$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: lho1Pd59mJSF/jDpb2zkVSgHCC259iYZvIUH6xiSSbM= Subject key identifier: 8C:00:92:55:27:2E:B8:09:B6:A6:45:6A:5C:88:5C:12:40:03:66:A8 Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 0133 Signing time: Mon 03 Nov 2025 04:31:32 +0000 Manifest this update: Mon 03 Nov 2025 04:31:31 +0000 Manifest next update: Mon 10 Nov 2025 04:31:31 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: kbD+w6zFQCgCrnHNKLBtidjwPt/0O+wyAywxRBwRINc=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: Nov 3 04:31:31 2025 GMT Not After : Nov 10 04:31:31 2025 GMT Subject: CN=69083023-c2d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:f6:9e:4b:61:1b:b9:48:3b:8b:e2:57:07: 41:4f:57:65:42:b7:75:a5:70:a8:6d:87:c9:2a:f0: 2c:79:5b:6c:14:1a:0b:e6:1d:86:eb:fb:fe:70:eb: 5e:48:a1:9d:91:ba:6b:f4:6a:18:50:f9:2f:65:f3: 7f:bb:4b:33:ad:1f:a9:07:4b:26:94:68:f0:d5:55: 49:7f:e9:29:be:c6:bb:34:bb:4c:6b:b2:a4:75:2d: 5f:8a:f6:56:8f:6a:ca:48:fd:57:21:5e:36:bf:21: cf:51:20:c3:00:8b:3e:74:24:01:7e:5a:7b:73:37: b2:2b:69:4a:14:a3:53:ae:9f:2b:61:09:a4:83:da: 77:c6:11:de:e6:ac:90:1a:d5:49:b4:26:8d:ac:bf: d0:31:fb:8a:f8:70:17:a7:0f:89:ae:ba:25:ed:39: cb:49:f6:5c:43:b4:fb:3c:73:28:d9:ba:86:cb:98: 87:d5:e8:62:a6:4a:b3:0a:aa:70:ec:51:1d:e3:c5: d9:a5:50:2d:66:f2:74:df:49:d2:8c:3a:1e:11:a3: 77:e4:c9:43:f2:a2:c9:67:63:ab:bd:cc:02:fe:bc: d2:ca:13:63:da:b6:9e:a1:28:e7:85:c8:7c:f8:76: b0:a4:d4:30:96:b4:76:2b:01:ed:9d:59:e5:60:30: 35:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:00:92:55:27:2E:B8:09:B6:A6:45:6A:5C:88:5C:12:40:03:66:A8 X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:70:c9:71:79:13:1d:2c:56:70:a1:2c:40:ba:51:54:81:c1: 5b:ff:65:c2:c0:63:79:f8:7d:76:a5:5a:11:3b:10:4c:36:6f: fa:ac:50:f5:e6:45:0f:db:07:98:b2:9b:e6:d4:10:bb:1e:63: 65:c3:01:24:62:33:24:09:41:91:33:ec:12:b1:97:3f:98:8b: 8b:89:32:1d:ba:41:64:24:3e:43:15:1f:ee:33:70:77:c9:93: 9c:0a:02:2e:1a:ff:ac:6d:73:6e:22:6c:7a:23:a1:c4:e8:5c: c4:a0:c1:df:c7:d8:09:f0:96:e7:4e:6b:ea:6b:b3:4f:5c:4e: 9b:16:a3:4d:3b:fb:09:cd:d7:88:33:6d:17:f2:58:e8:1c:c6: 95:5e:7a:20:33:35:cb:9b:da:81:e3:c5:ec:d3:4c:e5:dd:d9: b0:7c:b6:cc:03:47:0d:82:0a:5c:78:ba:b4:b4:d7:cf:bd:78: 07:3b:1a:95:32:01:80:0b:0a:d0:db:e2:e3:56:0b:81:b3:ff: b1:1e:28:79:bc:ca:77:0b:f8:ba:af:42:7e:d3:15:eb:37:78: 56:3d:7e:d7:87:e0:5d:e9:89:4b:43:b4:74:41:55:d9:98:0f: 75:3d:cf:a6:d3:6b:68:69:e3:98:b8:b0:28:22:9f:3d:52:87: ba:a9:fb:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUxMTAzMDQzMTMxWhcNMjUxMTEwMDQzMTMxWjAYMRYwFAYD VQQDEw02OTA4MzAyMy1jMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8r2nkthG7lIO4viVwdBT1dlQrd1pXCobYfJKvAseVtsFBoL5h2G6/v+cOte SKGdkbpr9GoYUPkvZfN/u0szrR+pB0smlGjw1VVJf+kpvsa7NLtMa7KkdS1fivZW j2rKSP1XIV42vyHPUSDDAIs+dCQBflp7czeyK2lKFKNTrp8rYQmkg9p3xhHe5qyQ GtVJtCaNrL/QMfuK+HAXpw+Jrrol7TnLSfZcQ7T7PHMo2bqGy5iH1ehipkqzCqpw 7FEd48XZpVAtZvJ030nSjDoeEaN35MlD8qLJZ2OrvcwC/rzSyhNj2raeoSjnhch8 +HawpNQwlrR2KwHtnVnlYDA1gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwAklUn LrgJtqZFalyIXBJAA2aoMB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAccMlxeRMdLFZwoSxAulFUgcFb/2XCwGN5+H12pVoROxBMNm/6rFD1 5kUP2weYspvm1BC7HmNlwwEkYjMkCUGRM+wSsZc/mIuLiTIdukFkJD5DFR/uM3B3 yZOcCgIuGv+sbXNuImx6I6HE6FzEoMHfx9gJ8JbnTmvqa7NPXE6bFqNNO/sJzdeI M20X8ljoHMaVXnogMzXLm9qB48Xs00zl3dmwfLbMA0cNggpceLq0tNfPvXgHOxqV MgGACwrQ2+LjVguBs/+xHih5vMp3C/i6r0J+0xXrN3hWPX7Xh+Bd6YlLQ7R0QVXZ mA91Pc+m02toaeOYuLAoIp89Uoe6qfs7 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:39 2025 by rpki-client