$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: KQNFGnQOzLCv6LN41NjDWhLQJAWaSCYLdSRNQIqQDXo= Subject key identifier: 92:48:90:AA:6C:15:7C:B6:AA:BE:B3:5A:BC:45:1C:74:76:A7:2C:A6 Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: 013C Signing time: Mon 03 Nov 2025 04:30:15 +0000 Manifest this update: Mon 03 Nov 2025 04:30:15 +0000 Manifest next update: Mon 10 Nov 2025 04:30:15 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: Kbi5TcvpEWtao1H2WWO3XwmZLxdz95MD7h+cuRYFIvY=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: SK6ZvVianDlVw+18irRafax8Eg6g34dqTzqJORJNKeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498, serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Nov 3 04:30:15 2025 GMT Not After : Nov 10 04:30:15 2025 GMT Subject: CN=69082fd7-053f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:66:b7:23:62:fd:88:e2:07:be:d8:c9:49: c4:ee:bd:b7:a2:44:f7:52:aa:91:d5:0c:bc:17:87: 5f:80:18:6e:c6:4a:2b:63:09:2b:5e:df:52:53:f5: ef:0e:c0:da:09:d8:6d:b3:a4:8e:c8:4d:14:13:8c: 34:17:2a:b1:61:51:1f:c6:48:f7:aa:98:40:fa:bd: b9:2b:d2:a8:01:8e:ce:7e:06:5c:80:e4:be:8c:21: 71:7f:79:e1:d8:ca:e6:c2:19:2c:62:a4:1c:fa:db: ef:a6:6c:2c:79:31:c4:15:14:a3:05:e6:a6:c0:dc: 19:9a:0a:d9:94:de:d8:c4:d1:23:86:76:24:05:2a: e4:94:f0:69:11:2f:de:9e:55:65:35:94:72:ca:d6: b9:f4:2c:ea:52:fe:5a:14:ec:d2:79:8f:c0:73:a2: 22:15:dd:d9:33:56:fb:29:90:0c:c7:28:ad:12:6e: 5a:57:43:53:7b:28:0c:94:02:8a:0d:86:99:db:32: 1a:1d:48:53:36:ea:26:bd:7f:db:23:56:48:0d:f7: b8:44:fd:be:48:2f:81:e4:8b:2a:58:52:ea:54:dc: c2:86:c2:58:9b:75:24:37:90:9d:1e:10:2a:42:ef: f1:d7:0b:f0:57:2f:93:fa:55:fd:ce:46:9c:21:4f: 28:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:48:90:AA:6C:15:7C:B6:AA:BE:B3:5A:BC:45:1C:74:76:A7:2C:A6 X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:c3:5f:86:2b:67:60:96:ac:49:9d:8f:71:6d:9f:dc:39:ea: 13:4e:64:fe:13:78:17:0a:bb:c0:5f:af:01:5d:a9:8a:7b:cd: cb:06:c3:d7:3d:10:81:6d:ca:1d:4c:98:88:71:a0:62:14:2e: 71:58:a7:c0:d4:6d:87:dd:6b:97:a0:b2:f7:32:2f:be:85:23: 9f:52:06:24:0b:51:98:ef:41:02:fb:5f:9b:1f:2e:82:ed:bb: 62:cb:20:85:d0:b7:ed:60:46:0d:ae:15:12:16:b3:a9:57:74: 76:70:8e:d4:37:5e:c3:c9:19:5b:9a:3f:85:2f:43:99:4c:a1: d6:bc:43:62:26:cb:f9:f2:5d:0f:02:24:18:92:01:eb:dc:d9: 47:07:6b:2d:20:d6:b3:ae:78:c6:34:e6:9b:74:19:7a:a2:bb: 06:74:5b:88:f3:3c:4a:9d:e7:e3:eb:13:d8:2d:8c:06:08:fe: cb:66:b8:1f:7c:d9:b5:95:9e:a2:c9:f1:ae:45:0f:43:72:10: fa:d7:0a:57:3b:0c:91:b1:15:e2:7a:65:cc:d2:fa:10:09:d7: 32:0a:bb:45:42:fc:bc:a5:5c:41:79:ce:c7:38:5d:6a:35:2f: 53:8a:30:11:4d:2f:8a:61:68:81:a0:6c:e9:b0:39:e0:80:34: f9:1c:b6:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjUxMTAzMDQzMDE1WhcNMjUxMTEwMDQzMDE1WjAYMRYwFAYD VQQDEw02OTA4MmZkNy0wNTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRxmtyNi/YjiB77YyUnE7r23okT3UqqR1Qy8F4dfgBhuxkorYwkrXt9SU/Xv DsDaCdhts6SOyE0UE4w0FyqxYVEfxkj3qphA+r25K9KoAY7OfgZcgOS+jCFxf3nh 2MrmwhksYqQc+tvvpmwseTHEFRSjBeamwNwZmgrZlN7YxNEjhnYkBSrklPBpES/e nlVlNZRyyta59CzqUv5aFOzSeY/Ac6IiFd3ZM1b7KZAMxyitEm5aV0NTeygMlAKK DYaZ2zIaHUhTNuomvX/bI1ZIDfe4RP2+SC+B5IsqWFLqVNzChsJYm3UkN5CdHhAq Qu/x1wvwVy+T+lX9zkacIU8oVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJIkKps FXy2qr6zWrxFHHR2pyymMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTQ5OC9CM0M4QTk3Q0RGQjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4 cnRrOUNXcXhUSy1nZ1Y1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXw1+GK2dglqxJnY9xbZ/cOeoTTmT+E3gXCrvAX68BXamKe83LBsPX PRCBbcodTJiIcaBiFC5xWKfA1G2H3WuXoLL3Mi++hSOfUgYkC1GY70EC+1+bHy6C 7btiyyCF0LftYEYNrhUSFrOpV3R2cI7UN17DyRlbmj+FL0OZTKHWvENiJsv58l0P AiQYkgHr3NlHB2stINazrnjGNOabdBl6orsGdFuI8zxKnefj6xPYLYwGCP7LZrgf fNm1lZ6iyfGuRQ9DchD61wpXOwyRsRXiemXM0voQCdcyCrtFQvy8pVxBec7HOF1q NS9TijARTS+KYWiBoGzpsDnggDT5HLa6 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:26 2025 by rpki-client