$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json) Hash identifier: Gd28vLdn0eihzZAjUv/1Tw7Zg4yc248tDn0pO5N/5SE= Subject key identifier: BE:6C:8D:98:88:D0:8A:69:D3:49:DC:11:D8:78:7A:DA:96:B5:DB:6E Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft Manifest number: F4 Signing time: Wed 05 Nov 2025 05:24:58 +0000 Manifest this update: Wed 05 Nov 2025 05:24:58 +0000 Manifest next update: Wed 12 Nov 2025 05:24:58 +0000 Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: KYWY0hsbDt1n5a1FJVkmioDOKTYRr8NHt4H8DtYdJ1k=) 2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: dwidYpMLAJTM9jddkunL1qdnHKOnW/Pf1EZaeXyq6Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Validity Not Before: Nov 5 05:24:58 2025 GMT Not After : Nov 12 05:24:58 2025 GMT Subject: CN=690adfaa-6bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:ff:0d:5b:ea:f4:51:51:bf:e3:fc:fa:d8: ba:72:91:a5:56:a8:fa:49:86:be:19:ae:32:12:7c: 93:36:90:41:27:2e:06:6c:f7:e5:ca:d9:20:bc:7a: 73:cf:0c:70:d7:e3:1b:29:2f:db:62:4d:eb:7b:f8: 1e:83:69:c1:8f:15:d5:49:3f:5e:57:33:29:b9:71: 3a:aa:0d:0e:b3:49:c6:5f:03:04:50:08:34:4b:5f: d0:7f:97:ab:ee:db:75:ed:40:29:32:a0:66:d3:04: 3a:d9:c3:87:0c:59:1a:c5:d0:73:c2:1e:f6:49:df: 7f:60:47:e6:d0:71:4a:37:6d:63:df:f1:97:9a:cf: 8a:8c:e9:50:02:98:ff:b5:51:6e:d0:99:65:cd:a5: e1:d8:aa:82:f4:f5:49:08:c2:8c:34:8e:e5:67:f9: 02:06:69:3a:7d:82:d1:c8:7f:f6:d0:40:5f:e4:df: 4d:fc:0c:f2:c5:0c:ae:76:6e:c4:41:ea:a1:8c:b1: a0:04:78:a7:bc:09:3f:ab:59:29:60:d4:44:a7:3a: 4e:c5:e4:78:bd:cd:16:f1:54:28:99:85:55:f3:a4: fc:fe:ca:ec:1f:96:10:17:f1:a2:cd:25:73:7b:70: 01:16:27:be:c4:a9:e7:27:b5:6f:fd:9d:53:c5:6d: 15:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6C:8D:98:88:D0:8A:69:D3:49:DC:11:D8:78:7A:DA:96:B5:DB:6E X509v3 Authority Key Identifier: keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:8d:2a:34:1f:bd:89:19:bb:cd:26:ed:53:e5:10:4e:a4:0c: 54:30:0a:50:45:74:11:b6:02:5b:50:2a:92:ea:5f:d6:d8:17: c8:29:f6:ce:a2:28:4e:ac:ac:ec:b5:0a:ee:6f:d5:56:e1:fe: 77:32:28:c7:d3:61:25:7b:5e:91:1e:57:5b:48:39:60:3c:73: fa:f8:5b:ab:f5:f3:c7:4d:a7:a2:bb:23:d2:61:38:77:f9:71: d2:e7:98:87:f7:98:2f:d9:b3:ce:95:f1:c3:33:16:80:b0:fd: 87:95:ba:66:4c:7d:02:d4:90:bd:9a:dc:46:46:e7:79:e8:60: d7:ea:4f:78:43:eb:b1:ed:38:12:08:4f:78:c0:21:18:49:81: e2:d5:22:6f:02:dd:4e:12:14:e8:cd:59:88:11:48:35:d6:9b: 04:e8:a9:54:cf:60:bf:10:ac:9a:29:2b:c0:14:69:9a:ac:78: c4:c3:45:5a:7c:51:f0:cc:19:91:18:d4:ad:fa:96:62:9c:f6: 7c:65:4f:e6:96:8a:9d:44:bb:2f:5c:4c:06:db:af:f3:62:ac: 31:80:18:71:82:af:72:16:92:4b:52:f6:ab:86:b4:ef:86:b1: 95:0c:2b:64:1b:32:32:0e:15:da:7b:db:8a:99:78:d3:a7:9a: bc:60:b7:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKDA3MjQ0QTk5NENEQzRCOTM4MDc0NzExQzQyNDhENDlG OUQ1MEQ4MjcwHhcNMjUxMTA1MDUyNDU4WhcNMjUxMTEyMDUyNDU4WjAYMRYwFAYD VQQDEw02OTBhZGZhYS02YmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWD/DVvq9FFRv+P8+ti6cpGlVqj6SYa+Ga4yEnyTNpBBJy4GbPflytkgvHpz zwxw1+MbKS/bYk3re/geg2nBjxXVST9eVzMpuXE6qg0Os0nGXwMEUAg0S1/Qf5er 7tt17UApMqBm0wQ62cOHDFkaxdBzwh72Sd9/YEfm0HFKN21j3/GXms+KjOlQApj/ tVFu0JllzaXh2KqC9PVJCMKMNI7lZ/kCBmk6fYLRyH/20EBf5N9N/AzyxQyudm7E QeqhjLGgBHinvAk/q1kpYNREpzpOxeR4vc0W8VQomYVV86T8/srsH5YQF/GizSVz e3ABFie+xKnnJ7Vv/Z1TxW0VtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5sjZiI 0Ipp00ncEdh4etqWtdtuMB8GA1UdIwQYMBaAFAckSplM3EuTgHRxHEJI1J+dUNgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS9GQzY2RjVBRTQ1 QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1T0FkSEVjUWtqVW41MVEy Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5UkttVXpjUzVPQWRIRWNRa2pVbjUxUTJDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS9GQzY2RjVBRTQ1QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1 T0FkSEVjUWtqVW41MVEyQ2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXjSo0H72JGbvNJu1T5RBOpAxUMApQRXQRtgJbUCqS6l/W2BfIKfbO oihOrKzstQrub9VW4f53MijH02Ele16RHldbSDlgPHP6+Fur9fPHTaeiuyPSYTh3 +XHS55iH95gv2bPOlfHDMxaAsP2HlbpmTH0C1JC9mtxGRud56GDX6k94Q+ux7TgS CE94wCEYSYHi1SJvAt1OEhTozVmIEUg11psE6KlUz2C/EKyaKSvAFGmarHjEw0Va fFHwzBmRGNSt+pZinPZ8ZU/mloqdRLsvXEwG26/zYqwxgBhxgq9yFpJLUvarhrTv hrGVDCtkGzIyDhXae9uKmXjTp5q8YLfc -----END CERTIFICATE-----Generated at Wed Nov 5 08:24:34 2025 by rpki-client