$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: 1+itl3ZYIVVtajXUDS30vExE+yUFg5l3weyF2tiNhnk= Subject key identifier: 83:37:E2:D4:2D:87:A2:78:4F:3F:90:61:9C:E6:59:C6:C1:D7:FC:0E Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 0179 Signing time: Wed 05 Nov 2025 03:54:33 +0000 Manifest this update: Wed 05 Nov 2025 03:54:32 +0000 Manifest next update: Wed 12 Nov 2025 03:54:32 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: G96zGK4VkLGqSd2gjhh+lPY4Y3us3ZZXYGikze1rOWw=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: 2U1GUUuHz/HspZCAbX8MNYKTWmtmGMuAJscXPNynpMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Nov 5 03:54:32 2025 GMT Not After : Nov 12 03:54:32 2025 GMT Subject: CN=690aca78-86c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d8:51:2b:40:be:5d:65:41:9c:5d:e0:53:17: 57:6b:51:b7:6d:60:ba:d1:af:9f:c8:dc:fb:7c:0b: 2b:f3:9f:92:17:9d:9a:ff:45:83:ff:75:b0:51:e9: 6a:2c:0c:9b:b8:fb:a9:4a:93:31:d7:af:01:2d:33: b3:ad:b4:a9:a2:7a:35:4b:48:cb:76:82:9f:d3:26: ff:55:92:c2:f8:ff:f5:14:5f:bc:b4:ec:8f:50:08: 3b:7f:b7:18:c2:91:8e:86:ee:f5:54:b8:43:13:f5: dc:c5:2c:08:a3:d8:45:42:0f:97:d0:99:89:11:ce: 7c:1d:ec:8f:05:dd:e2:99:62:39:2a:95:f5:a1:32: 6c:35:eb:a2:32:bb:a4:88:52:16:fa:64:8b:c2:05: cf:a4:95:ce:3a:f8:4f:72:3b:cb:2b:9e:a0:19:eb: c3:62:e0:64:16:31:34:55:32:71:ed:4f:42:89:c5: fc:fa:d0:16:74:c0:17:32:dc:9f:ee:3f:72:9f:c2: 7e:13:e7:e1:13:95:5d:9c:9a:8d:52:81:90:06:bf: 7d:e7:53:4a:54:7d:17:9d:fb:56:f0:3c:a3:12:44: 10:dc:0b:13:ab:72:6e:58:44:6f:be:a3:0e:a0:2f: 40:bf:a3:64:ee:ca:06:67:90:2a:b0:63:91:6e:93: 64:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:37:E2:D4:2D:87:A2:78:4F:3F:90:61:9C:E6:59:C6:C1:D7:FC:0E X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:77:c8:52:f9:6b:26:86:75:bb:c3:56:93:92:c2:63:8f:97: ed:1f:5e:0b:8d:ed:4a:9b:76:0d:ac:24:f0:5a:10:05:2b:97: 35:a6:7c:53:0c:a7:f5:f4:0e:31:aa:c0:46:90:95:41:b0:cb: 83:a6:f9:eb:32:aa:4b:c2:c1:5d:ca:4e:6e:b6:bf:33:ca:ea: 98:46:b6:1c:dd:b1:b6:c3:1c:15:18:58:69:ba:ff:61:6a:4e: 6b:1c:bf:4a:34:22:1c:c6:e1:4e:a1:46:18:5f:48:78:2e:83: 6b:2a:ad:ad:29:ac:f0:3e:35:0d:1a:3c:a9:80:54:58:03:66: 57:75:6a:52:90:fd:fe:e7:02:5d:e2:14:ff:8d:66:f8:49:c5: 97:66:2f:af:f8:ae:c9:ae:02:46:ed:79:e1:d1:e9:f1:35:2b: ac:a7:4d:da:e1:0d:1e:e9:75:1c:cc:71:03:23:87:b1:59:d1: ce:e0:58:f0:5e:0d:f4:62:75:5c:2b:e6:82:d4:27:35:d8:d9: 01:5e:07:f4:bf:6b:e9:e9:ef:b4:13:83:1e:8f:fa:8b:33:af: a5:86:24:3e:50:33:3a:3e:0f:01:32:a4:4d:d3:8f:34:ce:75: 33:cc:1e:d4:c7:9b:da:3f:3d:91:ac:5c:e7:91:8c:99:1c:a2: 23:36:33:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjUxMTA1MDM1NDMyWhcNMjUxMTEyMDM1NDMyWjAYMRYwFAYD VQQDEw02OTBhY2E3OC04NmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dhRK0C+XWVBnF3gUxdXa1G3bWC60a+fyNz7fAsr85+SF52a/0WD/3WwUelq LAybuPupSpMx168BLTOzrbSpono1S0jLdoKf0yb/VZLC+P/1FF+8tOyPUAg7f7cY wpGOhu71VLhDE/XcxSwIo9hFQg+X0JmJEc58HeyPBd3imWI5KpX1oTJsNeuiMruk iFIW+mSLwgXPpJXOOvhPcjvLK56gGevDYuBkFjE0VTJx7U9CicX8+tAWdMAXMtyf 7j9yn8J+E+fhE5VdnJqNUoGQBr9951NKVH0XnftW8DyjEkQQ3AsTq3JuWERvvqMO oC9Av6Nk7soGZ5AqsGORbpNkgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM34tQt h6J4Tz+QYZzmWcbB1/wOMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXd8hS+WsmhnW7w1aTksJjj5ftH14Lje1Km3YNrCTwWhAFK5c1pnxT DKf19A4xqsBGkJVBsMuDpvnrMqpLwsFdyk5utr8zyuqYRrYc3bG2wxwVGFhpuv9h ak5rHL9KNCIcxuFOoUYYX0h4LoNrKq2tKazwPjUNGjypgFRYA2ZXdWpSkP3+5wJd 4hT/jWb4ScWXZi+v+K7JrgJG7Xnh0enxNSusp03a4Q0e6XUczHEDI4exWdHO4Fjw Xg30YnVcK+aC1Cc12NkBXgf0v2vp6e+0E4Mej/qLM6+lhiQ+UDM6Pg8BMqRN0480 znUzzB7Ux5vaPz2RrFznkYyZHKIjNjPl -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:21 2025 by rpki-client