$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: ATuTdB7eih30mR29qFCvk2v36LjQnsbPUJV5RU4e3g0= Subject key identifier: 80:05:A2:83:E5:08:C4:F0:44:F2:35:97:40:0A:60:80:8B:E5:FB:BB Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 06F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 06ED Signing time: Tue 04 Nov 2025 22:03:25 +0000 Manifest this update: Tue 04 Nov 2025 22:03:25 +0000 Manifest next update: Tue 11 Nov 2025 22:03:25 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: 2cs8FO4WsvaKnsp/M2e3qCx48ih4CYDxjmiYabnMzXM=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: QHZWlLh2PyAY4WTgaNICz7qTAAizZpA7yqBBQ8slHlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE, serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: Nov 4 22:03:25 2025 GMT Not After : Nov 11 22:03:25 2025 GMT Subject: CN=690a782d-f3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:90:7d:e8:78:27:aa:fc:eb:4c:5d:92:83:72: 7e:e4:c9:e0:35:d7:66:6c:e1:0f:d9:26:c2:db:00: 43:8e:de:2d:1d:0a:be:4c:ca:0f:69:73:eb:f4:2a: 40:0c:aa:da:16:44:10:a1:b8:ea:39:7d:62:a9:94: 9f:39:ca:18:23:e2:b2:82:55:6d:4d:b3:e3:31:b0: 96:68:83:6d:0a:e8:8e:33:d4:ab:05:1a:97:33:31: 22:5d:0a:de:df:63:4f:01:52:cb:f7:ec:db:7f:4d: 1f:cb:33:b8:87:17:d5:f5:43:32:c6:f9:0f:ce:7e: 00:6a:e3:a0:cc:f4:21:df:1d:10:5f:7d:34:7d:f1: 64:de:b6:c0:ee:e5:a4:8f:44:fd:b7:e5:b2:d3:98: 18:e8:31:e6:bd:75:29:17:8b:d8:4a:52:04:84:cf: 46:22:55:a9:2e:8b:af:7e:b3:9f:32:ad:58:cb:63: 88:c9:77:60:a7:9c:56:c1:cb:0b:b6:1d:33:dd:f1: bb:27:ad:06:28:32:8b:63:7d:ba:8e:12:df:40:82: 2d:1e:3f:07:71:27:92:a1:0f:60:86:cf:e8:ec:f3: 7c:bd:81:f2:51:70:8d:01:d6:88:0f:28:62:c8:e2: 6e:68:15:3b:9c:21:ae:34:08:c9:f0:7a:bf:de:b0: ae:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:05:A2:83:E5:08:C4:F0:44:F2:35:97:40:0A:60:80:8B:E5:FB:BB X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:04:6e:55:81:76:54:4e:12:3e:6f:6a:68:76:2a:97:8b:d2: 74:d6:8b:2e:66:a5:bd:c1:3f:b3:7c:65:63:9d:c9:aa:54:ba: 51:25:31:0c:3c:67:18:b4:ba:9e:8e:41:15:ce:41:24:d6:75: a0:f6:c2:40:6f:33:f8:2e:20:36:e3:6a:4c:f7:17:9c:8a:6f: 1a:da:e5:a4:07:4c:92:fd:1c:5d:64:33:13:5a:f2:47:60:49: ea:1b:77:8d:92:59:57:ef:8d:09:11:0e:db:aa:0b:2b:c9:86: 8d:d9:cc:9f:a0:7f:21:e5:ad:a1:ce:be:fa:53:64:8d:35:55: 15:4f:f3:5b:89:c8:f6:f9:7e:ab:6e:19:6a:75:61:f1:06:5f: 74:7c:cb:47:2d:4f:78:55:a8:ab:3e:a6:20:7f:94:d9:c5:5e: d3:d7:65:15:a5:a2:e1:53:9a:b3:8a:36:c7:e2:43:42:20:98: 33:0f:45:af:8a:25:7e:7f:59:95:04:13:39:2e:a4:0b:14:ca: e9:a8:e6:ce:c1:e6:28:82:09:fc:9c:16:9e:b6:26:32:13:0a: c2:d3:ae:b4:76:fd:f7:76:ca:76:2a:1f:3c:63:1e:26:80:26: 23:23:9c:7d:95:e9:42:51:e6:9a:ac:3f:5a:57:95:c5:29:86: 01:b4:d9:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjUxMTA0MjIwMzI1WhcNMjUxMTExMjIwMzI1WjAYMRYwFAYD VQQDEw02OTBhNzgyZC1mM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JB96HgnqvzrTF2Sg3J+5MngNddmbOEP2SbC2wBDjt4tHQq+TMoPaXPr9CpA DKraFkQQobjqOX1iqZSfOcoYI+KyglVtTbPjMbCWaINtCuiOM9SrBRqXMzEiXQre 32NPAVLL9+zbf00fyzO4hxfV9UMyxvkPzn4AauOgzPQh3x0QX300ffFk3rbA7uWk j0T9t+Wy05gY6DHmvXUpF4vYSlIEhM9GIlWpLouvfrOfMq1Yy2OIyXdgp5xWwcsL th0z3fG7J60GKDKLY326jhLfQIItHj8HcSeSoQ9ghs/o7PN8vYHyUXCNAdaIDyhi yOJuaBU7nCGuNAjJ8Hq/3rCukQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAFooPl CMTwRPI1l0AKYICL5fu7MB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQBG5VgXZUThI+b2podiqXi9J01osuZqW9wT+zfGVjncmqVLpRJTEM PGcYtLqejkEVzkEk1nWg9sJAbzP4LiA242pM9xecim8a2uWkB0yS/RxdZDMTWvJH YEnqG3eNkllX740JEQ7bqgsryYaN2cyfoH8h5a2hzr76U2SNNVUVT/Nbicj2+X6r bhlqdWHxBl90fMtHLU94VairPqYgf5TZxV7T12UVpaLhU5qzijbH4kNCIJgzD0Wv iiV+f1mVBBM5LqQLFMrpqObOweYoggn8nBaetiYyEwrC0660dv33dsp2Kh88Yx4m gCYjI5x9lelCUeaarD9aV5XFKYYBtNm2 -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:42 2025 by rpki-client