$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: InF5MG5XPevsbV6de4XBZaRoiVJVUJL3ODsbR7LMVq8= Subject key identifier: 07:30:16:DF:A4:47:1F:59:81:E0:0E:ED:BA:EF:5B:80:03:DB:11:F9 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 095C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 0953 Signing time: Tue 04 Nov 2025 20:16:20 +0000 Manifest this update: Tue 04 Nov 2025 20:16:19 +0000 Manifest next update: Tue 11 Nov 2025 20:16:19 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: TBDHlqyAxrZgNQiRivVix5H0ZVjc71iccgkxM2UBKNY=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2396 (0x95c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Nov 4 20:16:19 2025 GMT Not After : Nov 11 20:16:19 2025 GMT Subject: CN=690a5f13-f1fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a3:db:3d:ef:b5:68:c4:4a:13:2a:6e:bf:fc: 01:9a:96:7b:a2:85:5c:e1:c4:1a:df:c2:ef:67:85: 33:c1:14:18:c7:69:de:fe:c9:8d:78:6d:93:86:c3: bf:e5:fc:0f:a5:d3:fb:bf:67:05:7f:fe:18:c1:5e: c1:6f:d0:11:ed:a0:63:5f:e9:3c:80:6a:86:b6:2a: 9b:fc:5b:77:dc:fa:1f:fc:5d:0a:3f:da:7d:95:88: 2d:4c:6d:90:24:db:e9:ef:dd:f9:09:42:3f:4c:86: 05:f6:a2:c3:dc:7a:5b:16:32:1e:9d:98:ee:df:f2: 2f:0f:07:02:e0:6b:1b:b8:79:2c:af:8f:62:a9:32: 54:17:9a:97:f2:16:2b:24:27:ee:45:2c:d9:1f:98: cc:a8:87:4b:25:51:82:be:2a:e3:76:7b:e0:10:f3: 79:4b:59:c5:05:1e:3d:57:56:5f:8a:1a:bf:98:e2: 7d:98:57:cf:3e:a6:19:e1:61:a5:10:54:11:a0:22: b6:42:b8:fb:1a:54:b4:03:fd:fc:7b:98:fe:dc:85: 95:42:69:5e:fe:0c:f8:ad:03:f2:55:0f:85:73:2d: 4d:68:bc:f9:55:1d:9d:10:3c:9f:9a:61:ff:4d:15: b4:a9:83:81:69:e8:47:56:11:22:03:c0:33:ae:83: 3a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:30:16:DF:A4:47:1F:59:81:E0:0E:ED:BA:EF:5B:80:03:DB:11:F9 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:19:85:0c:18:8e:3b:e2:73:a5:3a:e6:85:3f:de:cf:aa:4d: f7:9a:2b:47:6e:92:7e:cd:fa:66:6b:c9:b4:b8:8c:19:6c:57: 07:a2:e4:16:91:2e:13:77:33:96:0f:18:f2:83:cd:90:4a:2b: 69:2f:23:c7:b3:18:43:c1:52:a0:27:3e:25:8d:ba:cb:5e:b9: 89:91:81:41:0c:18:5d:f2:e8:a2:3b:4e:12:b7:7f:16:60:04: 85:ee:80:91:b3:39:5a:cd:55:50:ec:fe:93:e0:a2:30:30:63: 7e:7d:9e:9f:91:07:2f:40:cb:f4:64:a2:1d:d0:b4:ca:b6:82: 75:de:23:2e:03:db:f6:76:83:a5:7e:9c:a3:a0:82:e0:dc:24: 99:5d:20:38:6c:15:fb:64:4d:ee:e2:1c:4d:07:80:17:99:de: 51:a0:e3:17:77:14:f8:75:bc:78:10:0a:cb:67:39:c8:97:b3: 12:aa:16:fb:ca:37:23:8a:d2:5c:76:9a:3e:c9:45:6c:1f:72: cd:0c:f8:89:b1:f3:be:60:76:9d:bc:08:1c:c6:47:f6:e7:0f: 3d:b1:ec:1d:d5:27:37:8f:66:5a:14:3e:30:01:84:62:5f:82: ea:2f:49:c1:da:c6:f0:7b:c6:5a:23:9e:c4:00:09:98:58:18: 6d:b9:84:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUxMTA0MjAxNjE5WhcNMjUxMTExMjAxNjE5WjAYMRYwFAYD VQQDEw02OTBhNWYxMy1mMWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqPbPe+1aMRKEypuv/wBmpZ7ooVc4cQa38LvZ4UzwRQYx2ne/smNeG2ThsO/ 5fwPpdP7v2cFf/4YwV7Bb9AR7aBjX+k8gGqGtiqb/Ft33Pof/F0KP9p9lYgtTG2Q JNvp7935CUI/TIYF9qLD3HpbFjIenZju3/IvDwcC4GsbuHksr49iqTJUF5qX8hYr JCfuRSzZH5jMqIdLJVGCvirjdnvgEPN5S1nFBR49V1Zfihq/mOJ9mFfPPqYZ4WGl EFQRoCK2Qrj7GlS0A/38e5j+3IWVQmle/gz4rQPyVQ+Fcy1NaLz5VR2dEDyfmmH/ TRW0qYOBaehHVhEiA8AzroM6gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcwFt+k Rx9ZgeAO7brvW4AD2xH5MB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdGYUMGI474nOlOuaFP97Pqk33mitHbpJ+zfpma8m0uIwZbFcHouQW kS4TdzOWDxjyg82QSitpLyPHsxhDwVKgJz4ljbrLXrmJkYFBDBhd8uiiO04St38W YASF7oCRszlazVVQ7P6T4KIwMGN+fZ6fkQcvQMv0ZKId0LTKtoJ13iMuA9v2doOl fpyjoILg3CSZXSA4bBX7ZE3u4hxNB4AXmd5RoOMXdxT4dbx4EArLZznIl7MSqhb7 yjcjitJcdpo+yUVsH3LNDPiJsfO+YHadvAgcxkf25w89sewd1Sc3j2ZaFD4wAYRi X4LqL0nB2sbwe8ZaI57EAAmYWBhtuYQQ -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:36 2025 by rpki-client