$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: 5l0Y0B34yWEfo7dOQaLI/FGZnQDdJzbxzM59l05Ag4I= Subject key identifier: D7:8B:69:90:0C:B9:BB:B0:8F:55:89:00:9C:0C:49:09:45:3E:09:F8 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: FE Signing time: Mon 03 Nov 2025 05:11:07 +0000 Manifest this update: Mon 03 Nov 2025 05:11:07 +0000 Manifest next update: Mon 10 Nov 2025 05:11:07 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: b/jKc68ZFn+B4gwy0NRVTaXIwhhc7as23UUdqKhxkd4=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: sQR4OxxnRQelaQye41JzM/+/uoADouWx9n3P5u34eoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Nov 3 05:11:07 2025 GMT Not After : Nov 10 05:11:07 2025 GMT Subject: CN=6908396b-f804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0c:c6:4c:9f:c3:89:d0:42:36:71:d0:11:50: 7f:63:0d:ef:19:19:33:b7:97:c5:6d:10:0c:06:ae: 06:84:ba:7b:cc:a5:ba:f0:f1:3c:03:ab:d6:f0:be: d9:72:81:93:f0:0e:d9:ee:0e:45:c8:9d:b0:60:4f: 0b:21:f8:2f:73:8c:04:9c:ba:39:35:d6:d6:90:21: c5:3c:ad:2f:4a:c7:67:3c:80:6c:a4:6d:fb:0c:28: ab:93:9e:2c:2e:b7:c9:35:e9:39:1b:8d:6a:ff:65: 7f:67:b7:40:2e:d9:f8:26:4d:fa:e0:ea:27:65:c2: 68:02:6b:f9:47:86:dc:33:9b:15:64:e3:14:86:7f: 07:4b:ea:13:77:43:64:79:4f:cc:74:15:52:75:7f: 19:ff:b2:7f:2c:7c:75:36:b8:bf:15:80:59:f4:77: 1e:ce:37:96:91:34:7b:8c:b8:f8:0a:0e:f7:cd:29: 5e:73:43:4a:c9:1b:8d:78:ea:22:85:4b:74:1d:05: b1:dd:be:43:01:e7:8e:22:07:e2:7e:9c:a6:5f:aa: c6:77:c4:78:b7:d2:e0:51:33:c8:53:25:c7:80:32: 5f:47:43:08:bc:0b:96:e7:3e:55:09:42:77:c8:b3: 68:be:7a:7b:a1:15:e4:3a:fd:7d:df:f6:44:7b:21: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8B:69:90:0C:B9:BB:B0:8F:55:89:00:9C:0C:49:09:45:3E:09:F8 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:b2:2a:93:f5:8e:db:37:c7:e8:d6:e8:d0:97:a5:37:2b:76: a7:5f:07:cc:ef:21:37:68:89:fd:b4:06:a3:99:c9:5a:d3:7e: 9a:0c:83:1c:8c:c9:72:20:9e:77:9c:dd:c7:8a:45:75:40:b8: 0e:c1:54:65:3f:c8:24:b9:0b:28:07:73:9e:5a:b1:53:92:27: e1:44:c9:6d:60:bf:55:0f:d9:ed:82:40:60:e8:b7:74:60:f6: cd:04:f4:eb:c9:42:25:20:26:33:7d:e6:28:7f:62:06:5d:0a: 2e:c1:97:a4:62:f8:ac:1a:62:fe:8c:1b:e7:94:fa:47:c6:94: 73:d7:6d:22:e0:cb:8f:1d:2e:02:02:4f:78:10:85:3a:8c:12: 12:f0:66:12:fe:0c:66:47:5a:e0:90:4d:f1:9d:6f:23:0e:4b: 93:85:68:b9:f3:98:d9:c1:1a:b9:c3:4e:5f:46:f7:2a:7a:a4: ba:c1:b2:db:2b:88:96:ca:d0:fb:82:86:52:dd:fe:b5:ee:e8: cf:ce:36:e8:e9:57:65:e8:2f:b2:ff:1b:dd:16:d2:cc:cf:c3: 58:db:7c:ac:77:82:cf:1b:80:82:ef:2e:95:d6:99:72:68:0c: de:3b:11:27:a5:5e:4f:8f:6c:1a:ce:44:35:2e:ec:fb:e3:3e: 3d:d1:80:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUxMTAzMDUxMTA3WhcNMjUxMTEwMDUxMTA3WjAYMRYwFAYD VQQDEw02OTA4Mzk2Yi1mODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswzGTJ/DidBCNnHQEVB/Yw3vGRkzt5fFbRAMBq4GhLp7zKW68PE8A6vW8L7Z coGT8A7Z7g5FyJ2wYE8LIfgvc4wEnLo5NdbWkCHFPK0vSsdnPIBspG37DCirk54s LrfJNek5G41q/2V/Z7dALtn4Jk364OonZcJoAmv5R4bcM5sVZOMUhn8HS+oTd0Nk eU/MdBVSdX8Z/7J/LHx1Nri/FYBZ9HcezjeWkTR7jLj4Cg73zSlec0NKyRuNeOoi hUt0HQWx3b5DAeeOIgfifpymX6rGd8R4t9LgUTPIUyXHgDJfR0MIvAuW5z5VCUJ3 yLNovnp7oRXkOv193/ZEeyHB3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeLaZAM ubuwj1WJAJwMSQlFPgn4MB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvsiqT9Y7bN8fo1ujQl6U3K3anXwfM7yE3aIn9tAajmcla036aDIMc jMlyIJ53nN3HikV1QLgOwVRlP8gkuQsoB3OeWrFTkifhRMltYL9VD9ntgkBg6Ld0 YPbNBPTryUIlICYzfeYof2IGXQouwZekYvisGmL+jBvnlPpHxpRz120i4MuPHS4C Ak94EIU6jBIS8GYS/gxmR1rgkE3xnW8jDkuThWi585jZwRq5w05fRvcqeqS6wbLb K4iWytD7goZS3f617ujPzjbo6Vdl6C+y/xvdFtLMz8NY23ysd4LPG4CC7y6V1ply aAzeOxEnpV5Pj2wazkQ1Luz74z490YBF -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:24 2025 by rpki-client