$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft File: _D97sEVCVvMfJcoAhkvDpr11X5Y.mft (raw, json) Hash identifier: 7Gjw1CRGtV6l/wC2K29aewh/22vtDC9B86axck16+3k= Subject key identifier: 92:0B:E8:D6:16:EB:93:31:FE:DD:D0:86:56:A0:D0:D0:9D:72:24:28 Authority key identifier: FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 Certificate issuer: /CN=A91CE2DE/serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft Manifest number: 025E Signing time: Wed 05 Nov 2025 01:48:47 +0000 Manifest this update: Wed 05 Nov 2025 01:48:47 +0000 Manifest next update: Wed 12 Nov 2025 01:48:47 +0000 Files and hashes: 1: _D97sEVCVvMfJcoAhkvDpr11X5Y.crl (hash: rcOP+EOtwsy+giNHE8d//e7fe9rr1KOehXjmLu3mydQ=) 2: 97B4F5603B3D11ED822BB46CC4F9AE02.roa (hash: 31J9yBONwQ0Slze1cZAXabZLSH29F7mH7omWRFxw8QA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE2DE, serialNumber=FC3F7BB0454256F31F25CA00864BC3A6BD755F96 Validity Not Before: Nov 5 01:48:47 2025 GMT Not After : Nov 12 01:48:47 2025 GMT Subject: CN=690aacff-2f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0e:78:fc:10:ba:98:e3:d7:4d:1e:df:8d:92: 1c:91:49:8e:e7:22:fe:ed:eb:b4:a4:f3:76:f5:c6: b5:24:a5:fe:1d:ba:09:1f:b6:fe:5d:aa:16:ec:96: 98:c3:d6:10:d9:ca:04:b1:50:55:d1:d2:f5:a2:dc: 50:d3:0d:36:39:e3:b4:49:ba:c1:8c:c2:39:be:1f: fd:01:05:55:83:b5:c4:2a:07:8a:4a:18:81:00:ea: e5:16:7b:be:56:13:dd:a3:f5:07:13:2e:96:5c:1f: e7:ef:b1:d1:34:c0:55:9e:50:20:30:b1:26:c8:bc: c6:b4:a8:d9:a2:f4:4d:dc:01:c7:28:cd:62:47:65: 52:87:13:be:4c:01:7d:7f:b7:e2:7c:d2:a7:fc:17: 8f:1c:83:e8:c3:8d:0c:77:9b:22:ea:11:5d:65:13: 86:d8:b1:34:7f:53:55:31:21:10:37:6b:4a:9a:7e: 8a:94:37:9b:b9:63:f6:23:e9:31:96:70:0b:fd:6d: 4e:de:e7:68:46:6d:14:81:ef:42:9e:35:4f:85:03: ea:46:32:9a:ed:ea:ee:57:4e:9c:fa:86:cd:34:70: 68:99:a6:c5:6b:fb:3b:27:37:18:78:54:27:09:dc: 9c:db:33:b4:fe:27:92:c2:33:f3:73:63:90:de:37: cb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0B:E8:D6:16:EB:93:31:FE:DD:D0:86:56:A0:D0:D0:9D:72:24:28 X509v3 Authority Key Identifier: keyid:FC:3F:7B:B0:45:42:56:F3:1F:25:CA:00:86:4B:C3:A6:BD:75:5F:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D97sEVCVvMfJcoAhkvDpr11X5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE2DE/ABDEE87A37E611EDB51E1D45C4F9AE02/_D97sEVCVvMfJcoAhkvDpr11X5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:4a:f5:a5:b9:6d:29:0f:35:9b:86:58:96:f5:03:be:b7:11: 22:b9:07:de:59:2c:70:50:3a:8b:a3:b4:46:c3:d0:a9:d6:65: 1c:13:2d:67:25:ea:3a:86:bf:be:d9:01:48:70:5a:77:0d:85: 06:f1:89:df:90:43:9c:31:44:72:e0:bb:c7:f7:ab:82:d7:b9: 72:32:b3:08:f8:71:6a:fe:ee:95:41:2a:1e:98:18:9f:a2:b0: 1e:2d:05:ee:39:9e:24:d5:a5:92:48:af:ce:f9:53:cb:5a:fe: 24:a1:5b:47:08:17:d8:4b:c2:bb:f8:02:15:35:74:78:4a:0d: 25:9a:a7:3b:6e:51:4c:04:5b:4d:af:a1:cc:f9:62:02:40:bf: 51:a2:20:44:e2:d8:20:64:b9:79:b3:73:91:6b:f5:3c:dc:3f: 25:84:6b:7c:85:58:e4:00:11:51:2b:7f:b4:5f:2f:8c:8d:e1: a0:67:9f:a2:5f:33:fd:9f:ed:3b:14:f8:2c:db:99:38:99:4b: 97:ca:fe:64:f7:96:bf:9c:62:58:69:e7:65:64:76:84:68:3a: 4d:bf:6b:a9:17:6e:d5:0c:63:b4:bb:9d:0b:b6:5b:21:18:8d: 02:b3:37:e7:4d:8e:ba:42:42:8e:44:cd:1e:e7:76:69:cc:5e: b3:2c:2c:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyREUxMTAvBgNVBAUTKEZDM0Y3QkIwNDU0MjU2RjMxRjI1Q0EwMDg2NEJDM0E2 QkQ3NTVGOTYwHhcNMjUxMTA1MDE0ODQ3WhcNMjUxMTEyMDE0ODQ3WjAYMRYwFAYD VQQDEw02OTBhYWNmZi0yZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzg54/BC6mOPXTR7fjZIckUmO5yL+7eu0pPN29ca1JKX+HboJH7b+XaoW7JaY w9YQ2coEsVBV0dL1otxQ0w02OeO0SbrBjMI5vh/9AQVVg7XEKgeKShiBAOrlFnu+ VhPdo/UHEy6WXB/n77HRNMBVnlAgMLEmyLzGtKjZovRN3AHHKM1iR2VShxO+TAF9 f7fifNKn/BePHIPow40Md5si6hFdZROG2LE0f1NVMSEQN2tKmn6KlDebuWP2I+kx lnAL/W1O3udoRm0Uge9CnjVPhQPqRjKa7eruV06c+obNNHBomabFa/s7JzcYeFQn Cdyc2zO0/ieSwjPzc2OQ3jfL7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIL6NYW 65Mx/t3Qhlag0NCdciQoMB8GA1UdIwQYMBaAFPw/e7BFQlbzHyXKAIZLw6a9dV+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTJERS9BQkRFRTg3QTM3 RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2TWZKY29BaGt2RHByMTFY NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EOTdzRVZDVnZNZkpjb0Foa3ZEcHIxMVg1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTJERS9BQkRFRTg3QTM3RTYxMUVEQjUxRTFENDVDNEY5QUUwMi9fRDk3c0VWQ1Z2 TWZKY29BaGt2RHByMTFYNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuSvWluW0pDzWbhliW9QO+txEiuQfeWSxwUDqLo7RGw9Cp1mUcEy1n Jeo6hr++2QFIcFp3DYUG8YnfkEOcMURy4LvH96uC17lyMrMI+HFq/u6VQSoemBif orAeLQXuOZ4k1aWSSK/O+VPLWv4koVtHCBfYS8K7+AIVNXR4Sg0lmqc7blFMBFtN r6HM+WICQL9RoiBE4tggZLl5s3ORa/U83D8lhGt8hVjkABFRK3+0Xy+MjeGgZ5+i XzP9n+07FPgs25k4mUuXyv5k95a/nGJYaedlZHaEaDpNv2upF27VDGO0u50Ltlsh GI0CszfnTY66QkKORM0e53ZpzF6zLCxG -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:51 2025 by rpki-client