$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: oUaEG9wPMR9q65o38B9Do+UmxPqFqUrPM+sB+eqHhns= Subject key identifier: A4:C0:3C:CB:11:0F:C8:AE:22:F2:F0:27:A1:ED:68:74:A9:CE:0F:B4 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 0141 Signing time: Wed 05 Nov 2025 04:32:00 +0000 Manifest this update: Wed 05 Nov 2025 04:31:59 +0000 Manifest next update: Wed 12 Nov 2025 04:31:59 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: h+ZLUrHJjnhOG+JkI/N8WvR2qHiFaGwkLc/7Ibu8JOQ=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Nov 5 04:31:59 2025 GMT Not After : Nov 12 04:31:59 2025 GMT Subject: CN=690ad33f-d6c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c3:c3:ed:3e:0f:37:54:5e:02:11:fb:a9:d0: 81:99:25:ea:3d:c4:40:4a:0b:24:24:44:87:35:d4: a1:82:f9:ed:94:a8:06:66:63:c9:b2:0f:f3:f1:a6: f0:c7:c5:5c:b7:1a:61:fc:21:e4:49:ec:70:39:f6: e0:a5:e0:5e:02:b8:12:fa:f6:0a:a4:04:47:06:ff: 29:5e:cb:4b:34:8d:bd:d5:09:60:36:b4:e0:de:c1: 07:ec:f2:79:66:f6:10:0e:cf:e0:67:7a:76:be:6a: 95:4a:04:ec:63:79:3c:86:a2:ca:e1:42:fa:f7:e1: 39:fb:26:a4:22:e1:98:20:37:50:d5:d5:75:3a:d4: 98:e6:77:4a:a7:25:f7:d0:2a:ac:60:01:0a:a2:48: fa:66:f7:ac:f5:30:9e:e1:a9:a3:a9:79:7c:25:ea: 84:91:9c:51:96:27:d2:dd:c9:f8:74:7f:72:82:ca: 88:ee:32:fc:91:0a:33:91:b5:77:6d:2b:a5:16:51: 8d:38:e6:df:d0:5f:ba:fc:47:c6:56:df:f4:d6:43: f6:84:b4:2e:74:21:6b:1c:bc:84:35:04:24:bc:c6: e8:04:1d:4d:e4:9e:8f:8d:0f:c4:9d:f5:e4:fc:a5: 8a:13:8d:e1:c5:42:97:fd:57:f9:81:4c:57:8d:6f: 93:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C0:3C:CB:11:0F:C8:AE:22:F2:F0:27:A1:ED:68:74:A9:CE:0F:B4 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a7:4a:19:ef:89:72:07:9e:04:6b:82:b2:fe:fe:eb:d4:2b: 17:7f:61:91:e0:06:0b:19:0b:03:22:3f:e5:ef:e9:f1:fb:af: b8:96:2b:12:59:02:28:a6:6a:c8:e8:4e:eb:66:19:68:1b:a9: ad:ec:a4:66:37:08:20:11:5a:11:d3:05:5d:6c:26:aa:dd:15: c7:a1:bc:c9:1a:90:f1:9d:19:46:78:a2:79:ba:34:d5:62:24: 36:fb:98:e4:88:78:c6:70:2f:d6:23:28:73:a9:d7:d0:96:f4: d2:15:f3:23:35:fe:a1:0c:5c:00:ca:23:af:f0:6b:f1:05:c6: 0c:8b:9a:6f:38:b2:46:5a:b3:0b:f1:86:7f:3f:1e:be:9b:2a: 6f:cc:c7:76:67:00:ac:78:8d:de:cd:1f:15:4b:6b:fe:5c:93: 7a:eb:83:c0:7b:a3:2e:75:0b:6d:8b:8e:9d:e0:78:a5:0f:bb: 4e:a2:35:3b:84:f4:f0:47:ea:cf:5c:de:82:9e:3c:6c:33:4d: 3e:c5:11:d9:c2:6e:9e:ab:a1:77:f0:6e:5c:d4:8a:ad:e9:5c: 39:91:63:4d:a0:48:76:8b:dc:df:3d:54:79:18:44:95:be:47: c9:4f:a0:13:88:05:51:dd:23:1e:00:2f:01:15:0a:d3:a3:a9: 48:7b:91:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUxMTA1MDQzMTU5WhcNMjUxMTEyMDQzMTU5WjAYMRYwFAYD VQQDEw02OTBhZDMzZi1kNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscPD7T4PN1ReAhH7qdCBmSXqPcRASgskJESHNdShgvntlKgGZmPJsg/z8abw x8Vctxph/CHkSexwOfbgpeBeArgS+vYKpARHBv8pXstLNI291QlgNrTg3sEH7PJ5 ZvYQDs/gZ3p2vmqVSgTsY3k8hqLK4UL69+E5+yakIuGYIDdQ1dV1OtSY5ndKpyX3 0CqsYAEKokj6Zves9TCe4amjqXl8JeqEkZxRlifS3cn4dH9ygsqI7jL8kQozkbV3 bSulFlGNOObf0F+6/EfGVt/01kP2hLQudCFrHLyENQQkvMboBB1N5J6PjQ/EnfXk /KWKE43hxUKX/Vf5gUxXjW+T+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTAPMsR D8iuIvLwJ6HtaHSpzg+0MB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAop0oZ74lyB54Ea4Ky/v7r1CsXf2GR4AYLGQsDIj/l7+nx+6+4lisS WQIopmrI6E7rZhloG6mt7KRmNwggEVoR0wVdbCaq3RXHobzJGpDxnRlGeKJ5ujTV YiQ2+5jkiHjGcC/WIyhzqdfQlvTSFfMjNf6hDFwAyiOv8GvxBcYMi5pvOLJGWrML 8YZ/Px6+mypvzMd2ZwCseI3ezR8VS2v+XJN664PAe6MudQtti46d4HilD7tOojU7 hPTwR+rPXN6CnjxsM00+xRHZwm6eq6F38G5c1Iqt6Vw5kWNNoEh2i9zfPVR5GESV vkfJT6ATiAVR3SMeAC8BFQrTo6lIe5Ha -----END CERTIFICATE-----Generated at Wed Nov 5 17:57:23 2025 by rpki-client