$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: y4uZkkL++412numb2Ci/9P++Z0Vckwg9TPYDwcxAJRQ= Subject key identifier: 8F:2A:51:00:26:F7:7C:0F:8A:97:53:86:D3:C3:6F:EC:3F:4F:B0:FA Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 042E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 0426 Signing time: Wed 05 Nov 2025 00:27:03 +0000 Manifest this update: Wed 05 Nov 2025 00:27:02 +0000 Manifest next update: Wed 12 Nov 2025 00:27:02 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: rXsYV9DcKU2HIlzExhtaktmummOBk0zfDdM8aPQODtI=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: Nov 5 00:27:02 2025 GMT Not After : Nov 12 00:27:02 2025 GMT Subject: CN=690a99d6-5af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2f:7c:63:29:92:fe:a9:6e:b6:80:ee:31:27: e8:f6:ec:da:90:3b:57:64:ff:71:bb:80:69:0a:f8: 5d:3a:68:6e:65:13:b8:67:49:ec:8b:51:47:9e:e4: b6:4f:1b:6c:c4:64:81:a2:b7:bb:c0:98:79:4e:18: 73:7f:9e:bb:ff:87:fc:4f:41:3b:23:ea:68:e1:ad: 36:27:9b:aa:c7:06:2b:f9:c0:2c:ee:f3:db:5d:f0: bd:a1:8a:c1:64:6f:b8:b0:23:00:41:b6:2e:4d:6f: 2e:c9:45:0f:ab:be:74:05:c1:95:a5:59:a2:9e:83: 12:94:a8:b5:91:d4:60:a0:dd:34:07:66:b9:b9:6c: 2c:59:05:4c:8c:e0:7e:68:63:6b:f8:22:be:7e:46: ac:d1:8e:5c:ad:6c:20:27:6f:88:a0:5f:01:63:fc: 39:fb:fe:02:e7:24:1c:d6:76:ff:f2:ea:fe:54:c7: 78:8c:4c:11:57:88:4c:b4:8b:63:a0:9e:4a:e3:32: d0:88:a4:ca:42:a0:9c:7c:b1:2d:73:96:ad:6b:58: df:c2:09:98:3e:12:83:b0:5c:3d:0f:dd:05:98:f8: 22:5a:d0:7e:70:c9:49:29:ce:69:9e:4f:b2:25:99: 10:26:a5:38:8f:7a:06:29:1a:ae:f8:47:01:2a:a6: 03:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2A:51:00:26:F7:7C:0F:8A:97:53:86:D3:C3:6F:EC:3F:4F:B0:FA X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:15:b4:c5:34:37:de:01:76:a1:ac:9f:f4:30:83:05:ba:98: ca:6a:9a:7a:1a:c6:7c:05:40:67:7d:f9:27:a1:aa:ec:6f:e7: da:fe:3a:80:15:3a:14:26:3b:86:37:da:7a:f4:cf:7c:12:6d: 80:91:03:7e:2b:de:60:b6:5c:46:2f:a5:0a:ae:a9:69:52:87: b0:fd:80:ce:ab:d1:d3:f4:6a:dc:32:6f:89:8d:5d:53:e4:fd: a6:9a:07:4c:cd:cb:74:4b:a8:52:70:59:78:0a:f5:5d:61:61: 12:4e:77:07:85:bd:c6:ff:f8:41:89:2f:0d:82:f7:f4:20:8c: 65:92:9a:19:18:ec:6e:8d:b8:08:55:42:34:88:1d:23:6e:df: 06:1d:f9:e1:47:00:e4:c1:73:81:19:22:b0:6c:c5:8a:8b:46: d8:a0:ce:1d:38:2e:cf:fc:e1:06:33:7e:6d:53:db:b7:94:63: 41:83:9e:34:aa:86:29:64:d0:78:db:dd:c7:a3:a6:e8:17:86: 55:c9:7b:72:28:51:68:0b:f2:b3:8e:83:cf:f3:fb:2c:b0:17: 8e:95:0a:67:ba:89:1e:6b:6f:03:eb:dc:64:c7:52:e5:ec:8a: 31:54:a0:b5:12:81:17:0d:f9:22:f3:35:9a:aa:c0:ca:75:d7: 9c:9a:9c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUxMTA1MDAyNzAyWhcNMjUxMTEyMDAyNzAyWjAYMRYwFAYD VQQDEw02OTBhOTlkNi01YWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4i98YymS/qlutoDuMSfo9uzakDtXZP9xu4BpCvhdOmhuZRO4Z0nsi1FHnuS2 TxtsxGSBore7wJh5Thhzf567/4f8T0E7I+po4a02J5uqxwYr+cAs7vPbXfC9oYrB ZG+4sCMAQbYuTW8uyUUPq750BcGVpVminoMSlKi1kdRgoN00B2a5uWwsWQVMjOB+ aGNr+CK+fkas0Y5crWwgJ2+IoF8BY/w5+/4C5yQc1nb/8ur+VMd4jEwRV4hMtItj oJ5K4zLQiKTKQqCcfLEtc5ata1jfwgmYPhKDsFw9D90FmPgiWtB+cMlJKc5pnk+y JZkQJqU4j3oGKRqu+EcBKqYDIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8qUQAm 93wPipdThtPDb+w/T7D6MB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKFbTFNDfeAXahrJ/0MIMFupjKapp6GsZ8BUBnffknoarsb+fa/jqA FToUJjuGN9p69M98Em2AkQN+K95gtlxGL6UKrqlpUoew/YDOq9HT9GrcMm+JjV1T 5P2mmgdMzct0S6hScFl4CvVdYWESTncHhb3G//hBiS8Ngvf0IIxlkpoZGOxujbgI VUI0iB0jbt8GHfnhRwDkwXOBGSKwbMWKi0bYoM4dOC7P/OEGM35tU9u3lGNBg540 qoYpZNB4293Ho6boF4ZVyXtyKFFoC/KzjoPP8/sssBeOlQpnuokea28D69xkx1Ll 7IoxVKC1EoEXDfki8zWaqsDKddecmpwe -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:19 2025 by rpki-client