$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: wmIbBeHrpIbAuaIzhakab39T+wszZoBEJw3J2yxgX6E= Subject key identifier: 38:9B:1C:6B:AC:52:02:FC:FB:39:BF:0B:53:A0:65:AD:85:F1:4E:DE Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: D9 Signing time: Mon 03 Nov 2025 05:35:00 +0000 Manifest this update: Mon 03 Nov 2025 05:34:59 +0000 Manifest next update: Mon 10 Nov 2025 05:34:59 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: Ih/EuroTB3K9UOFP1TYKv86LwubF6bFGnduAb/Dq8NE=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: OkcwSLx62N14Khc7pixM+04Kss5uqBIS1Fg1GMXXo9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Nov 3 05:34:59 2025 GMT Not After : Nov 10 05:34:59 2025 GMT Subject: CN=69083f04-0433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a1:b5:e9:29:8e:a0:bc:03:34:30:2f:45:ca: a9:e0:c1:f9:b4:5f:94:5b:fb:2e:1f:34:7c:dd:6f: 51:09:d8:c1:d9:97:c9:af:88:8e:d8:d3:f2:54:7e: 6a:72:b3:c3:40:7d:f6:45:cb:aa:98:4b:5f:27:4d: 8a:a5:ca:55:0a:3b:a4:80:bb:e3:f7:f7:46:83:f1: fd:39:0c:6a:ee:97:99:5b:b3:b9:4b:13:47:1f:5c: e7:62:f5:89:f7:a4:a2:a5:0d:5c:63:4c:26:c7:1b: 70:dd:04:14:ff:81:a0:a7:e5:15:70:ac:c7:87:62: 69:1c:31:38:e5:2d:69:65:8f:dd:3e:73:d4:1f:39: 77:59:da:93:d9:80:90:ae:25:74:19:68:67:01:b5: 0b:f2:13:bc:3d:4c:38:79:b0:55:3f:73:10:c8:36: 2f:f6:88:16:b6:55:fd:c5:58:4a:41:af:00:df:37: 7d:cc:70:ee:5d:ad:ca:5e:46:da:05:f7:90:32:6f: cc:28:78:27:ed:cc:8b:9c:a5:3d:78:bc:3a:fa:2d: c6:e3:c8:95:a4:18:b7:5d:62:c7:7e:e9:60:e4:e8: a7:92:1e:30:60:47:c6:0c:18:bd:0c:c1:42:f4:33: 2e:d8:c1:02:34:a9:4a:30:40:78:55:f3:67:62:15: bb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9B:1C:6B:AC:52:02:FC:FB:39:BF:0B:53:A0:65:AD:85:F1:4E:DE X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:fe:f9:de:3b:cf:d9:7b:21:31:5c:46:4a:60:02:28:b0:f7: ea:63:56:d0:bc:53:62:fb:ce:bf:4d:e5:92:c9:df:fa:be:a2: 5b:3a:30:0d:07:da:06:31:63:db:44:d2:b5:58:ea:1d:a7:9c: 55:64:e4:da:94:51:30:63:c8:93:5e:dc:f7:f7:59:4e:a0:6c: f9:c0:c5:c2:71:b2:cb:b7:46:5b:9d:66:64:23:c4:c7:2a:48: 1e:08:45:0f:44:9a:f8:7c:2b:c4:6e:14:4e:40:6d:10:a9:74: 1c:4e:1a:46:e7:7a:59:0e:3e:41:4d:03:bf:1b:13:48:f3:13: 4b:c4:d0:5e:68:df:13:8f:11:47:a5:0e:eb:01:cd:99:75:39: db:5d:05:e5:e7:68:38:58:4e:f9:01:c5:08:df:86:b2:5f:c3: bd:16:74:58:13:01:1d:28:6f:d6:30:7e:a6:ab:26:95:14:f0: c6:18:db:24:fb:65:31:ab:5d:d3:2e:ce:e6:b2:9f:eb:c8:ec: b4:c5:ca:dd:27:66:bf:84:3c:8b:0e:66:ef:54:9a:6a:13:ec: 23:e0:4b:73:62:6f:bc:1c:60:98:3f:ac:2f:cb:77:7f:be:02: 30:b6:b1:4f:55:fa:87:97:f1:01:4e:8e:45:59:e3:d2:6e:00: 7f:29:70:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDMyMTRFMjYwQTc4RjdEMTY3N0U4MzAxMzdDMTA2NTcz MDAzMUNGNjYwHhcNMjUxMTAzMDUzNDU5WhcNMjUxMTEwMDUzNDU5WjAYMRYwFAYD VQQDEw02OTA4M2YwNC0wNDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqG16SmOoLwDNDAvRcqp4MH5tF+UW/suHzR83W9RCdjB2ZfJr4iO2NPyVH5q crPDQH32RcuqmEtfJ02KpcpVCjukgLvj9/dGg/H9OQxq7peZW7O5SxNHH1znYvWJ 96SipQ1cY0wmxxtw3QQU/4Ggp+UVcKzHh2JpHDE45S1pZY/dPnPUHzl3WdqT2YCQ riV0GWhnAbUL8hO8PUw4ebBVP3MQyDYv9ogWtlX9xVhKQa8A3zd9zHDuXa3KXkba BfeQMm/MKHgn7cyLnKU9eLw6+i3G48iVpBi3XWLHfulg5Oinkh4wYEfGDBi9DMFC 9DMu2MECNKlKMEB4VfNnYhW7wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDibHGus UgL8+zm/C1OgZa2F8U7eMB8GA1UdIwQYMBaAFDIU4mCnj30Wd+gwE3wQZXMAMc9m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8yNzJCNEM3MDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZSWjM2REFUZkJCbGN3QXh6 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8yNzJCNEM3MDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9NaFRpWUtlUGZS WjM2REFUZkJCbGN3QXh6MlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS/vneO8/ZeyExXEZKYAIosPfqY1bQvFNi+86/TeWSyd/6vqJbOjAN B9oGMWPbRNK1WOodp5xVZOTalFEwY8iTXtz391lOoGz5wMXCcbLLt0ZbnWZkI8TH KkgeCEUPRJr4fCvEbhROQG0QqXQcThpG53pZDj5BTQO/GxNI8xNLxNBeaN8TjxFH pQ7rAc2ZdTnbXQXl52g4WE75AcUI34ayX8O9FnRYEwEdKG/WMH6mqyaVFPDGGNsk +2Uxq13TLs7msp/ryOy0xcrdJ2a/hDyLDmbvVJpqE+wj4EtzYm+8HGCYP6wvy3d/ vgIwtrFPVfqHl/EBTo5FWePSbgB/KXD4 -----END CERTIFICATE-----Generated at Tue Nov 4 01:03:53 2025 by rpki-client