:10 2025 GMT Not After : Nov 10 06:21:10 2025 GMT Subject: CN=690849d6-f8fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d2:e7:0a:48:8f:a6:1c:21:2b:de:2d:1e:46: 10:b7:2b:5f:cc:15:24:b4:a4:e1:7b:ab:10:44:24: a1:49:00:d9:64:ad:af:3a:ec:df:62:5d:62:15:c0: ef:87:cf:89:9d:1b:2a:dc:06:2c:03:95:70:d3:94: 93:05:51:40:42:09:a5:65:c6:72:2e:bf:54:b4:5c: 14:12:c7:90:0b:41:1b:30:52:bb:be:ca:9f:0c:8c: b2:8f:b4:f6:71:f4:8d:f0:88:66:e0:2c:ff:78:d4: e7:06:63:ca:a7:86:93:a3:3c:fc:dc:46:7b:c1:5d: e3:7b:57:f8:bf:d4:11:8f:c0:18:d4:5e:dd:40:1e: b2:ff:7a:03:06:02:09:41:16:c9:71:58:f5:fa:80: c8:e3:7e:6e:e7:ea:96:8c:88:d0:61:84:48:68:17: 20:03:e3:0c:12:e9:14:ad:cc:27:a0:5d:bc:3f:71: 03:18:43:f3:e1:e8:41:ea:22:06:8a:9b:fa:30:46: 4f:3b:b5:81:a4:4b:af:4f:ec:82:52:5f:c1:c4:f6: 88:8f:f8:ee:18:b1:5a:4d:a6:68:1d:cf:f4:32:02: 6c:ed:42:97:3a:d3:b0:80:f7:d8:05:2d:b9:2a:f7: 44:e8:ce:23:57:20:4f:cf:9f:57:6c:12:eb:31:e8: c2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4D:04:35:23:F2:ED:76:24:5E:F8:19:AC:0D:63:B7:08:A5:FA:A0 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:21:18:d5:ff:2c:56:3c:30:51:93:63:b9:09:c2:e6:1d:c5: b8:16:12:9e:1e:11:aa:49:84:90:1c:d8:38:23:f9:1b:68:a7: 3a:27:ac:13:6f:9f:24:ac:ca:0a:c6:00:86:93:af:e3:d0:97: 11:1a:44:d5:e7:87:a6:d3:5e:0c:d4:70:70:a0:a7:4f:b5:a5: 1f:ce:79:68:10:bd:47:2d:ab:03:43:fe:e7:57:2e:aa:fa:e2: e3:16:0e:5f:d7:6b:63:fd:4f:3e:24:e7:0c:46:d3:57:64:3d: 4c:d4:bc:60:0b:21:ca:d3:76:55:aa:34:77:57:b6:99:c9:e0: 3f:8d:ec:dd:52:77:89:39:2a:8f:41:96:8d:9b:36:47:0d:5c: 66:fc:ea:8a:48:8d:9a:89:93:ca:aa:39:31:05:94:d3:98:da: e5:8f:58:dc:a5:d1:12:42:c8:0a:2c:c5:60:83:2d:93:44:db: bc:b1:b0:62:cb:c6:ee:3d:8c:5f:09:e6:e4:99:c6:b9:52:c1: d3:13:b9:15:bf:ad:86:47:bb:11:44:d1:56:f2:92:d9:1e:87: c8:59:cc:d2:fc:67:26:39:c8:d7:61:45:40:93:32:df:93:68: 7b:cd:97:4d:66:4d:a8:1f:0a:b7:e6:09:c6:55:21:7b:e0:18: ef:76:c4:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUxMTAzMDYyMTEwWhcNMjUxMTEwMDYyMTEwWjAYMRYwFAYD VQQDEw02OTA4NDlkNi1mOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNLnCkiPphwhK94tHkYQtytfzBUktKThe6sQRCShSQDZZK2vOuzfYl1iFcDv h8+JnRsq3AYsA5Vw05STBVFAQgmlZcZyLr9UtFwUEseQC0EbMFK7vsqfDIyyj7T2 cfSN8Ihm4Cz/eNTnBmPKp4aTozz83EZ7wV3je1f4v9QRj8AY1F7dQB6y/3oDBgIJ QRbJcVj1+oDI435u5+qWjIjQYYRIaBcgA+MMEukUrcwnoF28P3EDGEPz4ehB6iIG ipv6MEZPO7WBpEuvT+yCUl/BxPaIj/juGLFaTaZoHc/0MgJs7UKXOtOwgPfYBS25 KvdE6M4jVyBPz59XbBLrMejC5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1NBDUj 8u12JF74GawNY7cIpfqgMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/IRjV/yxWPDBRk2O5CcLmHcW4FhKeHhGqSYSQHNg4I/kbaKc6J6wT b58krMoKxgCGk6/j0JcRGkTV54em014M1HBwoKdPtaUfznloEL1HLasDQ/7nVy6q +uLjFg5f12tj/U8+JOcMRtNXZD1M1LxgCyHK03ZVqjR3V7aZyeA/jezdUneJOSqP QZaNmzZHDVxm/OqKSI2aiZPKqjkxBZTTmNrlj1jcpdESQsgKLMVggy2TRNu8sbBi y8buPYxfCebkmca5UsHTE7kVv62GR7sRRNFW8pLZHofIWczS/GcmOcjXYUVAkzLf k2h7zZdNZk2oHwq35gnGVSF74BjvdsTP -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:42 2025 by rpki-client