$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: iacbujg8nPE4/yAnkcw/HierLrT6p3CINUagfVOkWns= Subject key identifier: 54:8A:FF:78:88:F7:79:DA:9F:96:42:B6:34:79:B7:D5:64:C2:BA:9D Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 069C Signing time: Sun 02 Nov 2025 22:19:20 +0000 Manifest this update: Sun 02 Nov 2025 22:19:20 +0000 Manifest next update: Sun 09 Nov 2025 22:19:20 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: OKeY4hQYo/AcJnVzaXiyIM4VAdhE6yvnOQKST2qzwAw=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: /i9RofZ06AYBMENjcaJpNwKG22jU3wGWaEpuwf3htx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317, serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Nov 2 22:19:20 2025 GMT Not After : Nov 9 22:19:20 2025 GMT Subject: CN=6907d8e8-3d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:21:d7:20:f4:a3:02:43:6c:ab:e6:ce:e8:2d: 33:77:45:49:1d:86:07:d2:e4:6c:67:8a:fe:90:71: c5:23:36:6a:f6:05:48:38:78:ea:59:43:70:9d:79: 76:49:72:3a:2b:4a:23:be:86:66:7a:b8:0c:90:bc: 9b:12:e1:ef:e5:dd:d3:ae:28:f9:09:e7:97:de:a6: 40:05:99:7b:74:34:90:02:bd:1e:21:74:0d:08:99: 97:6e:1d:00:ce:17:91:ea:b5:81:8c:c0:34:a9:68: 9c:21:ce:c1:d4:40:c5:40:19:23:93:c9:68:89:ac: 45:04:b7:a4:67:f5:58:46:42:39:85:86:03:89:86: 2c:b2:5d:48:81:f6:9c:53:cc:eb:57:b0:7f:43:11: 98:d1:60:ae:17:90:aa:35:f3:4c:61:f6:e1:4f:fc: 6d:fa:a1:2f:c0:67:f0:05:9f:d6:48:b3:2e:91:b2: 8f:b6:1e:98:9f:25:52:52:fd:df:bd:c9:9c:79:82: 1f:25:e9:4e:6c:da:8e:53:98:42:d6:3f:45:35:de: 70:4e:7b:ba:90:d8:8d:79:9f:f9:3a:c7:22:48:8f: e9:44:d2:e5:d6:53:f3:b5:56:e7:64:3e:cf:a4:37: e5:37:99:37:9f:57:ad:3c:26:a7:72:30:30:4f:ef: eb:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:8A:FF:78:88:F7:79:DA:9F:96:42:B6:34:79:B7:D5:64:C2:BA:9D X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:0d:e2:ba:85:10:73:80:a7:9e:ba:61:ad:1e:65:39:cf:ae: e4:c0:ff:d7:45:96:5f:e4:26:84:bd:cf:69:4a:cc:e6:24:76: d9:39:de:dd:b6:11:1e:c1:30:b4:ef:c5:fb:83:e4:d3:1f:02: c8:25:52:6f:9f:ff:a9:31:1e:a2:ab:fb:d1:03:bc:7d:90:c1: d7:91:f7:a1:fc:14:26:c8:fe:76:ee:9d:61:64:76:64:09:24: 3f:42:f9:ff:ed:f1:aa:a9:7b:a5:06:65:21:df:3c:23:c6:59: 74:db:f7:ce:c8:63:b2:9f:31:92:fa:69:d3:f1:38:07:e4:49: 83:ad:43:0f:11:ec:d6:c0:c4:55:fc:12:52:53:c2:fe:48:82: d0:15:e3:d1:81:81:cb:3d:ec:c4:ac:98:94:48:09:e5:eb:57: c3:8c:9a:06:2b:57:65:40:58:55:e5:1d:74:dd:24:d7:fc:28: 16:67:8a:8b:0f:84:af:25:9b:d1:82:d9:70:1b:16:dd:1c:2d: 9e:2c:22:c4:d0:89:53:e0:90:8c:f2:de:9f:04:8a:75:4d:8f: 15:fa:8e:2a:c9:ee:f8:61:b7:f2:8b:74:d7:2e:45:aa:43:c1: b3:2e:f2:2a:e8:ab:e8:7d:8a:9f:56:4d:53:3d:44:e2:c7:09: e2:ee:76:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjUxMTAyMjIxOTIwWhcNMjUxMTA5MjIxOTIwWjAYMRYwFAYD VQQDEw02OTA3ZDhlOC0zZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yHXIPSjAkNsq+bO6C0zd0VJHYYH0uRsZ4r+kHHFIzZq9gVIOHjqWUNwnXl2 SXI6K0ojvoZmergMkLybEuHv5d3Trij5CeeX3qZABZl7dDSQAr0eIXQNCJmXbh0A zheR6rWBjMA0qWicIc7B1EDFQBkjk8loiaxFBLekZ/VYRkI5hYYDiYYssl1Igfac U8zrV7B/QxGY0WCuF5CqNfNMYfbhT/xt+qEvwGfwBZ/WSLMukbKPth6YnyVSUv3f vcmceYIfJelObNqOU5hC1j9FNd5wTnu6kNiNeZ/5OsciSI/pRNLl1lPztVbnZD7P pDflN5k3n1etPCancjAwT+/rPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSK/3iI 93nan5ZCtjR5t9VkwrqdMB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPDeK6hRBzgKeeumGtHmU5z67kwP/XRZZf5CaEvc9pSszmJHbZOd7d thEewTC078X7g+TTHwLIJVJvn/+pMR6iq/vRA7x9kMHXkfeh/BQmyP527p1hZHZk CSQ/Qvn/7fGqqXulBmUh3zwjxll02/fOyGOynzGS+mnT8TgH5EmDrUMPEezWwMRV /BJSU8L+SILQFePRgYHLPezErJiUSAnl61fDjJoGK1dlQFhV5R103STX/CgWZ4qL D4SvJZvRgtlwGxbdHC2eLCLE0IlT4JCM8t6fBIp1TY8V+o4qye74Ybfyi3TXLkWq Q8GzLvIq6KvofYqfVk1TPUTixwni7nbZ -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:06 2025 by rpki-client