$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: Ehk02BxYF6dA5omnHjtb0n+ZZMymxbkJr2KYdPaNehE= Subject key identifier: 10:8E:10:47:39:7E:E7:6C:66:2D:B3:A2:4D:7B:42:59:A3:F1:78:E7 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 019E Signing time: Wed 05 Nov 2025 03:27:48 +0000 Manifest this update: Wed 05 Nov 2025 03:27:47 +0000 Manifest next update: Wed 12 Nov 2025 03:27:47 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: vT4sLulwU6vEzBuHJL2UXLTZDINOG04if02oNKaMvUg=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Nov 5 03:27:47 2025 GMT Not After : Nov 12 03:27:47 2025 GMT Subject: CN=690ac434-f441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0d:f5:eb:30:f7:6f:66:ec:1d:2e:31:27:42: 88:27:d4:fb:8c:42:f9:d7:6b:d4:08:49:09:59:e0: ac:4a:e7:0c:56:ce:40:2f:99:80:b3:d7:d1:5a:01: 7a:5e:53:b6:66:df:a6:8f:e7:76:01:7d:05:b9:9c: 0b:19:a3:2f:c0:6f:95:c3:e6:bf:2e:78:84:bc:8a: cf:d3:ee:4a:f9:08:0a:5c:35:3f:8e:4e:8a:c7:24: da:5b:05:e2:07:5e:4c:c5:5d:d8:6e:5f:93:79:7b: 16:c7:e0:36:91:11:13:71:34:02:81:21:cf:49:67: 94:f7:a7:46:f6:a7:e2:11:be:dd:85:e8:41:3f:15: a7:ba:48:50:69:e2:09:35:31:ee:5c:e9:7e:a2:16: c6:c0:e6:15:3a:d7:34:62:e7:cb:71:40:d5:d2:51: c2:8d:b8:cf:9a:3c:7c:b8:2f:0d:b5:ef:7a:84:f2: f9:b4:ea:28:7f:d9:fe:6d:b3:6e:2e:a3:c5:b0:d6: 30:47:97:37:b1:7f:fd:ac:c9:e0:33:0d:6d:ef:fc: 94:a2:93:24:59:20:22:53:a9:ae:71:74:df:58:ac: 1d:51:c0:be:28:a4:3f:c2:7e:e7:fb:ee:41:e9:ab: 2b:28:61:c1:a8:98:f2:24:29:40:f4:74:16:8d:72: 12:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8E:10:47:39:7E:E7:6C:66:2D:B3:A2:4D:7B:42:59:A3:F1:78:E7 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b2:45:5a:b9:3d:c6:d3:89:94:ed:5c:46:31:4c:b2:41:91: 07:e2:e4:ea:f1:96:70:26:df:44:fa:73:99:4e:81:2c:ee:44: 10:cc:45:bd:da:33:e1:28:ae:e0:9a:3e:92:96:9e:f0:88:0a: bc:14:01:2a:26:74:94:ca:51:5d:c5:b4:94:ce:37:86:7e:5c: 7a:4b:72:3f:90:e9:be:13:70:5c:2b:fb:34:0e:5c:bd:0a:29: 37:bf:84:0d:be:78:1f:49:63:f1:af:ae:97:1b:fb:d4:21:46: 84:35:72:f5:43:3e:03:d0:02:cd:8e:6b:ae:8f:c7:25:79:b3: 5c:16:f8:3a:c2:66:8d:8f:87:e3:3e:a9:f8:e6:38:23:8b:25: 08:6a:be:36:9c:a5:26:15:03:62:05:9e:95:db:6e:41:bd:c0: f8:49:3f:a7:51:04:60:61:45:c2:9c:f1:1d:7a:e8:77:0d:37: e6:3e:50:e2:03:9e:e1:2c:13:37:b5:b7:6e:16:1a:44:8c:3a: d8:b2:f8:3f:c8:dc:d3:38:65:ef:ef:15:fc:83:c5:ae:6e:51: 65:13:57:e5:c9:97:68:78:f0:a4:77:1a:79:b3:32:2b:df:37: d4:99:a7:49:63:13:f6:6a:e7:df:6c:d0:fd:07:99:9f:2b:34: 0d:be:be:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjUxMTA1MDMyNzQ3WhcNMjUxMTEyMDMyNzQ3WjAYMRYwFAYD VQQDEw02OTBhYzQzNC1mNDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g316zD3b2bsHS4xJ0KIJ9T7jEL512vUCEkJWeCsSucMVs5AL5mAs9fRWgF6 XlO2Zt+mj+d2AX0FuZwLGaMvwG+Vw+a/LniEvIrP0+5K+QgKXDU/jk6KxyTaWwXi B15MxV3Ybl+TeXsWx+A2kRETcTQCgSHPSWeU96dG9qfiEb7dhehBPxWnukhQaeIJ NTHuXOl+ohbGwOYVOtc0YufLcUDV0lHCjbjPmjx8uC8Nte96hPL5tOoof9n+bbNu LqPFsNYwR5c3sX/9rMngMw1t7/yUopMkWSAiU6mucXTfWKwdUcC+KKQ/wn7n++5B 6asrKGHBqJjyJClA9HQWjXISHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCOEEc5 fudsZi2zok17Qlmj8XjnMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+skVauT3G04mU7VxGMUyyQZEH4uTq8ZZwJt9E+nOZToEs7kQQzEW9 2jPhKK7gmj6Slp7wiAq8FAEqJnSUylFdxbSUzjeGflx6S3I/kOm+E3BcK/s0Dly9 Cik3v4QNvngfSWPxr66XG/vUIUaENXL1Qz4D0ALNjmuuj8clebNcFvg6wmaNj4fj Pqn45jgjiyUIar42nKUmFQNiBZ6V225BvcD4ST+nUQRgYUXCnPEdeuh3DTfmPlDi A57hLBM3tbduFhpEjDrYsvg/yNzTOGXv7xX8g8WublFlE1flyZdoePCkdxp5szIr 3zfUmadJYxP2auffbND9B5mfKzQNvr6A -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:53 2025 by rpki-client