$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: CO68oaEsPBJL30fvNUtqZzBfuyosPQ93Y7hXl9veulE= Subject key identifier: DB:8F:5C:2E:61:18:1D:F9:75:0B:C3:89:72:91:67:0A:39:3C:32:6E Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E12 Signing time: Tue 04 Nov 2025 15:32:18 +0000 Manifest this update: Tue 04 Nov 2025 15:32:17 +0000 Manifest next update: Tue 11 Nov 2025 15:32:17 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: kzNDoFXRl437t4oAWj387Kt9AC/kPQsS1eo3osCmcM8=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: dVMsL8EJuwFThJbot7dFtq6YNUkqPMYmgPIcaOtsyp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11819 (0x2e2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Nov 4 15:32:17 2025 GMT Not After : Nov 11 15:32:17 2025 GMT Subject: CN=690a1c82-04f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:3c:84:6c:f8:9d:e7:d2:b4:d5:5b:67:ad: 63:d7:a7:39:f1:97:66:5d:6c:c9:30:cb:72:05:d9: cb:5a:01:b5:fd:40:7d:db:b9:eb:24:ab:de:b7:e8: db:02:c6:0f:ca:f7:8f:7b:d5:57:74:6f:bb:ea:f6: 76:bf:7f:bc:9b:63:87:35:2c:bf:9f:36:43:28:23: 1a:99:bf:4c:ec:fb:f7:9e:cc:7a:b1:6b:d5:f1:1f: 99:a4:47:be:59:52:60:67:6f:79:f6:0d:67:e7:bb: 18:68:0a:76:51:4b:22:16:ea:f7:f5:55:93:fc:5a: b7:74:ea:19:05:b3:ef:e4:ca:ec:9f:8d:b2:52:c5: ef:03:c4:17:0b:52:e8:ea:aa:6d:58:00:2c:0a:c0: bd:20:07:8d:98:98:4a:c5:73:50:6e:d5:af:14:cd: e1:ef:7d:4d:e6:8b:bb:93:a0:36:1c:08:9a:43:ec: 07:d4:de:11:17:c5:10:b1:c2:6c:56:1a:6a:c8:0c: 70:1e:d9:88:f5:d6:f0:48:99:8a:f0:ea:e1:70:d6: da:f2:86:1f:24:6c:ad:87:6c:39:93:9e:54:e0:a0: 7a:16:8f:6b:6f:d2:a6:48:8e:c2:cd:13:aa:ba:99: f5:fd:f5:4e:c8:17:16:af:5c:ce:40:cd:5c:23:be: a7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:8F:5C:2E:61:18:1D:F9:75:0B:C3:89:72:91:67:0A:39:3C:32:6E X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:3d:d0:55:47:97:bc:9c:9b:f2:65:7d:06:5d:b2:ea:97:3d: cf:b7:ec:0f:24:21:e4:e7:e7:74:fe:5e:55:41:43:18:30:34: 27:c3:c8:01:45:20:33:82:e1:a7:8d:64:70:49:0c:49:c7:84: 73:a6:64:b8:f5:98:c0:50:fe:1b:f4:d0:f9:d1:a9:18:65:14: 71:20:1c:00:61:a9:0b:b9:9f:19:cc:7a:93:e1:6f:2e:fe:d6: 26:00:9b:95:34:64:e0:8c:4c:04:18:d0:da:f7:a0:6e:a6:da: 0e:47:f8:c4:22:16:e5:c3:fb:47:27:da:a1:bd:78:95:2a:c9: 0f:96:09:3e:85:53:80:e5:2b:ad:17:ff:d2:55:09:dd:32:1c: 2c:f8:46:75:85:bb:34:e7:16:63:84:89:44:50:81:18:c8:8f: 42:a1:97:12:83:b8:ef:1c:03:54:12:3e:d6:29:2c:95:41:9e: b0:f4:d4:4e:c7:b5:2e:ce:a1:58:f7:0a:81:fd:9a:b2:84:56: 2f:dd:fe:36:cf:0e:6d:ce:0a:53:8f:c1:5a:30:f5:4a:2a:3c: 1a:0e:8b:a6:c2:0d:3f:56:bc:26:bc:25:4d:b4:f5:f0:44:56: 6d:7e:e5:2c:58:ea:44:60:ba:e2:40:7b:37:f2:ac:f1:bd:6f: dd:7f:80:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUxMTA0MTUzMjE3WhcNMjUxMTExMTUzMjE3WjAYMRYwFAYD VQQDEw02OTBhMWM4Mi0wNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmk8hGz4nefStNVbZ61j16c58ZdmXWzJMMtyBdnLWgG1/UB927nrJKvet+jb AsYPyvePe9VXdG+76vZ2v3+8m2OHNSy/nzZDKCMamb9M7Pv3nsx6sWvV8R+ZpEe+ WVJgZ2959g1n57sYaAp2UUsiFur39VWT/Fq3dOoZBbPv5Mrsn42yUsXvA8QXC1Lo 6qptWAAsCsC9IAeNmJhKxXNQbtWvFM3h731N5ou7k6A2HAiaQ+wH1N4RF8UQscJs VhpqyAxwHtmI9dbwSJmK8OrhcNba8oYfJGyth2w5k55U4KB6Fo9rb9KmSI7CzROq upn1/fVOyBcWr1zOQM1cI76n6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuPXC5h GB35dQvDiXKRZwo5PDJuMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmPdBVR5e8nJvyZX0GXbLqlz3Pt+wPJCHk5+d0/l5VQUMYMDQnw8gB RSAzguGnjWRwSQxJx4RzpmS49ZjAUP4b9ND50akYZRRxIBwAYakLuZ8ZzHqT4W8u /tYmAJuVNGTgjEwEGNDa96BuptoOR/jEIhblw/tHJ9qhvXiVKskPlgk+hVOA5Sut F//SVQndMhws+EZ1hbs05xZjhIlEUIEYyI9CoZcSg7jvHANUEj7WKSyVQZ6w9NRO x7UuzqFY9wqB/ZqyhFYv3f42zw5tzgpTj8FaMPVKKjwaDoumwg0/VrwmvCVNtPXw RFZtfuUsWOpEYLriQHs38qzxvW/df4BE -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:46 2025 by rpki-client