$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft File: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft (raw, json) Hash identifier: Y9Z7IMkbPT7mx2o9qeVyL7ZUg0P48g9jEo6mHj5zc4w= Subject key identifier: 8A:1E:A3:EA:B3:AE:A8:3A:C1:60:58:86:D7:8A:3B:FF:7B:CB:72:82 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft Manifest number: 0210 Signing time: Mon 03 Nov 2025 02:16:31 +0000 Manifest this update: Mon 03 Nov 2025 02:16:30 +0000 Manifest next update: Mon 10 Nov 2025 02:16:30 +0000 Files and hashes: 1: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl (hash: vhPpiQkK72QgHVKSSHEQTrNO0qXavK3IJPwaEvkDRcg=) 2: 6549AD3EAC1011ED8592693FC4F9AE02.roa (hash: V+A9+3TWv6PDJfONkiYGSLwYtuk75uf9VZIwDYRykJo=) 3: 64B2DE72AC1011ED8592693FC4F9AE02.roa (hash: 8XCBqH3UeeuDPYwwqRpO+AoZOfKPyRMZ7ican69IhKU=) 4: 665497A2AC1011ED8592693FC4F9AE02.roa (hash: GzbxM9C1MjlQY8/LbZ9rlFb8KN037sgMyJVoACbdjQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Nov 3 02:16:30 2025 GMT Not After : Nov 10 02:16:30 2025 GMT Subject: CN=6908107f-0cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b6:d0:f7:5d:b7:24:66:24:9f:14:a0:c9:8b: 5b:cc:60:9e:6d:9c:27:75:12:8f:a0:0a:73:e2:f9: 22:ee:fa:d6:07:a4:fc:26:1f:9d:20:0b:e4:c5:25: 48:e8:80:0c:aa:c9:d4:54:8c:5e:43:06:41:dd:2f: 0e:eb:60:b1:ee:e9:66:5c:9d:f6:95:43:f9:4f:9d: 2d:24:20:14:14:da:4b:4d:15:e9:2d:96:bd:95:fb: c5:5c:18:b7:9c:a9:96:b1:cb:a7:79:e9:03:8a:f3: f4:ba:42:f4:c5:c0:63:4f:45:3c:70:93:d2:a3:19: 2e:62:be:d7:49:bb:3f:14:05:1c:67:f2:90:d2:00: a9:ca:09:b8:27:9c:0d:dd:58:d7:ae:f0:7f:f5:4a: 63:a5:4d:e4:2a:02:e5:d0:3e:89:25:b4:76:16:da: be:25:d6:4a:bc:10:cb:75:d6:68:d2:e4:25:0c:fc: da:21:24:ba:75:d9:c9:e1:38:f2:17:ee:b6:91:9d: 3b:c6:8a:bb:21:01:c9:02:ac:c4:37:2b:c4:c2:ca: e5:f2:8d:3c:d9:c3:cf:e3:1d:d2:f0:eb:6d:06:ad: 89:ab:f1:0c:31:5c:30:19:26:48:24:1d:73:a8:6e: 01:43:c4:93:ba:6f:da:6e:20:c9:5b:92:db:a6:44: 16:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1E:A3:EA:B3:AE:A8:3A:C1:60:58:86:D7:8A:3B:FF:7B:CB:72:82 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:5c:22:62:83:67:8f:39:52:d9:e9:a5:cf:90:4a:c4:43:b7: d7:d6:fb:c1:9d:88:4c:39:81:2b:db:f5:58:b5:6f:e2:a3:21: b9:07:f7:e4:e4:88:0a:3a:f3:90:57:2a:26:e5:54:20:fe:95: fb:70:83:4e:9f:aa:d1:14:23:9d:5d:81:e5:63:ba:da:b3:fb: ed:f6:03:31:90:68:bc:b0:ee:ae:ce:b4:8d:d5:c7:c8:e0:14: 0b:d9:06:6a:69:6c:d8:53:40:65:dc:17:5b:00:15:4d:b7:b6: 56:cc:6e:4f:5f:b8:65:18:2a:21:0c:3c:18:a7:cb:1f:38:99: 4d:9f:bf:18:1c:ce:d3:ba:42:ac:98:d8:45:5f:11:f0:ac:5e: 44:34:af:12:8b:df:b0:09:a8:dc:4c:90:cf:95:a5:6f:62:c7: 87:73:6c:8f:b7:8f:83:20:9c:37:28:d4:67:ae:0e:82:8e:90: 98:67:12:cd:15:3f:a6:be:08:b8:c2:d8:ae:0f:13:c3:e0:a6: 89:9b:0b:53:cd:15:b1:5e:46:dd:1d:71:aa:38:48:bf:bb:73: 59:d1:06:60:9c:b5:be:83:f2:3c:21:cb:03:2b:c2:50:88:ce: 27:b7:18:05:d7:47:09:dc:89:bb:8a:6f:4b:8a:e9:81:76:95: 1c:95:6f:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUxMTAzMDIxNjMwWhcNMjUxMTEwMDIxNjMwWjAYMRYwFAYD VQQDEw02OTA4MTA3Zi0wY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlrbQ9123JGYknxSgyYtbzGCebZwndRKPoApz4vki7vrWB6T8Jh+dIAvkxSVI 6IAMqsnUVIxeQwZB3S8O62Cx7ulmXJ32lUP5T50tJCAUFNpLTRXpLZa9lfvFXBi3 nKmWscuneekDivP0ukL0xcBjT0U8cJPSoxkuYr7XSbs/FAUcZ/KQ0gCpygm4J5wN 3VjXrvB/9UpjpU3kKgLl0D6JJbR2Ftq+JdZKvBDLddZo0uQlDPzaISS6ddnJ4Tjy F+62kZ07xoq7IQHJAqzENyvEwsrl8o082cPP4x3S8OttBq2Jq/EMMVwwGSZIJB1z qG4BQ8STum/abiDJW5LbpkQWhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoeo+qz rqg6wWBYhteKO/97y3KCMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdD cDZIazJrc3NCdnJTcXU1TGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwXCJig2ePOVLZ6aXPkErEQ7fX1vvBnYhMOYEr2/VYtW/ioyG5B/fk 5IgKOvOQVyom5VQg/pX7cINOn6rRFCOdXYHlY7ras/vt9gMxkGi8sO6uzrSN1cfI 4BQL2QZqaWzYU0Bl3BdbABVNt7ZWzG5PX7hlGCohDDwYp8sfOJlNn78YHM7TukKs mNhFXxHwrF5ENK8Si9+wCajcTJDPlaVvYseHc2yPt4+DIJw3KNRnrg6CjpCYZxLN FT+mvgi4wtiuDxPD4KaJmwtTzRWxXkbdHXGqOEi/u3NZ0QZgnLW+g/I8IcsDK8JQ iM4ntxgF10cJ3Im7im9LiumBdpUclW+N -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:33 2025 by rpki-client