$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft File: Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft (raw, json) Hash identifier: mpHWVCCKgKssz54gVgj5wupQuzf1JBNHO+uh6crd6ko= Subject key identifier: E5:57:30:DB:8C:74:95:B7:D4:97:3F:65:9F:6A:21:77:83:27:4E:E0 Authority key identifier: 0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F Certificate issuer: /CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Certificate serial: 0625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft Manifest number: 0614 Signing time: Sun 02 Nov 2025 22:53:06 +0000 Manifest this update: Sun 02 Nov 2025 22:53:06 +0000 Manifest next update: Sun 09 Nov 2025 22:53:05 +0000 Files and hashes: 1: Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl (hash: /aA+Ko/NXa/KNpGVJsZ0y6/L0XQ5Xkyttlv3nwyOR2o=) 2: 4D38774A86E611EF9D6F5581C4F9AE02.roa (hash: RrGFGjBqFWbDXGLRFPlWMlsiau/aq6m1Jz59fpXuJf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF5F7, serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Validity Not Before: Nov 2 22:53:06 2025 GMT Not After : Nov 9 22:53:05 2025 GMT Subject: CN=6907e0d2-67d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1e:72:70:bf:01:ba:c7:81:ac:5b:f7:f5:68: 1a:28:9a:1f:86:4e:7e:df:92:47:35:3b:60:fb:25: 22:0f:77:af:26:58:b2:52:84:2d:ee:a2:bf:9b:0c: c6:c3:f0:c5:cf:2a:c7:fa:1f:38:99:67:d3:b6:5b: c6:d1:50:b4:42:2d:dd:e4:10:d0:10:56:44:6b:bc: f1:87:93:e7:10:93:63:e7:5c:c9:cd:71:5e:21:33: 33:31:02:4d:d6:33:50:e4:29:ef:e6:d8:37:23:dd: db:b7:37:84:80:f4:4f:a4:e2:c6:07:95:d1:7a:94: a4:48:d5:f9:f3:bf:66:a7:75:c0:3b:53:c4:84:95: c1:67:fe:8f:61:ae:dd:f6:9a:65:22:02:ad:43:d7: 88:43:df:9c:93:3f:09:96:bf:fb:9e:32:79:7e:fb: ff:45:19:6b:5f:97:17:49:45:1d:6e:28:c8:b1:31: b0:77:c9:e8:4d:c7:06:52:b7:1a:80:d0:fc:61:6a: 2f:e7:f1:0b:f6:36:32:6d:15:a6:87:1a:2f:9b:2e: f4:bf:7c:4c:70:90:8a:29:5d:37:4b:be:a5:a2:b2: d9:cf:82:a3:7e:79:8f:4d:4c:f2:1d:c6:22:d8:ef: aa:ad:8e:e8:77:b9:24:51:ab:c6:66:49:75:e2:0c: 0a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:57:30:DB:8C:74:95:B7:D4:97:3F:65:9F:6A:21:77:83:27:4E:E0 X509v3 Authority Key Identifier: keyid:0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:25:4a:91:a9:5b:b1:a6:82:b0:be:61:a6:21:e3:c8:a3:f3: 97:ca:ca:8f:ac:1d:34:f7:01:f7:f9:33:c3:1f:d9:57:46:63: 55:3e:85:fd:0d:17:68:a6:ee:23:8a:2d:e2:18:68:d2:a4:d8: 0e:61:10:62:7a:57:2d:a6:d6:b5:b1:40:5b:ce:53:ad:35:84: 3d:18:4b:a0:fe:1e:fe:e4:70:ad:45:83:7e:a2:4a:7e:81:a2: 4f:c7:26:9a:2b:c0:6f:87:88:50:f9:49:f2:fb:ce:62:eb:e6: 5a:bb:c2:28:08:f5:16:36:8a:91:b4:60:84:90:90:6d:57:ef: db:36:89:c6:71:39:05:03:cb:37:c3:29:0e:ab:64:a4:5a:c8: 50:cd:d0:fe:27:40:b6:c8:33:f9:f4:57:2c:20:b2:87:9d:a7: 0a:f1:2e:9e:3a:a4:c0:84:fd:c1:af:f3:68:b2:69:a4:59:55: 02:4e:e3:8c:9a:7b:65:92:21:85:17:9f:0d:27:c4:59:d3:6e: ec:c7:8e:fe:7f:0c:77:a5:c8:1d:b6:cb:cb:52:ab:db:ce:11: c3:50:7a:b6:d1:83:14:1e:91:de:4b:d8:53:d7:2a:55:c8:cc: 79:67:d5:cf:a3:a1:55:46:73:bf:4f:06:18:63:76:aa:cc:0a: ad:f0:5d:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY1RjcxMTAvBgNVBAUTKDBBMjc3RDI2QTlDMjQwMkI4QTFDRDQ1Nzc5MzVFNEYz QzI1OUMxOUYwHhcNMjUxMTAyMjI1MzA2WhcNMjUxMTA5MjI1MzA1WjAYMRYwFAYD VQQDEw02OTA3ZTBkMi02N2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmh5ycL8BuseBrFv39WgaKJofhk5+35JHNTtg+yUiD3evJliyUoQt7qK/mwzG w/DFzyrH+h84mWfTtlvG0VC0Qi3d5BDQEFZEa7zxh5PnEJNj51zJzXFeITMzMQJN 1jNQ5Cnv5tg3I93btzeEgPRPpOLGB5XRepSkSNX5879mp3XAO1PEhJXBZ/6PYa7d 9pplIgKtQ9eIQ9+ckz8Jlr/7njJ5fvv/RRlrX5cXSUUdbijIsTGwd8noTccGUrca gND8YWov5/EL9jYybRWmhxovmy70v3xMcJCKKV03S76lorLZz4KjfnmPTUzyHcYi 2O+qrY7od7kkUavGZkl14gwKoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVXMNuM dJW31Jc/ZZ9qIXeDJ07gMB8GA1UdIwQYMBaAFAonfSapwkArihzUV3k15PPCWcGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjVGNy80NEZDRTU2OEM3 ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FDdUtITlJYZVRYazg4Slp3 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpZDlKcW5DUUN1S0hOUlhlVFhrODhKWndaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjVGNy80NEZDRTU2OEM3ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FD dUtITlJYZVRYazg4Slp3WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaJUqRqVuxpoKwvmGmIePIo/OXysqPrB009wH3+TPDH9lXRmNVPoX9 DRdopu4jii3iGGjSpNgOYRBielctpta1sUBbzlOtNYQ9GEug/h7+5HCtRYN+okp+ gaJPxyaaK8Bvh4hQ+Uny+85i6+Zau8IoCPUWNoqRtGCEkJBtV+/bNonGcTkFA8s3 wykOq2SkWshQzdD+J0C2yDP59FcsILKHnacK8S6eOqTAhP3Br/NosmmkWVUCTuOM mntlkiGFF58NJ8RZ027sx47+fwx3pcgdtsvLUqvbzhHDUHq20YMUHpHeS9hT1ypV yMx5Z9XPo6FVRnO/TwYYY3aqzAqt8F2l -----END CERTIFICATE-----Generated at Tue Nov 4 08:30:29 2025 by rpki-client