$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft File: m_aWWObA_qLqCOOn_dKtysoTOUk.mft (raw, json) Hash identifier: TbJKaSosclFO1/tCvcmLKMtf8FEgTj8wXaBrsPI9ZmU= Subject key identifier: 50:FB:62:68:25:28:2F:C0:9C:D6:CC:5C:00:4D:9F:2B:CB:D5:58:91 Authority key identifier: 9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 Certificate issuer: /CN=A91CC28E/serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft Manifest number: 021E Signing time: Mon 03 Nov 2025 02:05:12 +0000 Manifest this update: Mon 03 Nov 2025 02:05:11 +0000 Manifest next update: Mon 10 Nov 2025 02:05:11 +0000 Files and hashes: 1: m_aWWObA_qLqCOOn_dKtysoTOUk.crl (hash: VjyTKlFaZE+M/RaUmvVoKIbxE89qXDfg1iXe6ux46XM=) 2: 73E253FC76D011EDBAECD665C4F9AE02.roa (hash: n/BMRPFUHjUzsfa0GoSirwLl0k+pEwLO2kUv8wHTWRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC28E, serialNumber=9BF69658E6C0FEA2EA08E3A7FDD2ADCACA133949 Validity Not Before: Nov 3 02:05:11 2025 GMT Not After : Nov 10 02:05:11 2025 GMT Subject: CN=69080dd7-2ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c8:0d:eb:a6:6a:b8:1e:c7:e8:b4:37:26:9f: c8:48:db:4d:78:ed:57:f8:5e:ec:6b:8b:d8:f1:4d: 81:cd:03:27:a0:99:43:2d:8f:23:94:d7:81:4a:5e: 62:ba:d4:ce:32:1a:0a:0d:4d:d5:e2:1d:8c:6d:cf: b0:e8:2b:5d:3c:5e:ae:b4:ea:eb:2f:1f:f2:66:f9: 45:f6:5f:67:b4:30:dc:db:cc:d8:59:42:66:5e:54: 74:fc:62:54:b8:24:34:6e:d1:7b:54:43:73:5d:1a: c3:3d:6e:54:20:b4:fe:fb:13:03:4d:f1:93:be:b7: 1f:4b:75:5f:08:5c:da:12:0d:fc:57:0c:9e:5e:a1: 6b:26:a4:72:91:cc:d0:a5:64:55:8d:a3:1f:3b:00: da:cc:3d:4e:60:fa:1e:40:48:97:1f:fd:48:a8:c4: ff:da:92:c2:29:10:55:64:91:68:fe:61:09:e8:fb: 32:26:c5:83:f0:34:dd:37:ab:ca:1c:17:fb:70:a5: 2b:fe:93:a1:fc:7f:21:a8:27:9f:92:7b:9f:a5:17: e3:34:15:90:b2:67:c0:07:12:67:00:ca:d3:2f:70: 68:2b:ef:e5:7b:50:18:ee:9b:9f:03:72:99:f3:59: 50:2b:a1:96:e3:e6:14:2f:bc:f3:b0:aa:d1:65:81: c2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:FB:62:68:25:28:2F:C0:9C:D6:CC:5C:00:4D:9F:2B:CB:D5:58:91 X509v3 Authority Key Identifier: keyid:9B:F6:96:58:E6:C0:FE:A2:EA:08:E3:A7:FD:D2:AD:CA:CA:13:39:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_aWWObA_qLqCOOn_dKtysoTOUk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC28E/B5CA896876CD11ED8DC63A64C4F9AE02/m_aWWObA_qLqCOOn_dKtysoTOUk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:55:6c:dd:91:08:d1:1f:47:ce:c9:cd:75:88:fa:56:f5:d8: 7b:e6:42:eb:8e:f1:82:38:22:25:b6:73:7f:e8:ec:81:25:7b: 4b:61:8e:3e:fc:cc:fa:f8:96:8a:4f:35:54:9d:cf:55:65:8d: 73:65:ab:92:d5:66:81:38:d9:03:0e:29:83:8e:f5:e2:e5:ea: 0f:44:a7:74:e1:1f:86:b9:c7:a4:6c:cd:af:0a:90:6f:7e:78: ad:be:48:dc:d2:e6:2a:f9:eb:be:f9:2c:c8:60:af:f5:ac:48: ad:cf:59:24:9a:53:d4:17:99:04:50:df:a2:3a:3b:96:ca:bd: 3e:6d:28:3c:af:b1:89:63:c4:5c:ce:6d:3f:2e:3c:07:d5:e1: 0f:fc:7b:58:e7:c3:d3:84:32:83:38:bb:c6:43:00:b1:57:77: 31:9b:68:04:55:89:7e:bd:4d:e6:30:78:cb:11:49:20:22:c3: 0b:de:90:8f:01:47:af:3b:6c:73:4b:53:4c:9b:8f:46:68:57: c3:1a:a7:d6:e8:8e:cc:4e:17:08:1d:91:29:92:ee:db:c5:3f: 8f:48:36:6b:9f:c7:d8:1e:fe:cd:41:a3:4f:ea:93:02:33:e4: e2:46:5f:d7:ae:d2:bb:ad:59:b4:69:8a:06:58:42:7e:63:a3: 62:9e:e9:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MyOEUxMTAvBgNVBAUTKDlCRjY5NjU4RTZDMEZFQTJFQTA4RTNBN0ZERDJBRENB Q0ExMzM5NDkwHhcNMjUxMTAzMDIwNTExWhcNMjUxMTEwMDIwNTExWjAYMRYwFAYD VQQDEw02OTA4MGRkNy0yZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MgN66ZquB7H6LQ3Jp/ISNtNeO1X+F7sa4vY8U2BzQMnoJlDLY8jlNeBSl5i utTOMhoKDU3V4h2Mbc+w6CtdPF6utOrrLx/yZvlF9l9ntDDc28zYWUJmXlR0/GJU uCQ0btF7VENzXRrDPW5UILT++xMDTfGTvrcfS3VfCFzaEg38VwyeXqFrJqRykczQ pWRVjaMfOwDazD1OYPoeQEiXH/1IqMT/2pLCKRBVZJFo/mEJ6PsyJsWD8DTdN6vK HBf7cKUr/pOh/H8hqCefknufpRfjNBWQsmfABxJnAMrTL3BoK+/le1AY7pufA3KZ 81lQK6GW4+YUL7zzsKrRZYHCnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFD7Ymgl KC/AnNbMXABNnyvL1ViRMB8GA1UdIwQYMBaAFJv2lljmwP6i6gjjp/3SrcrKEzlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzI4RS9CNUNBODk2ODc2 Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9xTHFDT09uX2RLdHlzb1RP VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fYVdXT2JBX3FMcUNPT25fZEt0eXNvVE9Vay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzI4RS9CNUNBODk2ODc2Q0QxMUVEOERDNjNBNjRDNEY5QUUwMi9tX2FXV09iQV9x THFDT09uX2RLdHlzb1RPVWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRVWzdkQjRH0fOyc11iPpW9dh75kLrjvGCOCIltnN/6OyBJXtLYY4+ /Mz6+JaKTzVUnc9VZY1zZauS1WaBONkDDimDjvXi5eoPRKd04R+GucekbM2vCpBv fnitvkjc0uYq+eu++SzIYK/1rEitz1kkmlPUF5kEUN+iOjuWyr0+bSg8r7GJY8Rc zm0/LjwH1eEP/HtY58PThDKDOLvGQwCxV3cxm2gEVYl+vU3mMHjLEUkgIsML3pCP AUevO2xzS1NMm49GaFfDGqfW6I7MThcIHZEpku7bxT+PSDZrn8fYHv7NQaNP6pMC M+TiRl/XrtK7rVm0aYoGWEJ+Y6Ninunw -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:09 2025 by rpki-client