$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft File: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft (raw, json) Hash identifier: IVi7/ZFx3a7SjTIv9pcTYIBA0sF1b2pSJCikxQ84We0= Subject key identifier: 35:45:96:0C:19:01:6E:C0:17:B1:EF:65:85:9C:69:29:45:5C:DC:13 Authority key identifier: D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 Certificate issuer: /CN=A91D1234/serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Certificate serial: 0367 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft Manifest number: 0363 Signing time: Mon 03 Nov 2025 00:52:57 +0000 Manifest this update: Mon 03 Nov 2025 00:52:56 +0000 Manifest next update: Mon 10 Nov 2025 00:52:56 +0000 Files and hashes: 1: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl (hash: C0NKj3BbWN07Z5GIsAHuGYCfPcBTG3HreYoWETLgZsw=) 2: 84A0C6B4D02811ECB2472344C4F9AE02.roa (hash: 2T9vsc4C1WKjq9QaM+1XQHhjEU7ftzmE6rg4euSNxbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1234, serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Validity Not Before: Nov 3 00:52:56 2025 GMT Not After : Nov 10 00:52:56 2025 GMT Subject: CN=6907fce8-036c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fb:f0:84:32:22:4e:4f:a0:5a:6b:dd:9c:23: 31:9f:de:02:20:d2:d9:57:30:60:62:19:d8:f4:0f: d8:e7:33:38:57:e2:fc:d7:82:f7:f1:a4:60:b6:dc: 5f:5a:b0:92:73:d6:87:f6:f1:e7:47:e6:73:2d:96: a6:03:25:a8:0d:22:52:8d:d5:0e:f8:86:8b:33:85: 66:07:ed:01:ad:29:2b:9c:01:c0:ea:3d:1e:dc:61: 16:93:f0:53:7d:a3:97:0e:da:2a:8b:07:ac:ec:d9: aa:ee:94:d7:32:ef:2e:99:19:22:61:95:e6:cd:d2: f0:85:14:ba:33:de:23:54:03:d6:7b:26:51:9f:46: 7e:d4:a5:e8:2c:66:1a:49:61:bc:b1:00:68:01:ca: 4d:4a:30:4c:cb:04:d4:6b:7e:6d:1d:67:12:b1:c0: 8d:0d:c8:dd:bc:2f:1c:57:f7:61:dd:d2:df:f8:5f: c4:da:12:78:2b:b2:f2:05:d8:1a:8a:71:9e:52:01: 78:9c:ba:d4:76:13:94:2a:dc:9f:9e:34:7c:4a:87: 00:d0:f1:58:fa:49:c7:12:04:73:89:ca:f3:b8:10: 5b:99:63:ac:53:7a:3e:0b:73:3a:f2:49:6d:ba:87: 24:91:98:df:63:b4:0b:7b:4d:41:c7:b6:1e:8b:f3: 8b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:45:96:0C:19:01:6E:C0:17:B1:EF:65:85:9C:69:29:45:5C:DC:13 X509v3 Authority Key Identifier: keyid:D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:08:59:2d:96:9f:17:80:80:73:e0:f1:24:c0:47:97:e9:13: e4:3a:36:df:7b:38:e0:3c:b9:43:f2:ba:b7:e4:83:9e:27:48: 32:77:f0:49:f2:0e:b3:48:ad:c6:a1:8b:a9:21:bc:a9:dc:06: 91:56:25:d9:c0:6b:ce:97:83:8c:7b:62:fc:ae:72:b9:0b:a1: 6d:cc:5a:bd:ea:e3:82:48:0b:39:9d:48:fc:be:24:54:30:3d: cf:02:e8:ee:e4:bd:74:04:9e:81:0f:cd:49:90:28:48:0b:aa: fa:ef:30:52:e0:6b:fe:00:9e:c7:0d:8b:32:18:da:08:3f:8b: f5:8c:af:88:bc:d2:22:5f:0b:f2:ab:a3:27:0b:62:5a:3d:dc: 25:52:5a:4c:cc:42:cb:72:76:97:13:a6:7d:43:6c:b5:28:30: 8a:e5:38:29:0a:ff:56:68:75:da:44:85:fe:87:29:7c:98:7a: f6:6f:5a:a0:74:c3:d8:b8:a7:45:1d:97:0f:d2:65:a6:00:6d: 5f:67:09:52:c8:b5:56:7d:b1:a3:f2:54:ad:04:f1:b9:1d:d9: 61:30:ed:67:ee:2d:9d:d6:b6:4b:f0:02:2f:09:37:b9:56:95: f1:f2:7f:03:b3:4f:3f:2b:d9:cf:0f:2f:40:64:21:36:ea:a6: a5:c7:d5:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMzQxMTAvBgNVBAUTKEQzQzYyMkU3OTBGMURFRjE2OTI4QkJFNTU0MTgxNzI3 Q0Y4Qzg4RjgwHhcNMjUxMTAzMDA1MjU2WhcNMjUxMTEwMDA1MjU2WjAYMRYwFAYD VQQDEw02OTA3ZmNlOC0wMzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvvwhDIiTk+gWmvdnCMxn94CINLZVzBgYhnY9A/Y5zM4V+L814L38aRgttxf WrCSc9aH9vHnR+ZzLZamAyWoDSJSjdUO+IaLM4VmB+0BrSkrnAHA6j0e3GEWk/BT faOXDtoqiwes7Nmq7pTXMu8umRkiYZXmzdLwhRS6M94jVAPWeyZRn0Z+1KXoLGYa SWG8sQBoAcpNSjBMywTUa35tHWcSscCNDcjdvC8cV/dh3dLf+F/E2hJ4K7LyBdga inGeUgF4nLrUdhOUKtyfnjR8SocA0PFY+knHEgRzicrzuBBbmWOsU3o+C3M68klt uockkZjfY7QLe01Bx7Yei/OLWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVFlgwZ AW7AF7HvZYWcaSlFXNwTMB8GA1UdIwQYMBaAFNPGIueQ8d7xaSi75VQYFyfPjIj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIzNC9CMEZGMzBGRUQw MjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2RnBLTHZsVkJnWEo4LU1p UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WWk1NUR4M3ZGcEtMdmxWQmdYSjgtTWlQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIzNC9CMEZGMzBGRUQwMjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2 RnBLTHZsVkJnWEo4LU1pUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlCFktlp8XgIBz4PEkwEeX6RPkOjbfezjgPLlD8rq35IOeJ0gyd/BJ 8g6zSK3GoYupIbyp3AaRViXZwGvOl4OMe2L8rnK5C6FtzFq96uOCSAs5nUj8viRU MD3PAuju5L10BJ6BD81JkChIC6r67zBS4Gv+AJ7HDYsyGNoIP4v1jK+IvNIiXwvy q6MnC2JaPdwlUlpMzELLcnaXE6Z9Q2y1KDCK5TgpCv9WaHXaRIX+hyl8mHr2b1qg dMPYuKdFHZcP0mWmAG1fZwlSyLVWfbGj8lStBPG5HdlhMO1n7i2d1rZL8AIvCTe5 VpXx8n8Ds08/K9nPDy9AZCE26qalx9UX -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:04 2025 by rpki-client