$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft File: AZcEvn5KzguhIRSzKOsCBxHvTq8.mft (raw, json) Hash identifier: 7YfrXwSOamCj4nqyRfDFvkjGQz2Oopc1neAnaSdQ+EM= Subject key identifier: 32:95:30:E9:C8:7E:03:DC:DD:19:4F:1F:95:E4:0F:DC:7B:7C:5E:63 Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft Manifest number: 023B Signing time: Mon 03 Nov 2025 01:48:23 +0000 Manifest this update: Mon 03 Nov 2025 01:48:22 +0000 Manifest next update: Mon 10 Nov 2025 01:48:22 +0000 Files and hashes: 1: AZcEvn5KzguhIRSzKOsCBxHvTq8.crl (hash: a8EbeHb4F5s8NH2hOJsPjGjYhJanDq7D3sT4JkI8fJQ=) 2: 85AEBA76504C11ED829F7D24C4F9AE02.roa (hash: MijbaBFOBmjVn0NZXYmQ25vm+DrZhkqNokVzBodlkOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2, serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: Nov 3 01:48:22 2025 GMT Not After : Nov 10 01:48:22 2025 GMT Subject: CN=690809e7-0637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e5:f4:9c:2d:64:31:70:86:38:19:22:b0:4d: b8:7c:e3:21:8a:95:39:29:b6:13:84:9f:6f:75:8a: 54:b6:16:58:a5:55:6d:2f:f2:0f:b8:13:75:2c:d8: 13:ce:07:5c:d1:8f:10:22:09:a6:cf:6a:a6:4b:70: 7b:1b:08:f0:1e:f6:81:a1:db:6d:ca:e8:c8:5a:14: 07:73:9e:89:b7:11:97:8d:61:66:61:95:5c:9f:7c: 21:a9:38:5e:6e:d4:f7:70:e9:4b:86:7d:67:4e:6c: c4:d2:31:b2:8a:d8:a8:ff:04:89:1d:e9:a3:ab:6e: 66:54:b3:0b:7f:8d:43:1b:80:5e:92:d7:4c:69:10: 97:a4:1c:c5:25:d3:a6:71:43:ef:8c:88:ac:24:3c: 79:5b:f6:23:81:87:ed:d4:7f:04:48:ee:64:22:d0: 43:21:b0:1e:bc:01:cf:76:0d:07:b6:ec:8d:55:5b: 92:f7:e5:88:2b:52:6b:1c:54:8b:7e:0d:e8:8f:f5: 8f:c6:2b:52:1c:26:fe:f9:3b:40:b5:6c:1b:b1:3c: 75:b3:be:fa:91:d5:fb:3a:bc:44:91:05:91:a0:17: bf:dc:11:af:69:fa:b5:5f:51:db:64:62:c6:45:d2: 1d:14:80:0d:be:ca:7d:8b:f0:26:61:44:53:75:5a: 03:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:95:30:E9:C8:7E:03:DC:DD:19:4F:1F:95:E4:0F:DC:7B:7C:5E:63 X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:07:b9:56:12:71:af:bd:ba:3c:fd:b3:ea:08:fc:bc:57:31: 5e:e2:9a:3b:b7:c4:4c:a0:f7:c1:fb:c2:ae:4d:03:69:44:a2: 2e:23:c6:3b:d4:43:9e:1c:52:5c:84:a6:b4:00:42:fe:50:4b: a5:a4:43:a2:d9:25:65:02:ff:68:6a:8f:e6:dc:9c:07:fc:8f: 3a:3a:46:d5:6b:b4:ee:29:33:4c:36:fa:5d:f4:c3:a6:6b:06: 1f:be:60:58:cd:07:f2:25:26:61:9a:fe:74:a2:1c:60:d1:21: 58:ed:b7:94:90:8e:3e:fd:05:42:6e:9c:49:56:c0:3b:55:a6: 7b:35:19:6d:9d:e6:eb:98:eb:5a:c5:23:b3:58:ae:e0:a6:77: 12:0e:47:9d:7d:10:a7:7d:aa:d5:39:b5:b0:97:4c:3e:96:32: 90:5b:73:88:7e:c5:ad:d9:f1:9a:56:c4:c7:37:d1:3a:a6:d9: 9a:4e:30:c6:19:93:4f:e0:b3:0a:d0:6b:44:12:b2:4f:25:cd: e9:0c:5a:6c:9b:e5:63:d8:97:d5:7f:d0:00:dc:66:e4:9d:f2: 1c:83:55:a5:49:6c:e9:f3:84:9a:88:83:e2:c9:48:06:99:5d: be:1e:d2:55:c9:e2:fc:64:fe:d2:e8:fb:00:d1:9c:0d:7a:3f: 86:d5:0f:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjUxMTAzMDE0ODIyWhcNMjUxMTEwMDE0ODIyWjAYMRYwFAYD VQQDEw02OTA4MDllNy0wNjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OX0nC1kMXCGOBkisE24fOMhipU5KbYThJ9vdYpUthZYpVVtL/IPuBN1LNgT zgdc0Y8QIgmmz2qmS3B7GwjwHvaBodttyujIWhQHc56JtxGXjWFmYZVcn3whqThe btT3cOlLhn1nTmzE0jGyitio/wSJHemjq25mVLMLf41DG4BektdMaRCXpBzFJdOm cUPvjIisJDx5W/YjgYft1H8ESO5kItBDIbAevAHPdg0HtuyNVVuS9+WIK1JrHFSL fg3oj/WPxitSHCb++TtAtWwbsTx1s776kdX7OrxEkQWRoBe/3BGvafq1X1HbZGLG RdIdFIANvsp9i/AmYURTdVoDIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKVMOnI fgPc3RlPH5XkD9x7fF5jMB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjhFMi85NzAxM0E0RTUwNDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pn dWhJUlN6S09zQ0J4SHZUcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbB7lWEnGvvbo8/bPqCPy8VzFe4po7t8RMoPfB+8KuTQNpRKIuI8Y7 1EOeHFJchKa0AEL+UEulpEOi2SVlAv9oao/m3JwH/I86OkbVa7TuKTNMNvpd9MOm awYfvmBYzQfyJSZhmv50ohxg0SFY7beUkI4+/QVCbpxJVsA7VaZ7NRltnebrmOta xSOzWK7gpncSDkedfRCnfarVObWwl0w+ljKQW3OIfsWt2fGaVsTHN9E6ptmaTjDG GZNP4LMK0GtEErJPJc3pDFpsm+Vj2JfVf9AA3GbknfIcg1WlSWzp84SaiIPiyUgG mV2+HtJVyeL8ZP7S6PsA0ZwNej+G1Q+3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:32 2025 by rpki-client