$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: Ut/m88HzZHAG6xdIRpPr2xvPjRt1zhy/OqUGY+Gkclo= Subject key identifier: 04:8D:88:6A:DE:AF:6B:5E:CC:D8:90:3E:C1:1E:C5:99:40:EE:52:A9 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: AA Signing time: Mon 03 Nov 2025 06:19:07 +0000 Manifest this update: Mon 03 Nov 2025 06:19:07 +0000 Manifest next update: Mon 10 Nov 2025 06:19:07 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: KVB6BjbCAZpVz7VvUud4TpKR0M67K6dPDX9YMXitn4U=) 2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) 3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Nov 3 06:19:07 2025 GMT Not After : Nov 10 06:19:07 2025 GMT Subject: CN=6908495b-737d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:35:4d:a1:1e:bd:08:bc:80:95:b3:05:dc:e5: f8:f6:28:db:1c:3c:63:80:5b:36:90:65:1c:c4:70: 45:0b:6b:8d:ab:b3:68:c1:e0:72:ef:ea:28:ba:7b: cd:66:aa:03:2f:d1:21:29:c5:ea:07:46:89:5c:0e: 52:fc:5f:b2:af:28:77:f5:5e:84:a2:b1:71:9c:f7: cf:1b:12:94:81:b6:ec:7e:a7:73:83:20:48:e3:7a: 73:a1:ba:03:bd:74:af:26:72:94:af:dc:61:02:51: 16:02:34:d4:b0:20:31:58:fb:c7:9c:29:e1:ce:40: 61:d1:bf:b5:16:53:bd:36:7f:d4:61:e7:f6:9d:11: 50:77:b2:21:4b:81:cf:26:67:b1:58:90:a4:98:15: 76:3c:f2:95:6c:2f:77:cf:a6:1e:9a:0e:4e:d1:3e: 31:cd:7c:4d:f3:73:3d:d6:27:b1:bc:3c:b3:13:fe: a4:08:c5:6f:0c:6a:c1:b2:87:b7:5a:32:0f:5f:d1: 9a:ef:a3:35:3a:e2:3c:7b:c3:48:6d:e8:d3:9a:c8: 72:dc:46:d1:f3:25:2a:fa:bf:28:12:92:1d:64:07: 08:e3:93:25:2d:87:c8:03:76:6f:16:9a:28:26:c1: 2c:fa:8f:49:8d:51:02:2e:f3:cf:1b:4f:4f:48:e7: 6d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8D:88:6A:DE:AF:6B:5E:CC:D8:90:3E:C1:1E:C5:99:40:EE:52:A9 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:fc:cf:a2:09:60:aa:fd:75:53:39:4b:4b:7e:8d:8a:07:a1: 5a:27:72:0b:87:e4:f5:04:51:18:3a:66:44:7c:df:5e:86:52: 53:aa:02:0d:b2:06:ff:d7:ad:9e:7a:94:dd:c0:ab:17:9e:7f: e4:75:c5:2b:67:d1:83:ff:dc:d3:73:d4:3e:11:61:f0:5d:53: 60:e0:e7:f5:bb:b5:56:ce:19:f1:fa:98:a9:ab:97:fa:60:c4: 74:2b:a9:80:ad:e6:64:e6:d2:eb:95:0b:a2:89:3b:83:36:e6: 2d:af:e8:d1:30:b2:27:3c:fc:c1:85:4e:6e:ac:2e:8d:7b:26: 53:51:9f:74:90:9c:47:fa:70:35:26:16:f7:f5:a4:0b:6a:ba: 6d:8c:96:bd:55:2f:1d:c5:9f:e1:f0:95:af:0e:2b:5f:df:4e: bd:db:73:b6:27:68:1a:43:62:5f:be:be:eb:f0:2e:2b:55:ca: 44:30:e6:32:47:e5:a2:e5:9c:12:51:45:46:b4:6d:60:b0:47: 9f:61:81:f0:78:a1:6a:0e:7c:46:65:bb:f6:46:3d:1c:8e:e5: 70:4c:91:d3:2a:77:db:ed:5a:2e:00:d2:88:9f:4b:a0:08:ac: 41:1d:5e:ff:70:4b:89:47:df:79:16:22:b4:1f:c1:34:52:55: 47:25:be:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjUxMTAzMDYxOTA3WhcNMjUxMTEwMDYxOTA3WjAYMRYwFAYD VQQDEw02OTA4NDk1Yi03MzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjVNoR69CLyAlbMF3OX49ijbHDxjgFs2kGUcxHBFC2uNq7NoweBy7+oounvN ZqoDL9EhKcXqB0aJXA5S/F+yryh39V6EorFxnPfPGxKUgbbsfqdzgyBI43pzoboD vXSvJnKUr9xhAlEWAjTUsCAxWPvHnCnhzkBh0b+1FlO9Nn/UYef2nRFQd7IhS4HP JmexWJCkmBV2PPKVbC93z6Yemg5O0T4xzXxN83M91iexvDyzE/6kCMVvDGrBsoe3 WjIPX9Ga76M1OuI8e8NIbejTmshy3EbR8yUq+r8oEpIdZAcI45MlLYfIA3ZvFpoo JsEs+o9JjVECLvPPG09PSOdtFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASNiGre r2tezNiQPsEexZlA7lKpMB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEI2Ny8yRkEwMEQzRUM2QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05L QlRYc09Oak15SmtCbE40WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ/M+iCWCq/XVTOUtLfo2KB6FaJ3ILh+T1BFEYOmZEfN9ehlJTqgIN sgb/162eepTdwKsXnn/kdcUrZ9GD/9zTc9Q+EWHwXVNg4Of1u7VWzhnx+pipq5f6 YMR0K6mAreZk5tLrlQuiiTuDNuYtr+jRMLInPPzBhU5urC6NeyZTUZ90kJxH+nA1 Jhb39aQLarptjJa9VS8dxZ/h8JWvDitf306923O2J2gaQ2Jfvr7r8C4rVcpEMOYy R+Wi5ZwSUUVGtG1gsEefYYHweKFqDnxGZbv2Rj0cjuVwTJHTKnfb7VouANKIn0ug CKxBHV7/cEuJR995FiK0H8E0UlVHJb60 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:12 2025 by rpki-client