$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft File: -mfVMKhwCqjrfU9svpZHvlN_X84.mft (raw, json) Hash identifier: 7S1YsK+daBBoWN5KI+5jPldklX+pedY3UI1D01REOro= Subject key identifier: 5D:1D:4B:88:EC:5D:55:2A:B4:4C:D1:AE:86:24:6C:68:DF:C8:AC:CA Authority key identifier: FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE Certificate issuer: /CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Certificate serial: 0378 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft Manifest number: 0374 Signing time: Wed 05 Nov 2025 00:57:31 +0000 Manifest this update: Wed 05 Nov 2025 00:57:31 +0000 Manifest next update: Wed 12 Nov 2025 00:57:31 +0000 Files and hashes: 1: -mfVMKhwCqjrfU9svpZHvlN_X84.crl (hash: pqRS0Rx/gPojf22TQQt1bq1Sig5oGc0OHX3blURwAmk=) 2: 3E62F2ECC9EA11ECB6295B34C4F9AE02.roa (hash: mfXzwKGY7gUqiLkJW1SqazxLmJ2CAU7Yff9kCtQmKuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 888 (0x378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD056, serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Validity Not Before: Nov 5 00:57:31 2025 GMT Not After : Nov 12 00:57:31 2025 GMT Subject: CN=690aa0fb-6ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1c:2f:39:76:70:43:33:13:b6:e8:9b:20:ff: c4:b5:7e:18:1c:a6:3d:96:7f:39:3e:f1:cf:23:c5: a2:fa:cc:56:f2:bf:9f:05:bb:da:2f:0c:ba:70:2c: ab:46:e5:bb:b9:c7:7b:9d:66:9e:3b:a3:3e:14:58: 9b:6e:19:1e:d3:39:d0:4b:6b:9a:0e:0b:d4:ea:e3: 8b:aa:34:6d:dc:71:c7:a2:ae:1c:ca:60:01:12:37: 56:fd:fd:b2:61:aa:a8:f1:19:81:a7:69:d9:c2:82: 0e:ae:9c:1e:fb:67:b7:8e:76:02:50:b6:7f:3a:e5: 19:00:1d:9e:1f:30:1b:0c:ba:25:ef:e3:60:35:0e: a4:cf:a9:c2:a1:55:05:25:fd:3e:17:c7:a5:3c:99: 59:d7:c1:4e:af:3b:31:5d:cc:c6:c3:c9:f5:aa:67: 17:cb:a5:5a:44:fa:86:b6:65:d7:5d:a9:5e:2b:d3: 91:aa:99:f7:bf:b6:da:2b:48:0f:7d:8e:50:91:80: 18:eb:ac:80:a8:31:ee:b8:d1:c8:25:ba:1c:ab:b1: cb:27:36:6a:d4:19:21:ad:b8:9e:a3:1b:2c:e2:11: 1f:ee:49:62:d8:76:cd:1d:e0:90:7d:9b:b0:30:cc: a6:f1:40:eb:cd:2b:5b:5b:9d:e6:29:42:a6:bb:3b: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1D:4B:88:EC:5D:55:2A:B4:4C:D1:AE:86:24:6C:68:DF:C8:AC:CA X509v3 Authority Key Identifier: keyid:FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:cb:24:e3:f2:f7:8c:90:0e:0e:15:71:67:dd:dd:06:91:12: 1f:db:b3:97:84:b4:f1:be:7c:52:9f:f3:0a:dc:82:67:01:5e: 1f:fb:93:34:e7:35:33:b5:5c:2f:f6:db:4e:ec:3e:20:6d:65: 97:52:0e:2c:4c:b7:0f:88:91:3d:8d:ab:55:8c:f7:e7:f4:c1: 94:6a:6f:2d:30:78:4d:b2:f6:46:ae:bb:bb:d0:d2:bc:2f:25: f3:1a:92:9d:8e:6a:52:dd:17:65:7b:e2:6b:53:8d:84:ea:a2: b3:d2:a8:e9:8c:60:18:cc:3d:2a:45:e9:87:3e:24:d6:03:b9: e2:59:b2:eb:d8:be:d5:25:c8:cb:5c:f9:b7:df:5c:5a:8e:09: 3a:7a:2a:2c:20:61:6f:dc:7b:75:d9:33:62:e6:9d:4f:3b:ad: 75:2e:9d:cb:d0:65:a4:d8:59:d0:bb:3a:05:f9:c7:21:41:38: 7b:df:63:62:86:62:fc:5b:27:ff:2b:31:b3:7f:e5:95:15:a0: b9:de:d0:45:50:d8:80:ba:d3:60:ed:f8:8b:62:86:52:e0:b7: d0:d8:39:53:52:8c:0a:5a:c6:29:73:00:d9:c2:35:ac:93:7f: da:05:25:8f:18:01:94:5c:c6:2e:ed:4f:b5:64:aa:8b:1e:40: 61:7a:b5:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwNTYxMTAvBgNVBAUTKEZBNjdENTMwQTg3MDBBQThFQjdENEY2Q0JFOTY0N0JF NTM3RjVGQ0UwHhcNMjUxMTA1MDA1NzMxWhcNMjUxMTEyMDA1NzMxWjAYMRYwFAYD VQQDEw02OTBhYTBmYi02ZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRwvOXZwQzMTtuibIP/EtX4YHKY9ln85PvHPI8Wi+sxW8r+fBbvaLwy6cCyr RuW7ucd7nWaeO6M+FFibbhke0znQS2uaDgvU6uOLqjRt3HHHoq4cymABEjdW/f2y Yaqo8RmBp2nZwoIOrpwe+2e3jnYCULZ/OuUZAB2eHzAbDLol7+NgNQ6kz6nCoVUF Jf0+F8elPJlZ18FOrzsxXczGw8n1qmcXy6VaRPqGtmXXXaleK9ORqpn3v7baK0gP fY5QkYAY66yAqDHuuNHIJbocq7HLJzZq1Bkhrbieoxss4hEf7kli2HbNHeCQfZuw MMym8UDrzStbW53mKUKmuzuliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0dS4js XVUqtEzRroYkbGjfyKzKMB8GA1UdIwQYMBaAFPpn1TCocAqo631PbL6WR75Tf1/O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA1Ni9ENzAyNjRBQUM5 RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0NxanJmVTlzdnBaSHZsTl9Y ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1tZlZNS2h3Q3FqcmZVOXN2cFpIdmxOX1g4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA1Ni9ENzAyNjRBQUM5RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0Nx anJmVTlzdnBaSHZsTl9YODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5yyTj8veMkA4OFXFn3d0GkRIf27OXhLTxvnxSn/MK3IJnAV4f+5M0 5zUztVwv9ttO7D4gbWWXUg4sTLcPiJE9jatVjPfn9MGUam8tMHhNsvZGrru70NK8 LyXzGpKdjmpS3Rdle+JrU42E6qKz0qjpjGAYzD0qRemHPiTWA7niWbLr2L7VJcjL XPm331xajgk6eiosIGFv3Ht12TNi5p1PO611Lp3L0GWk2FnQuzoF+cchQTh732Ni hmL8Wyf/KzGzf+WVFaC53tBFUNiAutNg7fiLYoZS4LfQ2DlTUowKWsYpcwDZwjWs k3/aBSWPGAGUXMYu7U+1ZKqLHkBherXr -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:27 2025 by rpki-client