$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: f24Kz9kCRIFeKekogC/0SAGW+cglNK3hpChiCMTxlIw= Subject key identifier: AE:BC:B2:C5:67:02:64:E3:66:26:83:7D:AA:A2:6C:0D:A0:7D:39:E9 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 01DF Signing time: Fri 31 Oct 2025 02:39:58 +0000 Manifest this update: Fri 31 Oct 2025 02:39:58 +0000 Manifest next update: Fri 07 Nov 2025 02:39:58 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: kbXISHzf9ujDnzndP9gwH4PCRsmeHlWT7lEKV5YRalI=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 02:39:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Oct 31 02:39:58 2025 GMT Not After : Nov 7 02:39:58 2025 GMT Subject: CN=6904217e-8209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7c:6f:73:c8:68:58:6c:34:17:8f:a2:e8:fb: 3f:1c:c4:db:e0:fb:b2:75:0e:11:4d:33:48:49:c4: 99:da:a4:e9:2d:bc:36:1d:d3:5f:90:78:1a:e7:de: 65:e1:90:ba:12:80:04:18:2f:c1:07:8e:6d:22:47: b9:31:a6:fa:34:ee:be:05:58:92:85:25:85:a5:40: 3a:a2:27:71:4b:5d:64:a0:07:58:de:d4:09:db:bc: f2:4b:e6:39:fd:bf:a3:11:ce:91:d5:fd:4a:0b:7e: 83:1a:0f:6e:8b:0c:8f:96:75:3b:93:cf:4a:d0:cd: fb:82:0e:90:1e:db:07:e1:56:a4:45:9e:74:39:93: aa:96:af:8c:b8:a6:e3:36:22:5f:e4:b6:69:d8:48: 4a:74:1c:15:43:15:f1:0d:e7:a7:67:04:d8:4b:24: 02:5a:37:9e:25:c5:b5:cc:7c:55:f7:8c:cc:47:8e: ce:32:39:41:83:da:56:e7:24:89:84:cb:74:e9:2d: 7b:db:ee:fb:f0:f8:1d:8b:11:df:09:6e:dd:dd:50: 59:ee:c3:c2:2f:30:79:47:b7:0c:7d:2e:84:c8:c8: 5c:a0:dd:13:28:79:fd:62:a6:b7:7c:04:a6:20:77: cf:25:80:21:a7:12:46:06:a1:09:ee:ef:f4:c1:20: 90:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:BC:B2:C5:67:02:64:E3:66:26:83:7D:AA:A2:6C:0D:A0:7D:39:E9 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ac:c3:46:92:1b:06:43:14:f8:a1:24:57:de:5e:83:59:77: bf:a5:98:eb:7f:5f:cb:cf:5a:d0:93:6e:7d:64:99:77:d3:bf: 8c:89:fc:ba:2a:31:2a:e4:7f:f5:6f:e1:11:ee:53:0e:3a:b7: 4a:08:67:ad:e5:15:05:d9:cf:e1:91:1d:b8:3c:a9:37:73:4d: 34:a5:07:70:82:93:17:91:87:97:c8:10:1b:fa:d5:01:97:33: 93:53:da:db:d5:81:15:f8:10:a7:a7:6f:e8:5a:17:c9:42:57: f0:23:8a:d3:b0:62:64:f5:5e:90:79:51:0d:bd:1d:a9:69:6b: ac:c1:57:4a:c5:4f:b6:1f:3b:cf:80:d4:6d:c1:f8:54:fe:f2: 31:c0:d3:87:02:ad:f7:4b:a1:4e:2e:ab:83:a2:15:72:5f:8f: fa:1d:01:f6:32:a7:d3:20:7d:d5:98:d4:4f:77:59:4b:07:3e: ff:ed:cf:fd:1d:3b:35:ec:13:2b:29:fc:8e:4c:58:b9:01:20: cb:90:0b:f4:fd:8a:6d:e2:ff:a4:b7:ff:bd:3b:ef:27:cc:e6: 47:af:07:f9:d8:ac:c4:5a:24:a0:19:a1:1a:cc:b1:0d:4c:28: ee:5a:5e:d4:b2:af:b7:df:8f:52:5e:f9:fc:66:9f:e3:27:96: f6:bd:57:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUxMDMxMDIzOTU4WhcNMjUxMTA3MDIzOTU4WjAYMRYwFAYD VQQDEw02OTA0MjE3ZS04MjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnxvc8hoWGw0F4+i6Ps/HMTb4PuydQ4RTTNIScSZ2qTpLbw2HdNfkHga595l 4ZC6EoAEGC/BB45tIke5Mab6NO6+BViShSWFpUA6oidxS11koAdY3tQJ27zyS+Y5 /b+jEc6R1f1KC36DGg9uiwyPlnU7k89K0M37gg6QHtsH4VakRZ50OZOqlq+MuKbj NiJf5LZp2EhKdBwVQxXxDeenZwTYSyQCWjeeJcW1zHxV94zMR47OMjlBg9pW5ySJ hMt06S172+778PgdixHfCW7d3VBZ7sPCLzB5R7cMfS6EyMhcoN0TKHn9Yqa3fASm IHfPJYAhpxJGBqEJ7u/0wSCQUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK68ssVn AmTjZiaDfaqibA2gfTnpMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrrMNGkhsGQxT4oSRX3l6DWXe/pZjrf1/Lz1rQk259ZJl307+Mify6 KjEq5H/1b+ER7lMOOrdKCGet5RUF2c/hkR24PKk3c000pQdwgpMXkYeXyBAb+tUB lzOTU9rb1YEV+BCnp2/oWhfJQlfwI4rTsGJk9V6QeVENvR2paWuswVdKxU+2HzvP gNRtwfhU/vIxwNOHAq33S6FOLquDohVyX4/6HQH2MqfTIH3VmNRPd1lLBz7/7c/9 HTs17BMrKfyOTFi5ASDLkAv0/Ypt4v+kt/+9O+8nzOZHrwf52KzEWiSgGaEazLEN TCjuWl7Usq+3349SXvn8Zp/jJ5b2vVfo -----END CERTIFICATE-----Generated at Fri Oct 31 05:46:16 2025 by rpki-client