$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: k+LnN6WEBIJ3Vi71oimL3W5PUJmhAKFdBaiJZxl9rxI= Subject key identifier: 79:FD:13:67:34:EC:45:04:C8:F3:73:E0:6A:C9:7E:9A:8E:05:C1:E5 Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 081A Signing time: Sun 02 Nov 2025 20:51:47 +0000 Manifest this update: Sun 02 Nov 2025 20:51:46 +0000 Manifest next update: Sun 09 Nov 2025 20:51:46 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: fwSuJyhis7/uWHt/Xx4C7Qge/mw0/0MYXIFVVwfH/wA=) 2: 727EECD2678811EF99602F53C4F9AE02.roa (hash: IPe594JnZ2N3gd3dB/i0h0vHj/VgJ8oN3r//4wdEFp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252, serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: Nov 2 20:51:46 2025 GMT Not After : Nov 9 20:51:46 2025 GMT Subject: CN=6907c463-a7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bb:0f:be:c1:1b:77:fb:8e:6c:6e:88:bb:8e: 0d:5d:85:9e:e2:47:23:dc:12:74:da:50:a4:85:0d: db:c8:8a:7f:00:ad:85:1c:ac:ba:3f:6c:9f:a6:62: 73:82:80:b3:39:ce:98:2d:f0:7e:fa:66:50:46:89: b2:df:36:75:68:4d:a3:20:9c:d0:f9:9f:bc:dc:fb: ad:1e:ab:ed:be:fc:28:7b:48:7e:2e:f6:bd:ac:64: 27:5e:6e:6e:a4:76:3d:b6:95:4c:df:a7:2b:20:34: be:00:12:32:4c:33:d1:b8:95:09:7b:cb:2c:42:18: a3:6c:9f:29:03:81:fe:20:09:e3:8d:55:37:06:93: 3b:98:2b:8d:35:e9:2c:4a:05:e6:1a:e3:bc:e8:65: 37:2d:b8:d5:82:9e:0e:f7:93:84:91:45:53:74:02: e0:90:50:e3:7d:9e:85:12:72:ea:46:c5:b3:e0:33: 2c:1a:b2:fc:d5:db:31:73:d4:b6:8b:89:c8:d6:d2: 93:50:77:5c:34:4e:7d:eb:35:26:77:32:35:e4:be: 5a:46:4d:9c:8c:77:c4:2c:9e:a6:b0:4b:c7:08:2b: 12:d3:b3:b9:a6:8e:95:ff:dc:b3:c1:5b:94:a5:ae: 1c:1e:05:50:0e:c7:06:37:bd:de:06:3d:6f:f6:42: 4c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FD:13:67:34:EC:45:04:C8:F3:73:E0:6A:C9:7E:9A:8E:05:C1:E5 X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a5:c0:0a:b2:11:d5:49:84:2b:de:01:3f:f3:33:79:7e:cb: f3:3d:06:57:93:23:0c:b9:58:62:40:30:09:25:15:be:6a:8e: 68:52:03:f1:85:c9:32:39:f2:b4:fd:df:1f:d8:a6:41:fa:ed: 8f:ef:9b:7b:c9:c4:84:3a:ad:17:e9:73:d8:e6:25:ea:af:ff: 00:64:27:05:70:d0:34:95:ca:9c:69:de:b0:3e:2f:e9:46:2e: 8a:60:cf:57:3e:63:c5:bd:23:eb:54:6a:8f:a9:98:01:34:f0: 67:19:05:c1:c2:99:ed:31:bc:41:29:06:7e:41:e1:9c:85:ef: b3:ce:8f:e7:11:64:ce:f3:7a:16:a2:3f:82:89:38:f9:3f:1c: 9f:7a:9d:ac:22:e7:06:7b:53:20:da:ba:89:4d:a2:d3:d7:cd: b5:2e:2a:77:15:3d:bb:39:8b:62:50:f5:92:ef:a8:8d:dc:44: 80:6b:a7:99:e7:3d:23:89:ee:8b:1d:e4:96:3d:68:e2:13:06: ee:42:28:f5:f8:ba:4a:fc:df:48:7a:1d:05:69:b1:0c:3d:36: e6:e8:12:c5:19:d1:a6:56:a6:8f:21:11:e6:a3:4e:10:e8:14: ae:51:ee:16:e6:4a:ae:d9:7a:0c:a7:90:ff:61:60:cd:c7:37: 31:91:aa:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjUxMTAyMjA1MTQ2WhcNMjUxMTA5MjA1MTQ2WjAYMRYwFAYD VQQDEw02OTA3YzQ2My1hN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLsPvsEbd/uObG6Iu44NXYWe4kcj3BJ02lCkhQ3byIp/AK2FHKy6P2yfpmJz goCzOc6YLfB++mZQRomy3zZ1aE2jIJzQ+Z+83PutHqvtvvwoe0h+Lva9rGQnXm5u pHY9tpVM36crIDS+ABIyTDPRuJUJe8ssQhijbJ8pA4H+IAnjjVU3BpM7mCuNNeks SgXmGuO86GU3LbjVgp4O95OEkUVTdALgkFDjfZ6FEnLqRsWz4DMsGrL81dsxc9S2 i4nI1tKTUHdcNE596zUmdzI15L5aRk2cjHfELJ6msEvHCCsS07O5po6V/9yzwVuU pa4cHgVQDscGN73eBj1v9kJMdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn9E2c0 7EUEyPNz4GrJfpqOBcHlMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdpcAKshHVSYQr3gE/8zN5fsvzPQZXkyMMuVhiQDAJJRW+ao5oUgPx hckyOfK0/d8f2KZB+u2P75t7ycSEOq0X6XPY5iXqr/8AZCcFcNA0lcqcad6wPi/p Ri6KYM9XPmPFvSPrVGqPqZgBNPBnGQXBwpntMbxBKQZ+QeGche+zzo/nEWTO83oW oj+CiTj5Pxyfep2sIucGe1Mg2rqJTaLT1821Lip3FT27OYtiUPWS76iN3ESAa6eZ 5z0jie6LHeSWPWjiEwbuQij1+LpK/N9Ieh0FabEMPTbm6BLFGdGmVqaPIRHmo04Q 6BSuUe4W5kqu2XoMp5D/YWDNxzcxkaqx -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:15 2025 by rpki-client