$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft File: Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json) Hash identifier: BIexHfXMn0vVpx5f+gmwB00yxTlhtZdj9bP0KBkgdu4= Subject key identifier: F6:DC:DA:29:EB:2D:C8:1E:10:3D:64:2A:34:EE:D0:CD:CB:F6:C7:F0 Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Certificate serial: 0DD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft Manifest number: 0DC6 Signing time: Tue 04 Nov 2025 17:58:11 +0000 Manifest this update: Tue 04 Nov 2025 17:58:10 +0000 Manifest next update: Tue 11 Nov 2025 17:58:10 +0000 Files and hashes: 1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: RtbT9aPbY274PavN+yQW1ez9dOTQYUavmZ6d/Bn0YKY=) 2: 4EEE01FCE15611EF9560323EC4F9AE02.roa (hash: 9Nz/F+iPTsdfTjIzxhDauJBST5Z1hrA/MujlPAQ3LmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3538 (0xdd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD096, serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Validity Not Before: Nov 4 17:58:10 2025 GMT Not After : Nov 11 17:58:10 2025 GMT Subject: CN=690a3eb2-8242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:60:85:d0:ab:f3:f6:ed:31:66:33:df:c5:ec: dd:f3:5a:94:1b:7b:6f:03:79:7e:da:0b:24:6b:77: e6:bc:ae:e0:70:86:e5:4d:29:3a:39:b8:f1:64:7e: 4c:1e:59:59:c5:f7:6f:7c:ca:c2:92:df:43:26:fc: 8b:83:f0:01:48:3b:59:fc:24:39:be:91:c6:d2:17: 20:18:b9:de:94:1f:d2:89:ff:39:b2:08:2b:dc:68: a6:22:83:27:a9:98:d0:30:b1:58:73:ff:31:4d:8d: 05:89:6f:cc:d1:a8:c5:8b:50:6f:7d:68:b4:48:55: 5e:b7:35:a7:57:07:cd:b7:ee:5a:4f:92:03:3e:c1: b5:8d:98:3a:dd:82:a9:6b:8c:42:91:29:6d:58:fb: 1f:fd:7f:4f:43:a5:38:f5:da:a2:0f:bb:dd:cc:0a: 50:8a:d3:8e:81:b7:2f:1b:a1:06:cc:7a:b6:a3:5f: b5:33:a8:88:80:da:bc:80:ad:e7:d9:98:ae:90:eb: 7a:4c:50:59:54:e5:24:80:7a:95:be:e3:97:ca:f5: 4a:41:fc:1e:95:a4:1f:9e:b2:8e:e2:c0:f6:cb:a0: 1e:f4:da:70:05:d8:e6:2b:ab:1c:09:5f:52:90:ee: 5f:ab:ff:e0:f2:c2:f4:19:fc:21:af:f8:39:8b:3c: 4a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DC:DA:29:EB:2D:C8:1E:10:3D:64:2A:34:EE:D0:CD:CB:F6:C7:F0 X509v3 Authority Key Identifier: keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:48:3b:fc:c3:b9:0f:07:40:b4:85:38:4a:17:e3:18:67:6c: a0:8c:ca:92:05:f9:ac:7b:bb:17:87:7d:96:b2:80:ec:54:21: d5:21:a0:46:3a:cf:71:b7:2b:17:c0:9a:a9:eb:2a:33:6e:a6: 0e:c2:96:15:9e:57:29:c8:9e:e3:b4:2f:fd:df:73:dd:0b:13: a0:e6:40:8b:7a:71:35:01:82:e9:1f:ab:cf:15:6e:7e:2c:0d: b5:be:de:05:71:e3:6b:74:a5:6a:e7:5a:9c:22:9a:c0:65:3a: 8a:68:0e:c5:d1:18:c0:cd:27:1e:b0:18:76:3b:01:db:33:5b: 02:07:45:5d:16:93:4d:a0:0a:37:ec:c0:3a:a8:a8:00:bc:03: f1:be:a3:a5:03:2a:22:2b:b4:38:d1:ed:70:60:e0:0c:b2:db: 26:b1:b9:24:f8:08:91:eb:9e:18:6e:69:79:fe:fd:4f:bc:fc: 0b:b5:93:bc:7d:3e:96:bd:b7:1e:a0:c6:bd:48:18:eb:7f:c9: 3e:43:84:20:a7:13:e5:c3:74:94:db:81:43:ab:ed:23:7d:d2: 53:1b:97:67:ed:98:c5:a9:e3:07:25:52:70:79:ed:67:93:cf: 80:01:61:87:20:dc:05:1f:c0:fa:3d:35:96:79:26:55:94:33: a0:74:e3:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4 ODRDRDFCMzMwHhcNMjUxMTA0MTc1ODEwWhcNMjUxMTExMTc1ODEwWjAYMRYwFAYD VQQDEw02OTBhM2ViMi04MjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GCF0Kvz9u0xZjPfxezd81qUG3tvA3l+2gska3fmvK7gcIblTSk6ObjxZH5M HllZxfdvfMrCkt9DJvyLg/ABSDtZ/CQ5vpHG0hcgGLnelB/Sif85sggr3GimIoMn qZjQMLFYc/8xTY0FiW/M0ajFi1BvfWi0SFVetzWnVwfNt+5aT5IDPsG1jZg63YKp a4xCkSltWPsf/X9PQ6U49dqiD7vdzApQitOOgbcvG6EGzHq2o1+1M6iIgNq8gK3n 2ZiukOt6TFBZVOUkgHqVvuOXyvVKQfwelaQfnrKO4sD2y6Ae9NpwBdjmK6scCV9S kO5fq//g8sL0Gfwhr/g5izxKmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbc2inr LcgeED1kKjTu0M3L9sfwMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1 ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYSDv8w7kPB0C0hThKF+MYZ2ygjMqSBfmse7sXh32WsoDsVCHVIaBG Os9xtysXwJqp6yozbqYOwpYVnlcpyJ7jtC/933PdCxOg5kCLenE1AYLpH6vPFW5+ LA21vt4FceNrdKVq51qcIprAZTqKaA7F0RjAzScesBh2OwHbM1sCB0VdFpNNoAo3 7MA6qKgAvAPxvqOlAyoiK7Q40e1wYOAMstsmsbkk+AiR654Ybml5/v1PvPwLtZO8 fT6WvbceoMa9SBjrf8k+Q4QgpxPlw3SU24FDq+0jfdJTG5dn7ZjFqeMHJVJwee1n k8+AAWGHINwFH8D6PTWWeSZVlDOgdOMa -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:31 2025 by rpki-client