$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft File: 1h14JILiVI0iXRvIiINjk97jmBI.mft (raw, json) Hash identifier: WJ7DzqqA/BYJaY4YbLjqWPCuEbjf91EBSVGF+szNn10= Subject key identifier: 4B:B4:80:E2:24:3F:B9:AB:42:27:D6:E1:D8:BC:C0:95:8C:E8:25:91 Authority key identifier: D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 Certificate issuer: /CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft Manifest number: 01A1 Signing time: Mon 03 Nov 2025 03:16:15 +0000 Manifest this update: Mon 03 Nov 2025 03:16:15 +0000 Manifest next update: Mon 10 Nov 2025 03:16:15 +0000 Files and hashes: 1: 1h14JILiVI0iXRvIiINjk97jmBI.crl (hash: +o+A9YNmQtry/gkOYX5uTmKossOqTtuuT5LfZvyr9Rs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0A98, serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Validity Not Before: Nov 3 03:16:15 2025 GMT Not After : Nov 10 03:16:15 2025 GMT Subject: CN=69081e7f-48e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:58:b2:22:61:a9:f4:13:65:47:8f:07:c2:cf: 94:a8:28:6e:ff:46:20:38:49:81:66:8e:ed:b9:3a: 33:fc:4f:f6:45:6b:6c:f9:e2:97:66:ed:e8:b6:fb: 0f:94:d6:2b:66:3c:8f:f7:f3:24:3d:d9:b1:f7:09: 47:e3:24:a0:18:e2:de:14:be:a6:15:96:6f:57:12: 57:8d:cd:51:c6:99:09:07:d6:8a:5f:e9:c9:44:60: b6:47:f1:69:7e:e2:7b:79:2d:dd:0e:ae:7f:fe:81: 38:04:24:22:9d:21:3e:4f:f4:01:e9:04:10:24:07: ee:4e:94:78:2a:35:4e:1c:f3:54:b2:1e:f7:cd:79: c6:10:aa:bc:40:31:00:79:56:10:35:7d:9e:a4:c7: 81:4a:d3:3e:0a:07:2b:f8:72:e1:ac:90:e4:50:f2: d5:62:27:94:e0:ed:4b:55:3e:98:7c:9b:e0:52:7c: 40:e6:01:7f:aa:65:b8:01:dc:68:81:ea:44:74:95: 56:35:e9:aa:97:3b:d5:c8:7d:0e:41:ce:86:f4:6e: cd:d5:bf:ce:b1:2f:fe:94:5c:2a:94:72:3c:89:18: 39:b6:f4:91:ae:c1:bd:2d:ba:ab:86:55:e6:14:97: 7e:3b:32:6b:66:b6:b2:a5:df:e9:bd:a8:37:d8:80: 46:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B4:80:E2:24:3F:B9:AB:42:27:D6:E1:D8:BC:C0:95:8C:E8:25:91 X509v3 Authority Key Identifier: keyid:D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f4:b7:e1:db:db:83:f5:16:14:f5:ac:d8:7e:d6:3c:55:d5: f3:05:eb:b0:f2:c9:e1:3b:ad:8a:ec:63:3b:e1:57:fa:b4:82: fd:79:32:0b:59:ec:8e:f9:08:38:d9:8c:25:11:f9:30:3a:7a: 5b:22:2c:60:63:11:37:fa:e0:d0:12:7e:29:23:15:0e:ec:e9: 53:99:c6:a5:2b:94:7c:8f:eb:bf:9f:ff:59:ae:d2:65:80:93: 98:4d:ba:81:b1:52:cf:31:d6:3f:96:2a:4b:9b:18:c8:a3:a8: 9a:24:cf:b6:c3:e6:29:ed:d1:31:15:76:d2:83:45:b9:5a:40: f3:41:53:ff:a5:cf:0b:36:44:1a:53:19:1d:d4:89:74:8c:bb: d2:67:84:50:e1:ec:82:0e:f4:6f:7b:04:9d:f8:aa:76:cb:39: 09:53:52:ad:b2:10:42:9f:c4:9d:5c:e6:9b:78:ee:76:94:fb: 15:9b:a9:b0:af:64:01:33:d5:3e:ca:6a:ca:f4:74:0b:9d:fa: 4a:21:9c:b7:6f:a1:30:61:da:66:a8:b7:52:9b:c1:e6:07:d5: b5:03:5d:7e:99:61:34:d4:0f:28:49:b4:65:e8:b7:c8:ef:47: 4a:0d:ac:94:29:92:5e:35:ee:18:be:71:bb:5c:ea:de:a8:d8: 8f:70:c0:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBOTgxMTAvBgNVBAUTKEQ2MUQ3ODI0ODJFMjU0OEQyMjVEMUJDODg4ODM2Mzkz REVFMzk4MTIwHhcNMjUxMTAzMDMxNjE1WhcNMjUxMTEwMDMxNjE1WjAYMRYwFAYD VQQDEw02OTA4MWU3Zi00OGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFiyImGp9BNlR48Hws+UqChu/0YgOEmBZo7tuToz/E/2RWts+eKXZu3otvsP lNYrZjyP9/MkPdmx9wlH4ySgGOLeFL6mFZZvVxJXjc1RxpkJB9aKX+nJRGC2R/Fp fuJ7eS3dDq5//oE4BCQinSE+T/QB6QQQJAfuTpR4KjVOHPNUsh73zXnGEKq8QDEA eVYQNX2epMeBStM+Cgcr+HLhrJDkUPLVYieU4O1LVT6YfJvgUnxA5gF/qmW4Adxo gepEdJVWNemqlzvVyH0OQc6G9G7N1b/OsS/+lFwqlHI8iRg5tvSRrsG9LbqrhlXm FJd+OzJrZraypd/pvag32IBGJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu0gOIk P7mrQifW4di8wJWM6CWRMB8GA1UdIwQYMBaAFNYdeCSC4lSNIl0byIiDY5Pe45gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEE5OC84RjQ4NjRFQTM1 RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJMGlYUnZJaUlOams5N2pt QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoMTRKSUxpVkkwaVhSdklpSU5qazk3am1CSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEE5OC84RjQ4NjRFQTM1RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJ MGlYUnZJaUlOams5N2ptQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo9Lfh29uD9RYU9azYftY8VdXzBeuw8snhO62K7GM74Vf6tIL9eTIL WeyO+Qg42YwlEfkwOnpbIixgYxE3+uDQEn4pIxUO7OlTmcalK5R8j+u/n/9ZrtJl gJOYTbqBsVLPMdY/lipLmxjIo6iaJM+2w+Yp7dExFXbSg0W5WkDzQVP/pc8LNkQa Uxkd1Il0jLvSZ4RQ4eyCDvRvewSd+Kp2yzkJU1KtshBCn8SdXOabeO52lPsVm6mw r2QBM9U+ymrK9HQLnfpKIZy3b6EwYdpmqLdSm8HmB9W1A11+mWE01A8oSbRl6LfI 70dKDayUKZJeNe4YvnG7XOreqNiPcMAf -----END CERTIFICATE-----Generated at Tue Nov 4 07:21:43 2025 by rpki-client