$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft File: apjAwIy9NBmpCCuGDSm_qXL98qc.mft (raw, json) Hash identifier: zfx6MsHaoRcxKPky1FMW/Xe5TvK0kHbT3A6aNskbc60= Subject key identifier: 48:D0:DF:58:DA:20:F9:69:57:25:4D:AD:F5:95:EE:ED:A9:9A:D7:4E Authority key identifier: 6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 Certificate issuer: /CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Certificate serial: 047D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft Manifest number: 0479 Signing time: Mon 03 Nov 2025 00:05:54 +0000 Manifest this update: Mon 03 Nov 2025 00:05:53 +0000 Manifest next update: Mon 10 Nov 2025 00:05:53 +0000 Files and hashes: 1: apjAwIy9NBmpCCuGDSm_qXL98qc.crl (hash: yIpo1ZF39KFXofSqqsUHj6+K/rlBmAUz95I+MyVVmvw=) 2: 61B3CBDC631911ECAE6AA33DC4F9AE02.roa (hash: /+PqdcGfeQGq1JSsbPZ7utBGw8SAzSRzzxhLFAim1J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1149 (0x47d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2BD6, serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Validity Not Before: Nov 3 00:05:53 2025 GMT Not After : Nov 10 00:05:53 2025 GMT Subject: CN=6907f1e1-9315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:73:61:80:a2:73:11:51:a5:da:4d:d8:68:cf: 0e:fb:a6:61:46:6d:7e:cb:34:e8:16:b6:59:18:0f: e5:5a:12:eb:86:8c:f9:57:5d:57:46:2e:2e:1d:7c: 93:c8:0c:2f:1b:74:c3:14:cd:10:46:58:b6:55:47: 70:36:d4:ac:67:12:ce:29:16:a4:da:9a:14:f8:cc: 2e:f2:54:cf:7f:3d:cf:f3:86:8e:38:72:d2:82:37: 4a:91:0c:ad:8e:cf:c5:7f:27:1a:39:4a:a4:9b:bc: ed:64:78:60:02:87:9e:1f:29:3f:3c:3f:79:b7:91: e1:d5:8d:99:ce:c4:d9:ae:11:cb:3b:cb:53:49:87: 37:96:59:66:76:e7:54:8e:45:90:c8:c4:c5:25:5e: 1d:42:e3:03:97:2d:0e:42:2c:ec:80:b4:70:30:0c: 79:2b:b1:76:2e:ac:b5:c5:6b:75:89:20:96:6b:e1: 78:22:c3:a2:ae:53:01:af:2c:20:0d:8e:15:af:88: bd:ea:52:bd:42:7b:a9:af:19:ea:19:09:94:f7:b6: 2e:f0:39:92:39:82:04:b7:53:28:69:ad:e1:2d:e0: af:ed:fc:62:31:6e:9c:f2:23:de:9c:cf:da:ff:59: 6a:13:0a:92:d8:df:b0:d1:56:15:04:28:2a:62:c2: 5f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D0:DF:58:DA:20:F9:69:57:25:4D:AD:F5:95:EE:ED:A9:9A:D7:4E X509v3 Authority Key Identifier: keyid:6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:3e:6d:9d:cd:d1:98:7b:52:33:29:8f:1e:0c:82:48:18:59: a3:af:77:63:57:68:9c:4c:48:f5:cb:05:b3:14:01:0d:84:02: ed:bf:44:e9:2f:50:dc:3d:50:e3:3f:7e:bc:20:ad:20:93:04: 6e:c6:7f:3a:81:26:e4:a2:d7:a5:2b:fc:26:13:67:89:78:29: d4:a6:8c:56:aa:c4:e8:1c:1f:6a:aa:60:a1:c0:7e:89:92:72: d8:4d:16:2f:04:18:6f:d7:3a:75:cf:4b:9d:cf:3e:a8:65:13: 1c:63:26:dd:4a:dd:5e:12:fb:f6:ed:df:8d:ae:0b:cb:39:7d: 9b:f9:d7:84:98:f9:70:f1:2e:32:bc:a9:3b:70:a3:ff:5b:e6: 21:5b:82:18:46:ca:5b:a1:ed:e8:d8:6a:a9:ec:f1:8c:8e:0d: 03:0f:87:8a:3c:7f:2f:22:f0:ba:13:22:40:55:85:bb:4a:e2: 0c:0a:07:d5:a2:17:90:58:8e:33:30:a6:ee:01:c0:a2:28:f0: 26:e7:39:24:c7:2c:54:8e:20:02:19:c6:9a:0c:d3:60:2e:ad: 85:74:73:ca:00:79:e2:33:f2:1d:c2:df:67:8e:b0:19:5b:49: 77:ef:c4:01:77:94:8e:5a:16:b5:8e:e3:bf:33:8b:ea:74:4a: 8c:30:40:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJCRDYxMTAvBgNVBAUTKDZBOThDMEMwOENCRDM0MTlBOTA4MkI4NjBEMjlCRkE5 NzJGREYyQTcwHhcNMjUxMTAzMDAwNTUzWhcNMjUxMTEwMDAwNTUzWjAYMRYwFAYD VQQDEw02OTA3ZjFlMS05MzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XNhgKJzEVGl2k3YaM8O+6ZhRm1+yzToFrZZGA/lWhLrhoz5V11XRi4uHXyT yAwvG3TDFM0QRli2VUdwNtSsZxLOKRak2poU+Mwu8lTPfz3P84aOOHLSgjdKkQyt js/FfycaOUqkm7ztZHhgAoeeHyk/PD95t5Hh1Y2ZzsTZrhHLO8tTSYc3lllmdudU jkWQyMTFJV4dQuMDly0OQizsgLRwMAx5K7F2Lqy1xWt1iSCWa+F4IsOirlMBrywg DY4Vr4i96lK9QnuprxnqGQmU97Yu8DmSOYIEt1Moaa3hLeCv7fxiMW6c8iPenM/a /1lqEwqS2N+w0VYVBCgqYsJfXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjQ31ja IPlpVyVNrfWV7u2pmtdOMB8GA1UdIwQYMBaAFGqYwMCMvTQZqQgrhg0pv6ly/fKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkJENi85QzU4NURCMDYz MTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5CbXBDQ3VHRFNtX3FYTDk4 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwakF3SXk5TkJtcENDdUdEU21fcVhMOThxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkJENi85QzU4NURCMDYzMTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5C bXBDQ3VHRFNtX3FYTDk4cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Pm2dzdGYe1IzKY8eDIJIGFmjr3djV2icTEj1ywWzFAENhALtv0Tp L1DcPVDjP368IK0gkwRuxn86gSbkotelK/wmE2eJeCnUpoxWqsToHB9qqmChwH6J knLYTRYvBBhv1zp1z0udzz6oZRMcYybdSt1eEvv27d+NrgvLOX2b+deEmPlw8S4y vKk7cKP/W+YhW4IYRspboe3o2Gqp7PGMjg0DD4eKPH8vIvC6EyJAVYW7SuIMCgfV oheQWI4zMKbuAcCiKPAm5zkkxyxUjiACGcaaDNNgLq2FdHPKAHniM/Idwt9njrAZ W0l378QBd5SOWha1juO/M4vqdEqMMECc -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:13 2025 by rpki-client