$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: u7OOlqcIjWnNVp5mRRMND/krb2Roc75h9XI2hHq04Zo= Subject key identifier: 5D:AD:E5:97:4C:4F:8F:27:FA:02:61:78:70:8F:8A:BB:83:24:42:49 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C27 Signing time: Sun 26 Oct 2025 16:21:52 +0000 Manifest this update: Sun 26 Oct 2025 16:21:51 +0000 Manifest next update: Sun 02 Nov 2025 16:21:51 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: LmCo/jAM0k1Te7oDasM3jpTyjCUsi4gqvXyKpklOhqo=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 16:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7224 (0x1c38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Oct 26 16:21:51 2025 GMT Not After : Nov 2 16:21:51 2025 GMT Subject: CN=68fe4aa0-d0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:1d:63:4f:80:78:36:af:b9:f6:b2:2d:f5: 8e:36:99:9b:58:35:ba:7c:46:70:5c:d9:2b:21:e3: 25:13:89:59:73:3b:1e:6f:7c:cd:fb:04:51:2e:f2: 6e:7a:a1:7e:d7:b4:37:13:9b:1a:6b:fe:45:06:00: ab:5a:0c:85:80:ab:a2:c4:08:d2:ac:8f:ac:32:42: 30:d0:9a:f3:9c:54:b7:04:f7:fb:64:34:4a:7a:32: e0:1d:3e:d5:81:f5:bc:4e:07:8f:e5:99:6b:cb:4f: 99:05:55:4e:2b:04:04:24:29:0d:0f:7a:e9:70:8d: ab:a0:70:b1:c4:7b:ca:c8:a1:f5:6d:7f:bd:36:b4: fa:b5:b1:8b:4e:43:cc:d7:c6:03:3f:f9:f5:0a:08: 75:b7:93:3b:cb:24:66:90:27:50:c2:95:09:1c:8c: 67:4d:ab:91:33:94:09:bc:54:8a:4b:75:05:dc:af: 94:65:73:f9:d9:08:ba:ab:17:e4:8f:cc:b4:6b:19: ae:7f:92:2f:43:9d:c9:6f:e2:c9:8d:b3:d9:86:41: 5e:3e:c6:3e:2a:a6:81:6b:2c:f6:66:2b:34:59:aa: 84:a0:5f:4b:dc:8e:b4:97:d0:02:66:ec:3e:24:60: e8:1c:9d:72:8c:6b:71:33:2b:3e:2a:66:70:38:30: 56:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AD:E5:97:4C:4F:8F:27:FA:02:61:78:70:8F:8A:BB:83:24:42:49 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:14:55:8f:a2:48:39:ca:11:cf:8f:4b:fd:45:6d:da:9e:af: f2:93:d3:55:e2:b0:f7:35:82:26:b9:b6:57:48:87:99:f1:c0: 14:9c:e7:b1:8a:a1:d6:96:8f:0a:73:12:6f:bc:94:be:07:5a: 48:20:ed:f1:ee:23:3b:88:33:52:21:4a:04:d0:ac:3a:47:24: cd:e3:b0:cc:c9:57:ba:ed:97:9e:f8:c0:ff:3e:5f:a5:36:df: 62:60:7e:a6:d1:74:16:46:f4:6f:e1:04:5c:3b:09:ea:3f:d6: a5:c1:54:ee:2e:f6:84:d6:24:a6:78:50:69:5b:c8:8e:0e:3a: 68:5c:50:96:51:28:ee:a8:53:f1:6a:d7:bd:d4:19:55:71:07: 38:7d:0d:19:6d:7a:1b:2c:17:67:9e:0c:d1:40:6f:21:52:04: a7:b0:7e:18:5d:43:b6:ce:07:36:ff:91:4c:bc:ec:6f:b5:1b: f6:9c:c2:36:8f:d1:89:a4:c4:e5:31:6d:58:c5:6c:50:27:66: 28:d8:17:60:75:37:2e:d1:55:08:08:60:c9:89:23:0e:0e:90: 26:71:d5:51:68:ed:ee:0f:d6:70:81:f3:e5:ab:11:0a:5f:38: f3:9f:27:f3:24:0f:22:36:3c:80:ac:6d:93:9d:df:07:a5:79: 67:55:f2:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUxMDI2MTYyMTUxWhcNMjUxMTAyMTYyMTUxWjAYMRYwFAYD VQQDEw02OGZlNGFhMC1kMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9sdY0+AeDavufayLfWONpmbWDW6fEZwXNkrIeMlE4lZczseb3zN+wRRLvJu eqF+17Q3E5saa/5FBgCrWgyFgKuixAjSrI+sMkIw0JrznFS3BPf7ZDRKejLgHT7V gfW8TgeP5Zlry0+ZBVVOKwQEJCkND3rpcI2roHCxxHvKyKH1bX+9NrT6tbGLTkPM 18YDP/n1Cgh1t5M7yyRmkCdQwpUJHIxnTauRM5QJvFSKS3UF3K+UZXP52Qi6qxfk j8y0axmuf5IvQ53Jb+LJjbPZhkFePsY+KqaBayz2Zis0WaqEoF9L3I60l9ACZuw+ JGDoHJ1yjGtxMys+KmZwODBWswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2t5ZdM T48n+gJheHCPiruDJEJJMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5FFWPokg5yhHPj0v9RW3anq/yk9NV4rD3NYImubZXSIeZ8cAUnOex iqHWlo8KcxJvvJS+B1pIIO3x7iM7iDNSIUoE0Kw6RyTN47DMyVe67Zee+MD/Pl+l Nt9iYH6m0XQWRvRv4QRcOwnqP9alwVTuLvaE1iSmeFBpW8iODjpoXFCWUSjuqFPx ate91BlVcQc4fQ0ZbXobLBdnngzRQG8hUgSnsH4YXUO2zgc2/5FMvOxvtRv2nMI2 j9GJpMTlMW1YxWxQJ2Yo2BdgdTcu0VUICGDJiSMODpAmcdVRaO3uD9ZwgfPlqxEK XzjznyfzJA8iNjyArG2Tnd8HpXlnVfIO -----END CERTIFICATE-----Generated at Mon Oct 27 01:38:15 2025 by rpki-client