$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: C2BwhiClO9YHu0wCsGF26vBeZHuCuYYDfPd472BbAEQ= Subject key identifier: F6:65:27:34:4B:58:EF:AB:C3:18:34:91:E0:63:72:4F:C2:D8:E0:68 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 2243 Signing time: Fri 31 Oct 2025 15:54:50 +0000 Manifest this update: Fri 31 Oct 2025 15:54:50 +0000 Manifest next update: Fri 07 Nov 2025 15:54:50 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: q8JqTNbX8K2x/1oD+T55kDCsKgDKyaB32HfUpIgYXTY=) 2: BC5760CCA5D111F0920A5141C4F9AE02.roa (hash: zr98exTbiR01RVEMn168wagRdGn/6JpqbLvEV4Hy3Ys=) 3: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: SkqOP3HGJvJNACUcXS+nN5Zr4p2eXR8/AXO6wYAFnB4=) 4: B6193EAEA9C511F09E184A44C4F9AE02.roa (hash: ICS/kSmPGxTeB3htB7GP0dydiPm6U9ECVjxjKP8r5ms=) 5: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: I206azeDw7188f2RrvVA5wF12wBicT93JJVfui6x0u0=) 6: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: ErUpQfksEEfKD74XB+FFiaOlKOxRk0KEFfC9SCixKUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 15:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8832 (0x2280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Oct 31 15:54:50 2025 GMT Not After : Nov 7 15:54:50 2025 GMT Subject: CN=6904dbca-066e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:fd:aa:ca:55:d0:a2:3e:0d:6f:bd:53:25: 00:17:a2:55:2f:28:b2:94:bc:ba:ca:c9:70:d3:2c: bf:bf:61:70:97:c6:31:62:95:1f:9d:f5:dc:c5:ce: 08:3f:c2:a3:4a:6f:35:ee:28:12:23:a6:66:3d:dc: 1f:37:0e:ed:0a:71:a6:9e:11:ce:49:8a:a7:7d:36: bd:99:54:69:13:4d:19:70:35:77:38:dd:a2:bf:20: 98:9b:34:46:21:d5:d1:8f:35:8a:f8:27:65:26:95: b0:4a:9e:35:44:86:7c:3f:74:0f:2b:a5:1e:6f:7c: 75:b3:74:40:7b:03:70:8a:4c:fa:c8:d6:3c:db:f3: 03:d7:80:1f:2c:32:7d:7d:00:e8:18:3e:db:e2:96: 7d:a0:9d:4d:23:0a:f0:3d:44:24:4b:4e:b2:63:bb: ab:60:4e:49:81:9f:c3:4a:69:0a:83:2f:af:45:ee: 32:38:c8:b6:39:1b:5b:95:37:90:f2:c9:50:20:5a: d6:67:74:8d:49:0f:d2:76:44:33:30:f9:e5:93:cd: 10:9d:a4:55:11:65:d5:86:0d:9d:ee:2e:b2:16:bb: f8:28:8c:96:1f:20:e1:64:9d:15:b5:9e:ca:ef:f3: 95:6e:e6:32:41:3f:77:3b:06:12:f8:93:cf:49:b2: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:65:27:34:4B:58:EF:AB:C3:18:34:91:E0:63:72:4F:C2:D8:E0:68 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:d3:46:81:12:f3:bc:9f:c9:84:0b:41:cf:01:09:80:f1:73: 6f:8f:87:95:ae:18:99:14:98:3a:e3:8e:1a:8f:cc:58:44:69: 26:73:26:20:83:fd:e5:3a:99:73:35:ba:c1:03:dd:a7:ff:fd: 7c:4f:98:d7:67:cd:d8:d3:13:5c:33:ed:b8:48:29:00:b6:24: 0a:d0:73:13:e8:ec:1d:c9:d9:22:f2:e3:fb:02:09:c2:45:a0: 91:c0:1b:d8:86:8e:d8:7f:6a:87:94:be:45:8b:21:4f:01:36: 30:64:b9:6c:e7:39:5b:99:d0:de:ec:4e:a3:2a:83:a2:f3:fd: bc:34:d8:55:ff:d7:d5:94:7b:72:fd:15:9d:e9:d4:8c:83:b2: b6:5a:37:05:70:9a:ff:af:07:bc:3f:cc:86:e4:f2:99:76:39: 4c:fe:7e:ea:16:4d:cb:58:2e:8f:d8:2f:e4:1a:26:6c:7f:f6: 30:72:e8:69:b8:6e:a3:0a:d4:24:23:90:aa:b8:c5:71:77:19: 92:0d:82:d0:a8:06:8b:65:e1:16:56:c4:7a:49:b9:ec:65:3b: 86:c0:ee:e5:42:ba:f4:db:71:7b:78:eb:81:6b:14:ff:c4:8b: 49:59:ba:24:f7:79:a2:d9:a1:3a:5c:84:aa:24:04:d0:ea:0f: a6:d4:01:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUxMDMxMTU1NDUwWhcNMjUxMTA3MTU1NDUwWjAYMRYwFAYD VQQDEw02OTA0ZGJjYS0wNjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl/9qspV0KI+DW+9UyUAF6JVLyiylLy6yslw0yy/v2Fwl8YxYpUfnfXcxc4I P8KjSm817igSI6ZmPdwfNw7tCnGmnhHOSYqnfTa9mVRpE00ZcDV3ON2ivyCYmzRG IdXRjzWK+CdlJpWwSp41RIZ8P3QPK6Ueb3x1s3RAewNwikz6yNY82/MD14AfLDJ9 fQDoGD7b4pZ9oJ1NIwrwPUQkS06yY7urYE5JgZ/DSmkKgy+vRe4yOMi2ORtblTeQ 8slQIFrWZ3SNSQ/SdkQzMPnlk80QnaRVEWXVhg2d7i6yFrv4KIyWHyDhZJ0VtZ7K 7/OVbuYyQT93OwYS+JPPSbJKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZlJzRL WO+rwxg0keBjck/C2OBoMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT00aBEvO8n8mEC0HPAQmA8XNvj4eVrhiZFJg6444aj8xYRGkmcyYg g/3lOplzNbrBA92n//18T5jXZ83Y0xNcM+24SCkAtiQK0HMT6Owdydki8uP7AgnC RaCRwBvYho7Yf2qHlL5FiyFPATYwZLls5zlbmdDe7E6jKoOi8/28NNhV/9fVlHty /RWd6dSMg7K2WjcFcJr/rwe8P8yG5PKZdjlM/n7qFk3LWC6P2C/kGiZsf/Ywcuhp uG6jCtQkI5CquMVxdxmSDYLQqAaLZeEWVsR6SbnsZTuGwO7lQrr023F7eOuBaxT/ xItJWbok93mi2aE6XISqJATQ6g+m1AEn -----END CERTIFICATE-----Generated at Sun Nov 2 06:19:06 2025 by rpki-client