$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: dHRI8pYbVL7xWMtFqu7B38mzB/pqrTYYe9omusSWql8= Subject key identifier: 9E:E2:02:57:21:D6:B1:C5:A1:B5:C3:1E:97:0A:0D:39:8D:A6:03:2B Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 92 Signing time: Wed 05 Nov 2025 06:45:26 +0000 Manifest this update: Wed 05 Nov 2025 06:45:25 +0000 Manifest next update: Wed 12 Nov 2025 06:45:25 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: Xu9xrzEiXCNlGQwHjNZisV9eJVsfJDzA16XID2I4Lso=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Nov 5 06:45:25 2025 GMT Not After : Nov 12 06:45:25 2025 GMT Subject: CN=690af285-cb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:e4:2f:9b:88:e4:c0:7f:00:2e:cf:02:a3: 55:d3:5a:62:76:97:86:ea:8a:14:48:7b:bf:19:1d: 20:c7:a9:6f:33:e2:ca:01:45:d4:22:b3:91:a8:d9: 23:a2:2b:d9:e7:28:47:4f:3f:b7:91:0b:99:5c:b9: fa:ff:f5:e9:cd:70:b6:3d:cb:ec:66:cb:bd:21:2b: a7:cb:be:80:5a:b2:07:e8:0c:d3:da:99:42:88:eb: 59:83:8b:59:e4:c4:e0:a8:47:10:c3:65:2b:97:e8: ea:9d:c2:16:2d:ea:fc:a3:69:f4:c2:0f:be:9f:5a: b7:02:d4:b6:31:6f:9a:2e:0e:fa:c4:3f:1a:d2:6b: 3d:8b:74:3a:f9:75:23:f8:d3:16:9f:c3:a7:95:a7: db:b8:b1:7d:15:f5:23:1a:33:4e:29:8b:c8:02:58: 98:97:08:3f:49:c5:e0:f4:0e:cd:af:0a:60:4f:c1: 90:e4:c3:b2:43:6f:57:d2:32:6a:9f:1a:cc:b3:ac: dc:3b:22:6b:1b:21:81:6c:7b:46:11:9b:41:24:85: 2f:3a:a3:f5:f7:96:81:f3:e2:32:c0:39:fe:eb:cc: b9:be:90:1e:9f:0b:69:84:c4:f6:16:de:22:d6:9c: 65:d1:dd:bb:bf:35:70:5b:db:8c:a6:c6:b1:e4:87: 94:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E2:02:57:21:D6:B1:C5:A1:B5:C3:1E:97:0A:0D:39:8D:A6:03:2B X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:e6:47:a4:56:cf:ce:55:fc:c1:6c:ef:c7:af:69:32:a2:ef: 1c:af:4b:bc:f1:25:f7:5f:3e:7e:5c:ec:15:b0:7b:01:06:2a: 08:aa:c6:43:0b:72:36:43:b1:2b:46:fd:b9:6b:f0:cb:99:ee: 12:1d:48:85:cb:4a:8f:3a:0b:26:cf:4c:34:84:c1:65:0e:aa: a7:b5:52:e8:3a:bf:5c:13:5a:09:e7:70:f4:ce:09:9a:77:4f: f5:b1:8e:91:16:16:dc:3d:f4:a1:78:ba:e3:47:d8:16:0c:aa: bb:93:6a:b2:1a:57:66:f0:82:e3:f7:26:a3:2f:a3:35:df:e1: a4:78:0d:b5:6d:4c:ec:50:fc:80:12:40:89:9b:69:cf:c4:25: 0d:20:ca:7c:87:5c:eb:07:4c:85:bd:fd:47:c7:d1:b0:ba:26: 0c:c3:a9:c5:b8:45:6e:c3:07:6e:66:fa:2d:ee:34:d6:88:aa: 94:25:9e:68:94:af:80:d9:ea:24:59:0e:3f:12:55:8b:47:4c: 11:58:b3:3c:9b:37:87:17:9a:82:76:67:6a:c7:3c:25:c6:4c: 3a:c7:c9:e8:f3:43:cf:6d:44:92:c4:50:c7:fb:c5:2d:e7:e2: 63:6c:25:dd:bd:2e:3b:a3:44:40:df:c8:3b:c2:5c:f5:1c:98: 52:72:d3:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyMDgxMTAvBgNVBAUTKDY4QUQwRDA0NzBGNkFDNkYxOUM2NEVFRjQwOTRFRTBC QjU4NzFFREEwHhcNMjUxMTA1MDY0NTI1WhcNMjUxMTEyMDY0NTI1WjAYMRYwFAYD VQQDEw02OTBhZjI4NS1jYjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZvkL5uI5MB/AC7PAqNV01pidpeG6ooUSHu/GR0gx6lvM+LKAUXUIrORqNkj oivZ5yhHTz+3kQuZXLn6//XpzXC2PcvsZsu9ISuny76AWrIH6AzT2plCiOtZg4tZ 5MTgqEcQw2Url+jqncIWLer8o2n0wg++n1q3AtS2MW+aLg76xD8a0ms9i3Q6+XUj +NMWn8OnlafbuLF9FfUjGjNOKYvIAliYlwg/ScXg9A7NrwpgT8GQ5MOyQ29X0jJq nxrMs6zcOyJrGyGBbHtGEZtBJIUvOqP195aB8+IywDn+68y5vpAenwtphMT2Ft4i 1pxl0d27vzVwW9uMpsax5IeU1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7iAlch 1rHFobXDHpcKDTmNpgMrMB8GA1UdIwQYMBaAFGitDQRw9qxvGcZO70CU7gu1hx7a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTIwOC85RTI4NTU3RUU0 RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJHOFp4azd2UUpUdUM3V0hI dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTIwOC85RTI4NTU3RUU0RUUxMUVGQjFFRDc2MEVDNEY5QUUwMi9hSzBOQkhEMnJH OFp4azd2UUpUdUM3V0hIdG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX5kekVs/OVfzBbO/Hr2kyou8cr0u88SX3Xz5+XOwVsHsBBioIqsZD C3I2Q7ErRv25a/DLme4SHUiFy0qPOgsmz0w0hMFlDqqntVLoOr9cE1oJ53D0zgma d0/1sY6RFhbcPfSheLrjR9gWDKq7k2qyGldm8ILj9yajL6M13+GkeA21bUzsUPyA EkCJm2nPxCUNIMp8h1zrB0yFvf1Hx9GwuiYMw6nFuEVuwwduZvot7jTWiKqUJZ5o lK+A2eokWQ4/ElWLR0wRWLM8mzeHF5qCdmdqxzwlxkw6x8no80PPbUSSxFDH+8Ut 5+JjbCXdvS47o0RA38g7wlz1HJhSctM/ -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:37 2025 by rpki-client