$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: J+nTZkMlrSRKLhL4jyTpBkw16klj1vyZHfqCHiiDPuA= Subject key identifier: 53:10:5B:FD:38:49:2E:4C:63:24:B6:3C:0D:05:DB:4D:1A:FE:7A:58 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: 88 Signing time: Mon 03 Nov 2025 06:36:15 +0000 Manifest this update: Mon 03 Nov 2025 06:36:14 +0000 Manifest next update: Mon 10 Nov 2025 06:36:14 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: JzyO1IkYQF9oczd7UifSrhRjlzah+sDJX3nSq0Q98dk=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: NgHWuWasRdq7/Tb6jtbOAPkZk5G59CnEADx3vts0M7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Nov 3 06:36:14 2025 GMT Not After : Nov 10 06:36:14 2025 GMT Subject: CN=69084d5e-e1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:30:cd:9d:56:a2:0f:bc:ef:d7:b1:ca:20: 86:5e:23:32:30:5a:fb:0d:2b:2e:f0:53:79:69:ec: f2:72:e8:9a:a0:eb:a0:b6:9d:d9:7b:53:6e:ed:f7: 39:8c:a3:71:b6:28:50:29:d7:e6:9b:6d:2d:19:1f: 55:da:57:ef:96:8e:44:0a:a6:2e:bf:3c:1b:78:a4: a6:24:d3:84:a7:59:6d:d0:e5:61:d4:c4:d0:a8:13: 38:19:ee:45:dd:f8:94:13:cc:d9:4e:e4:a2:45:db: 52:99:58:1e:30:ac:8c:7a:02:55:73:87:ac:c8:d6: df:30:ec:ea:53:5f:62:a3:af:f9:2b:1d:63:09:33: 6a:49:67:7a:4b:98:8d:81:9f:5e:71:25:8e:5d:5c: a6:2d:56:e4:94:b9:28:3a:68:95:9f:0d:15:6f:a2: d8:16:84:f1:88:26:37:07:f3:f6:34:65:96:31:5d: ad:00:83:54:1c:ba:c7:ea:9d:40:e9:dd:8e:1f:24: 6d:fa:a4:43:5f:3d:7b:b7:d8:40:58:fd:40:fa:9a: f0:6d:15:3b:44:20:3e:6d:de:54:e1:3e:e3:ba:e8: be:34:bc:eb:a8:05:99:a3:5d:e1:e7:65:bd:7a:9f: b9:88:d1:a0:66:09:9d:2b:92:c5:31:69:9b:04:e6: cd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:10:5B:FD:38:49:2E:4C:63:24:B6:3C:0D:05:DB:4D:1A:FE:7A:58 X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:46:9c:de:d1:05:80:e7:b8:a7:ee:b0:ed:64:d0:e0:32:cb: 4f:1f:c3:64:9e:d6:ec:2a:31:3b:a6:dc:28:17:33:86:61:67: 77:71:25:b3:4d:3c:ac:ae:19:d8:09:b6:6a:df:c5:a6:f8:05: 35:cc:d2:26:8e:0e:e7:8b:4c:e2:ed:bc:98:cc:ca:c8:20:b5: 0e:32:c2:dc:c7:61:bf:61:27:59:02:da:8f:8b:79:a3:80:d0: 48:bc:49:18:f4:ed:cc:8c:19:0b:5b:de:07:f7:6d:f1:a3:1d: 3c:46:de:56:ee:1f:62:0b:b6:55:d8:9c:21:5f:d5:04:4f:9d: 6b:8b:71:66:97:c8:4f:c2:35:f7:4a:e8:f0:39:92:8c:2f:f3: dc:9c:4e:e8:7e:3f:42:4d:b3:85:31:5e:b9:93:6a:d6:e0:3e: 59:d6:f5:88:64:8f:c9:b2:df:1e:cd:5b:eb:c4:e4:ec:15:2d: 34:35:8d:9f:ff:21:25:48:fd:7e:b0:17:f9:e5:ac:b8:f5:bf: 61:ac:72:a3:40:3d:b6:18:c1:1f:e9:79:82:8b:f9:d2:4c:c3: e7:74:39:a8:12:da:45:27:b5:1f:2b:3b:47:bc:59:92:6b:f7: 7f:59:fd:3f:90:7a:ee:6d:ef:3c:cb:b9:27:41:51:8a:3f:9f: 51:5a:8b:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGM0IxMTAvBgNVBAUTKEEzOEQ0ODdCRDVEOUE4QTg5NDgwMjc0RkU2RjdDMDYx QzYyNEJDQzAwHhcNMjUxMTAzMDYzNjE0WhcNMjUxMTEwMDYzNjE0WjAYMRYwFAYD VQQDEw02OTA4NGQ1ZS1lMWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygQwzZ1Wog+879exyiCGXiMyMFr7DSsu8FN5aezycuiaoOugtp3Ze1Nu7fc5 jKNxtihQKdfmm20tGR9V2lfvlo5ECqYuvzwbeKSmJNOEp1lt0OVh1MTQqBM4Ge5F 3fiUE8zZTuSiRdtSmVgeMKyMegJVc4esyNbfMOzqU19io6/5Kx1jCTNqSWd6S5iN gZ9ecSWOXVymLVbklLkoOmiVnw0Vb6LYFoTxiCY3B/P2NGWWMV2tAINUHLrH6p1A 6d2OHyRt+qRDXz17t9hAWP1A+prwbRU7RCA+bd5U4T7juui+NLzrqAWZo13h52W9 ep+5iNGgZgmdK5LFMWmbBObNrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMQW/04 SS5MYyS2PA0F200a/npYMB8GA1UdIwQYMBaAFKONSHvV2aiolIAnT+b3wGHGJLzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUYzQi9BQzc2MjIwMEU5 QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFLaVVnQ2RQNXZmQVljWWt2 TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUYzQi9BQzc2MjIwMEU5QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi9vNDFJZTlYWnFL aVVnQ2RQNXZmQVljWWt2TUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSRpze0QWA57in7rDtZNDgMstPH8NkntbsKjE7ptwoFzOGYWd3cSWz TTysrhnYCbZq38Wm+AU1zNImjg7ni0zi7byYzMrIILUOMsLcx2G/YSdZAtqPi3mj gNBIvEkY9O3MjBkLW94H923xox08Rt5W7h9iC7ZV2JwhX9UET51ri3Fml8hPwjX3 SujwOZKML/PcnE7ofj9CTbOFMV65k2rW4D5Z1vWIZI/Jst8ezVvrxOTsFS00NY2f /yElSP1+sBf55ay49b9hrHKjQD22GMEf6XmCi/nSTMPndDmoEtpFJ7UfKztHvFmS a/d/Wf0/kHrube88y7knQVGKP59RWoui -----END CERTIFICATE-----Generated at Tue Nov 4 07:21:51 2025 by rpki-client