$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: 7/rOAe+MvOkXZ8EkqawcONx01MCzYzVrMVoPG62EkBc= Subject key identifier: 24:10:83:4F:9F:39:18:BB:44:90:BA:15:82:16:91:A7:48:91:48:06 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0BD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0BCD Signing time: Sun 02 Nov 2025 18:52:56 +0000 Manifest this update: Sun 02 Nov 2025 18:52:56 +0000 Manifest next update: Sun 09 Nov 2025 18:52:56 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: E03Ctt/h7C20Bu0lDcsL1naTISQ7aw8T4q7omtVjA3g=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3027 (0xbd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Nov 2 18:52:56 2025 GMT Not After : Nov 9 18:52:56 2025 GMT Subject: CN=6907a888-3482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8c:c5:be:a8:d2:6d:a8:84:ad:b7:69:26:52: 9d:99:58:ea:ca:b8:9e:44:aa:e2:3c:6d:84:e5:7e: 54:63:80:91:79:8d:3d:d9:71:f3:ee:0b:16:54:17: b6:14:31:fa:7f:10:06:9e:bf:1f:79:ff:e8:9b:d8: bb:2e:e9:bb:93:db:4a:a1:11:9f:56:16:46:04:2b: 42:9b:b1:f2:d9:59:cd:30:22:4b:e2:d2:7e:6f:cb: 17:51:7e:a9:b0:92:d4:72:b6:93:bf:fa:03:a2:7e: ad:37:46:30:ad:20:a0:82:11:c7:73:2e:5c:84:87: fa:14:03:47:12:43:fb:a0:a1:2c:28:d4:c8:e0:9b: 23:fb:b0:cf:fc:6f:48:de:c3:26:f3:36:a8:70:52: 2c:fa:79:18:c5:27:b0:2e:24:b8:3b:1f:1e:50:eb: 48:fa:ed:3a:d5:ca:07:e8:3d:bd:b4:14:b0:3c:9c: e0:fa:a6:b0:20:04:3c:1f:e1:91:7b:18:0a:e2:f1: 40:e6:f5:01:02:56:3d:54:27:b4:e5:6c:3d:69:c1: 65:26:d2:bc:ff:1e:34:50:9b:eb:a3:25:2c:0b:3c: d8:74:7a:40:f2:3c:69:16:80:f6:de:31:8a:7d:5a: fd:21:f2:78:93:4d:f6:96:90:fb:4c:09:57:32:7e: 26:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:10:83:4F:9F:39:18:BB:44:90:BA:15:82:16:91:A7:48:91:48:06 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:aa:eb:fc:75:dd:f0:93:0b:87:1d:60:3b:41:22:04:de:a1: 90:54:d0:ab:e5:4f:d3:06:b2:be:a9:94:ff:25:b9:7a:82:f6: 74:96:16:c7:53:96:b8:85:d4:af:01:1e:52:db:52:21:46:39: a1:36:49:d1:17:c9:58:75:17:a2:9f:98:38:82:d7:4f:22:17: e7:2d:1c:d6:47:4b:68:65:b2:3b:81:f9:b6:df:d3:30:3f:ad: 26:10:7a:a3:9b:c6:35:56:c7:91:e7:7b:fe:aa:64:15:0a:b8: 26:33:05:b3:0b:30:09:d9:23:dc:7e:84:8c:b8:37:74:e4:ad: b9:6d:7c:37:64:21:27:04:e5:e3:95:ca:0f:00:0d:88:6b:0b: e7:70:dd:0f:13:c3:56:35:af:3d:31:46:92:b8:f9:4e:96:0b: 9a:0e:0a:64:5e:80:20:2b:97:dc:80:5e:02:62:bf:4e:fe:e8: 75:64:99:aa:4d:a8:bc:65:c2:a5:db:61:9d:88:2c:5e:45:80: 68:d7:7c:f1:d0:10:a4:90:b2:5e:14:1c:57:82:00:6b:57:18: 3b:94:ec:f0:86:0d:0b:3c:fc:85:34:54:93:c4:9b:05:f5:a7: 13:c0:7f:45:83:23:40:8b:69:69:65:cd:3e:3f:1a:c1:83:1e: c1:1d:ad:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUxMTAyMTg1MjU2WhcNMjUxMTA5MTg1MjU2WjAYMRYwFAYD VQQDEw02OTA3YTg4OC0zNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIzFvqjSbaiErbdpJlKdmVjqyrieRKriPG2E5X5UY4CReY092XHz7gsWVBe2 FDH6fxAGnr8fef/om9i7Lum7k9tKoRGfVhZGBCtCm7Hy2VnNMCJL4tJ+b8sXUX6p sJLUcraTv/oDon6tN0YwrSCgghHHcy5chIf6FANHEkP7oKEsKNTI4Jsj+7DP/G9I 3sMm8zaocFIs+nkYxSewLiS4Ox8eUOtI+u061coH6D29tBSwPJzg+qawIAQ8H+GR exgK4vFA5vUBAlY9VCe05Ww9acFlJtK8/x40UJvroyUsCzzYdHpA8jxpFoD23jGK fVr9IfJ4k032lpD7TAlXMn4mmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQQg0+f ORi7RJC6FYIWkadIkUgGMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDquv8dd3wkwuHHWA7QSIE3qGQVNCr5U/TBrK+qZT/Jbl6gvZ0lhbH U5a4hdSvAR5S21IhRjmhNknRF8lYdRein5g4gtdPIhfnLRzWR0toZbI7gfm239Mw P60mEHqjm8Y1VseR53v+qmQVCrgmMwWzCzAJ2SPcfoSMuDd05K25bXw3ZCEnBOXj lcoPAA2IawvncN0PE8NWNa89MUaSuPlOlguaDgpkXoAgK5fcgF4CYr9O/uh1ZJmq Tai8ZcKl22GdiCxeRYBo13zx0BCkkLJeFBxXggBrVxg7lOzwhg0LPPyFNFSTxJsF 9acTwH9FgyNAi2lpZc0+PxrBgx7BHa2k -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:39 2025 by rpki-client