$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: m3MUmFI/MjWc9tXdjwWNXjvuFRo8eG2s9L6/++zNfpw= Subject key identifier: D1:2E:A7:96:CF:52:1A:6F:06:BA:E4:3B:AC:F6:9A:FD:0D:F2:76:99 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 01E5 Signing time: Mon 03 Nov 2025 02:38:10 +0000 Manifest this update: Mon 03 Nov 2025 02:38:09 +0000 Manifest next update: Mon 10 Nov 2025 02:38:09 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: tIXnHPhDsYbaJ9osUityW7oLM8ZonymWDM9Ig+Yzjdk=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: L3qkCPmXp0iJV192Ab/fphVf55ttABMSsjRwG8i7X3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Nov 3 02:38:09 2025 GMT Not After : Nov 10 02:38:09 2025 GMT Subject: CN=69081591-4a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:be:e6:f1:5b:31:1b:98:32:60:b9:19:a1:9b: 7d:64:71:02:72:65:5b:55:08:2f:e3:e9:b3:c2:fa: 3f:f9:a0:45:7e:0b:b4:ec:21:7e:a5:6d:6f:cd:70: f7:a9:b8:5f:76:69:26:2d:61:3f:f7:fe:e2:6c:fb: 88:a2:de:7e:01:e9:0b:a9:e8:4b:b8:cc:d7:37:a8: 03:4d:cc:bc:38:04:0c:9e:a7:e4:cb:36:62:e8:e7: e4:cb:30:59:df:c6:f8:ba:f1:4c:03:34:08:72:1a: ee:23:ff:b4:de:fb:f8:df:bc:7a:63:b6:f2:28:6c: fb:37:3f:51:47:fd:a0:a5:68:bd:3a:20:fb:5a:75: f2:09:b8:ac:f3:07:c7:0e:03:be:3c:fc:20:c8:83: f7:96:41:2c:7d:0d:60:8e:6c:ad:3e:ab:3a:fb:66: b8:a4:50:92:fc:77:c9:ab:f8:cc:75:fb:5e:33:10: 7c:d1:69:fe:53:8d:0b:df:44:0e:36:f1:49:b4:d5: 1a:44:35:c8:de:b8:e6:00:21:c8:cf:3a:d0:7f:ff: 30:c0:14:82:69:60:f0:c6:6e:6d:85:18:59:8b:ba: 1a:43:de:eb:ab:7c:13:76:8e:94:3d:79:28:bb:97: 48:62:53:45:78:ab:1d:68:eb:42:ec:5c:66:06:51: d2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2E:A7:96:CF:52:1A:6F:06:BA:E4:3B:AC:F6:9A:FD:0D:F2:76:99 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:96:80:d0:52:81:ee:28:72:74:c5:14:53:e3:4f:6a:5c:43: 70:66:89:89:83:1f:82:91:c2:f5:43:89:64:d3:9e:bc:1e:f5: cf:f8:52:22:c9:8c:16:af:cb:d3:6e:98:7d:9f:33:42:1e:a4: 9e:11:ac:0b:6c:e7:66:90:48:4c:4e:80:ec:8c:f7:d6:f1:c2: 46:7c:f6:92:59:80:2a:81:b3:15:53:b0:0c:be:57:e5:c4:c8: f7:2c:e1:48:2d:4a:45:cb:a3:ff:f0:81:06:24:b1:d4:f9:6e: c0:f7:32:d4:f4:fb:3a:5b:20:13:e6:00:57:7a:9d:7b:22:89: ee:89:bd:5a:2c:4b:c5:7b:67:e9:c3:e6:26:ef:61:84:f6:e3: 42:18:ed:4d:7a:4b:7d:33:1b:7f:08:7a:d2:86:d7:2f:69:6c: fa:b5:23:c3:34:be:cd:07:4f:eb:2c:44:90:02:3e:76:ec:ab: 7b:57:e1:0c:47:a0:7b:9e:1e:d1:67:aa:c6:f5:af:11:38:e0: 8f:20:b6:72:98:d6:b0:9c:97:a3:cc:b8:0f:2e:9b:07:17:29: 11:58:fe:f1:d1:84:e7:fd:b7:a1:14:de:23:f5:2a:74:58:f7: 48:f7:85:66:4e:2d:43:d0:8a:ca:d3:36:5e:a1:18:02:12:17: a1:83:5d:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUxMTAzMDIzODA5WhcNMjUxMTEwMDIzODA5WjAYMRYwFAYD VQQDEw02OTA4MTU5MS00YTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8r7m8VsxG5gyYLkZoZt9ZHECcmVbVQgv4+mzwvo/+aBFfgu07CF+pW1vzXD3 qbhfdmkmLWE/9/7ibPuIot5+AekLqehLuMzXN6gDTcy8OAQMnqfkyzZi6OfkyzBZ 38b4uvFMAzQIchruI/+03vv437x6Y7byKGz7Nz9RR/2gpWi9OiD7WnXyCbis8wfH DgO+PPwgyIP3lkEsfQ1gjmytPqs6+2a4pFCS/HfJq/jMdfteMxB80Wn+U40L30QO NvFJtNUaRDXI3rjmACHIzzrQf/8wwBSCaWDwxm5thRhZi7oaQ97rq3wTdo6UPXko u5dIYlNFeKsdaOtC7FxmBlHSFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEup5bP UhpvBrrkO6z2mv0N8naZMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8loDQUoHuKHJ0xRRT409qXENwZomJgx+CkcL1Q4lk0568HvXP+FIi yYwWr8vTbph9nzNCHqSeEawLbOdmkEhMToDsjPfW8cJGfPaSWYAqgbMVU7AMvlfl xMj3LOFILUpFy6P/8IEGJLHU+W7A9zLU9Ps6WyAT5gBXep17Ionuib1aLEvFe2fp w+Ym72GE9uNCGO1Nekt9Mxt/CHrShtcvaWz6tSPDNL7NB0/rLESQAj527Kt7V+EM R6B7nh7RZ6rG9a8ROOCPILZymNawnJejzLgPLpsHFykRWP7x0YTn/behFN4j9Sp0 WPdI94VmTi1D0IrK0zZeoRgCEhehg11D -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:26 2025 by rpki-client