$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft File: 446z9aUQfjDwynHd6nWxcNCwMlY.mft (raw, json) Hash identifier: T7KvguuUpW/1t82S6pgr/5NVI2L+gAumaACP+REPxa0= Subject key identifier: 1A:50:2E:19:36:27:20:C1:EA:BE:BC:DB:29:A1:B4:30:C7:49:FE:C0 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft Manifest number: 0119 Signing time: Mon 03 Nov 2025 04:57:53 +0000 Manifest this update: Mon 03 Nov 2025 04:57:53 +0000 Manifest next update: Mon 10 Nov 2025 04:57:53 +0000 Files and hashes: 1: 446z9aUQfjDwynHd6nWxcNCwMlY.crl (hash: D0Rzi2Lcod/whkIpy12Q9Exs2UrfHlOlk7b2t2uXH6Q=) 2: B84D6D3AF81811EFACB5925BC4F9AE02.roa (hash: iSgwGcm13o9Rt6IYRC8gB+G1pN+vluWHVfp7WXbTVyc=) 3: F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa (hash: DUkD4dNjUkFTokfAlqm3Uyonu5h9UsmoJuMWKvodIy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560, serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Nov 3 04:57:53 2025 GMT Not After : Nov 10 04:57:53 2025 GMT Subject: CN=69083651-4cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:80:2a:41:75:bc:10:6e:5c:de:eb:57:53: 05:7f:a7:e4:98:cc:07:46:cf:06:bc:72:84:e9:65: 5b:90:a9:a3:eb:bb:4a:76:8b:7c:d1:7f:a5:d6:c9: fc:17:5e:a8:78:cc:91:f0:03:34:c6:08:17:22:96: 9f:16:2e:24:89:37:22:21:96:c1:4c:af:8e:31:80: a4:df:e1:e0:d9:58:f6:d1:78:8b:90:8d:16:b9:d0: 9a:2d:e6:fb:fa:29:12:22:67:52:8b:61:b6:18:87: 89:1a:12:75:56:05:45:48:9d:32:87:50:41:2b:6d: 73:f6:9e:98:56:ca:2f:33:62:ec:00:34:7c:45:ff: 85:50:f2:5a:b9:7c:10:94:15:c2:bc:b5:ac:ab:4e: 40:d3:fa:c6:d4:91:ff:cd:c0:8e:7d:b8:6b:84:22: 84:db:0f:c8:bf:38:da:86:ea:66:b4:d7:fc:69:cd: d7:6d:64:b9:95:7d:1a:ab:86:04:8c:df:dd:17:54: 02:43:2c:91:47:26:c6:b3:c4:47:3e:80:32:f8:a8: ee:87:81:91:f1:6a:03:d8:bb:17:6a:02:21:7a:4d: db:9d:2f:c7:30:28:c3:98:a6:22:df:40:d2:6d:3b: ae:fe:af:ad:08:bd:70:55:fd:ad:3d:66:ea:e1:92: 15:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:50:2E:19:36:27:20:C1:EA:BE:BC:DB:29:A1:B4:30:C7:49:FE:C0 X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1b:d1:52:97:21:05:53:29:81:52:7b:1b:95:d0:20:3d:df: 8a:fe:a5:4a:df:0c:46:94:48:55:58:35:61:7a:7a:e2:40:f7: 75:42:31:95:b7:4e:49:85:80:db:6d:f7:19:86:15:40:73:80: 47:40:62:77:3d:7b:f1:94:b0:94:ab:ae:10:ee:da:98:a3:ce: 60:d4:c0:fe:0f:14:d2:ea:f9:0b:3d:3a:3a:9c:7f:88:dc:36: 85:67:ef:a3:b2:ae:bf:5d:c2:f7:8d:0f:bf:13:3c:f8:8d:d6: 50:2c:17:8f:43:90:d0:ce:43:c0:e2:c0:83:ac:d2:8e:df:e2: 65:d1:3d:c1:a6:f5:28:6a:4e:61:e7:ad:dd:17:79:58:92:0f: ea:ef:9a:ec:2b:20:10:25:29:10:d3:42:f4:8e:8e:d4:2d:9c: 7c:c4:26:23:d8:f6:1b:a3:79:35:fc:2f:ca:ab:4e:1d:bd:75: 11:41:f3:1f:63:45:a1:91:0d:a1:d7:cb:7e:ba:c6:4d:4b:b2: 29:9f:fe:37:5b:6e:2b:08:44:ab:54:05:be:93:bd:a6:a2:3e: 54:15:d1:df:af:fe:cd:52:b6:ae:74:a0:7b:96:dc:5a:ea:46: 2a:28:20:e5:df:6f:3a:df:07:cf:91:9b:d7:2e:7f:ff:10:e7: 44:a8:09:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NjAxMTAvBgNVBAUTKEUzOEVCM0Y1QTUxMDdFMzBGMENBNzFEREVBNzVCMTcw RDBCMDMyNTYwHhcNMjUxMTAzMDQ1NzUzWhcNMjUxMTEwMDQ1NzUzWjAYMRYwFAYD VQQDEw02OTA4MzY1MS00Y2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzOAKkF1vBBuXN7rV1MFf6fkmMwHRs8GvHKE6WVbkKmj67tKdot80X+l1sn8 F16oeMyR8AM0xggXIpafFi4kiTciIZbBTK+OMYCk3+Hg2Vj20XiLkI0WudCaLeb7 +ikSImdSi2G2GIeJGhJ1VgVFSJ0yh1BBK21z9p6YVsovM2LsADR8Rf+FUPJauXwQ lBXCvLWsq05A0/rG1JH/zcCOfbhrhCKE2w/IvzjahupmtNf8ac3XbWS5lX0aq4YE jN/dF1QCQyyRRybGs8RHPoAy+Kjuh4GR8WoD2LsXagIhek3bnS/HMCjDmKYi30DS bTuu/q+tCL1wVf2tPWbq4ZIVqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpQLhk2 JyDB6r682ymhtDDHSf7AMB8GA1UdIwQYMBaAFOOOs/WlEH4w8Mpx3ep1sXDQsDJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU2MC80QzNENkJDMDIx NkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZqRHd5bkhkNm5XeGNOQ3dN bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01sWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZq RHd5bkhkNm5XeGNOQ3dNbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiG9FSlyEFUymBUnsbldAgPd+K/qVK3wxGlEhVWDVhenriQPd1QjGV t05JhYDbbfcZhhVAc4BHQGJ3PXvxlLCUq64Q7tqYo85g1MD+DxTS6vkLPTo6nH+I 3DaFZ++jsq6/XcL3jQ+/Ezz4jdZQLBePQ5DQzkPA4sCDrNKO3+Jl0T3BpvUoak5h 563dF3lYkg/q75rsKyAQJSkQ00L0jo7ULZx8xCYj2PYbo3k1/C/Kq04dvXURQfMf Y0WhkQ2h18t+usZNS7Ipn/43W24rCESrVAW+k72moj5UFdHfr/7NUraudKB7ltxa 6kYqKCDl32863wfPkZvXLn//EOdEqAkk -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:14 2025 by rpki-client