$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft File: 29u3f7gUXp1EhgdPtz74TVSOpiI.mft (raw, json) Hash identifier: EU81k2ClatnO3qJoIG8AgpGfviBVn+gmkQk8+0XFTTY= Subject key identifier: B7:03:23:F9:A8:47:BD:BE:75:A6:51:A6:1B:48:B6:52:D5:5D:97:1B Authority key identifier: DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 Certificate issuer: /CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft Manifest number: 0116 Signing time: Wed 05 Nov 2025 05:01:00 +0000 Manifest this update: Wed 05 Nov 2025 05:00:59 +0000 Manifest next update: Wed 12 Nov 2025 05:00:59 +0000 Files and hashes: 1: 29u3f7gUXp1EhgdPtz74TVSOpiI.crl (hash: mnU4KXncvKPJkGHucg0LANabzHDS/rDVCF9+SK1H+S0=) 2: 5741EB0A159311EFA0CC790BC4F9AE02.roa (hash: 3KeKRAYcVLwnSbJoAYUDe3/acL2PtFihgbt3K89oRLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1511, serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Validity Not Before: Nov 5 05:00:59 2025 GMT Not After : Nov 12 05:00:59 2025 GMT Subject: CN=690ada0b-2a21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:05:96:dd:63:4f:9a:d4:9b:b4:cc:55:54:21: 0f:55:2d:e9:7c:86:b6:6e:da:a3:47:fb:51:1b:51: 80:e0:e9:bb:f2:7d:6e:7e:9c:2c:79:1c:c2:89:02: 77:46:7d:df:61:c6:ef:68:c4:9f:af:a2:7e:77:40: 56:94:f7:dc:26:a4:d9:65:20:af:a8:c0:1f:4b:0b: 45:a0:b3:9b:df:f0:8e:fd:ab:ea:00:f4:07:91:33: fb:af:3d:da:be:ac:a2:cd:34:87:bd:6a:71:b6:e2: a8:5d:b9:4b:27:e5:f2:39:da:1a:a2:3b:3c:66:c1: c6:30:67:eb:77:c0:21:c2:68:f2:a1:f4:76:a0:7c: 92:af:bc:3c:b9:b8:75:bb:c8:a8:bc:26:7b:c8:4b: 44:a1:3b:ed:51:d7:bc:07:29:db:be:d4:b4:f1:66: d4:90:6a:60:ce:c5:e1:34:34:38:94:eb:55:96:a5: 76:aa:77:8c:63:c4:2c:bf:c0:1c:e5:c9:e9:e0:c6: fa:cc:43:5f:38:f8:fd:10:1b:01:2c:ec:13:c3:97: c6:4d:2d:0a:0e:20:e4:4e:6e:be:a4:88:5f:3a:09: 5e:d4:12:4b:8e:44:a9:50:4a:2e:02:0f:c3:ba:5d: 8d:f3:60:b5:68:3f:64:80:8a:51:9b:67:03:be:43: 66:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:23:F9:A8:47:BD:BE:75:A6:51:A6:1B:48:B6:52:D5:5D:97:1B X509v3 Authority Key Identifier: keyid:DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:60:ce:87:c9:1e:6a:fd:64:5d:15:7f:13:1c:7e:a4:52:8c: 93:75:a5:bb:c2:b9:eb:81:2c:a5:94:39:f6:49:6c:a2:70:69: af:73:ca:d9:7a:0b:d5:6e:bf:96:fd:bd:cb:e4:b6:b4:bf:67: 93:57:c4:ea:9a:06:37:ab:83:ad:d4:63:9a:06:b3:90:9b:40: b3:92:f5:33:b2:9e:4c:50:fd:41:ea:3e:a5:7e:d7:af:7d:e2: 44:06:5e:6b:09:05:b4:ad:b6:84:79:c8:43:75:04:b7:14:2f: 48:63:4e:bb:8e:4b:69:b6:7c:d2:e7:73:fb:aa:9d:28:d4:ca: dc:dd:c1:d4:40:ac:26:1d:14:78:ed:e6:da:ed:29:22:3c:93: fd:a2:71:25:3f:3c:f6:8b:01:3a:4f:1d:cc:04:a9:cd:49:80: 52:46:a9:df:58:72:8d:77:06:e4:00:bf:3f:fb:01:d4:ba:dc: 3a:4d:64:b6:4a:6b:aa:1d:21:08:ff:0c:e0:0d:96:11:bd:f1: 9b:49:61:c4:f6:16:1f:70:43:a2:8e:19:8e:46:3c:86:d3:60: 1a:a1:00:78:3d:61:69:25:d8:e7:41:05:b9:cb:a7:4d:4c:2b: 1c:12:7a:10:9c:18:41:8a:9a:3c:66:3e:6f:94:7f:3b:a0:c1: 36:2a:1d:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE1MTExMTAvBgNVBAUTKERCREJCNzdGQjgxNDVFOUQ0NDg2MDc0RkI3M0VGODRE NTQ4RUE2MjIwHhcNMjUxMTA1MDUwMDU5WhcNMjUxMTEyMDUwMDU5WjAYMRYwFAYD VQQDEw02OTBhZGEwYi0yYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAWW3WNPmtSbtMxVVCEPVS3pfIa2btqjR/tRG1GA4Om78n1ufpwseRzCiQJ3 Rn3fYcbvaMSfr6J+d0BWlPfcJqTZZSCvqMAfSwtFoLOb3/CO/avqAPQHkTP7rz3a vqyizTSHvWpxtuKoXblLJ+XyOdoaojs8ZsHGMGfrd8AhwmjyofR2oHySr7w8ubh1 u8iovCZ7yEtEoTvtUde8BynbvtS08WbUkGpgzsXhNDQ4lOtVlqV2qneMY8Qsv8Ac 5cnp4Mb6zENfOPj9EBsBLOwTw5fGTS0KDiDkTm6+pIhfOgle1BJLjkSpUEouAg/D ul2N82C1aD9kgIpRm2cDvkNmIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcDI/mo R72+daZRphtItlLVXZcbMB8GA1UdIwQYMBaAFNvbt3+4FF6dRIYHT7c++E1UjqYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTUxMS84RDM0MzIzQzEz RjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhwMUVoZ2RQdHo3NFRWU09w aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI5dTNmN2dVWHAxRWhnZFB0ejc0VFZTT3BpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTUxMS84RDM0MzIzQzEzRjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhw MUVoZ2RQdHo3NFRWU09waUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1YM6HyR5q/WRdFX8THH6kUoyTdaW7wrnrgSyllDn2SWyicGmvc8rZ egvVbr+W/b3L5La0v2eTV8TqmgY3q4Ot1GOaBrOQm0CzkvUzsp5MUP1B6j6lftev feJEBl5rCQW0rbaEechDdQS3FC9IY067jktptnzS53P7qp0o1Mrc3cHUQKwmHRR4 7eba7SkiPJP9onElPzz2iwE6Tx3MBKnNSYBSRqnfWHKNdwbkAL8/+wHUutw6TWS2 SmuqHSEI/wzgDZYRvfGbSWHE9hYfcEOijhmORjyG02AaoQB4PWFpJdjnQQW5y6dN TCscEnoQnBhBipo8Zj5vlH87oME2Kh37 -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:53 2025 by rpki-client