$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: OYdLjrmdfCWvHutWzoGuaZj6J8l+WEtJJWI9HZ99sSQ= Subject key identifier: F8:85:E0:15:34:A9:4B:80:FA:06:CB:82:84:DA:00:45:79:54:7A:17 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07FB Signing time: Tue 04 Nov 2025 21:03:27 +0000 Manifest this update: Tue 04 Nov 2025 21:03:27 +0000 Manifest next update: Tue 11 Nov 2025 21:03:27 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: ujjI2CbHAJWJ6sf4Ruq+REWS/KDhIGmqphjGGo96urk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Nov 4 21:03:27 2025 GMT Not After : Nov 11 21:03:27 2025 GMT Subject: CN=690a6a1f-c031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:00:2a:f8:5c:35:8e:cd:50:82:3b:bb:85: 10:94:94:24:90:10:9d:5c:2c:47:e8:68:0f:c1:5b: 9a:31:61:c7:62:13:17:b3:68:a0:9c:c9:bf:7b:5f: 6d:5d:04:88:49:09:37:92:95:5c:9f:9e:77:cf:f2: fb:9f:d2:76:3f:99:46:8c:f3:ae:81:d4:69:91:15: af:02:9a:c1:38:87:cd:c4:56:ec:36:a7:dc:2d:e9: f9:6d:f8:ec:5c:4d:8d:0a:fd:61:95:f3:75:2c:27: e9:aa:24:24:43:f9:83:8a:43:76:8f:63:7e:d1:68: 51:47:dc:ac:2c:de:93:f9:4d:52:95:cf:92:55:e8: 5f:08:94:8d:88:33:3e:a9:c6:33:75:e2:8e:33:24: 54:eb:e9:b2:16:27:d8:09:66:9f:4d:ac:99:db:33: 4c:6e:d6:27:2f:bb:26:6c:2c:b0:4c:72:7e:b0:b3: 62:c6:4a:17:4f:85:eb:17:53:5a:40:15:c9:ea:80: b3:18:d1:10:b4:06:11:09:d0:42:b3:31:87:90:2e: bc:3b:c2:32:5f:eb:fb:4f:1c:be:c4:d9:8a:c6:21: 33:1e:45:0f:1b:0e:37:c4:4f:78:9e:10:96:98:11: 2e:a9:4a:30:70:05:04:10:cf:1f:5e:b1:35:a3:67: 2e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:85:E0:15:34:A9:4B:80:FA:06:CB:82:84:DA:00:45:79:54:7A:17 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:29:da:e9:53:ec:8a:82:23:95:18:3d:79:de:4c:76:2e:e2: 3c:ad:eb:76:c4:73:37:52:f8:b5:b7:57:17:8b:9a:0d:91:8b: f6:3c:95:b0:db:ad:c3:f4:c5:4d:ed:23:b7:47:de:d9:f4:40: 60:c9:39:21:5b:b7:27:3b:b2:00:e1:5c:3a:3e:ee:9f:29:99: e0:37:6a:4e:41:44:11:f9:fa:ab:b4:e6:c2:d8:3a:50:13:45: 60:01:0d:2d:8e:cc:d4:3e:66:02:0f:4e:1a:11:ce:2c:7e:f7: 06:bc:fe:1e:c9:7d:73:5b:cf:d6:ee:c4:ee:c4:99:d4:e4:59: 79:e2:8b:6a:8b:0d:75:7f:ff:11:1c:b4:7c:71:71:c1:3f:76: 69:c0:c2:37:64:79:97:a9:01:15:d9:82:1d:55:d9:1d:cc:ef: 92:ec:e7:f2:68:f3:11:46:fc:b5:76:c4:25:b1:94:a0:62:cb: bf:3d:f2:a2:07:67:20:b9:f4:63:46:fe:e4:aa:b4:51:d9:53: 5e:70:c8:d5:22:c2:fe:1d:93:4e:8d:98:f3:ba:37:9d:89:64: e7:23:e7:5b:45:72:d0:ab:9b:07:2c:b1:76:dd:3a:a6:61:a9: ae:04:54:98:26:a9:e8:bd:e5:a8:7c:4f:13:06:05:74:22:bf: e6:72:e3:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUxMTA0MjEwMzI3WhcNMjUxMTExMjEwMzI3WjAYMRYwFAYD VQQDEw02OTBhNmExZi1jMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKgAKvhcNY7NUII7u4UQlJQkkBCdXCxH6GgPwVuaMWHHYhMXs2ignMm/e19t XQSISQk3kpVcn553z/L7n9J2P5lGjPOugdRpkRWvAprBOIfNxFbsNqfcLen5bfjs XE2NCv1hlfN1LCfpqiQkQ/mDikN2j2N+0WhRR9ysLN6T+U1Slc+SVehfCJSNiDM+ qcYzdeKOMyRU6+myFifYCWafTayZ2zNMbtYnL7smbCywTHJ+sLNixkoXT4XrF1Na QBXJ6oCzGNEQtAYRCdBCszGHkC68O8IyX+v7Txy+xNmKxiEzHkUPGw43xE94nhCW mBEuqUowcAUEEM8fXrE1o2cuBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiF4BU0 qUuA+gbLgoTaAEV5VHoXMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArKdrpU+yKgiOVGD153kx2LuI8ret2xHM3Uvi1t1cXi5oNkYv2PJWw 263D9MVN7SO3R97Z9EBgyTkhW7cnO7IA4Vw6Pu6fKZngN2pOQUQR+fqrtObC2DpQ E0VgAQ0tjszUPmYCD04aEc4sfvcGvP4eyX1zW8/W7sTuxJnU5Fl54otqiw11f/8R HLR8cXHBP3ZpwMI3ZHmXqQEV2YIdVdkdzO+S7OfyaPMRRvy1dsQlsZSgYsu/PfKi B2cgufRjRv7kqrRR2VNecMjVIsL+HZNOjZjzujediWTnI+dbRXLQq5sHLLF23Tqm YamuBFSYJqnoveWofE8TBgV0Ir/mcuPj -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:37 2025 by rpki-client