$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft File: aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft (raw, json) Hash identifier: W2o1CA3POkdeYBpg/a/V1UZPh4CuLCrtK+IHa51PBTc= Subject key identifier: A1:BB:33:45:18:BE:F9:F1:E8:37:72:B5:5F:15:0C:DD:9F:54:C7:58 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 3104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft Manifest number: 30FF Signing time: Sun 02 Nov 2025 15:25:55 +0000 Manifest this update: Sun 02 Nov 2025 15:25:54 +0000 Manifest next update: Sun 09 Nov 2025 15:25:54 +0000 Files and hashes: 1: aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl (hash: ebgXwiJb/yp25Mivn8wbt1U9lqgU7YZc3YH120nAMgc=) 2: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (hash: +n1EkVjGqmRIN2F0mYDcDpolX9s17cHIyXg+OPTXZ6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12548 (0x3104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Nov 2 15:25:54 2025 GMT Not After : Nov 9 15:25:54 2025 GMT Subject: CN=69077802-d735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1f:ba:3d:18:f3:75:88:9d:e2:c4:5a:d5:87: de:21:22:12:8a:05:8d:90:7c:af:b7:72:b5:18:f3: bb:52:fb:06:97:cd:33:bb:b5:2a:bb:29:75:a8:9d: 42:ea:ec:21:92:60:19:22:9c:37:54:8e:b0:34:76: a9:5f:92:d1:e9:6e:08:9c:1a:c6:16:4c:17:26:b6: ca:41:d4:fc:71:a2:8c:b9:aa:37:b4:d7:d6:75:0a: d4:56:5b:4e:e7:07:9f:47:05:e1:e2:db:61:30:b4: f6:77:07:93:ed:ba:21:c4:0c:0c:5e:42:e2:71:9d: c6:c4:80:90:5c:09:c3:f7:65:11:23:f3:bf:0d:ea: 0a:dd:fc:7d:6a:1a:8d:64:3d:65:47:42:44:f7:c1: a4:f8:56:0f:40:3c:84:aa:6e:fc:05:cc:50:1f:3b: 12:df:95:5d:db:eb:e7:81:c0:eb:1d:5b:c9:2c:aa: 68:a8:d9:c8:3e:92:60:f6:e0:d1:e5:ef:2c:b5:f0: 45:68:8f:47:ea:52:d9:d6:a6:f3:8c:a7:8d:97:ad: 13:30:54:69:83:38:0c:02:63:35:4a:2b:86:f7:6c: b8:b3:4f:1a:41:95:c0:4e:9f:ca:0a:b2:34:1b:e9: cd:39:2f:14:61:1c:fc:e8:e3:7e:9e:55:92:25:54: e6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BB:33:45:18:BE:F9:F1:E8:37:72:B5:5F:15:0C:DD:9F:54:C7:58 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:50:6c:c9:96:c3:aa:51:50:e9:16:2c:d6:a6:dc:e3:35:b5: 06:0b:20:39:7e:ef:d8:a8:36:68:4a:fb:ed:5d:8c:a9:59:9a: 08:eb:8b:73:ab:f5:bc:c4:60:cc:7b:b4:12:b6:0e:11:2a:7f: 81:31:6c:7d:5b:90:c4:e9:05:0d:ab:6f:3f:44:6d:f6:f9:99: a2:29:9d:6a:04:24:29:09:e9:b0:25:5f:d5:cf:2a:33:a7:0b: 2b:34:26:d8:c9:ab:52:fd:a7:b4:4e:b8:1b:0f:1c:de:12:c9: 30:fe:80:63:dd:c4:ee:2e:30:a6:e9:57:5a:42:f1:d4:6d:70: 44:a0:a2:40:d2:f2:8a:9f:de:36:0a:29:6d:d6:6d:a8:80:5d: f5:b7:c3:7e:36:bb:46:01:cf:9b:1c:9c:0f:87:d1:c4:c0:d5: 54:37:14:40:8b:10:e5:74:cd:8e:69:91:54:7a:0c:6e:35:73: 1e:a4:40:44:97:94:0c:c8:80:31:0f:a0:eb:69:da:11:38:87: f1:b7:cf:e8:25:8e:6c:38:26:d8:ec:81:9c:79:cb:ee:89:50: 65:41:49:60:cb:3d:18:8c:30:4a:41:0a:68:c4:6c:61:57:ec: 65:b3:c5:87:b2:00:fe:ee:cb:31:c3:a9:96:b8:ad:08:c2:ff: 82:e6:11:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjUxMTAyMTUyNTU0WhcNMjUxMTA5MTUyNTU0WjAYMRYwFAYD VQQDEw02OTA3NzgwMi1kNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzB+6PRjzdYid4sRa1YfeISISigWNkHyvt3K1GPO7UvsGl80zu7Uquyl1qJ1C 6uwhkmAZIpw3VI6wNHapX5LR6W4InBrGFkwXJrbKQdT8caKMuao3tNfWdQrUVltO 5wefRwXh4tthMLT2dweT7bohxAwMXkLicZ3GxICQXAnD92URI/O/DeoK3fx9ahqN ZD1lR0JE98Gk+FYPQDyEqm78BcxQHzsS35Vd2+vngcDrHVvJLKpoqNnIPpJg9uDR 5e8stfBFaI9H6lLZ1qbzjKeNl60TMFRpgzgMAmM1SiuG92y4s08aQZXATp/KCrI0 G+nNOS8UYRz86ON+nlWSJVTmbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG7M0UY vvnx6DdytV8VDN2fVMdYMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wM0I4MEYzOERGNUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZE anNXVmh0cUxxbFJsX1lLY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkUGzJlsOqUVDpFizWptzjNbUGCyA5fu/YqDZoSvvtXYypWZoI64tz q/W8xGDMe7QStg4RKn+BMWx9W5DE6QUNq28/RG32+ZmiKZ1qBCQpCemwJV/Vzyoz pwsrNCbYyatS/ae0TrgbDxzeEskw/oBj3cTuLjCm6VdaQvHUbXBEoKJA0vKKn942 Cilt1m2ogF31t8N+NrtGAc+bHJwPh9HEwNVUNxRAixDldM2OaZFUegxuNXMepEBE l5QMyIAxD6DradoROIfxt8/oJY5sOCbY7IGcecvuiVBlQUlgyz0YjDBKQQpoxGxh V+xls8WHsgD+7ssxw6mWuK0Iwv+C5hGP -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:06 2025 by rpki-client