$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: oxwU4Q1p/LQxBjTiPjrQzqZIuakWGkrHvjjzij2wRSc= Subject key identifier: 7A:40:80:C2:61:4C:69:DB:12:C0:5E:D4:BF:90:44:DC:16:67:99:0A Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 3456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3439 Signing time: Sun 02 Nov 2025 15:21:12 +0000 Manifest this update: Sun 02 Nov 2025 15:21:12 +0000 Manifest next update: Sun 09 Nov 2025 15:21:12 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: 2NxjSUAG36B8vhmFjE33cE2LkbdLPGNdooRB78SvgGY=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13398 (0x3456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Nov 2 15:21:12 2025 GMT Not After : Nov 9 15:21:12 2025 GMT Subject: CN=690776e8-9bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:22:93:81:32:cd:9e:32:9c:6c:e7:6b:39:8b: 25:7c:7d:0a:b2:a1:2a:9c:56:84:9c:df:ab:1f:b4: 3d:0c:b0:54:1a:d0:26:c7:82:9d:ae:2d:48:4f:a6: 9b:18:ac:ea:2c:aa:f1:d9:1e:fd:2d:7e:58:d5:07: 8b:5c:e3:a0:de:4c:7d:1e:a4:ef:c8:4d:d2:1e:9a: 69:72:fa:91:dc:f7:11:88:65:ec:51:94:56:ce:6c: 0f:8c:19:93:91:58:b2:4c:74:10:91:f8:4e:82:c6: 69:61:07:a0:c1:ab:b6:e1:e3:8d:84:0e:04:29:64: cc:cf:71:cd:68:d1:81:bb:7a:dc:2f:f2:d8:e1:86: c0:e6:94:4f:6e:93:08:3b:02:83:c3:37:be:7c:26: f3:9d:f1:2f:78:78:7b:63:38:4a:83:cf:81:14:06: 04:06:16:e7:34:56:f3:61:8d:71:2f:4f:cb:35:70: b9:2b:ef:ac:a5:03:7a:8f:1b:73:14:73:3f:47:f5: 5e:1f:53:07:ea:78:bb:15:c1:97:7f:90:42:56:d1: 60:04:b4:2f:93:e6:91:b4:c4:f8:4c:33:f0:79:c6: 65:3c:4d:d4:47:6c:ac:ea:c6:2b:1c:c1:48:d4:01: f7:50:f7:78:ab:94:70:ac:d8:1c:22:47:8b:4a:09: 7c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:40:80:C2:61:4C:69:DB:12:C0:5E:D4:BF:90:44:DC:16:67:99:0A X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b2:0b:87:6b:fe:bf:d9:3e:40:cf:ed:6b:34:0a:07:1d:57: 3c:dc:36:6f:32:77:3e:48:25:9f:74:fd:43:12:4b:5d:a3:15: 26:ba:f5:b2:97:92:71:26:c5:bb:4a:ec:3f:15:fa:d4:8b:fd: 82:04:6b:07:67:5b:ab:07:e2:a9:e4:93:f1:5e:45:fc:7f:a1: 45:5c:d8:90:40:25:04:c3:0c:ef:5b:96:b8:c5:6b:19:6b:32: e7:c9:f2:43:02:b3:cf:ef:49:94:a4:38:99:40:03:1f:72:9b: bb:d4:00:b7:c5:33:8b:d1:1e:a0:fd:63:e3:f5:eb:01:23:4a: a3:e2:52:3c:76:4a:97:f9:6a:98:11:1c:76:f2:3e:71:8e:c6: a4:76:63:80:a2:66:cc:2f:9d:e4:a9:d5:d2:0c:d8:f9:06:f1: 5c:3f:68:a0:98:28:fb:d7:cb:6f:a1:12:e6:9c:79:75:e5:7f: fa:5c:33:99:d4:fa:df:77:12:22:40:6c:a9:63:71:57:f0:f2: 8a:f2:e3:78:b1:c9:94:dd:c3:bf:a4:fa:d8:2d:4c:5d:19:47: ce:1d:75:97:2e:ec:b0:e8:08:fa:f1:d9:b5:22:de:92:10:de: 4d:82:c7:37:36:4f:ec:24:c1:3a:c7:4b:2e:6e:fb:63:4c:49: 51:45:07:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUxMTAyMTUyMTEyWhcNMjUxMTA5MTUyMTEyWjAYMRYwFAYD VQQDEw02OTA3NzZlOC05YmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviKTgTLNnjKcbOdrOYslfH0KsqEqnFaEnN+rH7Q9DLBUGtAmx4Kdri1IT6ab GKzqLKrx2R79LX5Y1QeLXOOg3kx9HqTvyE3SHpppcvqR3PcRiGXsUZRWzmwPjBmT kViyTHQQkfhOgsZpYQegwau24eONhA4EKWTMz3HNaNGBu3rcL/LY4YbA5pRPbpMI OwKDwze+fCbznfEveHh7YzhKg8+BFAYEBhbnNFbzYY1xL0/LNXC5K++spQN6jxtz FHM/R/VeH1MH6ni7FcGXf5BCVtFgBLQvk+aRtMT4TDPwecZlPE3UR2ys6sYrHMFI 1AH3UPd4q5RwrNgcIkeLSgl8sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpAgMJh TGnbEsBe1L+QRNwWZ5kKMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFsguHa/6/2T5Az+1rNAoHHVc83DZvMnc+SCWfdP1DEktdoxUmuvWy l5JxJsW7Suw/FfrUi/2CBGsHZ1urB+Kp5JPxXkX8f6FFXNiQQCUEwwzvW5a4xWsZ azLnyfJDArPP70mUpDiZQAMfcpu71AC3xTOL0R6g/WPj9esBI0qj4lI8dkqX+WqY ERx28j5xjsakdmOAombML53kqdXSDNj5BvFcP2igmCj718tvoRLmnHl15X/6XDOZ 1PrfdxIiQGypY3FX8PKK8uN4scmU3cO/pPrYLUxdGUfOHXWXLuyw6Aj68dm1It6S EN5Ngsc3Nk/sJME6x0subvtjTElRRQcJ -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:53 2025 by rpki-client