$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: NkPOR/wRmKFRQdTCxN4HousbeuinKekDg2UxBYgrQC4= Subject key identifier: A1:AB:5C:BD:E3:A3:D3:BF:C6:E7:2D:90:08:94:28:C9:63:55:13:D9 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2C7C Signing time: Tue 04 Nov 2025 16:52:51 +0000 Manifest this update: Tue 04 Nov 2025 16:52:51 +0000 Manifest next update: Tue 11 Nov 2025 16:52:51 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: 2G1hVqMv6bw3BAQSwviKf6CDMhPOP+npcublDv6pSmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3924 (0xf54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Nov 4 16:52:51 2025 GMT Not After : Nov 11 16:52:51 2025 GMT Subject: CN=690a2f63-055a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:a0:b0:3f:93:42:9d:cb:17:02:ec:cc:55: 07:a5:ea:99:24:97:3e:3b:38:96:65:09:46:12:d7: 56:ff:2b:ac:8b:47:e7:5e:cd:38:cd:03:41:c3:a1: d3:94:16:d3:61:ae:81:ae:e3:75:55:8d:67:04:79: 39:a1:45:e0:56:7d:ae:c3:2d:95:26:44:cc:01:a1: 38:e5:64:3c:63:ba:32:93:eb:1b:86:05:e5:15:0d: 1f:88:d2:f0:e3:18:81:63:90:96:fb:99:01:85:28: a2:89:d6:b5:0c:53:56:ab:e2:88:2c:68:4e:d3:bc: 05:39:73:bf:ee:c2:26:e9:f5:ea:dd:db:0b:55:01: b2:56:0d:30:46:1b:92:99:d5:e8:6e:31:97:31:82: 37:af:d6:7f:ed:46:ca:22:50:e9:0d:0d:92:b0:c1: 11:4d:93:d1:88:15:a4:9f:31:ea:ed:5f:39:e1:55: 50:02:51:e0:e6:7a:f4:ff:06:e9:17:58:e3:d5:24: 7b:bf:96:50:bd:1b:e0:46:4d:cd:56:dc:bd:04:90: 7f:11:42:1d:2b:f4:c5:e5:8c:1e:09:63:24:83:99: 32:cc:7c:cb:36:b3:a0:8f:b3:db:e7:d0:d5:b8:13: cb:4a:38:09:9a:71:bd:b0:eb:42:c2:68:5f:2d:9e: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AB:5C:BD:E3:A3:D3:BF:C6:E7:2D:90:08:94:28:C9:63:55:13:D9 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f0:39:20:4d:a9:1d:b5:2c:48:81:f2:5d:46:00:1f:a3:20: 3c:b2:13:c2:7f:f4:2f:61:07:4e:90:46:83:4d:22:d3:a8:fc: 6a:b2:72:5f:20:b2:4e:3e:f2:c8:f7:9d:14:42:a2:af:36:89: 4d:23:57:68:77:55:99:b8:b0:28:b5:d2:ac:81:2a:5d:ed:ad: 4c:2c:68:e3:1e:c1:34:95:8f:2c:d9:26:c7:a7:bb:a1:a3:e7: 9a:5d:87:37:af:51:bc:6b:e5:cf:42:b2:7f:81:16:33:c8:58: e3:08:79:23:a1:51:d4:af:a4:11:eb:5e:2d:d0:c8:fb:14:cd: 98:f9:08:d2:0d:17:16:26:b9:89:b7:f6:9f:ce:06:e3:80:5e: 96:4b:63:08:67:2a:72:44:64:3d:08:60:d4:a6:f3:64:93:66: f7:11:d7:11:af:b1:58:3b:91:9b:9d:15:5d:54:ec:a3:ad:1d: 95:64:00:13:82:3d:ff:40:f5:bb:ac:91:8f:1a:d4:22:3e:b2: e3:b3:4b:b5:6d:df:8d:d5:b1:e8:37:c0:ec:26:fb:ff:6e:12: 5e:5f:b0:dc:11:45:55:51:6a:8b:0e:f0:27:8b:43:d4:b3:aa: 20:2a:7a:d5:44:ce:77:fd:f8:fb:c1:1f:b3:e5:e6:6e:02:9a: f8:2e:f5:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUxMTA0MTY1MjUxWhcNMjUxMTExMTY1MjUxWjAYMRYwFAYD VQQDEw02OTBhMmY2My0wNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry6gsD+TQp3LFwLszFUHpeqZJJc+OziWZQlGEtdW/yusi0fnXs04zQNBw6HT lBbTYa6BruN1VY1nBHk5oUXgVn2uwy2VJkTMAaE45WQ8Y7oyk+sbhgXlFQ0fiNLw 4xiBY5CW+5kBhSiiida1DFNWq+KILGhO07wFOXO/7sIm6fXq3dsLVQGyVg0wRhuS mdXobjGXMYI3r9Z/7UbKIlDpDQ2SsMERTZPRiBWknzHq7V854VVQAlHg5nr0/wbp F1jj1SR7v5ZQvRvgRk3NVty9BJB/EUIdK/TF5YweCWMkg5kyzHzLNrOgj7Pb59DV uBPLSjgJmnG9sOtCwmhfLZ6KKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGrXL3j o9O/xuctkAiUKMljVRPZMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt8DkgTakdtSxIgfJdRgAfoyA8shPCf/QvYQdOkEaDTSLTqPxqsnJf ILJOPvLI950UQqKvNolNI1dod1WZuLAotdKsgSpd7a1MLGjjHsE0lY8s2SbHp7uh o+eaXYc3r1G8a+XPQrJ/gRYzyFjjCHkjoVHUr6QR614t0Mj7FM2Y+QjSDRcWJrmJ t/afzgbjgF6WS2MIZypyRGQ9CGDUpvNkk2b3EdcRr7FYO5GbnRVdVOyjrR2VZAAT gj3/QPW7rJGPGtQiPrLjs0u1bd+N1bHoN8DsJvv/bhJeX7DcEUVVUWqLDvAni0PU s6ogKnrVRM53/fj7wR+z5eZuApr4LvV/ -----END CERTIFICATE-----Generated at Wed Nov 5 17:59:52 2025 by rpki-client