$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft File: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft (raw, json) Hash identifier: PRnJtWJ04y1WOmLXKxPLp4VTd+VVwk8+i+I1EuldKP4= Subject key identifier: 58:33:10:CC:B1:EE:8F:9F:43:AC:47:B4:25:E3:69:B0:12:40:11:C2 Authority key identifier: F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A Certificate issuer: /CN=A91C7AA5/serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft Manifest number: 8D Signing time: Mon 03 Nov 2025 06:58:39 +0000 Manifest this update: Mon 03 Nov 2025 06:58:38 +0000 Manifest next update: Mon 10 Nov 2025 06:58:38 +0000 Files and hashes: 1: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl (hash: DODPpv86s9ewSqFQs2+ZOO/TNwkphy1PpePo6uN+50c=) 2: 0AC13D943C5711F0BFBB572EC4F9AE02.roa (hash: 61Maf4HdTVjL1p15SmMO0sDKtCDOS9JEKlRjMIwn4Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AA5, serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Validity Not Before: Nov 3 06:58:38 2025 GMT Not After : Nov 10 06:58:38 2025 GMT Subject: CN=6908529e-88ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e8:8b:54:25:8a:de:cc:69:f2:b4:10:40:26: 0d:b1:e0:2c:52:b5:7a:e9:98:b1:fe:d7:69:0b:74: 82:77:3f:d5:12:a0:65:f9:c8:57:30:53:ec:23:11: 74:2d:44:b8:4d:ad:dd:c3:0e:b8:8f:7f:54:25:f8: e9:bd:a7:a6:bb:21:c4:ce:4c:6e:0a:7e:d1:a7:42: da:a7:02:35:1c:62:5c:d9:15:00:63:aa:30:3a:bb: dc:69:bf:5a:fb:59:62:63:ad:28:37:3d:93:b8:e7: 76:a1:b6:3c:60:95:73:2e:85:20:23:61:6a:0d:3d: f8:7a:6a:3a:23:ae:a5:5b:a4:5a:51:e2:02:31:5e: 87:02:e7:0d:18:dc:6b:77:2a:7e:0f:86:67:37:b5: f2:e9:ed:38:32:c5:b7:00:e4:19:ec:6f:2c:a0:83: 11:f0:81:19:81:5d:c2:df:57:dc:86:41:5f:35:67: 59:e6:bf:58:98:53:17:02:69:43:ca:0f:56:c2:3b: 3c:34:3c:77:52:31:48:60:47:0d:74:76:be:1e:50: 55:bc:96:61:dc:0b:d5:76:76:16:88:01:78:de:c4: 76:a2:4e:9a:50:22:da:fc:99:b9:2f:5c:00:14:9a: df:de:70:7c:9a:20:f6:7d:e7:b6:0e:21:ac:16:f5: 2d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:33:10:CC:B1:EE:8F:9F:43:AC:47:B4:25:E3:69:B0:12:40:11:C2 X509v3 Authority Key Identifier: keyid:F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:d3:99:ea:ad:62:40:d3:d4:a6:7e:97:1f:dc:91:88:03:e4: ac:6c:ec:c1:c1:5a:0d:eb:b9:d7:03:4e:e1:78:2c:66:aa:ad: 6d:55:a5:59:b2:0e:4f:88:de:0b:dd:73:15:99:af:dc:aa:78: f3:86:23:b1:c1:cb:50:9b:d2:43:79:78:d3:36:95:19:b0:92: 96:53:32:5d:98:91:b0:d0:08:30:91:68:c8:81:09:a2:f9:dc: e0:52:b9:a6:f9:18:9a:e1:5c:86:fe:2a:9a:ce:2f:52:0f:02: 38:24:4d:5d:cd:6e:f1:d6:1e:8b:93:33:4a:00:d4:f7:28:d8: c5:54:98:bb:b2:2a:f2:6d:3e:2e:5a:1c:f4:6f:88:6e:6a:68: e1:92:e5:29:a7:4d:73:c7:83:3a:12:4c:72:c1:fc:2c:d9:a4: 0c:42:b4:93:01:d9:0d:cd:ba:54:75:c1:f9:49:40:df:8d:00: 9e:a8:e1:e8:8b:bd:03:06:67:e1:4b:87:2e:3b:a1:54:16:f3: 8d:45:da:17:90:22:51:a8:c6:92:08:fc:ca:71:4d:83:16:11: 49:f4:d4:9a:25:17:66:f0:3d:14:b0:a5:98:5a:6e:46:fe:00: 68:6e:53:54:ae:1f:02:f2:37:89:5f:2e:6c:98:84:62:3d:43: 3d:4d:eb:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQTUxMTAvBgNVBAUTKEY3MjY3RTgwQkU4MTdGMDQzRDI4RkI3RTczMDVGNEM0 ODhBODM5MUEwHhcNMjUxMTAzMDY1ODM4WhcNMjUxMTEwMDY1ODM4WjAYMRYwFAYD VQQDEw02OTA4NTI5ZS04OGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+iLVCWK3sxp8rQQQCYNseAsUrV66Zix/tdpC3SCdz/VEqBl+chXMFPsIxF0 LUS4Ta3dww64j39UJfjpvaemuyHEzkxuCn7Rp0LapwI1HGJc2RUAY6owOrvcab9a +1liY60oNz2TuOd2obY8YJVzLoUgI2FqDT34emo6I66lW6RaUeICMV6HAucNGNxr dyp+D4ZnN7Xy6e04MsW3AOQZ7G8soIMR8IEZgV3C31fchkFfNWdZ5r9YmFMXAmlD yg9Wwjs8NDx3UjFIYEcNdHa+HlBVvJZh3AvVdnYWiAF43sR2ok6aUCLa/Jm5L1wA FJrf3nB8miD2fee2DiGsFvUtMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgzEMyx 7o+fQ6xHtCXjabASQBHCMB8GA1UdIwQYMBaAFPcmfoC+gX8EPSj7fnMF9MSIqDka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FBNS9CQUZCMzU3NDE1 QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3UTlLUHQtY3dYMHhJaW9P Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5Wi1nTDZCZndROUtQdC1jd1gweElpb09Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0FBNS9CQUZCMzU3NDE1QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3 UTlLUHQtY3dYMHhJaW9PUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV05nqrWJA09Smfpcf3JGIA+SsbOzBwVoN67nXA07heCxmqq1tVaVZ sg5PiN4L3XMVma/cqnjzhiOxwctQm9JDeXjTNpUZsJKWUzJdmJGw0AgwkWjIgQmi +dzgUrmm+Ria4VyG/iqazi9SDwI4JE1dzW7x1h6LkzNKANT3KNjFVJi7sirybT4u Whz0b4huamjhkuUpp01zx4M6Ekxywfws2aQMQrSTAdkNzbpUdcH5SUDfjQCeqOHo i70DBmfhS4cuO6FUFvONRdoXkCJRqMaSCPzKcU2DFhFJ9NSaJRdm8D0UsKWYWm5G /gBoblNUrh8C8jeJXy5smIRiPUM9TeuI -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:13 2025 by rpki-client