$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft File: aBR3td5WajjZsBVtqHq6-p-vhb0.mft (raw, json) Hash identifier: eitDk5F2ukfbxlrBPx+H7tYp7r3wAU0PmWIqFmIJtpM= Subject key identifier: 57:4E:0C:54:55:CC:D9:C4:71:5D:8F:21:02:DF:8B:B3:88:2F:1F:D1 Authority key identifier: 68:14:77:B5:DE:56:6A:38:D9:B0:15:6D:A8:7A:BA:FA:9F:AF:85:BD Certificate issuer: /CN=A91972DF/serialNumber=681477B5DE566A38D9B0156DA87ABAFA9FAF85BD Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBR3td5WajjZsBVtqHq6-p-vhb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft Manifest number: D6 Signing time: Mon 03 Nov 2025 05:41:55 +0000 Manifest this update: Mon 03 Nov 2025 05:41:55 +0000 Manifest next update: Mon 10 Nov 2025 05:41:55 +0000 Files and hashes: 1: aBR3td5WajjZsBVtqHq6-p-vhb0.crl (hash: caJwIorUXpBnX/gYDmXDRI5shLdiAvspuAsx7EPjwWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.crl rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBR3td5WajjZsBVtqHq6-p-vhb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=681477B5DE566A38D9B0156DA87ABAFA9FAF85BD Validity Not Before: Nov 3 05:41:55 2025 GMT Not After : Nov 10 05:41:55 2025 GMT Subject: CN=690840a3-cf33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d9:f3:07:39:2d:cd:45:0b:10:48:0a:49:25: a8:20:02:2d:e8:39:cf:48:b9:dc:f6:13:53:77:15: 63:03:09:5a:80:bc:55:f0:29:a3:94:42:fe:74:c6: 75:cb:cb:dd:4f:b2:f6:6c:c8:7e:98:e7:e3:e2:d4: c7:67:ca:71:b5:39:93:21:3d:d4:dd:9c:a8:11:f9: e3:00:66:16:ab:4a:2d:26:33:d2:02:2a:24:28:8d: d8:b1:d7:d5:22:e0:f2:a7:56:01:c1:18:5b:35:c8: d9:b5:57:21:21:d5:5a:73:34:3e:34:b4:87:e1:5c: 42:e1:d3:da:2d:ac:72:b1:8d:78:43:78:2e:3f:27: e7:a8:1c:a3:57:e0:b4:b3:8c:3f:78:f2:98:f7:67: ca:0a:da:1e:7b:63:e2:e5:95:e6:d2:cb:ee:84:1f: 1e:68:58:32:5f:43:89:ef:68:b8:ac:53:5b:70:2d: cb:3c:01:2f:17:bb:5e:03:f7:df:9c:ee:b9:0a:df: d8:34:44:dc:32:17:86:8d:6c:d6:cf:05:bb:53:cf: c9:85:7e:87:3f:82:56:6b:7a:6e:84:e0:dc:6e:86: 41:1e:ce:b7:df:bd:e5:ce:49:36:fc:70:8f:2f:56: 48:4e:ee:46:39:24:4e:cc:20:13:08:35:cc:ad:30: d5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4E:0C:54:55:CC:D9:C4:71:5D:8F:21:02:DF:8B:B3:88:2F:1F:D1 X509v3 Authority Key Identifier: keyid:68:14:77:B5:DE:56:6A:38:D9:B0:15:6D:A8:7A:BA:FA:9F:AF:85:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBR3td5WajjZsBVtqHq6-p-vhb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:92:f4:f5:11:4a:82:90:d9:52:f0:08:0d:29:dd:10:0c:95: 2b:d2:3b:db:d3:47:d4:eb:7c:64:96:0a:ed:d8:78:0f:24:4d: e6:91:5c:f5:58:15:4d:cf:f9:4e:ad:1e:d8:71:30:ee:36:2f: fd:4f:f8:1f:62:8b:9b:d9:8d:5f:b7:5f:b2:c7:6a:5d:16:44: e5:7a:c2:45:81:b6:fc:1e:f3:36:c4:5b:85:8a:e0:95:3a:0c: 85:c8:31:be:32:8f:71:99:a6:f7:28:57:fc:99:89:c7:9b:ef: 8c:de:7c:14:14:e3:8f:15:a7:57:52:fc:51:34:29:f2:27:3e: ea:85:34:9e:12:0d:0c:6c:3d:d4:ef:88:53:08:ab:b3:96:ce: 37:8e:c2:0f:03:7d:d9:4c:cd:cb:98:f6:00:a6:88:01:72:85: 77:03:8c:55:73:63:65:9f:f1:e8:87:ae:45:bd:7a:7e:66:1d: 07:9e:2f:96:aa:27:01:02:6a:4d:9a:61:da:db:60:14:ea:1c: 86:72:ce:bb:ad:dc:bb:3c:1b:5e:76:70:06:90:46:00:3a:79: e6:32:d6:e6:8c:21:38:e9:27:f3:d4:05:ff:f2:05:76:ce:4b: 77:b8:78:fe:6f:5b:60:f2:9f:cd:6b:fa:2b:ba:04:12:55:f9: 9c:50:68:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyREYxMTAvBgNVBAUTKDY4MTQ3N0I1REU1NjZBMzhEOUIwMTU2REE4N0FCQUZB OUZBRjg1QkQwHhcNMjUxMTAzMDU0MTU1WhcNMjUxMTEwMDU0MTU1WjAYMRYwFAYD VQQDEw02OTA4NDBhMy1jZjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtnzBzktzUULEEgKSSWoIAIt6DnPSLnc9hNTdxVjAwlagLxV8CmjlEL+dMZ1 y8vdT7L2bMh+mOfj4tTHZ8pxtTmTIT3U3ZyoEfnjAGYWq0otJjPSAiokKI3YsdfV IuDyp1YBwRhbNcjZtVchIdVaczQ+NLSH4VxC4dPaLaxysY14Q3guPyfnqByjV+C0 s4w/ePKY92fKCtoee2Pi5ZXm0svuhB8eaFgyX0OJ72i4rFNbcC3LPAEvF7teA/ff nO65Ct/YNETcMheGjWzWzwW7U8/JhX6HP4JWa3puhODcboZBHs63373lzkk2/HCP L1ZITu5GOSROzCATCDXMrTDV9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdODFRV zNnEcV2PIQLfi7OILx/RMB8GA1UdIwQYMBaAFGgUd7XeVmo42bAVbah6uvqfr4W9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJERi9DQzc4Qjc2MjdD MEIxMUVGODk0QTI5MTlDNEY5QUUwMi9hQlIzdGQ1V2FqalpzQlZ0cUhxNi1wLXZo YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUjN0ZDVXYWpqWnNCVnRxSHE2LXAtdmhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi9DQzc4Qjc2MjdDMEIxMUVGODk0QTI5MTlDNEY5QUUwMi9hQlIzdGQ1V2Fq alpzQlZ0cUhxNi1wLXZoYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWkvT1EUqCkNlS8AgNKd0QDJUr0jvb00fU63xklgrt2HgPJE3mkVz1 WBVNz/lOrR7YcTDuNi/9T/gfYoub2Y1ft1+yx2pdFkTlesJFgbb8HvM2xFuFiuCV OgyFyDG+Mo9xmab3KFf8mYnHm++M3nwUFOOPFadXUvxRNCnyJz7qhTSeEg0MbD3U 74hTCKuzls43jsIPA33ZTM3LmPYApogBcoV3A4xVc2Nln/Hoh65FvXp+Zh0Hni+W qicBAmpNmmHa22AU6hyGcs67rdy7PBtednAGkEYAOnnmMtbmjCE46Sfz1AX/8gV2 zkt3uHj+b1tg8p/Na/orugQSVfmcUGhb -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:56 2025 by rpki-client