$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: IAxZ90O/yucxEnhkuQGEg5NyrPXmk6N2aJ+H7nIQK+k= Subject key identifier: 9A:0D:28:D6:B5:B9:4A:02:54:F7:36:0A:C5:CC:50:47:37:A3:A9:A8 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: 01E0 Signing time: Mon 03 Nov 2025 02:42:07 +0000 Manifest this update: Mon 03 Nov 2025 02:42:06 +0000 Manifest next update: Mon 10 Nov 2025 02:42:06 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: O6T8KkSCCDSB72UwnxQWz4i4MRFqiMO8+g8DZr63pJE=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ViKM5e5iyaoZ2fwSNhoyHsddKA5yuwX0C7qKIyKJX7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: Nov 3 02:42:06 2025 GMT Not After : Nov 10 02:42:06 2025 GMT Subject: CN=6908167f-3507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0b:fd:7a:a6:9a:fe:a2:a3:73:31:b9:21:03: 04:e9:13:9d:b7:0f:f0:ac:80:d1:0f:e5:a6:ba:90: c7:78:ac:4b:53:6f:92:eb:5c:44:6e:d5:91:ed:4e: 6e:77:eb:b2:cd:91:65:46:1b:72:b7:e4:57:aa:44: 3a:12:4b:f7:b4:6e:f1:c9:65:36:16:a7:41:36:4a: c6:40:2e:f5:b6:ad:6b:77:fe:73:87:1e:0a:08:6f: b8:47:89:be:fc:74:d5:c1:2b:c3:e7:31:22:38:bb: 9d:76:86:68:c5:ec:2f:4a:50:41:4f:6e:31:bd:8f: c6:57:72:7b:55:9f:3a:40:87:8d:a8:d7:2a:85:71: e3:23:c9:b5:37:88:3f:55:32:5b:34:6d:54:29:22: f3:20:b2:0d:71:8c:e1:76:a3:ee:12:27:ae:0a:b5: 33:5f:6e:36:59:c7:9d:4e:ea:48:b8:6d:87:ec:1d: 99:d6:6f:38:93:29:7c:3b:b2:0c:ea:1c:f7:ea:1c: 7f:7f:3d:bf:6e:97:27:5f:ef:b3:91:cf:e7:da:d3: 15:b1:e0:90:01:09:08:26:4c:fa:eb:37:cc:c7:8d: 87:a0:1a:aa:94:19:28:e5:a7:51:a7:8b:36:56:fa: dc:13:aa:38:63:19:73:75:b5:b8:5b:f5:a0:eb:f2: 75:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0D:28:D6:B5:B9:4A:02:54:F7:36:0A:C5:CC:50:47:37:A3:A9:A8 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:90:9e:d6:00:9b:29:a1:4c:6f:2c:37:b6:a4:f3:e5:ef:8a: ee:3f:da:c3:4a:4b:29:80:09:73:4c:2c:75:b1:50:0d:5a:80: 5d:97:77:72:15:c1:13:26:ec:bc:05:75:c4:f4:ab:78:78:78: 7b:02:91:be:67:4a:88:16:59:69:4e:aa:b3:67:d1:b4:7d:66: 44:7f:45:08:c3:05:8c:50:f5:e3:c5:be:9e:d8:21:c4:25:b7: de:a6:6b:27:b6:b4:90:de:a6:ce:fb:b4:f1:4b:62:cd:c5:09: 94:30:9a:89:b4:81:2b:d4:b0:f1:2b:17:2f:ab:a4:92:11:db: 68:3f:bb:34:50:9b:2d:f7:f9:a8:d5:cb:9c:74:ad:94:eb:08: e3:92:da:df:58:47:98:9d:d3:71:15:b6:87:6b:c2:0d:02:3d: 6b:d1:72:1a:0a:32:42:8b:a3:f3:8f:22:16:b9:11:df:ad:31: 10:a0:b3:e2:8e:9e:4a:96:70:aa:c7:11:a8:b9:e5:19:08:dc: c3:1c:c9:d6:05:9c:ef:5e:e4:5f:4f:20:72:eb:2d:34:87:cf: b4:27:53:40:7e:91:12:93:10:fd:0a:c3:7d:23:10:5e:c3:22: f2:4c:43:7a:37:52:a9:6c:94:8c:16:d3:1d:97:fe:91:0a:83: ba:5b:96:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjUxMTAzMDI0MjA2WhcNMjUxMTEwMDI0MjA2WjAYMRYwFAYD VQQDEw02OTA4MTY3Zi0zNTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wv9eqaa/qKjczG5IQME6ROdtw/wrIDRD+WmupDHeKxLU2+S61xEbtWR7U5u d+uyzZFlRhtyt+RXqkQ6Ekv3tG7xyWU2FqdBNkrGQC71tq1rd/5zhx4KCG+4R4m+ /HTVwSvD5zEiOLuddoZoxewvSlBBT24xvY/GV3J7VZ86QIeNqNcqhXHjI8m1N4g/ VTJbNG1UKSLzILINcYzhdqPuEieuCrUzX242WcedTupIuG2H7B2Z1m84kyl8O7IM 6hz36hx/fz2/bpcnX++zkc/n2tMVseCQAQkIJkz66zfMx42HoBqqlBko5adRp4s2 VvrcE6o4YxlzdbW4W/Wg6/J1yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoNKNa1 uUoCVPc2CsXMUEc3o6moMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4kJ7WAJspoUxvLDe2pPPl74ruP9rDSkspgAlzTCx1sVANWoBdl3dy FcETJuy8BXXE9Kt4eHh7ApG+Z0qIFllpTqqzZ9G0fWZEf0UIwwWMUPXjxb6e2CHE JbfepmsntrSQ3qbO+7TxS2LNxQmUMJqJtIEr1LDxKxcvq6SSEdtoP7s0UJst9/mo 1cucdK2U6wjjktrfWEeYndNxFbaHa8INAj1r0XIaCjJCi6PzjyIWuRHfrTEQoLPi jp5KlnCqxxGoueUZCNzDHMnWBZzvXuRfTyBy6y00h8+0J1NAfpESkxD9CsN9IxBe wyLyTEN6N1KpbJSMFtMdl/6RCoO6W5aO -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:24 2025 by rpki-client