$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: DnmN91GxkWGZBZ4x3Vo5uQZ1N2V+gthY2P4YHAXReHw= Subject key identifier: E7:C3:82:F9:69:03:19:5D:51:B7:B4:92:24:73:3B:B1:5C:A6:F1:50 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 080A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0804 Signing time: Tue 04 Nov 2025 21:03:13 +0000 Manifest this update: Tue 04 Nov 2025 21:03:13 +0000 Manifest next update: Tue 11 Nov 2025 21:03:13 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: W+RRW1muAmDMTw8or5udVnMIH7HMIfbhePM1T4Jco7k=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Nov 4 21:03:13 2025 GMT Not After : Nov 11 21:03:13 2025 GMT Subject: CN=690a6a11-040a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:69:16:34:d1:9f:29:a2:3f:9b:be:49:51:cb: 87:82:a4:fd:bc:a5:29:c8:95:47:09:25:4b:dd:9e: ec:5b:2e:02:65:06:c4:b1:86:a2:32:99:e8:f1:7d: 18:e1:10:7b:ff:34:b7:73:f7:29:f0:d2:76:8f:c8: 29:c3:e5:f5:53:37:49:19:41:66:11:12:a9:d0:45: 40:c0:8c:97:fa:2a:5e:05:15:37:8d:74:1f:18:b8: 66:20:91:93:b4:8e:f1:30:d1:6b:87:db:66:da:60: 05:32:59:02:e5:e8:4c:48:35:4b:52:df:3f:f0:9c: 6d:24:3a:62:cd:58:cc:f2:f2:89:c5:83:af:ea:3a: 5e:6b:dc:ce:0c:f5:43:05:2c:1b:87:81:ce:44:65: 39:60:fb:ae:dc:8d:22:9a:9c:7b:b2:f4:24:97:dd: b3:7e:39:6b:c5:d2:1b:c2:b4:2d:0e:4f:a2:15:c4: 7a:b3:8d:aa:79:aa:27:47:cb:3f:c3:4e:ee:d6:83: bd:1c:79:fa:32:34:7a:3c:38:26:43:78:33:3e:13: 4f:81:77:a1:c6:e5:18:4a:c2:a8:e0:5b:59:e6:3f: 64:32:95:1f:af:ea:58:88:7a:78:41:9f:18:2e:e3: 7b:f8:ec:f3:7d:1f:31:43:d9:a3:7c:a8:e7:3b:49: bb:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C3:82:F9:69:03:19:5D:51:B7:B4:92:24:73:3B:B1:5C:A6:F1:50 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:01:d2:03:ca:a6:48:c0:32:8a:9a:2d:a5:a5:86:d4:22:e9: f7:42:07:ee:4d:4e:51:d4:ad:68:a7:f1:d4:84:60:9c:40:4b: 66:5c:ce:b3:7b:16:55:02:66:8f:3c:7a:25:7c:4b:27:c5:16: 05:df:ce:de:5f:77:7d:74:e1:90:7b:6e:d7:5f:88:c9:37:a7: e9:07:38:3b:0a:62:5f:da:bc:a7:93:8d:9c:31:9c:24:13:e9: 5b:4c:fc:4c:56:e4:0b:68:1b:f3:43:01:e2:78:c1:bb:0b:9f: db:f2:85:d5:de:89:c6:20:c7:bc:61:83:8c:c1:ed:4b:3a:7b: 61:5d:98:49:b1:ef:7f:57:a3:eb:be:f2:28:c1:fd:53:6f:b1: 7b:51:5e:ee:bf:70:97:f6:03:54:c5:c4:ea:8b:6c:99:34:af: ea:a1:d3:85:7a:68:b4:ef:65:10:af:b6:a1:ab:e4:44:aa:6e: 28:94:2d:0f:f8:83:5a:a3:ae:9c:66:31:16:50:ee:17:5b:67: 21:da:65:2e:9e:79:d6:c6:4c:6d:b6:59:50:ea:84:e2:aa:69: d6:77:ac:af:b6:14:d2:20:89:66:26:98:93:a1:21:85:64:67: f1:91:3d:37:90:ff:72:98:ed:2f:ad:ac:43:3b:d3:ee:5f:a9: 8b:b5:88:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUxMTA0MjEwMzEzWhcNMjUxMTExMjEwMzEzWjAYMRYwFAYD VQQDEw02OTBhNmExMS0wNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12kWNNGfKaI/m75JUcuHgqT9vKUpyJVHCSVL3Z7sWy4CZQbEsYaiMpno8X0Y 4RB7/zS3c/cp8NJ2j8gpw+X1UzdJGUFmERKp0EVAwIyX+ipeBRU3jXQfGLhmIJGT tI7xMNFrh9tm2mAFMlkC5ehMSDVLUt8/8JxtJDpizVjM8vKJxYOv6jpea9zODPVD BSwbh4HORGU5YPuu3I0impx7svQkl92zfjlrxdIbwrQtDk+iFcR6s42qeaonR8s/ w07u1oO9HHn6MjR6PDgmQ3gzPhNPgXehxuUYSsKo4FtZ5j9kMpUfr+pYiHp4QZ8Y LuN7+OzzfR8xQ9mjfKjnO0m7XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfDgvlp AxldUbe0kiRzO7FcpvFQMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaAdIDyqZIwDKKmi2lpYbUIun3QgfuTU5R1K1op/HUhGCcQEtmXM6z exZVAmaPPHolfEsnxRYF387eX3d9dOGQe27XX4jJN6fpBzg7CmJf2rynk42cMZwk E+lbTPxMVuQLaBvzQwHieMG7C5/b8oXV3onGIMe8YYOMwe1LOnthXZhJse9/V6Pr vvIowf1Tb7F7UV7uv3CX9gNUxcTqi2yZNK/qodOFemi072UQr7ahq+REqm4olC0P +INao66cZjEWUO4XW2ch2mUunnnWxkxttllQ6oTiqmnWd6yvthTSIIlmJpiToSGF ZGfxkT03kP9ymO0vraxDO9PuX6mLtYif -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:43 2025 by rpki-client