$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: OkqHXnXdx7GG19OVJ3KO4doBXtb18H9SCL7znM+jkLY= Subject key identifier: B4:B0:B9:FD:77:65:66:54:D4:74:0D:32:A5:62:57:8E:F8:01:9E:D5 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 0893 Signing time: Fri 31 Oct 2025 20:45:59 +0000 Manifest this update: Fri 31 Oct 2025 20:45:58 +0000 Manifest next update: Fri 07 Nov 2025 20:45:58 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: tCkUs2V+lDkCfqEqUUHr3jFyMd72kaEeThJc/kv8ChA=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 20:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2221 (0x8ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Oct 31 20:45:58 2025 GMT Not After : Nov 7 20:45:58 2025 GMT Subject: CN=69052007-1aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:15:ff:df:29:77:07:89:5b:c8:c4:24:03:5f: 6a:87:a3:02:06:e4:eb:4f:8d:14:d6:a6:af:0c:09: c7:37:88:cb:13:00:7e:2e:11:10:c7:36:69:c3:e7: 6d:31:76:14:20:bf:fd:04:65:3b:7b:9d:8d:27:c3: 9e:47:24:b8:61:77:4a:f5:5e:db:9e:77:75:10:81: 8e:10:03:be:da:18:c7:6b:e1:91:c3:d9:ca:bb:dd: 7f:c6:f3:a4:f0:ac:c4:06:a1:6a:05:4b:be:d7:ce: 69:2c:33:b9:04:db:3d:da:63:34:62:5e:bc:eb:31: ee:5d:d0:6c:99:ef:12:d1:7a:a1:63:5b:dc:f8:9a: ec:29:90:ca:59:ca:7e:26:b6:12:19:74:fa:b5:c9: 53:46:ba:12:92:54:12:d4:8c:ea:e8:9f:b3:a5:0f: 47:66:f5:43:c3:4e:42:c4:33:b2:05:85:99:50:81: 0c:1c:05:3f:7a:3f:36:a1:53:dc:cb:cd:92:a2:28: bc:70:59:81:0b:bd:85:a5:8b:7e:e2:f2:67:54:f5: 4f:36:36:5f:88:02:a2:c0:27:fd:49:3c:ed:33:00: 52:56:b0:f0:d2:76:f2:17:ad:d9:6d:a5:3b:11:56: a7:d4:b4:37:d1:7e:90:36:0a:70:24:fc:0d:22:78: b9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B0:B9:FD:77:65:66:54:D4:74:0D:32:A5:62:57:8E:F8:01:9E:D5 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:af:e5:a9:79:3b:c6:1d:9f:24:3a:0c:d8:0d:ac:20:2d:11: 90:a0:4c:e7:9d:fd:22:6a:9b:1d:f4:7d:6c:ed:70:69:1c:c1: 79:79:1a:76:4b:2b:c1:0c:ca:be:01:ef:19:e1:b1:54:c1:e8: c3:d3:3b:a7:85:c1:92:cc:ac:e6:8d:36:42:85:d0:34:55:ee: c5:47:03:04:f6:86:d1:8a:b5:0b:a3:e7:74:55:71:64:2a:0d: 34:4a:14:05:65:c2:27:2c:36:49:76:85:e3:43:6d:fc:aa:ec: 28:20:b6:8e:18:77:fe:c4:5b:a4:11:b7:b2:48:50:b4:eb:cc: c0:ff:8b:78:42:ab:8c:b7:56:bf:06:7e:d4:75:45:d2:53:c6: f4:65:b9:89:a1:95:80:e5:74:64:ee:7a:d3:08:b3:3f:c4:71: 5d:1b:6a:f9:c9:da:0f:d0:27:29:47:19:b8:4f:32:e7:50:a2: 7e:5f:e9:02:37:f6:12:43:8d:71:62:03:d5:21:13:91:4e:64: 6b:ac:9b:d3:33:11:81:01:46:2d:74:51:e9:a6:07:c3:9b:13: bd:be:76:2e:7b:bb:5d:68:f2:23:1b:ac:d1:3d:cf:3d:8f:d4: ef:43:e6:67:37:38:3f:9f:11:a5:18:63:43:8c:37:ed:6c:2e: 3d:e4:1d:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUxMDMxMjA0NTU4WhcNMjUxMTA3MjA0NTU4WjAYMRYwFAYD VQQDEw02OTA1MjAwNy0xYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxX/3yl3B4lbyMQkA19qh6MCBuTrT40U1qavDAnHN4jLEwB+LhEQxzZpw+dt MXYUIL/9BGU7e52NJ8OeRyS4YXdK9V7bnnd1EIGOEAO+2hjHa+GRw9nKu91/xvOk 8KzEBqFqBUu+185pLDO5BNs92mM0Yl686zHuXdBsme8S0XqhY1vc+JrsKZDKWcp+ JrYSGXT6tclTRroSklQS1Izq6J+zpQ9HZvVDw05CxDOyBYWZUIEMHAU/ej82oVPc y82Soii8cFmBC72FpYt+4vJnVPVPNjZfiAKiwCf9STztMwBSVrDw0nbyF63ZbaU7 EVan1LQ30X6QNgpwJPwNIni5jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSwuf13 ZWZU1HQNMqViV474AZ7VMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPr+WpeTvGHZ8kOgzYDawgLRGQoEznnf0iapsd9H1s7XBpHMF5eRp2 SyvBDMq+Ae8Z4bFUwejD0zunhcGSzKzmjTZChdA0Ve7FRwME9obRirULo+d0VXFk Kg00ShQFZcInLDZJdoXjQ238quwoILaOGHf+xFukEbeySFC068zA/4t4QquMt1a/ Bn7UdUXSU8b0ZbmJoZWA5XRk7nrTCLM/xHFdG2r5ydoP0CcpRxm4TzLnUKJ+X+kC N/YSQ41xYgPVIRORTmRrrJvTMxGBAUYtdFHppgfDmxO9vnYue7tdaPIjG6zRPc89 j9TvQ+ZnNzg/nxGlGGNDjDftbC495B16 -----END CERTIFICATE-----Generated at Sat Nov 1 14:04:58 2025 by rpki-client