$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json) Hash identifier: QeXnzdnPUhnk3K3bjqhGaOuP5T2qXuMaKoE8xtVXHWA= Subject key identifier: 90:A4:98:9D:7C:8E:2C:72:A9:C4:FE:0F:E1:84:E4:3C:1C:9A:C4:74 Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 0603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft Manifest number: 05FA Signing time: Sun 02 Nov 2025 22:55:21 +0000 Manifest this update: Sun 02 Nov 2025 22:55:21 +0000 Manifest next update: Sun 09 Nov 2025 22:55:21 +0000 Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: r5FhzeoYKzhIfm8A9imNftA/I01smb7UFXHXnIcy93E=) 2: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: 2FiQQsbz3nt2u/cekKkmnmxwVKcgAmIxkizQKnpeMp0=) 3: 18981398329B11EDB9F09862C4F9AE02.roa (hash: dJlRsSYRiHAfXA1Nnt7jiiGzcupZLCHRX4H/d6aCfuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1539 (0x603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A, serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: Nov 2 22:55:21 2025 GMT Not After : Nov 9 22:55:21 2025 GMT Subject: CN=6907e159-1b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:00:6c:00:0e:b7:4a:e6:63:76:28:3d:dd:97: 7d:e5:67:9a:5f:09:93:e6:74:d6:31:88:ea:1a:b4: 6b:a3:80:a1:1c:8b:8d:c3:f3:59:e7:21:c9:fa:a4: 35:0d:b4:c6:0d:ae:26:c6:51:89:74:e8:3e:db:1f: c0:3b:f8:46:e5:55:9d:6f:ea:bf:64:4c:ea:82:0b: 87:96:b6:d7:2e:33:ce:be:8e:e9:b2:6c:05:26:28: 88:66:04:93:21:95:4c:9c:01:33:29:1d:2e:32:3b: 25:89:c6:b5:be:d3:07:49:05:3d:a3:9f:a9:3a:fb: ab:4c:53:5f:72:4c:ba:2d:56:0a:4c:6b:d2:b2:87: 26:d8:b5:7d:6d:f9:05:93:84:19:6b:fb:3e:2d:bd: a8:d2:40:75:a0:0b:3e:3e:81:ea:11:61:7d:fb:cd: e6:ef:48:5c:51:72:2f:85:9a:c6:58:00:79:45:50: ce:6d:cc:e8:e9:00:14:74:a3:b1:5b:3a:93:99:65: be:8c:88:ad:2e:1d:a5:f3:59:18:53:d3:94:91:f3: fa:e3:dc:94:29:f2:6f:40:65:6a:62:e9:00:4a:f3: d2:87:e5:3d:ba:3e:64:26:48:1a:cb:5d:22:7b:a2: 32:2b:6a:19:39:83:9d:88:c7:f0:e6:d7:e3:be:34: 4f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A4:98:9D:7C:8E:2C:72:A9:C4:FE:0F:E1:84:E4:3C:1C:9A:C4:74 X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:01:55:77:b8:5c:7c:58:cc:2c:a5:5d:d8:01:bd:e0:f3:85: a0:16:af:cd:00:83:f7:be:4c:25:08:fb:67:e3:1b:7a:c7:ac: 46:c9:60:03:12:e0:1e:45:33:90:96:76:5b:a0:f9:14:7d:6b: e2:48:2a:63:3a:94:2b:96:66:a4:4d:60:ed:c7:1f:da:ed:d8: 72:8c:43:8c:3e:b1:35:eb:d0:0f:70:59:89:03:77:5b:3d:86: 85:37:06:d3:8d:3a:06:36:2b:7e:2a:5c:a5:4a:fc:c1:0e:8b: ec:aa:dd:84:60:ca:01:8a:bf:de:9d:3e:e9:d2:b5:35:2e:0c: 92:20:ee:42:f8:8b:5d:36:85:79:bc:03:c0:98:41:4e:05:d1: f5:5d:23:6d:ff:c7:ca:65:19:43:c8:7c:2c:30:8e:5d:e9:12: 65:35:fe:46:15:23:5d:7a:8c:60:46:a8:e4:0f:6a:a2:88:a2: a7:3d:b8:d2:df:ba:51:59:68:fb:c4:e7:bf:bc:a9:c2:37:de: 05:7d:f4:94:30:4f:48:80:24:ce:a2:45:a1:5d:41:5a:70:b9: ac:16:dc:33:82:bc:9c:ca:d7:b1:e7:53:65:b2:d0:5d:f1:69: d3:65:1b:07:75:85:f3:d2:13:fc:b0:d7:ca:4e:f0:1b:da:69: 7f:f3:ef:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjUxMTAyMjI1NTIxWhcNMjUxMTA5MjI1NTIxWjAYMRYwFAYD VQQDEw02OTA3ZTE1OS0xYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwBsAA63SuZjdig93Zd95WeaXwmT5nTWMYjqGrRro4ChHIuNw/NZ5yHJ+qQ1 DbTGDa4mxlGJdOg+2x/AO/hG5VWdb+q/ZEzqgguHlrbXLjPOvo7psmwFJiiIZgST IZVMnAEzKR0uMjslica1vtMHSQU9o5+pOvurTFNfcky6LVYKTGvSsocm2LV9bfkF k4QZa/s+Lb2o0kB1oAs+PoHqEWF9+83m70hcUXIvhZrGWAB5RVDObczo6QAUdKOx WzqTmWW+jIitLh2l81kYU9OUkfP649yUKfJvQGVqYukASvPSh+U9uj5kJkgay10i e6IyK2oZOYOdiMfw5tfjvjRPRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCkmJ18 jixyqcT+D+GE5DwcmsR0MB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUQ4QS9CQTJGMUI5QUNBRUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jw d3VDSWFoRE9CdlZmVzRRd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4AVV3uFx8WMwspV3YAb3g84WgFq/NAIP3vkwlCPtn4xt6x6xGyWAD EuAeRTOQlnZboPkUfWviSCpjOpQrlmakTWDtxx/a7dhyjEOMPrE169APcFmJA3db PYaFNwbTjToGNit+KlylSvzBDovsqt2EYMoBir/enT7p0rU1LgySIO5C+ItdNoV5 vAPAmEFOBdH1XSNt/8fKZRlDyHwsMI5d6RJlNf5GFSNdeoxgRqjkD2qiiKKnPbjS 37pRWWj7xOe/vKnCN94FffSUME9IgCTOokWhXUFacLmsFtwzgrycytex51NlstBd 8WnTZRsHdYXz0hP8sNfKTvAb2ml/8+9/ -----END CERTIFICATE-----Generated at Tue Nov 4 07:19:18 2025 by rpki-client