$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft File: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft (raw, json) Hash identifier: akb/w6RtXtjYUODtryX1Hw4cVvCVOsUyqC5cLULrf28= Subject key identifier: A6:2F:89:4A:BC:1D:65:76:B0:21:97:F5:E6:99:E7:A2:25:B6:58:FE Authority key identifier: E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 Certificate issuer: /CN=A91BBA4F/serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft Manifest number: 53 Signing time: Wed 05 Nov 2025 07:25:19 +0000 Manifest this update: Wed 05 Nov 2025 07:25:19 +0000 Manifest next update: Wed 12 Nov 2025 07:25:19 +0000 Files and hashes: 1: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl (hash: ohMTcTkSAnhzs/MmaRIrVMsGEDq25moTPfCCu1IUC04=) 2: 58C16E043B7811F099AF3F55C4F9AE02.roa (hash: EdyHrGdK241FduLFJE474YipzEeOWQ4qQLPgbqAJOd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Validity Not Before: Nov 5 07:25:19 2025 GMT Not After : Nov 12 07:25:19 2025 GMT Subject: CN=690afbdf-e540 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e6:f5:17:7d:e8:e3:97:1d:22:d7:5c:06:67: 3e:06:a1:65:e0:46:fd:88:e5:f9:b0:3b:08:50:c3: 99:c8:d8:02:9a:73:61:e7:22:38:e2:99:66:17:ea: 86:76:16:86:8e:71:3f:d2:29:04:e1:e2:04:40:67: 67:29:42:b6:08:ff:f5:b9:4d:ab:5c:4d:84:fb:85: b3:5f:c9:e8:c7:ee:76:a7:63:78:a0:34:b4:d2:83: b9:dc:bb:11:76:08:15:83:23:53:4f:1b:78:80:bb: 57:4f:59:a3:d5:5d:bd:b7:07:57:2f:10:d3:63:72: 9d:ef:76:16:f5:6f:1b:13:cd:2c:6d:7f:0a:4f:20: 26:11:9a:0a:1c:7e:dc:02:5e:2f:e4:d8:17:2d:9f: 49:53:2c:65:61:53:8d:b2:e0:21:7d:a1:38:45:1f: 86:4d:c1:6b:68:85:af:48:41:f7:93:bc:9c:9d:be: 75:2a:fd:4a:da:c8:3c:51:7f:00:5a:89:44:a6:17: 4c:f6:6e:85:9b:93:de:01:2c:02:33:82:8b:5b:26: eb:56:16:06:3d:64:94:9d:a5:b2:36:e2:46:45:6b: 7f:3e:a4:d8:e8:78:89:0b:b3:1e:84:d9:82:30:55: 79:06:df:8b:5d:dc:f4:f5:b7:9e:22:aa:02:1e:be: a0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:2F:89:4A:BC:1D:65:76:B0:21:97:F5:E6:99:E7:A2:25:B6:58:FE X509v3 Authority Key Identifier: keyid:E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b5:1b:4f:3a:ca:56:b4:cc:9b:9d:ba:a6:12:b8:98:c9:b0: cf:de:a0:eb:34:b0:ec:cc:09:0f:25:ff:fe:61:65:eb:1a:c3: 8b:6d:30:f3:07:1a:9f:34:87:f6:b9:65:c6:cf:42:ef:96:48: e9:4b:5d:f0:33:7e:f8:33:f4:ca:c4:7e:44:df:46:59:33:24: a4:d5:af:33:6c:7a:42:f2:fd:f1:2e:ab:20:32:22:2a:5e:be: 7f:17:e0:4a:3c:1c:be:06:23:74:95:3a:34:a2:33:da:eb:87: 49:14:de:08:1c:cd:87:c5:a8:9a:30:d3:37:76:89:2e:4e:b3: 6a:f0:f0:fc:e8:6a:ed:7a:94:34:1f:8f:ef:a4:4f:9a:30:5b: c9:2d:a7:a3:45:fc:68:91:f0:79:ca:07:da:7f:20:a5:67:f6: e1:d9:ab:67:72:3c:af:19:46:69:42:39:44:a2:53:38:e1:92: b5:67:c6:42:2f:ae:cb:83:48:c0:1c:be:e6:b4:b9:45:9e:f7: b1:f9:73:f9:80:5a:a7:d5:75:75:66:8e:8b:ac:3b:b3:75:41: fc:f9:fe:81:5b:33:dd:2d:11:b1:f2:43:18:35:db:9a:ee:fd: db:da:72:89:5c:51:55:d2:c7:d2:cd:3f:d4:e6:80:1f:c4:66: d9:e7:03:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTAzOThENTRBQ0Q5REIzM0VENEZDQUE4RDIyODA1RDQ1 RTgwQ0JCNjAeFw0yNTExMDUwNzI1MTlaFw0yNTExMTIwNzI1MTlaMBgxFjAUBgNV BAMTDTY5MGFmYmRmLWU1NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF5vUXfejjlx0i11wGZz4GoWXgRv2I5fmwOwhQw5nI2AKac2HnIjjimWYX6oZ2 FoaOcT/SKQTh4gRAZ2cpQrYI//W5TatcTYT7hbNfyejH7nanY3igNLTSg7ncuxF2 CBWDI1NPG3iAu1dPWaPVXb23B1cvENNjcp3vdhb1bxsTzSxtfwpPICYRmgocftwC Xi/k2Bctn0lTLGVhU42y4CF9oThFH4ZNwWtoha9IQfeTvJydvnUq/UrayDxRfwBa iUSmF0z2boWbk94BLAIzgotbJutWFgY9ZJSdpbI24kZFa38+pNjoeIkLsx6E2YIw VXkG34td3PT1t54iqgIevqCzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpi+JSrwd ZXawIZf15pnnoiW2WP4wHwYDVR0jBBgwFoAU4DmNVKzZ2zPtT8qo0igF1F6Ay7Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzU4N0YzNURBM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQdFQ4cW8waWdGMUY2QXk3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNERtTlZLeloyelB0VDhxbzBpZ0YxRjZBeTdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzU4N0YzNURBM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQ dFQ4cW8waWdGMUY2QXk3WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGy1G086yla0zJuduqYSuJjJsM/eoOs0sOzMCQ8l//5hZesaw4ttMPMH Gp80h/a5ZcbPQu+WSOlLXfAzfvgz9MrEfkTfRlkzJKTVrzNsekLy/fEuqyAyIipe vn8X4Eo8HL4GI3SVOjSiM9rrh0kU3ggczYfFqJow0zd2iS5Os2rw8Pzoau16lDQf j++kT5owW8ktp6NF/GiR8HnKB9p/IKVn9uHZq2dyPK8ZRmlCOUSiUzjhkrVnxkIv rsuDSMAcvua0uUWe97H5c/mAWqfVdXVmjousO7N1Qfz5/oFbM90tEbHyQxg125ru /dvacolcUVXSx9LNP9TmgB/EZtnnAyc= -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:41 2025 by rpki-client