$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: WkyeNhIixwZ59AD4ZkGs+G4NAs9/GNMrSSxVwK6fE+Q= Subject key identifier: 1D:5E:6C:4F:DB:FF:34:3F:1C:81:C5:1B:07:B4:30:5E:5E:DD:6C:17 Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: A8 Signing time: Wed 05 Nov 2025 06:28:03 +0000 Manifest this update: Wed 05 Nov 2025 06:28:03 +0000 Manifest next update: Wed 12 Nov 2025 06:28:03 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: fqqWUdJrqMD4k79iai2kuqin863dpbyi8JT/e1/eb5A=) 2: E5FC085A843011F0971BDC44C4F9AE02.roa (hash: TmQjJA9MkbzXubDuYe9ot48CH91CXeYRqJHt5RQNZcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Nov 5 06:28:03 2025 GMT Not After : Nov 12 06:28:03 2025 GMT Subject: CN=690aee73-90b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f5:1c:90:95:1f:97:c3:89:4c:7a:cb:2a:d1: 64:52:fd:52:bb:a7:6a:38:ec:23:f9:94:dc:44:2f: 96:08:ab:eb:d7:0f:8d:37:4a:dc:39:d2:7a:5b:e3: 97:e5:eb:cb:7a:f0:44:29:e7:82:11:ac:d4:54:f9: 0d:6a:fc:c6:73:e6:15:7e:2a:63:4d:30:ec:0b:ba: 4c:87:59:7d:78:2d:8f:c9:10:af:6d:2b:08:86:94: 40:e2:97:f2:f9:c6:a8:39:d7:50:b5:8e:ed:34:43: d2:67:00:6c:05:f9:e9:c7:22:8c:6a:e8:ab:76:d5: 3d:4d:3d:ff:79:1f:6e:71:00:02:d4:db:cc:59:79: b3:6e:5e:5b:16:12:8c:3f:3a:35:32:50:56:35:99: 3c:c2:1a:e6:43:ce:b4:e5:40:1e:a4:56:e5:74:d3: 2c:af:5b:ce:4e:ff:a9:14:fc:b6:70:ad:27:5d:e6: 2e:b2:77:7d:ff:a4:a7:c1:c9:f6:8f:a8:b2:9a:d8: a8:30:2f:3c:84:ba:e7:bd:d8:4d:08:ae:42:89:4d: a7:2d:3b:a2:28:80:10:cd:fd:3c:af:52:a1:f2:d6: 3b:34:3e:40:c7:45:7a:cc:b4:22:7e:5f:82:3b:e3: a8:45:ea:bd:0a:77:58:c8:a9:43:e0:6d:1d:1f:b8: 72:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5E:6C:4F:DB:FF:34:3F:1C:81:C5:1B:07:B4:30:5E:5E:DD:6C:17 X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:53:47:9e:60:cd:e5:6a:04:e4:4d:0c:51:c6:b7:be:73:b2: 6e:1a:9b:50:12:c1:8e:92:6d:5e:b6:a2:d2:18:a1:e3:06:ec: ad:d3:59:e2:f5:e7:c7:4f:cd:27:68:0a:f0:9d:0f:6c:88:84: cc:29:b0:7c:14:10:6b:43:39:32:35:b6:67:ca:d9:49:9a:b8: 7a:db:5c:e3:df:7d:04:a4:e8:e3:09:7f:90:dc:6c:27:d2:bd: 68:6e:6c:ec:33:4e:e9:c6:be:3a:6d:2f:47:23:82:fd:2e:a4: 0d:69:b7:4c:bb:6f:9a:7a:c8:d3:5b:f2:57:72:1e:59:0a:d6: 41:76:b4:88:fd:a4:c5:4c:d3:37:ae:fb:aa:47:2f:f0:6d:38: 90:d0:43:d8:09:ec:1e:07:e7:77:e4:50:54:eb:9c:be:6d:44: f5:d4:39:c3:bb:e7:98:f4:40:30:d6:cf:ee:3d:36:63:e7:22: 69:b3:35:e6:2e:8f:98:b4:cb:f3:81:51:a6:77:19:13:99:b2: 70:ea:8b:8a:28:ba:39:2f:e0:f2:3c:f4:2d:fd:9e:bd:82:0f: 93:cd:39:4a:19:8d:88:28:41:8f:55:04:cd:00:85:3e:a8:67: 2a:dd:91:ca:cf:5b:56:da:7e:9b:13:1a:b5:eb:4b:cc:d0:e3: ce:b1:8c:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDRCMDkyREYxMDQyODBGNDVCQzNGMjc5NkY0MDFDQzJC NEM2MTQ0RTkwHhcNMjUxMTA1MDYyODAzWhcNMjUxMTEyMDYyODAzWjAYMRYwFAYD VQQDEw02OTBhZWU3My05MGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvUckJUfl8OJTHrLKtFkUv1Su6dqOOwj+ZTcRC+WCKvr1w+NN0rcOdJ6W+OX 5evLevBEKeeCEazUVPkNavzGc+YVfipjTTDsC7pMh1l9eC2PyRCvbSsIhpRA4pfy +caoOddQtY7tNEPSZwBsBfnpxyKMauirdtU9TT3/eR9ucQAC1NvMWXmzbl5bFhKM Pzo1MlBWNZk8whrmQ8605UAepFbldNMsr1vOTv+pFPy2cK0nXeYusnd9/6Snwcn2 j6iymtioMC88hLrnvdhNCK5CiU2nLTuiKIAQzf08r1Kh8tY7ND5Ax0V6zLQifl+C O+OoReq9CndYyKlD4G0dH7hywQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1ebE/b /zQ/HIHFGwe0MF5e3WwXMB8GA1UdIwQYMBaAFEsJLfEEKA9FvD8nlvQBzCtMYUTp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8yQkM5MjQ1MEJF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0QwVzhQeWVXOUFITUsweGhS T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8yQkM5MjQ1MEJFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0Qw VzhQeWVXOUFITUsweGhST2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIU0eeYM3lagTkTQxRxre+c7JuGptQEsGOkm1etqLSGKHjBuyt01ni 9efHT80naArwnQ9siITMKbB8FBBrQzkyNbZnytlJmrh621zj330EpOjjCX+Q3Gwn 0r1obmzsM07pxr46bS9HI4L9LqQNabdMu2+aesjTW/JXch5ZCtZBdrSI/aTFTNM3 rvuqRy/wbTiQ0EPYCeweB+d35FBU65y+bUT11DnDu+eY9EAw1s/uPTZj5yJpszXm Lo+YtMvzgVGmdxkTmbJw6ouKKLo5L+DyPPQt/Z69gg+TzTlKGY2IKEGPVQTNAIU+ qGcq3ZHKz1tW2n6bExq160vM0OPOsYxE -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:50 2025 by rpki-client