$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: fv38C0WcGTm5Up+2t486ih/dUmeyUSBDSn/JXlZyGfU= Subject key identifier: 2F:4D:8A:4B:86:FD:67:C2:BA:4F:42:DA:A8:E8:6A:38:90:C1:73:74 Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0C76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0C6F Signing time: Sun 02 Nov 2025 18:29:20 +0000 Manifest this update: Sun 02 Nov 2025 18:29:20 +0000 Manifest next update: Sun 09 Nov 2025 18:29:20 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: YlJuP3d2BAMUFO6DWFgQx1H8Jx4XR3pFpuiTZuaXxy0=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: JrgXyhe/ZBiLMiqpguwMxQYnYLTsK7NzW7LJdocKtjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Nov 2 18:29:20 2025 GMT Not After : Nov 9 18:29:20 2025 GMT Subject: CN=6907a300-4227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3f:55:50:dc:54:9f:47:f2:9a:be:5b:2d:a6: 06:e4:94:8b:24:0d:9b:f0:a8:83:2d:23:44:53:04: 9a:9b:e9:96:0d:63:29:cc:97:83:49:d7:ad:60:33: 46:cd:34:4a:d3:17:ba:fb:77:31:27:e2:66:c9:3f: f8:6a:f1:22:4c:88:8f:4d:56:f1:0f:cd:44:aa:9e: 8b:35:82:45:0f:fe:7c:5b:dd:ed:fd:e4:21:ff:41: 28:ce:b1:7f:53:f0:53:92:57:2f:35:2f:54:99:42: 5b:eb:67:ce:58:ed:e5:d7:bf:f7:03:6b:82:a6:a0: 7f:3f:a1:00:22:e2:2e:ba:ed:a9:25:58:a0:b2:be: 89:a1:e6:09:da:8c:7f:a3:a0:a8:55:04:b1:8a:37: 3e:76:ba:b6:6c:36:71:24:8f:02:14:2d:47:da:d5: b4:03:96:06:07:06:5c:11:15:23:88:39:ab:27:56: 68:7a:5e:b9:eb:a4:65:e3:f7:b4:58:b3:6a:91:95: 3f:16:33:a8:7f:8c:b5:fa:4d:d9:5c:cb:4a:93:5a: 27:cd:28:f6:45:36:bc:13:6e:6c:3c:3b:d8:8e:fa: 62:25:92:fc:a1:b4:4e:71:18:83:47:21:86:b9:fd: 5f:f7:ed:48:91:82:6e:89:50:e8:e1:3d:7a:00:30: f0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4D:8A:4B:86:FD:67:C2:BA:4F:42:DA:A8:E8:6A:38:90:C1:73:74 X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:17:09:3f:d2:97:1e:5f:9e:8a:c8:18:4f:e0:cc:e2:0c:36: 42:4d:88:5c:ae:67:04:5c:8c:6b:d7:a7:c9:cc:ab:4a:cd:fc: b8:5c:68:1e:2b:2b:1e:6a:19:8f:3e:47:88:b5:21:c7:34:f6: d5:a7:d7:e4:75:f3:91:89:d7:cf:91:11:76:10:5e:d2:7d:39: d8:32:ba:02:17:fc:c4:30:4e:f2:bb:79:a9:a6:2a:1c:d7:b2: 49:44:8e:b4:61:5a:9e:77:35:21:ee:ab:ad:f3:01:48:f0:01: 17:3a:03:89:67:a3:52:ae:39:bb:09:4f:b0:3c:20:6b:59:8b: 35:4f:a5:8b:f4:ac:aa:ed:1a:38:a1:bd:78:be:8c:a3:6f:b4: 93:0e:0c:be:ad:38:d4:19:5c:3e:23:6a:ad:66:c4:3d:8b:21: 6f:b7:e3:60:71:41:11:46:de:f2:4c:99:ce:78:c7:35:fd:4e: 3a:66:a9:27:55:f6:2d:6c:3e:f3:c3:98:5d:4c:75:a0:d7:6b: 98:52:13:b8:cc:c9:13:22:2a:09:b3:ac:f0:74:d5:13:73:dd: b3:4c:33:e5:be:c7:aa:84:fe:13:c4:d6:f0:3c:36:35:2d:a5: b8:ed:1b:0a:c1:74:7c:10:66:d7:20:ee:42:b4:1c:be:10:f3: 9b:08:97:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUxMTAyMTgyOTIwWhcNMjUxMTA5MTgyOTIwWjAYMRYwFAYD VQQDEw02OTA3YTMwMC00MjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0D9VUNxUn0fymr5bLaYG5JSLJA2b8KiDLSNEUwSam+mWDWMpzJeDSdetYDNG zTRK0xe6+3cxJ+JmyT/4avEiTIiPTVbxD81Eqp6LNYJFD/58W93t/eQh/0EozrF/ U/BTklcvNS9UmUJb62fOWO3l17/3A2uCpqB/P6EAIuIuuu2pJVigsr6JoeYJ2ox/ o6CoVQSxijc+drq2bDZxJI8CFC1H2tW0A5YGBwZcERUjiDmrJ1Zoel6566Rl4/e0 WLNqkZU/FjOof4y1+k3ZXMtKk1onzSj2RTa8E25sPDvYjvpiJZL8obROcRiDRyGG uf1f9+1IkYJuiVDo4T16ADDwjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9NikuG /WfCuk9C2qjoajiQwXN0MB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Fwk/0pceX56KyBhP4MziDDZCTYhcrmcEXIxr16fJzKtKzfy4XGge KyseahmPPkeItSHHNPbVp9fkdfORidfPkRF2EF7SfTnYMroCF/zEME7yu3mppioc 17JJRI60YVqedzUh7qut8wFI8AEXOgOJZ6NSrjm7CU+wPCBrWYs1T6WL9Kyq7Ro4 ob14voyjb7STDgy+rTjUGVw+I2qtZsQ9iyFvt+NgcUERRt7yTJnOeMc1/U46Zqkn VfYtbD7zw5hdTHWg12uYUhO4zMkTIioJs6zwdNUTc92zTDPlvseqhP4TxNbwPDY1 LaW47RsKwXR8EGbXIO5CtBy+EPObCJe6 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:56 2025 by rpki-client