$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: UkAJporfIvcFXwYo67wsagfTaMfOGesujUxq9S9Sc/k= Subject key identifier: 30:C9:08:ED:19:83:D4:23:3C:F1:B1:49:F4:2E:1F:6C:03:1A:EF:3C Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 02CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 02CA Signing time: Mon 03 Nov 2025 01:20:35 +0000 Manifest this update: Mon 03 Nov 2025 01:20:35 +0000 Manifest next update: Mon 10 Nov 2025 01:20:35 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: s+IgG6PHzQ+A5Bl5E+7LnMmbSwDIWqrV2BqC4/zapbY=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: M5cm8ltbxVdRcxdqwX20eH12vgkHWhKoQMG7Vy7tBQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Nov 3 01:20:35 2025 GMT Not After : Nov 10 01:20:35 2025 GMT Subject: CN=69080363-16c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f3:06:72:e3:2c:76:0e:9d:02:8c:37:c2:2d: e0:b6:14:38:01:ae:44:12:9e:b1:72:f3:df:bd:69: 2b:c1:18:61:b8:03:fb:d4:65:df:43:d9:78:42:ea: 2d:af:02:d4:98:72:87:92:0d:7b:5a:7e:7e:c9:ae: ef:e8:38:06:74:29:f0:1c:89:fb:57:a0:d7:1d:21: 68:f1:31:2e:fd:be:e5:86:f6:65:95:6a:aa:ca:ac: 25:38:3d:59:12:57:c2:a4:48:7e:4d:3f:a0:b3:9d: 84:3c:00:f4:08:a6:a1:a7:ce:f2:d6:11:6c:69:31: 6b:50:1d:48:8c:0a:28:9d:65:4d:43:d2:21:49:fb: f1:92:b0:41:7f:73:b4:2e:5a:07:3e:1c:6a:04:9a: 7a:d8:ef:68:2f:d7:58:7b:e7:82:d7:67:cf:4e:5b: 9a:16:15:77:74:2f:99:53:d3:17:a2:bc:5e:41:6b: 0c:75:fb:84:5f:f6:a0:c0:c2:aa:31:39:0d:88:f5: 9a:5f:d9:d0:e4:f0:6a:2c:8d:7b:59:18:c6:0a:30: 22:e7:b0:3f:7b:b6:ed:a6:e8:6f:a9:02:f2:64:61: a7:4e:5d:18:e7:9a:38:13:65:19:88:53:60:63:fe: 9d:9a:56:40:4f:28:d7:ce:b0:ed:82:87:9f:1d:47: 2f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C9:08:ED:19:83:D4:23:3C:F1:B1:49:F4:2E:1F:6C:03:1A:EF:3C X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:d2:96:47:bb:35:10:46:fa:d2:56:fa:7a:9c:25:50:7d:71: c8:75:93:42:a5:a5:b8:3b:5e:51:4e:10:18:05:34:d0:41:ae: 9b:b7:e7:5a:1d:f2:50:1f:c4:de:f1:d1:66:d1:b3:f7:92:ee: 05:f0:62:0d:dd:28:f3:ca:1f:36:12:48:6e:0e:60:8e:53:1a: 11:2f:8f:11:bd:85:9c:ac:d2:b6:5f:82:cb:be:56:38:74:08: 52:b5:75:b8:20:bd:5e:f0:76:ae:ee:8c:0f:86:d1:5b:fc:ae: 98:1d:48:ca:37:4c:8b:0c:45:38:de:6c:c8:da:7e:b0:15:f7: c2:bb:b7:27:1e:0f:30:87:df:26:d7:78:27:41:ec:cd:ef:34: ec:ab:1f:f4:a6:da:85:b1:97:d0:93:8b:2c:ce:d6:8a:7d:24: b4:d8:45:4b:a3:6c:75:3b:ae:44:93:a8:63:41:fa:3c:53:c8: bc:57:cb:8d:84:f8:7c:5b:cf:f9:cd:28:12:f0:a7:96:00:22: db:c2:bd:8a:a3:b6:1b:8d:3a:b1:cb:9c:4c:45:36:17:9a:40: 92:43:8b:fc:47:17:c9:60:fe:55:1c:94:12:09:49:a6:11:3f: 08:6c:9c:79:f4:85:23:97:71:51:94:6d:6a:a4:8f:9c:7f:95: 31:38:bd:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUxMTAzMDEyMDM1WhcNMjUxMTEwMDEyMDM1WjAYMRYwFAYD VQQDEw02OTA4MDM2My0xNmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvMGcuMsdg6dAow3wi3gthQ4Aa5EEp6xcvPfvWkrwRhhuAP71GXfQ9l4Quot rwLUmHKHkg17Wn5+ya7v6DgGdCnwHIn7V6DXHSFo8TEu/b7lhvZllWqqyqwlOD1Z ElfCpEh+TT+gs52EPAD0CKahp87y1hFsaTFrUB1IjAoonWVNQ9IhSfvxkrBBf3O0 LloHPhxqBJp62O9oL9dYe+eC12fPTluaFhV3dC+ZU9MXorxeQWsMdfuEX/agwMKq MTkNiPWaX9nQ5PBqLI17WRjGCjAi57A/e7btpuhvqQLyZGGnTl0Y55o4E2UZiFNg Y/6dmlZATyjXzrDtgoefHUcvLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDJCO0Z g9QjPPGxSfQuH2wDGu88MB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB0pZHuzUQRvrSVvp6nCVQfXHIdZNCpaW4O15RThAYBTTQQa6bt+da HfJQH8Te8dFm0bP3ku4F8GIN3Sjzyh82EkhuDmCOUxoRL48RvYWcrNK2X4LLvlY4 dAhStXW4IL1e8Hau7owPhtFb/K6YHUjKN0yLDEU43mzI2n6wFffCu7cnHg8wh98m 13gnQezN7zTsqx/0ptqFsZfQk4ssztaKfSS02EVLo2x1O65Ek6hjQfo8U8i8V8uN hPh8W8/5zSgS8KeWACLbwr2Ko7YbjTqxy5xMRTYXmkCSQ4v8RxfJYP5VHJQSCUmm ET8IbJx59IUjl3FRlG1qpI+cf5UxOL2T -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:44 2025 by rpki-client