$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: ot0OvBqqIygptCwmDx8FQCWDrTSA+Q2tKOuzeLAX/t4= Subject key identifier: 89:25:E4:4D:D1:EC:D3:0F:DE:C7:10:37:1F:74:C0:9F:82:08:60:E6 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B2B Signing time: Tue 04 Nov 2025 19:22:28 +0000 Manifest this update: Tue 04 Nov 2025 19:22:28 +0000 Manifest next update: Tue 11 Nov 2025 19:22:28 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: ocuij1CNVGcmk7CiZQf7SAvp0ygeD/UwVQz+3An3txs=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 7dou7EZJS0k+10u39gMW4DiImFVNtTINLLrPstsJeHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Nov 4 19:22:28 2025 GMT Not After : Nov 11 19:22:28 2025 GMT Subject: CN=690a5274-2698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:19:50:e4:0e:a4:a1:72:6a:97:04:8d:f9:d1: 0c:97:ed:31:8e:fc:14:ba:67:af:98:81:30:b9:53: 79:4b:d0:25:ca:e4:97:b6:c0:1e:ff:87:d4:28:0b: d3:27:ea:ab:eb:c5:cb:2f:32:d7:c8:93:c2:16:ac: 56:79:97:a5:2c:67:cc:78:f8:16:6b:e1:d6:b1:2d: 3b:61:3f:0f:69:2d:e2:86:56:fb:b1:d6:a5:2f:2d: 1c:ad:63:32:83:ca:a0:d2:1b:a6:2a:b6:5e:cb:ef: fc:6f:c1:72:db:b3:1a:8f:9d:e5:7c:9e:32:36:2f: be:e6:0a:24:19:18:7f:8c:18:69:47:b2:ce:70:cc: b9:25:b7:80:5a:5f:9a:c7:67:a3:03:79:7e:33:42: 17:7e:41:0b:50:6e:6e:d0:28:d2:5d:46:bd:d5:fd: 40:ab:f2:b8:72:12:21:2e:f1:32:2c:5d:c9:10:e0: 4f:01:57:f5:13:f7:ae:f5:4b:63:55:3e:0e:49:5a: 4c:fb:d0:21:41:53:da:21:0d:29:ac:5a:a6:30:e1: ae:21:4e:ef:e0:fa:0f:a4:ae:ac:84:d4:20:ae:ed: 94:86:47:39:35:4f:1e:b9:05:1e:9a:1c:87:a8:f0: 4f:f8:0f:2d:e1:7f:3b:05:d1:b4:b8:05:d3:78:be: f2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:25:E4:4D:D1:EC:D3:0F:DE:C7:10:37:1F:74:C0:9F:82:08:60:E6 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5c:cf:35:01:a5:bb:87:9d:ff:c9:d6:b6:4e:c9:96:bd:f9: 33:3b:38:37:c4:d1:c3:cd:ec:ff:01:d7:d1:02:8d:d5:a7:16: 0d:94:c9:b6:51:34:3c:8f:02:14:5d:13:ae:5f:7d:3d:46:72: fb:e1:82:15:86:38:1f:8c:2e:ca:c8:1d:7b:61:36:a7:ca:c5: 52:e1:0e:ad:73:95:aa:ec:3d:32:f2:ee:fe:ab:5f:0e:27:4c: 0b:a2:5e:1b:e3:e6:02:c2:55:ea:bb:69:16:f2:bd:0d:f8:18: cb:96:b0:db:80:57:7a:53:7b:b8:49:ec:96:98:38:e0:09:5e: 45:82:88:aa:23:5c:75:16:ce:8d:74:32:7c:1f:1f:6e:91:18: a4:a9:b1:0b:80:91:c4:ec:9c:d1:b9:3b:96:31:cc:5f:b6:4b: c6:26:8b:d4:58:24:2b:08:4e:5a:56:5e:7c:35:c8:03:99:d3: 70:e0:16:b1:55:f4:2c:fa:81:9b:1a:9e:b2:91:18:8b:7b:f8: bf:71:11:d3:11:41:15:26:2d:7d:c6:17:ba:a8:dd:78:6e:8c: ad:7d:9f:c7:89:78:6d:69:25:a5:e0:f8:38:66:73:2e:9c:67: 5a:f8:47:6e:08:5e:83:d3:ea:35:8b:a7:8d:78:49:f4:17:4c: 7b:38:ce:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUxMTA0MTkyMjI4WhcNMjUxMTExMTkyMjI4WjAYMRYwFAYD VQQDEw02OTBhNTI3NC0yNjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBlQ5A6koXJqlwSN+dEMl+0xjvwUumevmIEwuVN5S9AlyuSXtsAe/4fUKAvT J+qr68XLLzLXyJPCFqxWeZelLGfMePgWa+HWsS07YT8PaS3ihlb7sdalLy0crWMy g8qg0humKrZey+/8b8Fy27Maj53lfJ4yNi++5gokGRh/jBhpR7LOcMy5JbeAWl+a x2ejA3l+M0IXfkELUG5u0CjSXUa91f1Aq/K4chIhLvEyLF3JEOBPAVf1E/eu9Utj VT4OSVpM+9AhQVPaIQ0prFqmMOGuIU7v4PoPpK6shNQgru2Uhkc5NU8euQUemhyH qPBP+A8t4X87BdG0uAXTeL7yfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkl5E3R 7NMP3scQNx90wJ+CCGDmMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqXM81AaW7h53/yda2TsmWvfkzOzg3xNHDzez/AdfRAo3VpxYNlMm2 UTQ8jwIUXROuX309RnL74YIVhjgfjC7KyB17YTanysVS4Q6tc5Wq7D0y8u7+q18O J0wLol4b4+YCwlXqu2kW8r0N+BjLlrDbgFd6U3u4SeyWmDjgCV5FgoiqI1x1Fs6N dDJ8Hx9ukRikqbELgJHE7JzRuTuWMcxftkvGJovUWCQrCE5aVl58NcgDmdNw4Bax VfQs+oGbGp6ykRiLe/i/cRHTEUEVJi19xhe6qN14boytfZ/HiXhtaSWl4Pg4ZnMu nGda+EduCF6D0+o1i6eNeEn0F0x7OM5B -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:10 2025 by rpki-client