$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: EXd23KWPUEH2SXjaUT5rMR2hDdFXKxwZNfIM2+rdkVc= Subject key identifier: E3:7E:50:3F:99:86:CC:52:DC:24:54:8D:91:F9:AD:CC:33:2C:0A:11 Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 0641 Signing time: Sun 02 Nov 2025 22:39:21 +0000 Manifest this update: Sun 02 Nov 2025 22:39:21 +0000 Manifest next update: Sun 09 Nov 2025 22:39:21 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: k0ozTNCcweYFhoMdss5iAtTCExaggocPuQUghzCANfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27, serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Validity Not Before: Nov 2 22:39:21 2025 GMT Not After : Nov 9 22:39:21 2025 GMT Subject: CN=6907dd99-4247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e1:ff:cd:ef:ef:95:fe:2d:fa:ce:47:2f:74: 92:be:34:f0:45:17:ae:f0:0d:6a:27:17:75:32:21: 11:e5:c0:b7:7e:e1:50:24:5f:8f:ca:c4:a1:8f:ad: c9:cc:34:37:65:20:78:1f:72:df:67:1a:1d:96:2e: 64:12:90:92:5a:71:05:73:f3:ea:5b:28:13:db:7a: d8:27:6a:26:dd:eb:56:0e:89:c3:7e:3e:98:7d:1d: fe:99:38:83:1e:40:53:40:1e:2a:cc:47:fd:24:da: 45:94:72:ec:13:f8:d0:7c:e4:5f:d6:6b:db:77:5d: 98:17:a1:b3:84:c8:fb:df:14:cc:ec:1b:3c:b8:8a: 88:85:82:84:8f:74:bc:5a:10:a2:da:e4:bd:a4:d9: 87:33:f7:4b:ba:85:c8:39:3c:8a:9c:d8:cc:12:10: 75:06:d7:ed:16:18:c6:5c:a2:d3:e3:80:65:32:57: 0a:d0:a6:3d:56:44:bf:b5:28:f2:77:a5:e8:e4:fd: e7:9f:c3:48:7d:c3:c7:2c:19:ca:77:5b:08:b2:9e: 75:69:c0:c4:e1:2d:db:16:99:2e:e5:df:7e:78:67: ae:c3:16:17:f2:40:7b:49:ec:ad:de:72:5a:b4:cb: 5f:f4:ed:e5:33:c9:67:81:19:4a:07:43:e2:01:d0: ab:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:7E:50:3F:99:86:CC:52:DC:24:54:8D:91:F9:AD:CC:33:2C:0A:11 X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:2c:1c:15:e7:c2:ce:60:d8:b8:99:66:80:b2:47:d5:54:1b: ae:f8:c0:40:50:b0:9a:48:f4:0f:f7:64:e1:3b:33:0d:f9:a6: bf:6f:e7:a7:78:ba:2a:67:8c:11:f9:94:d9:9c:91:5e:c4:4c: 7b:62:eb:56:6d:a2:48:15:0b:63:48:ee:d7:61:bd:84:55:ca: 9f:ab:f1:08:87:b2:c9:c3:18:a0:28:5a:7f:6b:5e:6f:05:e3: e7:ec:fd:84:b6:1f:ad:42:68:ec:37:f2:9e:a9:13:27:b0:de: 8f:49:a0:a0:77:98:c4:78:bd:e7:b2:c4:84:6b:61:4a:f3:84: de:0b:32:35:e4:6f:4f:df:47:3c:2b:0d:09:9d:fb:db:47:7b: 40:20:4d:d6:5b:15:59:4f:cc:c0:5c:0a:dd:3b:b4:06:8c:cd: 98:f5:de:f2:bd:2f:30:c4:11:44:78:94:02:2a:28:73:f0:b4: c9:b7:5c:32:d7:dc:40:7c:47:f3:ba:94:5c:c1:c6:b8:d9:aa: da:cb:04:60:28:2c:38:96:4e:da:87:25:9f:cb:5b:0f:8c:d5: da:59:0a:2f:57:53:84:da:3a:1d:f4:20:01:ff:8f:3b:91:10: 0f:7b:8b:ca:0e:d9:eb:29:f4:e5:72:ec:9d:d1:26:20:7c:f9: 27:db:d6:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjUxMTAyMjIzOTIxWhcNMjUxMTA5MjIzOTIxWjAYMRYwFAYD VQQDEw02OTA3ZGQ5OS00MjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOH/ze/vlf4t+s5HL3SSvjTwRReu8A1qJxd1MiER5cC3fuFQJF+PysShj63J zDQ3ZSB4H3LfZxodli5kEpCSWnEFc/PqWygT23rYJ2om3etWDonDfj6YfR3+mTiD HkBTQB4qzEf9JNpFlHLsE/jQfORf1mvbd12YF6GzhMj73xTM7Bs8uIqIhYKEj3S8 WhCi2uS9pNmHM/dLuoXIOTyKnNjMEhB1BtftFhjGXKLT44BlMlcK0KY9VkS/tSjy d6Xo5P3nn8NIfcPHLBnKd1sIsp51acDE4S3bFpku5d9+eGeuwxYX8kB7Seyt3nJa tMtf9O3lM8lngRlKB0PiAdCrIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFON+UD+Z hsxS3CRUjZH5rcwzLAoRMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNLBwV58LOYNi4mWaAskfVVBuu+MBAULCaSPQP92ThOzMN+aa/b+en eLoqZ4wR+ZTZnJFexEx7YutWbaJIFQtjSO7XYb2EVcqfq/EIh7LJwxigKFp/a15v BePn7P2Eth+tQmjsN/KeqRMnsN6PSaCgd5jEeL3nssSEa2FK84TeCzI15G9P30c8 Kw0JnfvbR3tAIE3WWxVZT8zAXArdO7QGjM2Y9d7yvS8wxBFEeJQCKihz8LTJt1wy 19xAfEfzupRcwca42araywRgKCw4lk7ahyWfy1sPjNXaWQovV1OE2jod9CAB/487 kRAPe4vKDtnrKfTlcuyd0SYgfPkn29ad -----END CERTIFICATE-----Generated at Tue Nov 4 08:30:27 2025 by rpki-client