$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft File: M1KIaoOU86z15jXjxHVvTQpuRek.mft (raw, json) Hash identifier: PyNspGuoQZXHqaDFA0RoKNvkqNUeBQTruVRGvK/A6aM= Subject key identifier: C7:54:B3:30:02:83:D4:78:EB:BD:B6:CE:0D:67:B5:EA:76:42:1C:EB Authority key identifier: 33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 Certificate issuer: /CN=A91B5AD4/serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Certificate serial: 09DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft Manifest number: 09D4 Signing time: Sun 02 Nov 2025 19:24:25 +0000 Manifest this update: Sun 02 Nov 2025 19:24:25 +0000 Manifest next update: Sun 09 Nov 2025 19:24:25 +0000 Files and hashes: 1: M1KIaoOU86z15jXjxHVvTQpuRek.crl (hash: sYZECtG779Tp/rfQYYqwewX56+r/GEe8qm/9IqhPU+Y=) 2: 67A60C64441E11EB861F005AC4F9AE02.roa (hash: JcavRD/UkGMKefo40xrhCPb2PgEwMsvZQrFanuv4C9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2525 (0x9dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AD4, serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Validity Not Before: Nov 2 19:24:25 2025 GMT Not After : Nov 9 19:24:25 2025 GMT Subject: CN=6907afe9-5ac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0d:96:28:b5:0b:9c:15:d9:36:0e:79:6e:2f: c6:e0:30:22:a9:5d:71:8c:7c:37:b6:0f:ff:2f:15: 1f:1c:43:5c:b8:66:b3:f6:cd:6e:17:de:e6:71:e7: 7e:f2:a5:33:61:49:2b:b1:f6:28:0d:bb:b6:cf:ef: 44:f6:bb:94:14:fb:8b:a0:97:2b:05:e1:b4:95:02: 2a:4b:12:0f:8e:8e:c5:61:93:93:64:33:1a:9f:26: c6:50:bf:01:53:f9:0f:bc:2c:fb:50:a8:d4:27:89: 59:34:22:ef:7a:7b:3b:35:d7:2c:7c:6f:ed:22:db: ff:d6:21:e3:5e:37:23:fe:cd:63:c2:e9:e8:f1:c1: 27:62:d2:44:c5:8d:a2:23:10:e8:63:9d:de:dc:f5: 20:66:14:6b:3d:c0:db:6d:53:22:3b:7e:01:46:47: 63:50:5d:91:55:b0:79:a6:b7:41:12:1f:88:56:4c: 5b:67:0f:3d:a8:73:51:f0:9f:af:5d:59:07:bf:9c: 60:61:4b:fe:0e:b9:93:68:27:9b:95:9a:4f:66:f9: da:4a:c6:ae:30:11:53:b6:a3:00:51:69:14:21:2c: 06:ba:e6:19:76:fb:b4:ba:59:32:96:92:a0:31:c3: e4:f4:a9:a7:af:5d:e2:48:85:77:b5:37:5f:74:a4: 5d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:54:B3:30:02:83:D4:78:EB:BD:B6:CE:0D:67:B5:EA:76:42:1C:EB X509v3 Authority Key Identifier: keyid:33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8d:33:29:ca:4e:cf:e7:38:af:b6:82:e3:8d:ed:63:4c:5a: 51:3b:f8:29:1c:72:70:8f:83:fd:39:dc:5a:d4:d7:7e:66:38: e0:3e:c9:aa:00:c9:d6:b2:d0:dd:0a:ee:ce:53:f5:1c:86:22: 18:ce:4c:91:a7:7c:f0:73:31:37:fd:8d:a5:14:78:09:32:d3: fa:89:ef:8a:81:53:8f:65:04:77:78:11:f9:fd:a9:6a:58:b3: 41:34:0a:44:e7:b0:f5:84:05:9e:e8:77:2f:03:cd:e9:95:11: 95:8a:1c:cc:84:9e:84:b8:5d:0b:df:cd:55:3c:21:b3:a1:b1: 43:af:52:48:76:03:02:ae:ff:ce:29:c9:4d:5d:75:ea:00:52: ea:43:8c:02:8f:5d:e2:a8:16:7a:d2:5c:7a:f7:2a:81:6c:4a: 01:61:f6:3f:9e:52:38:37:58:1c:91:d2:17:bf:9f:95:86:b0: f6:10:83:15:25:64:5d:02:7e:9a:ae:03:f9:71:af:89:6a:5c: 19:a5:bb:d5:2c:22:03:3b:38:c8:fd:bd:f0:b1:53:ce:85:e8: 6a:73:65:d3:66:0b:df:40:a7:f0:e2:38:aa:19:cd:41:c2:c5: 69:6d:b8:5a:29:e9:c5:f3:52:09:45:ca:c0:ea:b9:ff:4f:61: ba:f1:f7:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBRDQxMTAvBgNVBAUTKDMzNTI4ODZBODM5NEYzQUNGNUU2MzVFM0M0NzU2RjRE MEE2RTQ1RTkwHhcNMjUxMTAyMTkyNDI1WhcNMjUxMTA5MTkyNDI1WjAYMRYwFAYD VQQDEw02OTA3YWZlOS01YWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzg2WKLULnBXZNg55bi/G4DAiqV1xjHw3tg//LxUfHENcuGaz9s1uF97mced+ 8qUzYUkrsfYoDbu2z+9E9ruUFPuLoJcrBeG0lQIqSxIPjo7FYZOTZDManybGUL8B U/kPvCz7UKjUJ4lZNCLvens7NdcsfG/tItv/1iHjXjcj/s1jwuno8cEnYtJExY2i IxDoY53e3PUgZhRrPcDbbVMiO34BRkdjUF2RVbB5prdBEh+IVkxbZw89qHNR8J+v XVkHv5xgYUv+DrmTaCeblZpPZvnaSsauMBFTtqMAUWkUISwGuuYZdvu0ulkylpKg McPk9Kmnr13iSIV3tTdfdKRdcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdUszAC g9R46722zg1ntep2QhzrMB8GA1UdIwQYMBaAFDNSiGqDlPOs9eY148R1b00KbkXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFENC8xMTIyNkI3RThG OEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2ejE1alhqeEhWdlRRcHVS ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00xS0lhb09VODZ6MTVqWGp4SFZ2VFFwdVJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFENC8xMTIyNkI3RThGOEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2 ejE1alhqeEhWdlRRcHVSZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCajTMpyk7P5zivtoLjje1jTFpRO/gpHHJwj4P9Odxa1Nd+ZjjgPsmq AMnWstDdCu7OU/UchiIYzkyRp3zwczE3/Y2lFHgJMtP6ie+KgVOPZQR3eBH5/alq WLNBNApE57D1hAWe6HcvA83plRGVihzMhJ6EuF0L381VPCGzobFDr1JIdgMCrv/O KclNXXXqAFLqQ4wCj13iqBZ60lx69yqBbEoBYfY/nlI4N1gckdIXv5+VhrD2EIMV JWRdAn6argP5ca+JalwZpbvVLCIDOzjI/b3wsVPOhehqc2XTZgvfQKfw4jiqGc1B wsVpbbhaKenF81IJRcrA6rn/T2G68fdI -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:16 2025 by rpki-client