$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: LxxAlPy76zY4X/WxUlz0wbPpuvgDdaXBPD+NR0AZ9HY= Subject key identifier: 3D:D8:10:39:D9:3A:94:2A:47:51:A1:A8:43:FA:6D:BE:38:2B:A7:11 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: D3 Signing time: Mon 03 Nov 2025 05:39:05 +0000 Manifest this update: Mon 03 Nov 2025 05:39:05 +0000 Manifest next update: Mon 10 Nov 2025 05:39:05 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: AcEGXkLLvvFlHB3VjQsqdbV9OYad+1/28rTUkvjh+xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Nov 3 05:39:05 2025 GMT Not After : Nov 10 05:39:05 2025 GMT Subject: CN=69083ff9-aad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9c:cf:4a:d5:2c:ed:6d:4e:ac:80:58:07:f0: 4e:6b:2b:27:ad:ea:e2:ad:d2:c1:04:4c:84:f8:ac: d8:17:89:55:1a:c0:5f:26:73:27:80:29:ee:ab:7c: d6:73:98:cd:a8:e0:31:44:d2:6f:56:67:7c:c3:64: 86:90:1c:10:b6:74:eb:55:5c:ea:59:4b:65:00:86: 48:43:ad:23:f7:a6:71:70:e8:49:f9:52:2f:5e:5f: 7c:0c:0e:0c:47:e8:f0:44:fd:2e:41:c8:fe:75:bf: 95:97:d5:06:d5:a4:9b:aa:86:de:42:4c:d0:63:f2: 09:d2:42:70:fb:bc:5c:c2:f3:19:0e:57:2f:b7:b2: e6:a4:04:94:c1:cb:06:b7:2f:c1:bf:cb:54:53:53: bd:32:03:cc:91:7f:d5:c7:05:3b:a6:42:77:4c:a4: 8c:ad:3f:2f:32:6e:2a:ae:80:67:20:73:12:3f:b4: e6:9e:0c:6a:36:1d:51:5c:35:ac:bd:0f:15:e4:36: b7:76:d0:0b:0f:01:29:2f:c7:9e:a2:b5:37:d8:7e: a6:b3:f8:19:3a:01:42:2d:25:5d:b4:77:32:be:90: e8:d1:54:9e:9f:6b:cd:f0:94:f3:9b:be:82:a6:07: f4:f2:e4:3f:92:97:26:99:58:25:7b:a6:45:2e:99: 86:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D8:10:39:D9:3A:94:2A:47:51:A1:A8:43:FA:6D:BE:38:2B:A7:11 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:8b:2b:45:e1:4d:64:f9:9d:af:80:37:57:02:2f:19:a3:82: 76:9d:bc:25:7d:b6:6a:42:21:f7:24:60:64:6c:34:d1:03:f8: a9:b0:f4:fb:18:f7:0b:e7:2d:3a:b1:d3:26:35:e7:ca:b8:8f: 56:5c:da:7d:cd:59:e6:5a:bb:2e:73:43:cd:74:e1:38:9b:5d: 00:6b:37:ad:80:12:40:54:89:49:cf:15:f0:02:15:f9:2e:57: 17:6b:07:e8:a2:4e:e9:d1:25:5a:2b:76:2b:df:75:00:43:f3: d9:9f:da:78:f7:23:f8:8f:2f:c4:83:c1:87:d5:88:eb:15:c0: ac:80:f4:69:b7:09:89:16:4a:db:88:15:16:56:dd:d2:2c:c8: 9e:15:82:cf:2f:54:0e:8c:21:02:74:b8:ba:a3:97:f1:4e:16: 0e:7f:1b:f1:e0:99:30:25:ad:18:f2:b7:46:58:a7:45:cb:19: 22:d9:c8:80:93:ca:98:21:43:eb:dd:7f:0e:be:c2:f2:17:28: 28:42:38:94:fc:40:d2:33:1b:77:39:7b:e9:f7:61:d6:39:b0: aa:1a:c5:9c:d6:ba:d6:13:07:75:21:2a:cc:b0:ec:bc:9a:d6: 79:d0:48:6c:ad:a2:04:7d:76:0e:01:26:0c:56:bc:ad:5d:ae: 92:4d:d2:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDBBMDg4QTE5QkJEQjYxREVEMTkxNkM4NjBBQjJCOEJF RTE4NkVEQ0QwHhcNMjUxMTAzMDUzOTA1WhcNMjUxMTEwMDUzOTA1WjAYMRYwFAYD VQQDEw02OTA4M2ZmOS1hYWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJzPStUs7W1OrIBYB/BOaysnrerirdLBBEyE+KzYF4lVGsBfJnMngCnuq3zW c5jNqOAxRNJvVmd8w2SGkBwQtnTrVVzqWUtlAIZIQ60j96ZxcOhJ+VIvXl98DA4M R+jwRP0uQcj+db+Vl9UG1aSbqobeQkzQY/IJ0kJw+7xcwvMZDlcvt7LmpASUwcsG ty/Bv8tUU1O9MgPMkX/VxwU7pkJ3TKSMrT8vMm4qroBnIHMSP7TmngxqNh1RXDWs vQ8V5Da3dtALDwEpL8eeorU32H6ms/gZOgFCLSVdtHcyvpDo0VSen2vN8JTzm76C pgf08uQ/kpcmmVgle6ZFLpmGnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3YEDnZ OpQqR1GhqEP6bb44K6cRMB8GA1UdIwQYMBaAFAoIihm722He0ZFshgqyuL7hhu3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EQjUxN0IwODc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2YllkN1JrV3lHQ3JLNHZ1R0c3 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EQjUxN0IwODc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2Yllk N1JrV3lHQ3JLNHZ1R0c3YzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKiytF4U1k+Z2vgDdXAi8Zo4J2nbwlfbZqQiH3JGBkbDTRA/ipsPT7 GPcL5y06sdMmNefKuI9WXNp9zVnmWrsuc0PNdOE4m10AazetgBJAVIlJzxXwAhX5 LlcXawfook7p0SVaK3Yr33UAQ/PZn9p49yP4jy/Eg8GH1YjrFcCsgPRptwmJFkrb iBUWVt3SLMieFYLPL1QOjCECdLi6o5fxThYOfxvx4JkwJa0Y8rdGWKdFyxki2ciA k8qYIUPr3X8OvsLyFygoQjiU/EDSMxt3OXvp92HWObCqGsWc1rrWEwd1ISrMsOy8 mtZ50EhsraIEfXYOASYMVrytXa6STdJb -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:06 2025 by rpki-client