$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: /WQSl7eA8DkBmPLdDXdPcyXolcX1UjpE5Va1W0YXrCs= Subject key identifier: 62:6C:E1:31:14:4C:5B:06:EB:BE:CB:1E:0A:28:B7:C5:37:C0:D0:AD Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 08A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0899 Signing time: Tue 04 Nov 2025 20:37:30 +0000 Manifest this update: Tue 04 Nov 2025 20:37:30 +0000 Manifest next update: Tue 11 Nov 2025 20:37:30 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: V0AgiQZ9nUnMuUosCS5GU4uJ871NOrth/bPZE2gzgMk=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: YDlJJK3r3QY2jge7AOb3CYnCW+wC8nrMDrmyeODCDi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2210 (0x8a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Nov 4 20:37:30 2025 GMT Not After : Nov 11 20:37:30 2025 GMT Subject: CN=690a640a-a380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d4:02:3b:97:e4:2b:84:db:b8:ff:1c:3f:24: d9:92:50:1c:ca:93:92:f4:a2:74:b7:d9:b0:ee:3d: ee:ba:07:eb:1c:e6:27:2d:f6:5c:d7:07:7f:26:e5: 08:e3:4d:1f:d5:1e:d3:37:32:6b:30:45:26:6a:81: cb:f0:20:04:82:e5:0d:64:c1:bb:d7:7c:77:5b:82: d5:a1:9e:a1:35:90:e1:99:30:6f:c7:4c:b2:8a:07: 21:3b:67:1d:0e:10:55:e7:d3:8e:19:64:71:c1:56: 5f:a7:f5:a6:b1:f9:65:54:d5:bb:2d:81:75:96:5b: e6:08:92:ff:30:94:1f:23:59:ea:45:4f:76:4d:f0: a1:ca:79:b1:1b:8f:e2:e9:8b:64:a0:5e:e6:b0:d3: cd:ec:16:cf:7f:2b:a2:0f:76:f2:50:21:51:aa:a3: 14:c0:20:f5:39:42:b5:23:5c:95:b5:e4:34:5d:ed: 38:1a:f4:1d:b9:5b:01:c2:7b:f2:15:5e:08:5a:55: 10:46:07:af:2e:8c:1a:51:bf:eb:87:2b:00:39:90: ee:e6:ca:d3:e4:2a:6e:bb:84:44:1c:8c:77:09:f9: d0:66:27:f3:c7:8c:86:fa:3c:4b:cb:e8:c0:f2:bc: 71:09:ad:fd:d4:42:18:67:d2:dd:e6:b8:63:69:e6: 58:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:6C:E1:31:14:4C:5B:06:EB:BE:CB:1E:0A:28:B7:C5:37:C0:D0:AD X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:24:99:2e:39:10:8c:4c:c6:70:7f:11:a0:5a:ae:50:4c:73: 0c:0c:16:cd:da:b6:cc:49:fe:50:2f:94:f7:9c:6b:7b:06:1e: 63:e6:de:71:18:88:52:2d:92:e7:2f:0f:c5:c7:c9:71:15:73: e7:39:e6:23:c6:fa:24:a4:b9:2c:3a:95:d2:8a:a8:84:be:4f: 88:f2:51:53:8d:ff:4c:f1:ad:04:88:66:41:a6:4b:26:5e:00: a3:d2:36:73:95:7b:95:bd:06:3b:bf:b6:c7:3a:5e:54:58:09: 32:25:bd:97:d6:11:38:ab:d2:95:31:61:c6:a0:d4:d4:a3:0e: 16:f4:6b:26:ee:bc:97:12:c2:c3:3c:39:8b:64:a2:36:77:2f: e6:74:03:f6:dd:e0:0a:11:2f:e7:ef:6a:86:49:35:4d:de:2b: 64:44:1e:39:af:b0:1f:92:cb:da:cd:20:31:a7:2d:b3:dc:c8: da:91:41:49:43:ab:c7:4a:ab:f5:3e:e3:ae:9a:af:9b:9a:9e: 4f:fa:44:44:b0:ea:1b:35:be:6e:73:c3:6a:58:bb:ed:47:7d: 02:4c:64:09:54:09:f5:0e:03:0a:69:c7:58:85:3a:f6:20:47: bd:d9:78:ff:bb:02:ce:ce:48:da:30:a1:04:d0:01:7f:10:74: a6:97:b7:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUxMTA0MjAzNzMwWhcNMjUxMTExMjAzNzMwWjAYMRYwFAYD VQQDEw02OTBhNjQwYS1hMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNQCO5fkK4TbuP8cPyTZklAcypOS9KJ0t9mw7j3uugfrHOYnLfZc1wd/JuUI 400f1R7TNzJrMEUmaoHL8CAEguUNZMG713x3W4LVoZ6hNZDhmTBvx0yyigchO2cd DhBV59OOGWRxwVZfp/WmsfllVNW7LYF1llvmCJL/MJQfI1nqRU92TfChynmxG4/i 6YtkoF7msNPN7BbPfyuiD3byUCFRqqMUwCD1OUK1I1yVteQ0Xe04GvQduVsBwnvy FV4IWlUQRgevLowaUb/rhysAOZDu5srT5Cpuu4REHIx3CfnQZifzx4yG+jxLy+jA 8rxxCa391EIYZ9Ld5rhjaeZY/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJs4TEU TFsG677LHgoot8U3wNCtMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwJJkuORCMTMZwfxGgWq5QTHMMDBbN2rbMSf5QL5T3nGt7Bh5j5t5x GIhSLZLnLw/Fx8lxFXPnOeYjxvokpLksOpXSiqiEvk+I8lFTjf9M8a0EiGZBpksm XgCj0jZzlXuVvQY7v7bHOl5UWAkyJb2X1hE4q9KVMWHGoNTUow4W9Gsm7ryXEsLD PDmLZKI2dy/mdAP23eAKES/n72qGSTVN3itkRB45r7AfksvazSAxpy2z3MjakUFJ Q6vHSqv1PuOumq+bmp5P+kREsOobNb5uc8NqWLvtR30CTGQJVAn1DgMKacdYhTr2 IEe92Xj/uwLOzkjaMKEE0AF/EHSml7er -----END CERTIFICATE-----Generated at Wed Nov 5 19:34:02 2025 by rpki-client