$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: KLLZr9LdS7Y7tyA7NMswZnzPBd13zUi1lK/z0piOcyE= Subject key identifier: 47:44:D8:4A:EF:DD:32:29:D6:C7:06:B1:E9:BD:C4:1A:AF:25:9E:B2 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 0173 Signing time: Mon 03 Nov 2025 04:05:01 +0000 Manifest this update: Mon 03 Nov 2025 04:05:00 +0000 Manifest next update: Mon 10 Nov 2025 04:05:00 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: +q7gUpnb9jJ0b82CJoWfrRoOYsO75D90MRET+VfOEJs=) 2: 749BAA209BC911F0B2979527C4F9AE02.roa (hash: LzbUGtpSl+ZyW2ny+qQFMDTLA27guJpHBkGcUw+uCb8=) 3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: mJeqjVOv7jvR5HIjSJKMtiF4WeNSaF9wcOpOHqbk62w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:05:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Nov 3 04:05:00 2025 GMT Not After : Nov 10 04:05:00 2025 GMT Subject: CN=690829ed-b3f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:76:7b:b4:8f:92:21:88:25:e1:15:11:36:1e: f7:ac:1e:11:dd:6a:b3:63:54:69:ca:16:95:ee:17: a9:fb:de:64:2f:26:24:1a:61:7c:6c:cf:4a:91:de: 96:27:03:26:f3:f2:5e:dc:a4:04:93:39:7b:9b:cf: 2f:5a:63:97:57:2e:67:34:c4:eb:07:ae:47:5e:d8: d7:73:d2:84:cd:19:9a:67:5e:f2:98:63:e4:f1:28: 8d:1c:49:2d:09:93:44:21:86:73:11:e9:8c:3c:d4: b4:be:1e:76:e3:b0:25:29:e2:b4:37:8d:60:ed:58: 97:6b:b1:c1:1d:7a:67:8c:c2:80:9b:71:53:f9:0f: 82:b2:ae:d3:f3:ab:6d:f4:5c:a2:8a:24:36:9c:86: 93:64:4b:c4:73:7e:a2:58:d0:2a:dc:77:45:98:7e: 03:ec:aa:c8:15:28:9a:1f:46:97:1d:91:92:6d:fe: a2:97:b5:59:94:a2:8e:9e:ec:b0:44:70:2b:be:e1: ef:16:45:e0:47:e5:bc:d6:d6:9a:64:20:65:ab:2a: ec:e6:f5:e7:de:f3:94:b2:ef:9a:0f:e3:ad:9d:cc: 41:0e:5a:ce:66:15:51:5a:49:e6:06:81:74:5e:10: 44:ea:52:fa:2c:ae:9d:70:f7:95:4c:4a:25:07:5b: 88:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:44:D8:4A:EF:DD:32:29:D6:C7:06:B1:E9:BD:C4:1A:AF:25:9E:B2 X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:8c:f0:5a:8c:7b:27:cf:7f:c8:e9:26:dd:a9:6b:0b:f2:eb: 31:53:f7:27:d7:98:f8:b1:1e:6d:56:f1:9f:3b:1e:5d:ee:f6: 55:d0:70:83:e6:c2:02:8d:31:c4:55:cd:32:9b:68:69:a0:05: 01:28:b9:1a:f8:b8:fd:2c:a1:cd:7b:00:50:7f:9c:d6:d0:ff: 5f:f1:5f:3f:92:7e:1b:71:aa:cc:83:a6:21:83:f1:23:61:fb: a8:17:46:e5:f1:46:c3:77:a3:a3:f9:9b:f2:80:0f:d0:63:a1: 82:56:ba:73:ec:cb:d2:18:80:a5:21:e5:f4:9d:ea:b1:ee:1a: a3:8f:1e:e9:1f:9b:28:e0:3f:f4:8c:de:57:49:d8:7b:22:8d: 3b:ae:bd:a1:96:d1:65:0c:69:be:69:88:8a:96:f8:e4:1c:c5: 8e:cd:92:40:c8:05:0e:74:59:06:39:18:eb:9d:4b:44:4e:db: 30:b7:7c:b9:ea:ee:83:3f:13:bc:8e:b2:6f:48:d4:70:6e:db: 6c:ef:d8:51:5c:ce:03:d8:1b:bc:cb:24:88:fe:85:11:1c:40: ac:c1:3a:50:47:4d:7f:61:fb:b5:95:79:e1:04:12:17:21:22: 20:0e:7e:77:66:0a:f0:82:85:9b:4b:42:4a:d5:97:44:90:ea: 16:a4:c3:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjUxMTAzMDQwNTAwWhcNMjUxMTEwMDQwNTAwWjAYMRYwFAYD VQQDEw02OTA4MjllZC1iM2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnZ7tI+SIYgl4RURNh73rB4R3WqzY1RpyhaV7hep+95kLyYkGmF8bM9Kkd6W JwMm8/Je3KQEkzl7m88vWmOXVy5nNMTrB65HXtjXc9KEzRmaZ17ymGPk8SiNHEkt CZNEIYZzEemMPNS0vh5247AlKeK0N41g7ViXa7HBHXpnjMKAm3FT+Q+Csq7T86tt 9FyiiiQ2nIaTZEvEc36iWNAq3HdFmH4D7KrIFSiaH0aXHZGSbf6il7VZlKKOnuyw RHArvuHvFkXgR+W81taaZCBlqyrs5vXn3vOUsu+aD+OtncxBDlrOZhVRWknmBoF0 XhBE6lL6LK6dcPeVTEolB1uIvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdE2Erv 3TIp1scGsem9xBqvJZ6yMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJX dnlkTGkzcUpqR2tsVHJ1WU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAujPBajHsnz3/I6SbdqWsL8usxU/cn15j4sR5tVvGfOx5d7vZV0HCD 5sICjTHEVc0ym2hpoAUBKLka+Lj9LKHNewBQf5zW0P9f8V8/kn4bcarMg6Yhg/Ej YfuoF0bl8UbDd6Oj+ZvygA/QY6GCVrpz7MvSGIClIeX0neqx7hqjjx7pH5so4D/0 jN5XSdh7Io07rr2hltFlDGm+aYiKlvjkHMWOzZJAyAUOdFkGORjrnUtETtswt3y5 6u6DPxO8jrJvSNRwbtts79hRXM4D2Bu8yySI/oURHECswTpQR01/Yfu1lXnhBBIX ISIgDn53ZgrwgoWbS0JK1ZdEkOoWpMM+ -----END CERTIFICATE-----Generated at Tue Nov 4 22:52:26 2025 by rpki-client