$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: p98l0i9whqVWpmFaRJjrQ0e+UsQfHRdyXjoo+AxYHOM= Subject key identifier: B2:2E:A1:18:3D:BF:67:41:D5:D4:0B:C8:AB:89:C9:2E:3F:A5:65:88 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: C9 Signing time: Mon 03 Nov 2025 05:45:47 +0000 Manifest this update: Mon 03 Nov 2025 05:45:47 +0000 Manifest next update: Mon 10 Nov 2025 05:45:47 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: jewYGI1cnhGOsZr+fIe/Msjd2lnYuG5FPBFn7E6wffc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Nov 3 05:45:47 2025 GMT Not After : Nov 10 05:45:47 2025 GMT Subject: CN=6908418b-5e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:80:6f:e8:dd:71:14:55:cc:02:6d:39:d5:22: 76:e7:c3:c4:1d:18:3e:58:95:55:69:e4:47:e4:b7: ef:5d:8b:c0:cf:d0:2f:a0:e7:f9:a1:ef:eb:79:31: 72:d3:9f:e4:8b:75:1e:41:db:2d:ed:fa:c8:69:84: 10:c7:af:03:77:29:63:f5:5a:e6:77:4c:82:76:fc: d4:e9:5f:30:fd:6c:ec:16:6c:38:49:c2:da:d7:41: 96:95:0d:c8:c4:3c:a2:01:be:6f:b0:f6:24:9f:d3: 0c:46:d5:9c:f7:09:e4:ad:c5:4e:ac:aa:b4:26:e1: ab:f9:c2:95:42:b3:d3:33:fb:93:74:6a:8a:c3:5c: 9b:85:7e:5a:88:3e:bf:a6:33:9e:b3:53:12:e1:9f: 01:1a:fc:96:24:08:c4:fe:cd:5c:68:5a:dc:8d:f6: 74:c5:7f:7e:83:b4:3d:55:e7:4e:46:54:cb:db:27: e0:22:25:52:63:ca:60:f7:97:e2:24:10:30:ed:79: 30:c2:35:21:68:23:5f:8b:fd:8c:c2:9c:cb:bb:d1: 8b:9b:9c:ea:80:99:d4:8b:18:8e:54:bd:88:f9:e7: 2d:80:1f:ed:c0:ca:11:d4:c3:e9:47:53:3c:75:ac: 93:44:45:57:57:4e:8c:c6:5d:82:0a:bf:d1:4e:ef: cd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2E:A1:18:3D:BF:67:41:D5:D4:0B:C8:AB:89:C9:2E:3F:A5:65:88 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:26:10:61:68:3a:e0:f1:3e:08:13:d0:df:2c:48:44:ae:0d: 57:27:b0:f5:17:cf:c0:a8:e1:30:b7:33:1c:e4:c9:5f:75:c6: 39:7d:2c:f5:f3:1b:69:11:bd:d8:af:d0:09:6e:d2:49:9e:d0: 1e:e4:8b:5b:a6:0a:7d:78:a4:22:77:e6:8f:62:93:df:ca:81: 53:70:1f:44:b8:df:c3:1d:2d:5b:4c:e5:f0:2f:31:ae:8d:36: b0:bc:00:15:39:a1:0c:29:82:10:5c:04:9c:b6:fd:48:79:27: 2d:03:5d:d5:19:58:ec:53:c0:7b:1f:94:53:ea:ae:7d:37:4b: 54:59:d1:01:25:25:8f:06:3c:19:d7:af:08:e4:14:fe:db:18: bf:f4:0a:68:4d:eb:d1:fd:e7:85:bd:0e:aa:50:0c:b5:1e:f2: 26:e7:2a:33:78:d0:3e:75:ea:e0:fb:9e:78:e0:13:3c:19:59: 73:30:35:40:d0:37:52:77:dc:41:5c:78:9a:b5:3e:0b:99:c1: 03:36:90:40:a9:56:b2:ab:a3:6b:f7:b8:7e:5c:55:4b:30:27: 36:1b:ad:fd:76:b4:26:1a:54:ef:43:b5:80:82:69:b6:33:70: b3:1a:28:d7:c5:fd:8d:9e:80:0b:97:4a:3a:70:91:1a:cd:5f: 23:85:ab:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUxMTAzMDU0NTQ3WhcNMjUxMTEwMDU0NTQ3WjAYMRYwFAYD VQQDEw02OTA4NDE4Yi01ZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34Bv6N1xFFXMAm051SJ258PEHRg+WJVVaeRH5LfvXYvAz9AvoOf5oe/reTFy 05/ki3UeQdst7frIaYQQx68Ddylj9Vrmd0yCdvzU6V8w/WzsFmw4ScLa10GWlQ3I xDyiAb5vsPYkn9MMRtWc9wnkrcVOrKq0JuGr+cKVQrPTM/uTdGqKw1ybhX5aiD6/ pjOes1MS4Z8BGvyWJAjE/s1caFrcjfZ0xX9+g7Q9VedORlTL2yfgIiVSY8pg95fi JBAw7XkwwjUhaCNfi/2MwpzLu9GLm5zqgJnUixiOVL2I+ectgB/twMoR1MPpR1M8 dayTREVXV06Mxl2CCr/RTu/NIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIuoRg9 v2dB1dQLyKuJyS4/pWWIMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwJhBhaDrg8T4IE9DfLEhErg1XJ7D1F8/AqOEwtzMc5MlfdcY5fSz1 8xtpEb3Yr9AJbtJJntAe5Itbpgp9eKQid+aPYpPfyoFTcB9EuN/DHS1bTOXwLzGu jTawvAAVOaEMKYIQXASctv1IeSctA13VGVjsU8B7H5RT6q59N0tUWdEBJSWPBjwZ 168I5BT+2xi/9ApoTevR/eeFvQ6qUAy1HvIm5yozeNA+derg+5544BM8GVlzMDVA 0DdSd9xBXHiatT4LmcEDNpBAqVayq6Nr97h+XFVLMCc2G639drQmGlTvQ7WAgmm2 M3CzGijXxf2NnoALl0o6cJEazV8jhaus -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:16 2025 by rpki-client