$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: 0laDrl6J9uFRfxHhnGvkR11L2YKG/GtPgTUc6wD4MeM= Subject key identifier: 09:5A:44:64:02:A3:76:3E:5A:B1:70:34:00:C7:F1:6B:63:59:AC:B3 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 0125 Signing time: Mon 03 Nov 2025 04:47:39 +0000 Manifest this update: Mon 03 Nov 2025 04:47:38 +0000 Manifest next update: Mon 10 Nov 2025 04:47:38 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: EFO7BEkDzbV/CzCZFA7UhkqYbnQc/HF/aEXTnxsfGew=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Nov 3 04:47:38 2025 GMT Not After : Nov 10 04:47:38 2025 GMT Subject: CN=690833ea-86c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:1d:e1:62:33:52:c3:19:3d:36:cf:99:aa: b2:00:a8:13:a1:d4:21:97:f6:58:32:b3:14:a9:b4: 9f:f4:ae:53:b6:58:46:3e:86:29:75:ab:70:bc:45: 5a:63:2f:2e:23:38:74:92:d7:06:35:a2:1e:93:3a: 29:7c:ab:2d:79:2f:e1:57:d7:4d:48:53:b7:93:68: df:08:a3:9e:0b:cf:52:b2:16:16:14:f4:3f:30:c0: 4d:db:75:49:95:e5:d2:a0:34:ee:20:f5:34:17:d3: f6:e5:7b:6a:e6:59:da:e3:7e:3d:f0:91:f7:f8:4b: 55:82:28:7c:96:5b:1f:1d:17:95:ef:1c:a3:c8:e2: 66:cf:42:8a:39:f4:13:33:04:0b:c1:2b:ee:bc:ca: 5a:91:5a:f6:8b:81:10:e4:8c:45:a6:26:b9:12:30: 7a:00:f5:19:12:80:06:b5:7a:bd:e7:15:b1:a7:35: 07:9b:77:96:68:e6:3d:f8:6d:56:a3:ac:db:64:95: 51:fc:0b:59:85:b4:a5:62:93:b3:e3:71:b3:56:da: 94:c5:a4:d1:46:d3:0f:e7:d1:b1:2a:c8:ad:48:09: 69:6e:99:72:de:86:11:c9:0a:79:10:4c:1d:20:1a: 96:a1:89:aa:3b:a0:63:c0:43:ae:d8:96:f4:a2:15: d0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5A:44:64:02:A3:76:3E:5A:B1:70:34:00:C7:F1:6B:63:59:AC:B3 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:00:2b:89:bb:40:f0:95:e8:61:c2:b9:34:38:b3:82:e4:08: c3:e2:09:f8:f6:b4:e6:89:9d:11:f0:36:97:59:71:a2:09:5f: 30:a8:b5:94:0d:7f:b1:00:8b:24:64:ef:bf:bd:5e:68:16:04: 59:fa:22:d2:06:75:cc:0d:54:f3:c1:46:c0:9c:be:a1:f3:ca: 7d:59:71:b3:06:d0:21:47:6a:36:75:87:ba:f1:10:e4:21:c8: 71:ff:b6:58:60:67:b6:4a:4e:82:70:07:bf:14:ae:dd:1e:cf: 2b:9c:f1:7a:83:df:94:26:ef:3f:ea:c6:a8:e6:1f:1c:01:98: a5:92:7c:f0:ff:8d:4c:69:d5:93:bf:95:43:4b:0a:75:6b:88: 9b:16:9f:7e:4e:1e:f9:13:58:db:e7:8f:7d:82:3f:7d:91:19: 51:49:e2:95:02:25:79:4c:3b:48:92:75:b7:d1:4d:5c:dd:48: ab:61:32:60:f2:74:be:cb:7b:70:8d:bb:65:60:6d:03:1c:62: 19:39:57:63:6b:53:26:9f:fa:c2:4f:7b:76:e4:42:c2:fc:fe: 3e:1f:50:ca:44:76:e2:2b:57:57:9f:23:c1:bd:0a:8d:bf:39: 64:03:7a:10:e7:76:ba:5d:e5:ff:83:ba:dd:7d:34:30:01:8e: 9f:5f:75:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUxMTAzMDQ0NzM4WhcNMjUxMTEwMDQ0NzM4WjAYMRYwFAYD VQQDEw02OTA4MzNlYS04NmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshId4WIzUsMZPTbPmaqyAKgTodQhl/ZYMrMUqbSf9K5TtlhGPoYpdatwvEVa Yy8uIzh0ktcGNaIekzopfKsteS/hV9dNSFO3k2jfCKOeC89SshYWFPQ/MMBN23VJ leXSoDTuIPU0F9P25Xtq5lna43498JH3+EtVgih8llsfHReV7xyjyOJmz0KKOfQT MwQLwSvuvMpakVr2i4EQ5IxFpia5EjB6APUZEoAGtXq95xWxpzUHm3eWaOY9+G1W o6zbZJVR/AtZhbSlYpOz43GzVtqUxaTRRtMP59GxKsitSAlpbply3oYRyQp5EEwd IBqWoYmqO6BjwEOu2Jb0ohXQQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlaRGQC o3Y+WrFwNADH8WtjWayzMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6ACuJu0Dwlehhwrk0OLOC5AjD4gn49rTmiZ0R8DaXWXGiCV8wqLWU DX+xAIskZO+/vV5oFgRZ+iLSBnXMDVTzwUbAnL6h88p9WXGzBtAhR2o2dYe68RDk Ichx/7ZYYGe2Sk6CcAe/FK7dHs8rnPF6g9+UJu8/6sao5h8cAZilknzw/41MadWT v5VDSwp1a4ibFp9+Th75E1jb5499gj99kRlRSeKVAiV5TDtIknW30U1c3UirYTJg 8nS+y3twjbtlYG0DHGIZOVdja1Mmn/rCT3t25ELC/P4+H1DKRHbiK1dXnyPBvQqN vzlkA3oQ53a6XeX/g7rdfTQwAY6fX3Vr -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:14 2025 by rpki-client