$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: W68T8dP2jwAIDfyKqXtRvstsJrhYq+9oGOelsAf5sLc= Subject key identifier: A6:EF:D2:1E:07:1E:61:94:92:C2:2C:94:FB:D6:DF:C0:D4:DA:88:8F Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 0416 Signing time: Mon 03 Nov 2025 00:22:28 +0000 Manifest this update: Mon 03 Nov 2025 00:22:27 +0000 Manifest next update: Mon 10 Nov 2025 00:22:27 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: 6l3dICzkZRFYizN5QeZ/SXxwBNc14lXHq2i0xYjau2c=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: 3IMIlDIIJ2OW6DDbM2+fc2GlxtLv0j04UxGtHanf/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Nov 3 00:22:27 2025 GMT Not After : Nov 10 00:22:27 2025 GMT Subject: CN=6907f5c3-7fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:e1:59:87:0d:9d:a1:23:c0:62:48:80:86:70: d0:79:52:cd:1f:3b:ba:ea:f0:98:3b:a8:cd:fc:26: 1e:18:0d:c9:bd:0e:ff:db:19:fc:f1:a5:2d:1a:7c: 66:ae:54:1b:73:b7:a3:59:c1:49:ac:32:2b:36:b0: 51:fd:3b:57:ec:8b:74:ee:b3:c1:bf:e2:8d:ac:73: 1e:41:d8:4f:97:81:30:ff:51:87:c8:95:60:b3:3e: 64:28:ae:1f:08:18:65:c8:30:21:b4:4f:ce:15:db: 69:ff:66:26:3d:c8:54:3d:f1:3f:3e:db:9b:f6:c8: ae:4a:79:56:2f:8d:1f:44:d6:90:52:f0:0f:3d:58: 31:f2:ce:16:2c:4b:ec:1a:94:20:07:00:a4:79:99: 68:5a:9e:6b:d1:01:31:f7:70:bb:c8:27:22:05:ee: 20:81:11:04:20:74:97:fa:36:66:28:76:c6:61:b8: 2e:88:15:8e:b0:f5:13:b0:ef:5c:f2:8d:65:1c:41: 02:41:db:9e:e4:8f:c6:45:da:f6:19:74:fb:e4:82: 67:e9:18:e4:2d:ab:fa:a8:ff:92:38:98:77:df:ff: 89:de:ed:b1:d6:34:d1:93:51:5e:d2:ed:19:8f:5e: 00:5b:12:17:a3:13:83:d5:bf:2a:cd:2a:a1:be:a1: 8c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EF:D2:1E:07:1E:61:94:92:C2:2C:94:FB:D6:DF:C0:D4:DA:88:8F X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:36:53:8b:eb:b3:7f:14:35:6f:65:6f:11:5a:7a:21:8c:c3: de:4a:fe:59:47:21:32:27:9c:f8:74:28:e7:ee:be:17:a1:a7: 53:00:0f:8a:45:d7:0d:95:c0:54:e1:09:d8:ea:66:e4:91:fd: 09:f8:aa:06:2e:1e:69:c1:43:e0:d1:9b:9c:f2:e4:44:a5:b1: 2d:35:bb:cd:af:6d:74:ef:b0:e8:c3:f5:a7:ed:01:a4:e7:6e: e6:fe:15:b8:12:91:37:4d:4d:49:ce:43:a3:e4:d4:7d:22:7b: c2:5c:0f:f9:eb:9d:2d:ae:24:49:ee:46:a1:fa:e0:69:36:40: b0:ec:c4:fe:10:e4:48:40:0a:0a:aa:42:4c:ad:9f:fb:cb:84: 92:59:a7:68:30:f2:57:f5:99:b3:85:34:a8:9c:07:b4:92:9e: 1b:18:70:31:90:5e:ce:08:da:26:6b:6a:64:7d:45:40:89:66: a7:61:e9:f5:1a:3f:aa:0e:e3:f4:8a:c3:b1:7a:20:30:d7:33: 64:dc:9d:5e:c5:4a:03:5e:0f:63:cd:db:dd:fe:78:1f:80:72: 0d:23:e4:68:2b:aa:62:c9:92:ec:12:0f:ba:cb:8f:45:c9:87: 35:1c:1b:b3:ff:0f:84:b4:a9:37:ef:e1:ec:ad:ba:81:76:65: b0:f6:1b:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUxMTAzMDAyMjI3WhcNMjUxMTEwMDAyMjI3WjAYMRYwFAYD VQQDEw02OTA3ZjVjMy03ZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9OFZhw2doSPAYkiAhnDQeVLNHzu66vCYO6jN/CYeGA3JvQ7/2xn88aUtGnxm rlQbc7ejWcFJrDIrNrBR/TtX7It07rPBv+KNrHMeQdhPl4Ew/1GHyJVgsz5kKK4f CBhlyDAhtE/OFdtp/2YmPchUPfE/Ptub9siuSnlWL40fRNaQUvAPPVgx8s4WLEvs GpQgBwCkeZloWp5r0QEx93C7yCciBe4ggREEIHSX+jZmKHbGYbguiBWOsPUTsO9c 8o1lHEECQdue5I/GRdr2GXT75IJn6RjkLav6qP+SOJh33/+J3u2x1jTRk1Fe0u0Z j14AWxIXoxOD1b8qzSqhvqGM8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbv0h4H HmGUksIslPvW38DU2oiPMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVNlOL67N/FDVvZW8RWnohjMPeSv5ZRyEyJ5z4dCjn7r4XoadTAA+K RdcNlcBU4QnY6mbkkf0J+KoGLh5pwUPg0Zuc8uREpbEtNbvNr21077Dow/Wn7QGk 527m/hW4EpE3TU1JzkOj5NR9InvCXA/5650triRJ7kah+uBpNkCw7MT+EORIQAoK qkJMrZ/7y4SSWadoMPJX9ZmzhTSonAe0kp4bGHAxkF7OCNoma2pkfUVAiWanYen1 Gj+qDuP0isOxeiAw1zNk3J1exUoDXg9jzdvd/ngfgHINI+RoK6piyZLsEg+6y49F yYc1HBuz/w+EtKk37+HsrbqBdmWw9htO -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:25 2025 by rpki-client