$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft File: 4deDfrzHqaTRdRZXhgR2OivQQnI.mft (raw, json) Hash identifier: c8uSwYPolkqXfL1fUK0dIeJ+QC6Lyi0VhjJ5+JB5qzQ= Subject key identifier: 93:36:C7:8C:13:74:10:8C:F7:61:C1:2B:D1:D4:7E:DB:5D:FB:74:D7 Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft Manifest number: DC Signing time: Mon 03 Nov 2025 05:37:53 +0000 Manifest this update: Mon 03 Nov 2025 05:37:52 +0000 Manifest next update: Mon 10 Nov 2025 05:37:52 +0000 Files and hashes: 1: 4deDfrzHqaTRdRZXhgR2OivQQnI.crl (hash: EgKKx75GR0oyeVBjtOsnW8wsCpb2OFDvJAnyT57jiaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F, serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: Nov 3 05:37:52 2025 GMT Not After : Nov 10 05:37:52 2025 GMT Subject: CN=69083fb0-ed16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bd:75:31:09:f5:f2:99:54:55:fb:90:d4:97: c7:7b:2e:bb:5d:a9:d3:c7:df:d9:b1:bc:8a:d0:81: 71:af:d0:db:c1:d5:20:0b:d1:6a:7a:b7:53:da:28: c5:55:1c:7d:41:e5:12:0a:d8:e8:d9:26:64:8e:40: 2f:7d:bb:8f:13:88:16:b1:e4:0d:6f:f4:0f:4a:f8: a1:d9:76:c3:bb:52:64:17:b7:85:1a:d9:6e:37:a5: ce:9b:67:82:f0:e8:dc:b9:96:73:a2:04:2d:5a:dc: a2:39:07:64:48:69:33:29:8f:b9:1c:fd:8d:10:70: 61:20:b6:da:8c:cf:fd:7b:bb:54:ce:8f:9f:19:22: a1:ac:f4:3a:bc:81:51:09:01:5b:11:e7:7a:32:5e: 16:dc:e2:4f:9b:d0:07:fb:a3:93:92:57:16:f1:ae: 23:c4:0c:e1:c9:b0:5a:e7:be:0d:a1:9f:2e:51:45: 7d:ec:b3:01:b7:8b:12:64:80:00:a7:d4:4b:48:7f: 58:89:e9:2c:8e:ba:16:77:51:fc:7b:f6:19:c2:17: 5e:c9:86:1b:77:5d:eb:16:4a:da:3d:d2:34:26:a1: 7e:6f:a3:ea:3f:51:90:2a:90:c0:a9:ea:04:ae:4d: 0e:c0:39:87:1f:12:b8:96:19:ba:0c:eb:19:a2:2b: ae:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:36:C7:8C:13:74:10:8C:F7:61:C1:2B:D1:D4:7E:DB:5D:FB:74:D7 X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f4:83:11:d8:f7:94:a8:61:2d:f1:fd:2f:5a:43:9f:4f:12: c7:24:4c:5d:ce:e5:a0:54:00:01:01:15:0e:e0:0c:89:68:7e: 5e:c9:af:96:da:24:6c:ec:0a:8d:1c:9e:b5:6e:83:1c:4f:fd: 3a:11:36:3c:aa:1f:91:24:b8:fc:db:cd:93:23:0a:ad:8f:b2: 1d:86:e3:8f:f0:76:8a:bd:b8:32:9b:07:9f:77:30:86:3b:56: 46:9e:98:82:d4:df:c4:7b:48:58:f5:7b:2d:24:d0:ea:b8:02: fd:fb:0d:d3:d7:70:e8:c2:e2:5a:cb:7c:c9:67:4a:e2:32:8b: b8:5a:98:70:25:ff:6f:7b:bb:c3:a9:30:72:b1:d1:82:74:ec: d7:66:e4:82:d4:c5:33:be:2f:1c:52:35:86:6f:12:f9:9f:9f: 0d:89:24:1d:69:dd:59:61:f6:01:1a:9a:91:dc:f9:41:0e:ab: 41:7f:b7:52:ad:3d:3c:26:c0:e2:fd:21:f1:f4:a9:10:03:e7: da:99:b3:3d:54:c5:ec:a0:58:24:a0:87:d8:74:6a:4e:1d:39: 17:3b:be:67:71:a2:5f:65:97:19:ca:51:4b:89:9b:0c:b3:d1: 32:7d:1b:9a:d0:23:a8:89:0e:f9:5c:38:76:27:ca:11:de:89: 53:1c:10:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5MkYxMTAvBgNVBAUTKEUxRDc4MzdFQkNDN0E5QTREMTc1MTY1Nzg2MDQ3NjNB MkJEMDQyNzIwHhcNMjUxMTAzMDUzNzUyWhcNMjUxMTEwMDUzNzUyWjAYMRYwFAYD VQQDEw02OTA4M2ZiMC1lZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL11MQn18plUVfuQ1JfHey67XanTx9/ZsbyK0IFxr9DbwdUgC9FqerdT2ijF VRx9QeUSCtjo2SZkjkAvfbuPE4gWseQNb/QPSvih2XbDu1JkF7eFGtluN6XOm2eC 8OjcuZZzogQtWtyiOQdkSGkzKY+5HP2NEHBhILbajM/9e7tUzo+fGSKhrPQ6vIFR CQFbEed6Ml4W3OJPm9AH+6OTklcW8a4jxAzhybBa574NoZ8uUUV97LMBt4sSZIAA p9RLSH9YieksjroWd1H8e/YZwhdeyYYbd13rFkraPdI0JqF+b6PqP1GQKpDAqeoE rk0OwDmHHxK4lhm6DOsZoiuuYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJM2x4wT dBCM92HBK9HUfttd+3TXMB8GA1UdIwQYMBaAFOHXg368x6mk0XUWV4YEdjor0EJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTkyRi8xQjI5MEI1RTc0 MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFhVFJkUlpYaGdSMk9pdlFR bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTkyRi8xQjI5MEI1RTc0MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFh VFJkUlpYaGdSMk9pdlFRbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/9IMR2PeUqGEt8f0vWkOfTxLHJExdzuWgVAABARUO4AyJaH5eya+W 2iRs7AqNHJ61boMcT/06ETY8qh+RJLj8282TIwqtj7IdhuOP8HaKvbgymwefdzCG O1ZGnpiC1N/Ee0hY9XstJNDquAL9+w3T13DowuJay3zJZ0riMou4WphwJf9ve7vD qTBysdGCdOzXZuSC1MUzvi8cUjWGbxL5n58NiSQdad1ZYfYBGpqR3PlBDqtBf7dS rT08JsDi/SHx9KkQA+fambM9VMXsoFgkoIfYdGpOHTkXO75ncaJfZZcZylFLiZsM s9EyfRua0COoiQ75XDh2J8oR3olTHBDL -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:16 2025 by rpki-client