$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: +NCgFZ2wmZet0RTyyxA5SlWoE5ADd4xkHTH0LYKJsHA= Subject key identifier: A7:3E:DC:85:8D:F1:9E:63:A1:82:D1:EA:85:A7:CB:B9:AF:1E:54:F1 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 08F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 08EA Signing time: Sun 02 Nov 2025 20:19:45 +0000 Manifest this update: Sun 02 Nov 2025 20:19:44 +0000 Manifest next update: Sun 09 Nov 2025 20:19:44 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: TruB8G4FujZ0ImiPKeZz4M23DoMiym+bCsRisNYPJYA=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2290 (0x8f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: Nov 2 20:19:44 2025 GMT Not After : Nov 9 20:19:44 2025 GMT Subject: CN=6907bce0-57bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1a:0d:d6:e9:69:98:91:3c:16:01:23:50:d7: 30:9a:81:99:6c:99:36:9c:e4:f4:59:a9:81:8f:18: 4b:e2:f4:36:10:e1:97:4b:98:a5:67:d9:f7:89:d7: f9:b0:e1:86:48:59:69:74:16:04:38:0a:c6:a7:02: df:4e:36:82:b6:38:a9:ba:ca:05:b4:d3:1e:21:ca: f3:e3:84:23:2c:3f:2b:9e:49:62:b9:38:5a:84:83: 36:64:56:59:ed:49:ff:bd:8f:02:15:58:c8:dd:4d: 6e:0f:6b:e3:93:05:9c:07:90:29:5b:ba:f4:a9:b0: ef:21:18:f5:3d:b4:a2:8c:e9:72:78:0e:fc:93:74: 07:88:76:53:9b:ff:0f:9e:c8:42:15:16:74:a2:e6: 5d:ba:6f:9c:2f:4b:83:8b:fc:91:9c:c7:fb:9c:93: e6:05:b6:d3:30:03:93:aa:23:4d:70:2f:20:d0:15: 4d:50:14:db:d1:55:2a:3e:de:e2:46:8f:33:d1:55: fc:a0:12:a2:53:c4:4e:2a:c6:d8:11:73:4d:76:ab: 8b:32:69:4f:3d:fc:da:ff:ff:43:d6:ce:81:17:82: ad:f2:96:e2:c7:f7:5f:36:42:91:16:b4:2a:ac:84: 3f:0a:3c:96:34:73:1c:e2:16:a3:81:4f:76:96:d6: 93:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3E:DC:85:8D:F1:9E:63:A1:82:D1:EA:85:A7:CB:B9:AF:1E:54:F1 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c3:4b:c6:e7:d2:84:b4:31:e5:17:b5:74:07:6f:8a:c1:ca: 3c:ef:a9:09:81:b0:9b:dd:2b:bc:f4:9d:c4:1f:0a:ee:49:8e: cf:6e:8d:74:c9:0c:64:26:49:28:7c:05:60:aa:fe:57:18:7d: 4c:0c:c6:5e:38:f7:0b:10:a0:75:94:1a:3e:28:4c:b5:e8:c8: 4b:fd:7e:e3:06:bb:55:ea:03:d0:0a:03:e8:75:a8:8b:31:d7: 4f:2a:b5:cf:6d:82:3f:ff:38:bd:f9:85:32:b0:2a:a4:94:8e: aa:1b:04:dc:44:de:c3:38:88:f4:b2:0e:44:e2:ee:13:af:77: 6a:47:9f:1c:5e:ea:40:80:28:47:55:71:26:39:cd:9e:b8:4a: 2d:59:da:7c:ef:b6:6b:33:b7:80:d5:1e:7d:12:cb:3f:6d:5c: ee:c0:cb:11:2b:06:f9:da:86:a0:3b:ff:57:85:8d:3a:98:85: 44:fb:ec:dc:b3:93:86:51:bb:e4:48:0a:9a:cc:8c:51:6a:6f: 49:0a:df:4a:9e:41:ef:2f:df:be:d3:d9:40:89:c9:4e:c4:39: 20:c9:86:96:47:f9:28:a0:d7:20:59:05:e9:59:60:26:5a:30: 2a:bd:ae:45:c3:56:26:fe:ba:f8:d9:3d:4a:68:b3:ef:98:09: 59:b9:bc:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUxMTAyMjAxOTQ0WhcNMjUxMTA5MjAxOTQ0WjAYMRYwFAYD VQQDEw02OTA3YmNlMC01N2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BoN1ulpmJE8FgEjUNcwmoGZbJk2nOT0WamBjxhL4vQ2EOGXS5ilZ9n3idf5 sOGGSFlpdBYEOArGpwLfTjaCtjipusoFtNMeIcrz44QjLD8rnkliuThahIM2ZFZZ 7Un/vY8CFVjI3U1uD2vjkwWcB5ApW7r0qbDvIRj1PbSijOlyeA78k3QHiHZTm/8P nshCFRZ0ouZdum+cL0uDi/yRnMf7nJPmBbbTMAOTqiNNcC8g0BVNUBTb0VUqPt7i Ro8z0VX8oBKiU8ROKsbYEXNNdquLMmlPPfza//9D1s6BF4Kt8pbix/dfNkKRFrQq rIQ/CjyWNHMc4hajgU92ltaT4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc+3IWN 8Z5joYLR6oWny7mvHlTxMB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvw0vG59KEtDHlF7V0B2+Kwco876kJgbCb3Su89J3EHwruSY7Pbo10 yQxkJkkofAVgqv5XGH1MDMZeOPcLEKB1lBo+KEy16MhL/X7jBrtV6gPQCgPodaiL MddPKrXPbYI//zi9+YUysCqklI6qGwTcRN7DOIj0sg5E4u4Tr3dqR58cXupAgChH VXEmOc2euEotWdp877ZrM7eA1R59Ess/bVzuwMsRKwb52oagO/9XhY06mIVE++zc s5OGUbvkSAqazIxRam9JCt9KnkHvL9++09lAiclOxDkgyYaWR/kooNcgWQXpWWAm WjAqva5Fw1Ym/rr42T1KaLPvmAlZubxl -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:08 2025 by rpki-client