$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: QCvYNMwjhdrQftxXA8SM2tpEa6btAAZsA9irtBkn0Dg= Subject key identifier: 3F:6E:B1:F3:C3:43:F5:DA:5A:EA:FB:9D:11:77:47:99:99:4C:C9:13 Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 0483 Signing time: Mon 03 Nov 2025 00:03:36 +0000 Manifest this update: Mon 03 Nov 2025 00:03:35 +0000 Manifest next update: Mon 10 Nov 2025 00:03:35 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: FlOWEpU/6uEekhIWx8sVXvUTmb6a9ydSntK1uxj+MK8=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:03:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Nov 3 00:03:35 2025 GMT Not After : Nov 10 00:03:35 2025 GMT Subject: CN=6907f158-f4a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:83:8e:4e:cc:bf:2d:fe:3a:bc:5b:8a:fa:dc: c4:94:72:2c:91:b1:ee:89:0c:03:f0:d1:51:60:13: 61:74:8c:e2:38:70:9b:60:90:f6:7c:7b:e7:81:bb: eb:25:22:4b:67:24:53:ac:b7:dd:79:3b:6f:8d:c7: 9f:c3:94:62:82:c9:1f:61:16:5e:d2:06:30:49:0a: 24:4f:a0:5b:e3:a8:9b:49:ba:20:29:fd:f8:5b:6f: 32:7a:83:aa:c1:5b:86:c5:fb:26:3b:74:01:ac:12: 75:3f:08:4c:1d:5c:f3:01:70:39:17:ea:ad:24:3c: ab:16:ab:41:f2:12:61:dd:b4:84:15:11:11:fb:38: b2:9e:82:0b:67:e0:00:86:c0:04:94:3a:f6:de:6c: 78:59:ba:95:4e:c9:7b:19:31:7e:2e:fc:6f:f5:27: f7:3e:9d:c9:cd:09:56:95:b7:bb:aa:76:e2:63:0d: 14:48:61:31:5b:86:45:61:a9:a3:41:58:a5:29:18: 51:67:14:13:3c:61:d7:5d:28:47:c0:23:f2:23:65: 65:44:5b:f2:86:c8:fe:64:b4:84:03:b6:2a:f6:f4: 74:94:7e:17:f1:4e:d3:0d:ef:c3:82:2a:e2:9a:4c: 35:11:ed:4b:03:8e:55:6a:27:37:22:a2:ca:c6:0d: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6E:B1:F3:C3:43:F5:DA:5A:EA:FB:9D:11:77:47:99:99:4C:C9:13 X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:af:31:66:51:18:e1:35:0e:59:a4:fd:a1:0a:52:90:eb:0c: 2c:60:27:e5:6a:07:f5:af:89:e9:aa:64:a0:15:58:49:9e:99: e4:0b:80:1d:81:9c:69:92:19:83:62:2a:5c:cf:23:0c:cb:5c: 1b:0b:70:a9:06:de:53:a6:f6:c1:b2:92:ef:61:dc:f1:0a:e6: d2:f6:b3:e6:c4:10:1c:80:4a:36:86:5f:e4:88:41:e0:06:f4: 80:cb:55:7f:18:70:f1:fd:12:6d:ad:8c:9c:87:1a:ad:a6:c9: 1c:26:32:d9:e2:30:00:82:de:92:87:de:56:4e:f1:5d:5a:d2: fb:b9:c1:af:d5:17:c5:5f:ff:08:0e:2b:d3:dd:ab:85:65:b5: 2b:92:71:25:80:3e:11:7a:b9:0c:34:ba:08:ae:de:17:ae:40: 45:01:9c:d5:dd:0c:4a:43:3b:02:f8:78:32:b0:7d:0d:2f:5a: 2a:ef:4b:44:78:ae:0a:76:22:dd:01:3f:e4:4d:85:80:6a:b9: d6:98:b1:55:48:87:ba:0e:a3:9c:9b:00:aa:30:48:83:18:b0: c9:a4:9b:7f:b2:86:23:e6:d5:0e:84:db:25:49:a0:10:81:2e: 16:a0:24:16:94:a3:69:92:2b:ae:a6:bd:2f:69:d5:f4:4a:19: 14:a3:e7:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUxMTAzMDAwMzM1WhcNMjUxMTEwMDAwMzM1WjAYMRYwFAYD VQQDEw02OTA3ZjE1OC1mNGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoOOTsy/Lf46vFuK+tzElHIskbHuiQwD8NFRYBNhdIziOHCbYJD2fHvngbvr JSJLZyRTrLfdeTtvjcefw5RigskfYRZe0gYwSQokT6Bb46ibSbogKf34W28yeoOq wVuGxfsmO3QBrBJ1PwhMHVzzAXA5F+qtJDyrFqtB8hJh3bSEFRER+ziynoILZ+AA hsAElDr23mx4WbqVTsl7GTF+Lvxv9Sf3Pp3JzQlWlbe7qnbiYw0USGExW4ZFYamj QVilKRhRZxQTPGHXXShHwCPyI2VlRFvyhsj+ZLSEA7Yq9vR0lH4X8U7TDe/Dgiri mkw1Ee1LA45Vaic3IqLKxg3N+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9usfPD Q/XaWur7nRF3R5mZTMkTMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTrzFmURjhNQ5ZpP2hClKQ6wwsYCflagf1r4npqmSgFVhJnpnkC4Ad gZxpkhmDYipczyMMy1wbC3CpBt5TpvbBspLvYdzxCubS9rPmxBAcgEo2hl/kiEHg BvSAy1V/GHDx/RJtrYychxqtpskcJjLZ4jAAgt6Sh95WTvFdWtL7ucGv1RfFX/8I DivT3auFZbUrknElgD4RerkMNLoIrt4XrkBFAZzV3QxKQzsC+HgysH0NL1oq70tE eK4KdiLdAT/kTYWAarnWmLFVSIe6DqOcmwCqMEiDGLDJpJt/soYj5tUOhNslSaAQ gS4WoCQWlKNpkiuupr0vadX0ShkUo+eq -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:32 2025 by rpki-client