$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: HjI3I5d7Fz00XotYzw1BSrzSDWuASwxV7Zn8yAW0SYw= Subject key identifier: 52:D8:E1:CB:67:F4:3C:F1:B6:E3:79:82:CB:E7:A1:39:0A:C2:4C:6E Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 02DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 02D8 Signing time: Wed 05 Nov 2025 01:24:58 +0000 Manifest this update: Wed 05 Nov 2025 01:24:58 +0000 Manifest next update: Wed 12 Nov 2025 01:24:58 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: hJEhCVSvImvaJqtUj1Nap5vLImhUI3Bfh3pAFR7G+s8=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: u8H4NSNtBcIg5GrlIWnmn+sl29NyMYEZMtRVlCln8c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Nov 5 01:24:58 2025 GMT Not After : Nov 12 01:24:58 2025 GMT Subject: CN=690aa76a-364e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:53:6d:59:29:8e:53:48:d4:d5:b1:81:47:fe: 2e:ff:44:85:11:1d:6b:c5:9c:64:83:ce:7c:e4:d2: b3:10:cd:5a:49:a2:fc:c4:e1:c0:29:b5:64:84:90: d8:71:f8:66:90:6c:23:84:a6:a3:6d:df:54:42:7d: b7:02:b3:9a:1d:5d:2a:1c:47:95:f1:62:99:3e:85: 8f:92:6e:e4:1d:50:c1:fa:ac:31:d7:bf:10:e1:c7: 9a:3c:e4:41:cd:7e:55:5a:09:c8:b7:0d:9d:91:0d: c4:7d:f2:e9:4b:23:ae:b1:e8:56:b9:74:06:16:73: ee:7b:04:59:02:b3:81:27:20:6b:25:3b:13:7d:5d: 38:58:94:a0:2c:a4:60:f4:9d:d3:da:0a:e4:d3:ff: 38:e2:dc:4e:c3:81:60:e9:cd:f1:09:10:2f:b7:01: 83:f4:cf:6f:20:4c:3d:c3:8f:ea:42:4a:58:5c:0f: d2:dc:6d:90:81:3d:f3:41:fb:73:0c:97:d2:5d:85: 14:9c:69:25:b1:5a:1f:63:8e:67:26:39:23:66:64: 65:ff:a5:7c:ee:62:81:4e:3a:2e:ad:69:e9:ec:aa: c8:86:79:d4:ca:51:f9:e7:6c:af:54:4a:96:49:66: 41:33:3d:44:f4:fd:1f:76:da:e1:3b:dc:9b:95:d1: e3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D8:E1:CB:67:F4:3C:F1:B6:E3:79:82:CB:E7:A1:39:0A:C2:4C:6E X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:06:65:a5:45:04:f5:91:b3:14:9a:d3:f8:5d:d3:75:7e:c8: 30:52:1c:40:cd:e5:55:c4:f9:b8:80:a3:c9:da:0e:ba:4e:d3: 9c:59:30:3f:1f:cf:71:5e:04:0a:63:21:ba:13:eb:ee:0e:16: af:1b:27:35:37:3f:66:4c:3f:3a:e4:15:09:5c:bd:f8:21:fa: 8e:cb:00:0d:94:56:c6:3c:20:b0:c0:ce:e5:54:5a:5f:b4:7d: ec:83:14:1c:23:c5:df:e9:e3:df:da:22:bd:bc:74:a9:d7:86: 80:fc:80:8c:3f:d3:7b:ed:d2:37:4f:56:bb:8a:11:2a:18:97: 3b:7b:9a:b7:1f:70:8a:f9:03:1e:e8:66:93:b4:0e:1f:4c:04: 3e:98:b8:8f:5b:14:b9:24:fc:dc:c8:ad:b5:47:90:fa:8e:71: 8a:dc:18:d7:8b:00:f5:6b:06:1c:cc:15:13:7c:91:86:bd:94: a3:9b:f2:86:49:f1:22:27:f7:a0:73:f5:ae:13:35:ba:53:2f: e2:c0:f1:dc:1e:7c:ad:c8:9c:f5:dc:01:9c:41:87:af:8a:84: 29:5b:07:bf:c6:a9:c5:fc:2c:77:98:54:7a:b6:75:43:9f:9e: 3d:26:8c:03:ed:81:a0:dd:30:2e:ef:a5:11:b7:15:37:8f:92: eb:62:5c:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjUxMTA1MDEyNDU4WhcNMjUxMTEyMDEyNDU4WjAYMRYwFAYD VQQDEw02OTBhYTc2YS0zNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1NtWSmOU0jU1bGBR/4u/0SFER1rxZxkg8585NKzEM1aSaL8xOHAKbVkhJDY cfhmkGwjhKajbd9UQn23ArOaHV0qHEeV8WKZPoWPkm7kHVDB+qwx178Q4ceaPORB zX5VWgnItw2dkQ3EffLpSyOusehWuXQGFnPuewRZArOBJyBrJTsTfV04WJSgLKRg 9J3T2grk0/844txOw4Fg6c3xCRAvtwGD9M9vIEw9w4/qQkpYXA/S3G2QgT3zQftz DJfSXYUUnGklsVofY45nJjkjZmRl/6V87mKBTjourWnp7KrIhnnUylH552yvVEqW SWZBMz1E9P0fdtrhO9ybldHjGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLY4ctn 9DzxtuN5gsvnoTkKwkxuMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7BmWlRQT1kbMUmtP4XdN1fsgwUhxAzeVVxPm4gKPJ2g66TtOcWTA/ H89xXgQKYyG6E+vuDhavGyc1Nz9mTD865BUJXL34IfqOywANlFbGPCCwwM7lVFpf tH3sgxQcI8Xf6ePf2iK9vHSp14aA/ICMP9N77dI3T1a7ihEqGJc7e5q3H3CK+QMe 6GaTtA4fTAQ+mLiPWxS5JPzcyK21R5D6jnGK3BjXiwD1awYczBUTfJGGvZSjm/KG SfEiJ/egc/WuEzW6Uy/iwPHcHnytyJz13AGcQYevioQpWwe/xqnF/Cx3mFR6tnVD n549JowD7YGg3TAu76URtxU3j5LrYlzx -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:25 2025 by rpki-client