$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft File: x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft (raw, json) Hash identifier: ZUL9dJyrr9dux+pwzMQN3BqBsXjtQwRubvavZ3557kU= Subject key identifier: E8:F3:C0:E9:46:C7:B0:B0:9A:EA:0B:30:DB:0A:99:97:1F:5D:94:1F Authority key identifier: C7:F0:28:37:D2:45:CB:8F:AB:CD:47:41:CF:A2:B4:A5:A2:F7:3E:AD Certificate issuer: /CN=A91D8BB1/serialNumber=C7F02837D245CB8FABCD4741CFA2B4A5A2F73EAD Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x_AoN9JFy4-rzUdBz6K0paL3Pq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft Manifest number: 54 Signing time: Wed 05 Nov 2025 07:26:58 +0000 Manifest this update: Wed 05 Nov 2025 07:26:58 +0000 Manifest next update: Wed 12 Nov 2025 07:26:58 +0000 Files and hashes: 1: x_AoN9JFy4-rzUdBz6K0paL3Pq0.crl (hash: BpVmG9zVpoToxweZFzEZNPiCitezBEypAg0AwfDQuQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.crl rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x_AoN9JFy4-rzUdBz6K0paL3Pq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8BB1, serialNumber=C7F02837D245CB8FABCD4741CFA2B4A5A2F73EAD Validity Not Before: Nov 5 07:26:58 2025 GMT Not After : Nov 12 07:26:58 2025 GMT Subject: CN=690afc42-6bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c8:3f:f0:ca:81:36:a4:fd:f9:40:d9:5b:3f: 1c:20:c2:b6:44:6b:26:5d:e1:e2:dd:c8:aa:a5:cf: 3a:74:dd:f5:9b:cf:4c:82:f3:e7:bf:ea:71:8d:79: df:00:39:0c:54:2d:6a:05:15:03:10:5e:10:8c:92: 43:4c:38:8f:b3:7b:3b:5d:3c:14:ad:ec:de:5a:76: 8a:c7:b8:5e:c8:dd:40:9b:7b:c2:d4:79:fa:a5:7f: e2:dd:d4:7d:82:53:28:3f:8b:ff:7c:72:0b:1b:5a: dc:23:e2:0b:18:b1:e3:47:54:68:5f:96:50:9e:aa: c4:b7:b9:44:38:c4:02:9e:76:ed:9a:fa:7a:c4:e1: 39:fe:09:17:25:cd:53:d1:dd:3e:bf:20:7e:e0:f0: 37:75:f2:0c:17:ad:98:6d:7c:cb:62:30:90:d7:0b: 54:04:fc:ad:d4:e2:c1:5d:72:35:b9:90:33:d4:83: 12:73:8d:ca:6a:61:17:68:1e:e0:d8:4c:03:35:8a: ea:d8:e8:4d:b7:09:d9:d5:75:fc:73:41:6c:fa:28: 7d:fc:fb:24:3a:84:7e:24:24:43:46:f1:c3:21:c5: a7:9f:88:a6:cf:72:56:c9:96:42:0d:c3:99:d2:1e: f8:be:6a:5d:55:82:89:bd:f6:04:1a:15:ae:18:f0: d5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F3:C0:E9:46:C7:B0:B0:9A:EA:0B:30:DB:0A:99:97:1F:5D:94:1F X509v3 Authority Key Identifier: keyid:C7:F0:28:37:D2:45:CB:8F:AB:CD:47:41:CF:A2:B4:A5:A2:F7:3E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x_AoN9JFy4-rzUdBz6K0paL3Pq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8BB1/5AD769B03D2511F080C48955C4F9AE02/x_AoN9JFy4-rzUdBz6K0paL3Pq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:4f:e0:33:37:07:a1:2c:6e:9c:44:c1:be:a3:5a:1d:d2:6b: a4:cc:4c:e8:ba:50:13:e7:dc:10:d7:e0:dd:76:06:ed:ba:cb: fa:5f:99:a6:0c:a9:9a:d3:ca:58:ee:4c:f1:cc:1e:c7:fe:59: 0e:8a:0b:de:e7:41:b2:cb:46:e5:10:b9:6d:46:b0:2f:11:b4: 9b:15:99:26:0b:03:2e:c1:a8:d6:d1:d8:10:11:2b:bc:a5:62: 75:55:fb:e0:98:2e:a6:31:25:51:a1:83:80:e5:0d:ce:0a:63: 4d:91:c4:0a:35:05:91:3c:2c:bf:ad:7b:41:0a:58:85:37:cb: 1b:11:4d:46:6a:00:a6:5b:c1:4b:9b:cb:09:f6:65:59:4a:e1: 0c:85:78:51:9e:b5:6c:0b:57:ff:d8:e8:88:01:0a:59:fe:f1: 9d:94:7e:06:62:09:28:b4:09:70:82:57:02:64:b2:13:c2:2b: 6c:79:55:8e:55:47:9d:dd:47:c3:b9:c0:c8:f6:cc:6c:c8:b6: b1:17:16:18:f1:e8:a1:c4:24:f7:98:69:97:75:dd:a4:8b:5c: 9b:e1:ae:cc:39:b8:ba:d4:f1:08:db:1c:b8:c7:63:86:41:ea: c0:3f:20:f5:51:0d:26:b5:27:e0:d3:b0:1b:96:58:0b:4b:80: 1f:e0:96:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OEJCMTExMC8GA1UEBRMoQzdGMDI4MzdEMjQ1Q0I4RkFCQ0Q0NzQxQ0ZBMkI0QTVB MkY3M0VBRDAeFw0yNTExMDUwNzI2NThaFw0yNTExMTIwNzI2NThaMBgxFjAUBgNV BAMTDTY5MGFmYzQyLTZiYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClyD/wyoE2pP35QNlbPxwgwrZEayZd4eLdyKqlzzp03fWbz0yC8+e/6nGNed8A OQxULWoFFQMQXhCMkkNMOI+zeztdPBSt7N5adorHuF7I3UCbe8LUefqlf+Ld1H2C Uyg/i/98cgsbWtwj4gsYseNHVGhfllCeqsS3uUQ4xAKedu2a+nrE4Tn+CRclzVPR 3T6/IH7g8Dd18gwXrZhtfMtiMJDXC1QE/K3U4sFdcjW5kDPUgxJzjcpqYRdoHuDY TAM1iurY6E23CdnVdfxzQWz6KH38+yQ6hH4kJENG8cMhxaefiKbPclbJlkINw5nS Hvi+al1Vgom99gQaFa4Y8NWxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6PPA6UbH sLCa6gsw2wqZlx9dlB8wHwYDVR0jBBgwFoAUx/AoN9JFy4+rzUdBz6K0paL3Pq0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4QkIxLzVBRDc2OUIwM0Qy NTExRjA4MEM0ODk1NUM0RjlBRTAyL3hfQW9OOUpGeTQtcnpVZEJ6NkswcGFMM1Bx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveF9Bb045SkZ5NC1yelVkQno2SzBwYUwzUHEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 QkIxLzVBRDc2OUIwM0QyNTExRjA4MEM0ODk1NUM0RjlBRTAyL3hfQW9OOUpGeTQt cnpVZEJ6NkswcGFMM1BxMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADBP4DM3B6EsbpxEwb6jWh3Sa6TMTOi6UBPn3BDX4N12Bu26y/pfmaYM qZrTyljuTPHMHsf+WQ6KC97nQbLLRuUQuW1GsC8RtJsVmSYLAy7BqNbR2BARK7yl YnVV++CYLqYxJVGhg4DlDc4KY02RxAo1BZE8LL+te0EKWIU3yxsRTUZqAKZbwUub ywn2ZVlK4QyFeFGetWwLV//Y6IgBCln+8Z2UfgZiCSi0CXCCVwJkshPCK2x5VY5V R53dR8O5wMj2zGzItrEXFhjx6KHEJPeYaZd13aSLXJvhrsw5uLrU8QjbHLjHY4ZB 6sA/IPVRDSa1J+DTsBuWWAtLgB/gllE= -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:26 2025 by rpki-client