$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: xbNlPRcoMilvU5y1l7Z0VMdkHxp+b7UDdyUpx0VfRfE= Subject key identifier: 89:CB:3B:97:06:96:4C:E8:B1:70:BB:FA:1D:D6:6D:D5:E1:AA:5D:E7 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 34D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 537A Signing time: Tue 04 Nov 2025 15:07:27 +0000 Manifest this update: Tue 04 Nov 2025 15:07:27 +0000 Manifest next update: Tue 11 Nov 2025 15:07:27 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: pwz3TnbTfhxer8TiSxxAMmhLxl/Ye8CO612RA+46YS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13529 (0x34d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Nov 4 15:07:27 2025 GMT Not After : Nov 11 15:07:27 2025 GMT Subject: CN=690a16af-16ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:24:40:10:7e:1e:0e:9d:b7:83:cd:dd:ff: a9:b5:6b:bb:5d:ea:d8:06:71:19:8f:58:39:e9:22: 95:72:17:1b:28:7e:92:e9:b2:2a:90:b1:34:35:3b: b0:cd:b6:22:ac:b1:24:da:17:37:04:86:fc:2c:fb: 91:c3:6b:d1:d3:64:bb:c6:96:69:01:d2:b9:15:56: ee:98:a7:d5:a9:90:9e:0d:bb:00:ac:9b:b8:36:56: 9f:1d:83:f8:94:ae:4a:60:b9:9d:33:1a:83:e0:b2: bf:fb:c7:3d:42:c4:4b:3b:e9:16:dc:62:3e:84:70: 79:99:97:db:43:6c:0f:70:88:69:ec:41:34:63:01: 2a:6c:77:c1:0d:93:94:8e:7e:37:dd:3a:0a:22:4d: 3b:80:cd:6b:ce:a6:e7:20:6b:76:6a:a6:fd:fb:05: c1:43:77:66:77:f2:03:94:45:26:65:c8:90:fc:22: b4:01:9e:46:1d:f3:b8:82:3f:6b:f8:f9:e7:ad:be: 1b:e6:63:61:14:cd:65:aa:97:c4:d4:23:e8:b2:01: f3:ba:23:75:83:33:99:79:67:16:f4:00:98:19:1f: c5:21:e8:8b:94:6f:9d:22:e0:6f:0a:57:0e:ab:5f: 06:7a:dc:10:f4:be:83:ff:a2:17:fd:b9:ad:a8:27: 91:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:CB:3B:97:06:96:4C:E8:B1:70:BB:FA:1D:D6:6D:D5:E1:AA:5D:E7 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:bc:be:c2:9f:b9:0d:76:13:f4:64:a9:bd:22:63:f4:eb:5e: 6f:3b:b2:ff:46:6a:54:01:88:18:0a:ca:76:ef:5b:f9:be:fe: 2a:3a:ac:47:73:b1:c2:13:9c:b7:5c:21:84:90:34:d3:6f:1d: bc:02:36:e8:52:b5:c7:71:ab:3e:63:18:18:b5:2e:4a:94:16: 6f:f3:0e:9c:3c:11:0b:30:8a:b9:05:40:8e:b9:36:8e:c2:16: f5:28:1c:a8:b9:f6:8a:3c:69:cc:6d:a2:91:49:80:94:6e:22: ae:3e:de:33:03:1c:48:c6:09:13:4a:66:e9:2d:2c:f1:02:9e: 2a:b8:63:8f:cb:ae:7e:49:34:b0:b5:2e:38:52:1f:f0:21:2b: 3a:17:f4:3c:b4:e3:76:ae:d6:6b:bb:c3:f0:8a:2b:50:83:49: 93:64:84:e3:89:28:87:5d:17:0f:bb:5c:22:a9:2d:b9:d9:a0: 91:25:9f:72:aa:0c:e3:ca:6d:cd:0f:1f:46:a1:2b:72:d7:20: 4e:a5:3c:65:56:29:6a:53:a8:57:c8:99:b1:bd:d2:19:f9:c7: 1a:56:ee:67:0c:3f:16:bc:5e:3e:53:f3:ec:d1:cf:6f:85:e3: 84:99:3b:0b:39:83:23:a2:64:6b:46:59:75:87:0d:91:c1:78: d8:32:28:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUxMTA0MTUwNzI3WhcNMjUxMTExMTUwNzI3WjAYMRYwFAYD VQQDEw02OTBhMTZhZi0xNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvr8kQBB+Hg6dt4PN3f+ptWu7XerYBnEZj1g56SKVchcbKH6S6bIqkLE0NTuw zbYirLEk2hc3BIb8LPuRw2vR02S7xpZpAdK5FVbumKfVqZCeDbsArJu4NlafHYP4 lK5KYLmdMxqD4LK/+8c9QsRLO+kW3GI+hHB5mZfbQ2wPcIhp7EE0YwEqbHfBDZOU jn433ToKIk07gM1rzqbnIGt2aqb9+wXBQ3dmd/IDlEUmZciQ/CK0AZ5GHfO4gj9r +Pnnrb4b5mNhFM1lqpfE1CPosgHzuiN1gzOZeWcW9ACYGR/FIeiLlG+dIuBvClcO q18GetwQ9L6D/6IX/bmtqCeR1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInLO5cG lkzosXC7+h3WbdXhql3nMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwvL7Cn7kNdhP0ZKm9ImP0615vO7L/RmpUAYgYCsp271v5vv4qOqxH c7HCE5y3XCGEkDTTbx28AjboUrXHcas+YxgYtS5KlBZv8w6cPBELMIq5BUCOuTaO whb1KByoufaKPGnMbaKRSYCUbiKuPt4zAxxIxgkTSmbpLSzxAp4quGOPy65+STSw tS44Uh/wISs6F/Q8tON2rtZru8PwiitQg0mTZITjiSiHXRcPu1wiqS252aCRJZ9y qgzjym3NDx9GoSty1yBOpTxlVilqU6hXyJmxvdIZ+ccaVu5nDD8WvF4+U/Ps0c9v heOEmTsLOYMjomRrRll1hw2RwXjYMigk -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:43 2025 by rpki-client