$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft File: M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft (raw, json) Hash identifier: pifPaNvxFJSn0CeGlqh7Km88BTCcl8gGqgWJyjsHeGQ= Subject key identifier: EE:55:19:3E:20:CE:CB:04:A2:B5:87:9C:25:59:9C:DE:8B:35:7F:3E Authority key identifier: 33:97:B8:89:0E:33:7D:A0:94:8D:69:7D:42:30:D6:FE:46:33:D0:D0 Certificate issuer: /CN=A91A4030/serialNumber=3397B8890E337DA0948D697D4230D6FE4633D0D0 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft Manifest number: 0D Signing time: Mon 03 Nov 2025 07:59:32 +0000 Manifest this update: Mon 03 Nov 2025 07:59:32 +0000 Manifest next update: Mon 10 Nov 2025 07:59:32 +0000 Files and hashes: 1: M5e4iQ4zfaCUjWl9QjDW_kYz0NA.crl (hash: 1kXtDDglftvgK+jYKm5VLuHYOM2Uz9xSIzC9uebGzZE=) 2: E56B8AFEAB1411F0B1936926C4F9AE02.roa (hash: kENvzHNKo6IjGoWcT7mvOgf2Y85E5p1Dl4B5gZlD2OE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.crl rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4030, serialNumber=3397B8890E337DA0948D697D4230D6FE4633D0D0 Validity Not Before: Nov 3 07:59:32 2025 GMT Not After : Nov 10 07:59:32 2025 GMT Subject: CN=690860e4-8b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:70:84:18:24:ad:53:3e:6e:1c:bd:6e:d2:93: 94:76:c2:e9:e2:a0:13:e2:82:ed:06:0f:f0:ed:6a: 27:2d:21:1d:6b:63:2e:34:6a:db:30:7d:48:a4:8e: 47:83:d4:af:24:dd:9e:b4:4d:76:50:53:38:bf:ed: f2:4a:5a:c5:64:58:82:10:19:1a:4e:c5:bd:e5:66: 6e:6f:d8:9b:cb:ae:e6:74:cc:4f:d1:43:4e:a3:39: f1:50:2c:c9:27:33:ac:3c:cf:92:71:23:5f:f0:d6: 5a:c9:86:c2:0f:06:15:ac:8b:89:5c:07:27:37:4c: f2:50:9c:ed:e6:3a:51:f8:69:6a:cc:e0:80:db:24: fb:b2:4b:95:8f:fa:4e:98:4e:05:e9:14:b4:a1:9f: 9e:e4:e0:5d:43:3f:44:6e:77:0a:16:91:7b:93:60: b3:ad:c3:33:70:c2:2a:72:39:ac:34:95:46:96:da: fb:bd:c9:0e:dc:f0:28:77:33:68:c7:ab:66:58:7b: 00:40:ce:ed:be:77:d5:14:38:f0:c1:56:43:74:1c: 22:9a:ed:63:5b:44:cc:04:4d:72:55:d7:35:d6:81: ab:8e:ed:2a:57:5c:0a:d9:e0:93:93:2b:ad:1f:02: d6:af:19:6a:8b:57:7a:85:d7:f4:b3:80:e8:87:0d: bb:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:55:19:3E:20:CE:CB:04:A2:B5:87:9C:25:59:9C:DE:8B:35:7F:3E X509v3 Authority Key Identifier: keyid:33:97:B8:89:0E:33:7D:A0:94:8D:69:7D:42:30:D6:FE:46:33:D0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4030/20063C60AB1311F0976C9B1EC4F9AE02/M5e4iQ4zfaCUjWl9QjDW_kYz0NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:3f:d5:62:71:56:a1:83:29:04:62:39:5a:46:93:8b:d2:42: 32:c1:9a:00:5a:f2:87:d8:62:0c:35:0f:34:2f:55:d7:eb:54: 17:50:6d:10:c0:6a:48:c4:28:e5:b0:4a:d4:1c:3f:ae:1c:9a: 25:fc:f8:12:a1:f5:90:23:f9:cf:12:85:dd:47:67:b6:8e:13: 22:0a:4b:23:f9:56:98:11:f7:c9:c3:0a:ac:b8:b1:43:60:a2: d3:99:d4:66:12:14:c9:fe:63:ec:0e:ed:05:a4:fd:62:91:26: 12:bb:86:30:8c:5c:64:81:0a:df:cb:1e:23:1a:75:dc:e6:6b: bc:eb:84:2c:da:1e:f2:bd:5c:79:3d:f9:ac:79:55:2f:e5:0a: 74:3f:f1:10:a8:64:0a:4a:72:4f:b8:c1:af:20:d0:05:e2:90: e8:87:13:af:58:43:29:ed:f0:42:c9:69:12:aa:b3:ac:2c:9c: 9f:09:ea:14:66:65:4e:f2:b4:2a:53:22:dc:dd:31:65:62:f5: f9:6b:bf:b7:47:04:c2:81:ab:e1:6e:18:e0:ba:73:ca:25:2e: 7e:00:44:eb:b8:3f:a0:84:45:aa:74:ce:e6:7d:e3:e7:a6:7e: 2c:99:08:df:56:b0:e6:8b:68:6e:bd:5f:71:43:9e:b1:66:e1: 76:ef:cf:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDAzMDExMC8GA1UEBRMoMzM5N0I4ODkwRTMzN0RBMDk0OEQ2OTdENDIzMEQ2RkU0 NjMzRDBEMDAeFw0yNTExMDMwNzU5MzJaFw0yNTExMTAwNzU5MzJaMBgxFjAUBgNV BAMTDTY5MDg2MGU0LThiMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYcIQYJK1TPm4cvW7Sk5R2wunioBPigu0GD/DtaictIR1rYy40atswfUikjkeD 1K8k3Z60TXZQUzi/7fJKWsVkWIIQGRpOxb3lZm5v2JvLruZ0zE/RQ06jOfFQLMkn M6w8z5JxI1/w1lrJhsIPBhWsi4lcByc3TPJQnO3mOlH4aWrM4IDbJPuyS5WP+k6Y TgXpFLShn57k4F1DP0RudwoWkXuTYLOtwzNwwipyOaw0lUaW2vu9yQ7c8Ch3M2jH q2ZYewBAzu2+d9UUOPDBVkN0HCKa7WNbRMwETXJV1zXWgauO7SpXXArZ4JOTK60f AtavGWqLV3qF1/SzgOiHDbunAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7lUZPiDO ywSitYecJVmc3os1fz4wHwYDVR0jBBgwFoAUM5e4iQ4zfaCUjWl9QjDW/kYz0NAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0MDMwLzIwMDYzQzYwQUIx MzExRjA5NzZDOUIxRUM0RjlBRTAyL001ZTRpUTR6ZmFDVWpXbDlRakRXX2tZejBO QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTVlNGlRNHpmYUNValdsOVFqRFdfa1l6ME5BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 MDMwLzIwMDYzQzYwQUIxMzExRjA5NzZDOUIxRUM0RjlBRTAyL001ZTRpUTR6ZmFD VWpXbDlRakRXX2tZejBOQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHs/1WJxVqGDKQRiOVpGk4vSQjLBmgBa8ofYYgw1DzQvVdfrVBdQbRDA akjEKOWwStQcP64cmiX8+BKh9ZAj+c8Shd1HZ7aOEyIKSyP5VpgR98nDCqy4sUNg otOZ1GYSFMn+Y+wO7QWk/WKRJhK7hjCMXGSBCt/LHiMaddzma7zrhCzaHvK9XHk9 +ax5VS/lCnQ/8RCoZApKck+4wa8g0AXikOiHE69YQynt8ELJaRKqs6wsnJ8J6hRm ZU7ytCpTItzdMWVi9flrv7dHBMKBq+FuGOC6c8olLn4AROu4P6CERap0zuZ94+em fiyZCN9WsOaLaG69X3FDnrFm4Xbvz2s= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:58 2025 by rpki-client