$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: IYl7bNnlbntPSD3hSEvDtFKfj4lzpGW2WcCnAxu2X9E= Subject key identifier: F6:88:75:57:04:12:33:D2:68:73:61:7A:32:80:1F:01:8A:5F:28:02 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D78 Signing time: Tue 04 Nov 2025 18:02:53 +0000 Manifest this update: Tue 04 Nov 2025 18:02:52 +0000 Manifest next update: Tue 11 Nov 2025 18:02:52 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: aLqcDYgfPRUbNWNCG8+J04KShNBZ5mU50PXkC1S5tNw=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3464 (0xd88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Nov 4 18:02:52 2025 GMT Not After : Nov 11 18:02:52 2025 GMT Subject: CN=690a3fcc-2aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fc:c4:4e:9b:65:11:97:ea:65:11:36:47:5f: 5b:51:f8:e6:a3:5e:51:b5:19:75:d3:80:b9:15:97: a7:9e:7e:b1:d2:8a:74:cd:f7:06:8f:2c:73:bb:d6: 35:cb:8b:0c:17:9d:56:2a:4b:29:4f:ef:db:8c:3a: ae:ad:5a:4a:a4:43:6b:32:7a:58:97:b7:99:8d:34: a1:a4:c1:27:cc:4a:20:77:08:41:1b:45:a7:a9:b8: 3f:90:77:b3:d4:6f:e6:0c:15:9e:ff:0a:32:24:39: f3:39:bd:a6:13:ad:76:f2:cb:87:64:d2:84:7d:c6: dd:16:3b:38:50:24:ea:64:61:73:9b:09:a2:93:1d: 49:9a:8a:ea:06:70:43:49:78:d2:e5:9a:a9:49:9b: 66:be:4a:bb:0e:44:c0:1d:c8:e6:3a:e7:e6:5e:cb: 02:ae:b2:c3:f1:e3:f8:4f:81:16:e2:dd:7b:5d:f4: 08:4b:03:3d:83:41:1d:30:fa:fd:05:63:f7:a5:a1: 75:e4:6e:bf:c3:78:56:40:29:cc:70:31:bf:2e:6c: 1c:17:b1:e9:fa:4a:bc:21:c2:ca:f4:34:ad:60:24: bb:5d:49:de:e8:4c:8a:26:7a:61:de:16:de:b8:b8: 91:2d:fd:73:d9:bf:d5:17:20:56:1f:fe:d6:68:6f: 69:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:88:75:57:04:12:33:D2:68:73:61:7A:32:80:1F:01:8A:5F:28:02 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:07:b0:ba:6f:58:d9:31:41:ca:9c:4f:06:ef:d7:5c:f2:dd: 8c:3e:70:f5:83:c2:bc:c4:ac:90:d1:da:05:f6:5a:ed:3a:ff: f5:7b:c3:4f:a5:a4:c1:3d:4f:db:2f:1d:65:61:40:e8:78:f4: 3a:91:21:42:65:6b:48:ce:4f:80:b0:1e:dd:20:6b:e1:c5:4e: 83:61:a9:06:0c:c7:f6:fb:d5:7d:c0:42:7b:59:17:61:b2:18: a4:4a:bf:4d:48:de:c1:a1:94:03:f3:70:4f:44:a0:aa:39:9f: d3:1d:84:07:87:f4:40:57:87:41:49:e4:08:9e:bf:50:0e:5e: 6c:f6:4a:af:cd:97:c4:e8:43:33:01:9e:bf:19:86:ec:4a:65: cb:e3:7e:f2:b0:dd:c2:15:b2:1d:b0:94:5e:dd:19:a5:31:29: 0b:9b:a1:3c:af:2d:38:cc:bb:cd:d2:a3:b0:e6:c0:d2:04:89: b5:05:ab:da:ea:52:5f:38:ac:47:72:28:31:7e:f1:e5:d8:56: 5f:7e:c8:42:7c:12:b7:b7:d4:98:a9:9a:f7:ac:56:cb:8c:73: bb:82:c5:9a:d8:cd:e9:87:f8:6b:83:39:1a:37:63:8c:41:ef: 1b:8f:9f:ca:c3:c9:4e:5e:c5:51:a4:d2:87:e7:5d:27:4f:b6: cb:ee:69:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUxMTA0MTgwMjUyWhcNMjUxMTExMTgwMjUyWjAYMRYwFAYD VQQDEw02OTBhM2ZjYy0yYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvzETptlEZfqZRE2R19bUfjmo15RtRl104C5FZennn6x0op0zfcGjyxzu9Y1 y4sMF51WKkspT+/bjDqurVpKpENrMnpYl7eZjTShpMEnzEogdwhBG0Wnqbg/kHez 1G/mDBWe/woyJDnzOb2mE6128suHZNKEfcbdFjs4UCTqZGFzmwmikx1JmorqBnBD SXjS5ZqpSZtmvkq7DkTAHcjmOufmXssCrrLD8eP4T4EW4t17XfQISwM9g0EdMPr9 BWP3paF15G6/w3hWQCnMcDG/LmwcF7Hp+kq8IcLK9DStYCS7XUne6EyKJnph3hbe uLiRLf1z2b/VFyBWH/7WaG9p+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaIdVcE EjPSaHNhejKAHwGKXygCMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSB7C6b1jZMUHKnE8G79dc8t2MPnD1g8K8xKyQ0doF9lrtOv/1e8NP paTBPU/bLx1lYUDoePQ6kSFCZWtIzk+AsB7dIGvhxU6DYakGDMf2+9V9wEJ7WRdh shikSr9NSN7BoZQD83BPRKCqOZ/THYQHh/RAV4dBSeQInr9QDl5s9kqvzZfE6EMz AZ6/GYbsSmXL437ysN3CFbIdsJRe3RmlMSkLm6E8ry04zLvN0qOw5sDSBIm1Bava 6lJfOKxHcigxfvHl2FZffshCfBK3t9SYqZr3rFbLjHO7gsWa2M3ph/hrgzkaN2OM Qe8bj5/Kw8lOXsVRpNKH510nT7bL7mkS -----END CERTIFICATE-----Generated at Wed Nov 5 05:21:25 2025 by rpki-client