$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: Hh50Vh1dor3lHPbLfkeqK5EDXU3LbZL9x6b6cGyPVBo= Subject key identifier: A7:CE:8D:27:3C:77:79:4A:5E:AD:39:D8:E3:63:4A:7A:4E:92:2F:0A Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 01C2 Signing time: Mon 03 Nov 2025 03:02:41 +0000 Manifest this update: Mon 03 Nov 2025 03:02:41 +0000 Manifest next update: Mon 10 Nov 2025 03:02:41 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: kVvWsUr7e/4GRSybrRi7C6fo8mtlYfR+Fl4Nds/HCxc=) 2: 939530627B6311F0BF7B4936C4F9AE02.roa (hash: 3WTSm0ARO6OxYTvyrfdEmxZEWxigI2p51l76SgzYhn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Nov 3 03:02:41 2025 GMT Not After : Nov 10 03:02:41 2025 GMT Subject: CN=69081b51-d18c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:47:90:63:af:c6:53:57:ae:d8:4e:87:06:ce: 92:d8:0e:2a:37:a0:93:e5:4e:60:9a:78:af:7a:8a: d8:fb:f7:72:90:5e:3f:46:1a:d5:a1:f6:bc:1e:8c: 1e:4d:cf:71:5b:40:12:66:14:bf:fd:61:d1:af:db: 6c:e1:c8:a5:62:48:ed:ad:a1:7d:c0:83:c8:4d:46: c6:7f:7f:58:ac:16:93:38:47:04:0c:af:c1:4b:8e: 7a:5f:fc:72:be:85:27:ad:ee:00:c0:6a:39:dc:2c: 20:53:53:77:01:c0:1e:ec:46:3e:5d:d1:f5:bb:31: d9:a2:16:68:cc:c5:e2:f5:e4:8d:1e:b3:56:7b:bf: ee:53:50:1e:e4:8d:94:8e:a3:2e:b6:8b:e4:cb:be: 4b:41:5c:fc:e5:24:ab:2f:a0:8f:ea:80:ca:27:89: 1e:81:a5:ab:59:9d:61:68:6c:a0:ff:07:37:fc:a5: 94:fc:52:82:17:2e:eb:20:12:87:78:81:b1:ac:96: 58:dd:14:fc:0f:22:9a:71:da:23:84:55:66:dc:0a: 2b:f3:65:fa:a5:ed:4b:b1:a7:81:64:54:5f:01:04: 02:36:ee:a2:7d:eb:23:65:dc:7f:18:db:d0:2d:09: ed:99:bd:cc:d4:2a:b9:e4:00:8e:95:d7:91:b8:5b: c5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CE:8D:27:3C:77:79:4A:5E:AD:39:D8:E3:63:4A:7A:4E:92:2F:0A X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:72:f0:7a:4a:72:35:a7:16:07:13:0d:a6:a2:b5:e2:19:fb: 5b:e5:66:14:0b:9e:b0:1c:fc:d5:d6:4e:23:ef:46:f5:cb:67: 89:99:09:53:54:37:d0:ce:28:99:0e:33:01:71:48:8b:83:d2: ce:1e:a0:cf:7a:7c:ab:e3:84:f7:90:f9:02:c2:23:36:d9:4c: 61:a4:f2:28:4c:9a:51:e6:5d:06:fb:3c:ff:71:38:7c:13:81: 8b:88:1f:3d:1c:89:6e:4e:98:03:1e:8c:80:54:59:e5:8f:97: 68:6a:81:ba:d6:51:b8:bb:16:37:13:a8:85:f8:6c:ac:99:c1: f8:5d:cd:68:c3:2e:4e:32:d0:8e:75:8d:8b:7c:f2:9b:f2:6e: 02:3a:f3:e5:e3:d7:76:3e:fe:03:30:9e:9d:09:ed:c9:1b:cd: 37:cd:c3:18:f7:9c:42:4d:30:cd:08:97:5c:c3:24:78:09:f9: a5:e9:a3:65:bd:77:d8:e7:6f:2a:f8:38:96:76:50:8c:55:00: 9c:58:fa:15:0b:96:75:26:7a:7c:36:7a:3e:57:84:da:44:26: b5:f1:d7:c6:a7:19:80:11:67:20:ab:f1:8e:56:e5:39:56:75: 31:da:a0:71:f0:4d:76:71:6f:9d:1d:c4:e5:46:8c:f7:86:ef: 58:8f:9d:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUxMTAzMDMwMjQxWhcNMjUxMTEwMDMwMjQxWjAYMRYwFAYD VQQDEw02OTA4MWI1MS1kMThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkeQY6/GU1eu2E6HBs6S2A4qN6CT5U5gmniveorY+/dykF4/RhrVofa8Howe Tc9xW0ASZhS//WHRr9ts4cilYkjtraF9wIPITUbGf39YrBaTOEcEDK/BS456X/xy voUnre4AwGo53CwgU1N3AcAe7EY+XdH1uzHZohZozMXi9eSNHrNWe7/uU1Ae5I2U jqMutovky75LQVz85SSrL6CP6oDKJ4kegaWrWZ1haGyg/wc3/KWU/FKCFy7rIBKH eIGxrJZY3RT8DyKacdojhFVm3Aor82X6pe1LsaeBZFRfAQQCNu6ifesjZdx/GNvQ LQntmb3M1Cq55ACOldeRuFvFIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfOjSc8 d3lKXq052ONjSnpOki8KMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCccvB6SnI1pxYHEw2morXiGftb5WYUC56wHPzV1k4j70b1y2eJmQlT VDfQziiZDjMBcUiLg9LOHqDPenyr44T3kPkCwiM22UxhpPIoTJpR5l0G+zz/cTh8 E4GLiB89HIluTpgDHoyAVFnlj5doaoG61lG4uxY3E6iF+GysmcH4Xc1owy5OMtCO dY2LfPKb8m4COvPl49d2Pv4DMJ6dCe3JG803zcMY95xCTTDNCJdcwyR4Cfml6aNl vXfY528q+DiWdlCMVQCcWPoVC5Z1Jnp8Nno+V4TaRCa18dfGpxmAEWcgq/GOVuU5 VnUx2qBx8E12cW+dHcTlRoz3hu9Yj52o -----END CERTIFICATE-----Generated at Tue Nov 4 14:06:10 2025 by rpki-client