$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: 052Td+OLOyWpvF7GDNyPODGz5vkAdr5Um3keglHf6eY= Subject key identifier: F4:21:20:9D:F1:09:C3:73:65:AF:18:A6:17:A7:67:02:F7:56:D4:88 Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: 81 Signing time: Mon 03 Nov 2025 06:42:20 +0000 Manifest this update: Mon 03 Nov 2025 06:42:20 +0000 Manifest next update: Mon 10 Nov 2025 06:42:20 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: IOrfQ/rgzOuvt8odBjJUL/78ffxPIeA8ZJhtYmOff3o=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Nov 3 06:42:20 2025 GMT Not After : Nov 10 06:42:20 2025 GMT Subject: CN=69084ecc-d045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f6:7a:59:b2:1c:9c:5f:73:c1:f9:84:5d:a1: b0:ff:2f:a5:a6:67:a1:d6:c3:5b:a6:0d:f5:f8:dd: 06:b9:aa:cd:1f:74:88:32:44:03:20:a2:de:10:f1: aa:f2:44:b0:4d:14:d6:18:9f:58:f7:7c:e8:62:6e: 04:10:cb:a0:37:6d:e1:90:97:ee:c8:5a:11:b3:72: f8:81:77:8a:d5:3a:f1:64:bc:f1:3d:3f:00:88:1f: 2f:3c:9f:b8:5f:8e:ab:66:ee:04:e6:26:82:63:ca: 44:61:4b:10:f5:a6:98:19:b0:a3:de:cf:b0:36:29: 93:01:31:c3:94:00:07:83:67:f7:42:ee:e0:94:90: ed:1d:85:a4:51:2a:e9:30:64:65:89:4e:a3:57:00: 02:01:b6:a3:95:51:49:48:e5:07:2b:af:f6:a8:17: 2d:62:cc:a3:40:7d:3b:5a:44:76:a1:30:7d:b6:5a: 77:93:14:88:71:82:0d:01:e4:d4:b0:51:67:19:6b: 14:d3:e5:1d:f0:19:23:2e:59:58:7d:8a:d5:6e:c2: 99:85:2c:b3:00:da:5c:98:3d:cd:bd:6b:84:f1:2e: 15:a9:89:0a:9c:46:ba:2c:f8:26:87:22:da:91:cf: 97:8a:0a:6a:84:56:80:9a:12:b3:aa:19:34:6d:5b: 19:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:21:20:9D:F1:09:C3:73:65:AF:18:A6:17:A7:67:02:F7:56:D4:88 X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:84:38:1f:41:ec:3f:ea:aa:79:b9:e8:b0:cf:5c:7a:81:30: 87:b6:0f:bd:34:31:c2:57:27:fc:2e:5b:19:83:dd:9a:fc:b7: fc:2c:66:a3:da:fa:6c:d7:b6:4e:ce:a9:8c:a9:79:4d:6a:a4: 27:1f:89:28:fd:cf:c1:95:cf:d7:8e:84:75:b6:55:f1:51:db: b9:34:1d:eb:30:71:bd:c0:29:c0:f3:80:f6:f9:e6:47:af:23: 8a:d2:19:6b:98:bd:44:e1:0e:4c:09:56:28:6a:ce:54:a8:b0: 07:ac:cc:68:19:ac:6e:ce:c9:44:36:a7:0d:f7:5b:ee:02:6a: df:89:9f:06:6f:56:49:ce:3d:76:2d:d9:b3:1f:1b:87:f0:28: a5:49:a6:4f:b0:93:8b:3d:05:ef:60:49:dc:ed:a2:ab:65:c0: ea:ba:c7:7e:1d:ab:5c:23:46:58:75:f1:a0:6f:89:04:ae:ee: 5a:b7:fa:31:b7:73:73:34:6c:93:62:0a:62:1f:bd:59:3e:10: bf:38:ef:92:e8:72:55:fd:5a:9b:8b:2a:02:4a:1f:1e:69:f8: 59:f0:94:e9:b8:da:95:6b:78:74:52:a9:d5:b4:f6:ba:b3:35: db:2f:45:6b:e9:5a:7e:fc:67:78:d6:67:df:f3:3d:f3:a2:a8: 32:90:29:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5ODUxMTAvBgNVBAUTKDI5QURCMzlCNjIwRUFFM0NCOEFGQ0EyQ0ExODVGNUM0 ODc2RkQwNDMwHhcNMjUxMTAzMDY0MjIwWhcNMjUxMTEwMDY0MjIwWjAYMRYwFAYD VQQDEw02OTA4NGVjYy1kMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufZ6WbIcnF9zwfmEXaGw/y+lpmeh1sNbpg31+N0GuarNH3SIMkQDIKLeEPGq 8kSwTRTWGJ9Y93zoYm4EEMugN23hkJfuyFoRs3L4gXeK1TrxZLzxPT8AiB8vPJ+4 X46rZu4E5iaCY8pEYUsQ9aaYGbCj3s+wNimTATHDlAAHg2f3Qu7glJDtHYWkUSrp MGRliU6jVwACAbajlVFJSOUHK6/2qBctYsyjQH07WkR2oTB9tlp3kxSIcYINAeTU sFFnGWsU0+Ud8BkjLllYfYrVbsKZhSyzANpcmD3NvWuE8S4VqYkKnEa6LPgmhyLa kc+XigpqhFaAmhKzqhk0bVsZTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQhIJ3x CcNzZa8YphenZwL3VtSIMB8GA1UdIwQYMBaAFCmts5tiDq48uK/KLKGF9cSHb9BD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzk4NS82NzNBQTJGNEY1 QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3JqeTRyOG9zb1lYMXhJZHYw RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3Jq eTRyOG9zb1lYMXhJZHYwRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCohDgfQew/6qp5ueiwz1x6gTCHtg+9NDHCVyf8LlsZg92a/Lf8LGaj 2vps17ZOzqmMqXlNaqQnH4ko/c/Blc/XjoR1tlXxUdu5NB3rMHG9wCnA84D2+eZH ryOK0hlrmL1E4Q5MCVYoas5UqLAHrMxoGaxuzslENqcN91vuAmrfiZ8Gb1ZJzj12 LdmzHxuH8CilSaZPsJOLPQXvYEnc7aKrZcDqusd+HatcI0ZYdfGgb4kEru5at/ox t3NzNGyTYgpiH71ZPhC/OO+S6HJV/VqbiyoCSh8eafhZ8JTpuNqVa3h0UqnVtPa6 szXbL0Vr6Vp+/Gd41mff8z3zoqgykClj -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:01 2025 by rpki-client