$ rpki-client -vvf rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft File: 10XhyGsYGPfQVj-Q6LoSvosa43g.mft (raw, json) Hash identifier: SeJz/VMSSpgQkuWquCZ92OU/LsjbZCJWU4+2MyxzaiU= Subject key identifier: 5C:27:77:5F:B0:64:B7:08:2C:1D:A8:4B:7D:E9:0C:DC:BD:84:7E:D9 Authority key identifier: D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 Certificate issuer: /CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft Manifest number: 01A4 Signing time: Mon 03 Nov 2025 03:18:34 +0000 Manifest this update: Mon 03 Nov 2025 03:18:33 +0000 Manifest next update: Mon 10 Nov 2025 03:18:33 +0000 Files and hashes: 1: 10XhyGsYGPfQVj-Q6LoSvosa43g.crl (hash: oXN2pf2UHoSwRuqx06YMquIgo+4pe2wxyKQ/ClLEX+k=) 2: 12DD779467A211EEA8239268C4F9AE02.roa (hash: tXyHZWiyLccCa4dm7RkGGfRei0ZIky7sg5whsG/aUrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D97C4, serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Validity Not Before: Nov 3 03:18:33 2025 GMT Not After : Nov 10 03:18:33 2025 GMT Subject: CN=69081f09-704e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:82:9b:a8:e3:62:b1:58:96:16:fc:e0:03: df:cc:e2:f7:73:06:52:8d:2e:da:db:e1:fd:f9:22: e6:d3:19:92:db:52:1d:c4:b3:ba:47:81:e8:ee:47: 0a:92:13:37:27:cc:f8:e4:38:b6:f8:67:23:e4:b1: be:bb:93:29:de:00:2b:50:be:2f:82:32:fc:0d:3f: 74:2b:6c:58:5c:6f:79:4b:54:4c:34:46:45:f3:45: e2:78:0d:c1:03:4f:47:2e:e2:b1:8a:f6:4f:41:a0: 59:73:37:cf:ae:d9:34:ab:67:71:52:10:02:d6:cd: 1d:1b:51:0f:e7:76:1a:07:1d:98:00:de:e3:89:20: f1:4b:f2:4e:e4:64:f3:95:1c:8b:f7:5f:60:44:b6: f9:53:9e:2d:11:d8:b5:9a:af:49:c5:d5:9b:76:bc: e7:a7:f5:13:4a:e4:1b:00:41:9f:15:7d:04:00:9a: 1f:f4:38:05:6d:e5:04:17:53:75:38:e7:54:18:88: 8b:75:a2:9e:d6:9f:a6:15:5a:a0:44:69:82:01:0d: 17:60:c7:3e:ab:1c:59:9f:7b:30:93:9c:3a:d1:ad: bb:67:03:46:e9:05:16:fe:d7:83:23:e0:a2:41:64: 13:60:6c:8f:62:8a:c3:d4:42:7b:5b:f9:7c:e7:8f: e5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:27:77:5F:B0:64:B7:08:2C:1D:A8:4B:7D:E9:0C:DC:BD:84:7E:D9 X509v3 Authority Key Identifier: keyid:D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:a4:26:d4:7d:bb:83:d3:46:0a:e2:4b:1f:5f:6a:a3:67:0f: 1f:4f:76:ee:06:df:52:b9:67:34:43:98:a3:51:4f:c0:ea:f0: eb:15:c3:72:3f:5e:86:9d:be:da:12:ad:21:cd:9b:c6:7e:62: a2:8f:5d:ee:bf:13:f2:07:90:03:78:3a:3a:7b:47:62:ea:26: f7:1b:56:77:8d:9e:a4:0d:06:17:0e:a2:94:6f:c1:a4:05:7e: 60:f1:69:98:a6:fb:48:35:a3:a3:43:bb:aa:e0:46:0f:fb:98: 7b:ec:2c:a4:97:d0:eb:1e:ef:47:5d:27:7e:51:d6:6a:ba:a8: 7a:0e:56:fa:e3:19:58:b0:62:22:18:7d:81:52:25:da:e7:c1: af:01:79:ba:ea:0c:32:34:32:0f:98:75:b8:00:07:17:5a:2e: 0f:12:7e:ad:6f:1d:42:75:91:1a:72:64:73:6b:bb:a8:26:01: 3d:85:38:ce:c9:c1:98:b5:30:3a:52:14:2f:53:91:58:2c:4b: 9b:69:39:77:12:0e:f4:d4:97:20:4f:d5:cb:73:61:b9:13:f1: 0f:cc:28:a7:a2:4f:6f:89:57:ac:1e:f5:a0:0d:6f:bb:2f:e5: d4:5e:20:84:64:0f:28:fd:68:87:44:35:e4:d6:52:0d:e9:bb: e1:ab:34:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk3QzQxMTAvBgNVBAUTKEQ3NDVFMUM4NkIxODE4RjdEMDU2M0Y5MEU4QkExMkJF OEIxQUUzNzgwHhcNMjUxMTAzMDMxODMzWhcNMjUxMTEwMDMxODMzWjAYMRYwFAYD VQQDEw02OTA4MWYwOS03MDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYeCm6jjYrFYlhb84APfzOL3cwZSjS7a2+H9+SLm0xmS21IdxLO6R4Ho7kcK khM3J8z45Di2+Gcj5LG+u5Mp3gArUL4vgjL8DT90K2xYXG95S1RMNEZF80XieA3B A09HLuKxivZPQaBZczfPrtk0q2dxUhAC1s0dG1EP53YaBx2YAN7jiSDxS/JO5GTz lRyL919gRLb5U54tEdi1mq9JxdWbdrznp/UTSuQbAEGfFX0EAJof9DgFbeUEF1N1 OOdUGIiLdaKe1p+mFVqgRGmCAQ0XYMc+qxxZn3swk5w60a27ZwNG6QUW/teDI+Ci QWQTYGyPYorD1EJ7W/l854/lrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwnd1+w ZLcILB2oS33pDNy9hH7ZMB8GA1UdIwQYMBaAFNdF4chrGBj30FY/kOi6Er6LGuN4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTdDNC9DNjNERjIwMDND NjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQZlFWai1RNkxvU3Zvc2E0 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwWGh5R3NZR1BmUVZqLVE2TG9Tdm9zYTQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTdDNC9DNjNERjIwMDNDNjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQ ZlFWai1RNkxvU3Zvc2E0M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCypCbUfbuD00YK4ksfX2qjZw8fT3buBt9SuWc0Q5ijUU/A6vDrFcNy P16Gnb7aEq0hzZvGfmKij13uvxPyB5ADeDo6e0di6ib3G1Z3jZ6kDQYXDqKUb8Gk BX5g8WmYpvtINaOjQ7uq4EYP+5h77Cykl9DrHu9HXSd+UdZquqh6Dlb64xlYsGIi GH2BUiXa58GvAXm66gwyNDIPmHW4AAcXWi4PEn6tbx1CdZEacmRza7uoJgE9hTjO ycGYtTA6UhQvU5FYLEubaTl3Eg701JcgT9XLc2G5E/EPzCinok9viVesHvWgDW+7 L+XUXiCEZA8o/WiHRDXk1lIN6bvhqzQY -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:21 2025 by rpki-client