$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft File: awKSxgJwici6idjGWhozDUiLCiw.mft (raw, json) Hash identifier: Su2Da5cyG5lbz8gC4qU1o5i4/FEFcqfzMUzd1jL4hFY= Subject key identifier: 7E:2D:42:9A:59:E5:50:3D:1D:71:E5:91:B3:29:43:8B:9B:4D:69:B4 Authority key identifier: 6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C Certificate issuer: /CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft Manifest number: D2 Signing time: Mon 03 Nov 2025 05:43:08 +0000 Manifest this update: Mon 03 Nov 2025 05:43:08 +0000 Manifest next update: Mon 10 Nov 2025 05:43:08 +0000 Files and hashes: 1: awKSxgJwici6idjGWhozDUiLCiw.crl (hash: R8dO737dkkGvLNeLFTRWfq62r/foZlRwGR9rPRbrWM0=) 2: 17782970808311EFBB9C2A46C4F9AE02.roa (hash: p+Li5x5IRkEHLsrKLMYZtCUY4xOsEsGyH8peATkiJDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Validity Not Before: Nov 3 05:43:08 2025 GMT Not After : Nov 10 05:43:08 2025 GMT Subject: CN=690840ec-9277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:38:98:d0:4e:53:64:fc:04:4f:ec:29:64: 14:99:f6:50:f0:64:d4:cf:e8:6b:7f:26:a5:8a:4d: 27:ca:b2:93:17:15:be:63:89:0d:81:d7:e4:6c:ab: 67:cb:44:e7:3a:82:97:ae:0f:9b:23:72:d6:3e:1d: dc:33:ad:3b:f9:33:04:60:80:03:07:a7:82:a3:5d: 74:fb:cb:98:82:87:08:c4:4d:09:8c:be:a1:ba:d8: 29:df:b8:14:fc:91:02:b8:a6:2c:39:a1:c8:9b:47: 33:e0:2b:02:cc:51:46:74:24:9a:ea:ca:b9:b2:4c: 2d:25:8e:10:22:24:e7:dd:e1:4d:59:30:e9:ca:50: a7:64:8f:82:0c:09:ac:80:4b:c2:39:dd:a7:bd:e6: 65:47:ed:40:2e:95:8c:60:03:56:31:cf:ea:e6:4c: 91:e2:23:46:d8:96:54:67:4b:b0:43:f3:cb:fa:d7: 48:4a:4c:28:b4:4a:e4:ff:61:d0:55:57:b5:1e:a7: 58:0d:b6:d5:47:50:ce:67:f5:d8:53:90:24:c6:30: d9:59:d7:2d:66:45:a4:80:3c:26:57:ff:26:a6:d2: 2d:51:85:17:8f:78:b2:dc:74:f3:ab:ff:43:e8:c4: 0b:3f:0c:e8:bb:95:8e:be:4a:63:02:fe:7e:7a:55: 0d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2D:42:9A:59:E5:50:3D:1D:71:E5:91:B3:29:43:8B:9B:4D:69:B4 X509v3 Authority Key Identifier: keyid:6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:7c:41:85:07:c1:47:c4:2d:0f:3b:ad:0e:a4:2c:55:7d:29: 52:65:25:b7:23:07:1f:f7:8f:89:af:aa:30:1a:2a:c2:50:92: 66:1b:4d:87:83:58:30:29:07:c6:ae:cc:d4:40:e7:c0:8d:54: 94:78:f7:c5:f4:35:5c:a3:40:77:53:fa:24:22:1f:9d:80:fa: 9b:9f:3d:3e:83:ec:c0:5f:90:73:ff:30:1f:5c:71:e4:01:05: bf:cd:7b:53:85:88:6a:eb:57:d1:f4:62:cd:f6:c7:56:6d:38: 80:4f:b9:d4:26:6f:92:2d:bf:25:41:bd:06:01:45:1e:19:d3: 19:7c:70:94:fd:fd:68:72:54:5a:45:ae:65:4d:82:4e:cf:60: 10:3c:58:d9:aa:71:4d:e0:d0:71:29:aa:21:e3:64:0e:d5:c8: 5d:13:5e:a7:69:6b:c7:24:c2:82:8f:bb:6e:49:3f:74:5d:4c: 87:5c:d8:e8:d5:e2:19:02:19:09:f9:c1:ed:0c:bc:1a:9d:88: c5:96:b0:28:bc:4e:4a:66:c1:0b:3a:0c:02:1c:03:84:f2:2a: ce:de:48:09:5b:a7:11:45:77:66:f4:96:37:16:da:1b:4a:da: 5c:11:28:6d:52:f1:37:6c:02:fd:58:8d:b2:31:95:db:b7:a9: 52:ed:c8:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDZCMDI5MkM2MDI3MDg5QzhCQTg5RDhDNjVBMUEzMzBE NDg4QjBBMkMwHhcNMjUxMTAzMDU0MzA4WhcNMjUxMTEwMDU0MzA4WjAYMRYwFAYD VQQDEw02OTA4NDBlYy05Mjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7U4mNBOU2T8BE/sKWQUmfZQ8GTUz+hrfyalik0nyrKTFxW+Y4kNgdfkbKtn y0TnOoKXrg+bI3LWPh3cM607+TMEYIADB6eCo110+8uYgocIxE0JjL6hutgp37gU /JECuKYsOaHIm0cz4CsCzFFGdCSa6sq5skwtJY4QIiTn3eFNWTDpylCnZI+CDAms gEvCOd2nveZlR+1ALpWMYANWMc/q5kyR4iNG2JZUZ0uwQ/PL+tdISkwotErk/2HQ VVe1HqdYDbbVR1DOZ/XYU5AkxjDZWdctZkWkgDwmV/8mptItUYUXj3iy3HTzq/9D 6MQLPwzou5WOvkpjAv5+elUNjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4tQppZ 5VA9HXHlkbMpQ4ubTWm0MB8GA1UdIwQYMBaAFGsCksYCcInIuonYxloaMw1Iiwos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80NEJDQTYzMjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2ljaTZpZGpHV2hvekRVaUxD aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2F3S1N4Z0p3aWNpNmlkakdXaG96RFVpTENpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80NEJDQTYzMjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2lj aTZpZGpHV2hvekRVaUxDaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/fEGFB8FHxC0PO60OpCxVfSlSZSW3Iwcf94+Jr6owGirCUJJmG02H g1gwKQfGrszUQOfAjVSUePfF9DVco0B3U/okIh+dgPqbnz0+g+zAX5Bz/zAfXHHk AQW/zXtThYhq61fR9GLN9sdWbTiAT7nUJm+SLb8lQb0GAUUeGdMZfHCU/f1oclRa Ra5lTYJOz2AQPFjZqnFN4NBxKaoh42QO1chdE16naWvHJMKCj7tuST90XUyHXNjo 1eIZAhkJ+cHtDLwanYjFlrAovE5KZsELOgwCHAOE8irO3kgJW6cRRXdm9JY3Ftob StpcEShtUvE3bAL9WI2yMZXbt6lS7cjv -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:19 2025 by rpki-client