$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft File: _SqdXvq5ERsKWjAT80wsva_QH8I.mft (raw, json) Hash identifier: 38DYese4DPjaXRKe5+axQK7mbTvIpYI61fRgXsiQ2Z0= Subject key identifier: 91:6E:7B:D2:D2:2C:6F:28:3B:95:5E:84:43:57:98:9E:76:36:65:94 Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 0771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft Manifest number: 076C Signing time: Tue 04 Nov 2025 21:41:33 +0000 Manifest this update: Tue 04 Nov 2025 21:41:32 +0000 Manifest next update: Tue 11 Nov 2025 21:41:32 +0000 Files and hashes: 1: _SqdXvq5ERsKWjAT80wsva_QH8I.crl (hash: AeYOe73qVSfRMG/P9/tfgmbcjxCGpHvAEqa2L5SU3Vc=) 2: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (hash: OHqpc630iPDrvxa3JYL+djk/kcEwI5eOHtscWctQIpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B, serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: Nov 4 21:41:32 2025 GMT Not After : Nov 11 21:41:32 2025 GMT Subject: CN=690a730d-dd2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c5:14:3d:62:20:83:0a:bd:b3:b7:6b:11:f0: f5:b7:93:e9:af:42:4d:dd:6d:db:22:5a:10:1a:d9: 78:1f:5c:e1:a6:98:80:53:16:2f:27:79:c4:af:33: 57:26:45:2a:fd:5e:5a:cf:eb:59:5c:cd:bf:c8:38: 02:c0:a0:10:97:d9:e6:6e:d5:df:84:d6:56:71:2f: 08:31:23:b6:14:ee:1d:d8:c8:52:f1:9d:24:d7:d6: 43:6f:97:fa:2b:2e:f6:ad:ec:b3:ed:8d:e2:5d:21: 6d:c9:f0:ba:3e:4b:50:46:89:ba:b8:7b:6a:c0:a1: b9:26:ad:88:68:8c:c4:69:c6:c9:ac:a9:57:68:52: 9f:0d:c2:0b:10:a0:b2:8f:d7:84:f9:e3:ee:bd:a6: fe:98:c5:c8:3b:81:3b:1d:e8:78:82:7b:27:7c:4c: e9:11:f3:67:0d:0c:00:1d:05:7d:7c:7c:13:4c:78: c6:d0:5f:cf:7f:4e:b9:07:41:e4:be:bc:bf:b9:9f: 2f:b9:e3:f0:36:f8:d2:92:4b:9a:26:b5:ac:ca:be: b2:78:9d:ff:b2:9a:f2:a3:dc:1a:85:57:8a:4c:68: 85:e6:c0:00:ed:88:a3:a8:53:23:03:6c:eb:7b:56: 0e:63:d5:be:ca:14:bf:55:89:dc:f5:58:ce:72:06: b3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6E:7B:D2:D2:2C:6F:28:3B:95:5E:84:43:57:98:9E:76:36:65:94 X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:1f:15:41:da:f9:10:1a:94:a9:a5:d8:8b:96:b9:b3:3a:9f: 0e:d2:1f:66:19:94:31:54:d1:9f:12:f9:b9:ea:d6:39:29:48: 48:9b:10:7c:14:f1:d6:09:e7:6c:75:aa:68:75:64:ae:a1:5b: 91:53:3f:9a:7a:a5:8e:cc:e9:1e:b8:57:67:24:64:d0:96:ac: 1f:e4:86:b9:5b:65:f5:34:10:f1:72:0c:d0:40:d7:ff:34:52: 85:04:24:78:e1:6a:0f:b5:f9:1f:52:9b:a6:31:9b:6d:e7:cf: 14:6f:ec:2b:36:ef:48:79:bd:17:a2:0b:83:f1:c3:ee:fa:5e: 23:08:3c:06:53:c7:99:b4:b9:94:10:bd:6c:fb:39:89:08:86: 39:a5:4c:14:73:0b:96:c4:c5:b4:93:df:87:12:a1:8d:ab:13: 8c:f4:1e:b6:37:60:61:0a:71:80:97:35:7d:89:76:5d:3e:10: 70:07:f4:70:4d:df:ac:ca:84:51:90:35:60:68:05:17:f0:4b: 0d:89:04:55:52:cd:95:06:e4:c1:15:bc:b8:df:2a:cd:be:33: 8f:b6:79:94:a8:74:a9:b3:72:d4:4f:4a:9f:ff:9a:80:9a:10: 11:13:98:6a:0b:f6:28:91:c7:79:9c:95:89:1a:d1:d0:3c:3d: cc:d8:f4:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjUxMTA0MjE0MTMyWhcNMjUxMTExMjE0MTMyWjAYMRYwFAYD VQQDEw02OTBhNzMwZC1kZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8UUPWIggwq9s7drEfD1t5Ppr0JN3W3bIloQGtl4H1zhppiAUxYvJ3nErzNX JkUq/V5az+tZXM2/yDgCwKAQl9nmbtXfhNZWcS8IMSO2FO4d2MhS8Z0k19ZDb5f6 Ky72reyz7Y3iXSFtyfC6PktQRom6uHtqwKG5Jq2IaIzEacbJrKlXaFKfDcILEKCy j9eE+ePuvab+mMXIO4E7Heh4gnsnfEzpEfNnDQwAHQV9fHwTTHjG0F/Pf065B0Hk vry/uZ8vuePwNvjSkkuaJrWsyr6yeJ3/spryo9wahVeKTGiF5sAA7YijqFMjA2zr e1YOY9W+yhS/VYnc9VjOcgazcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFue9LS LG8oO5VehENXmJ52NmWUMB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTg5Qi8zMjhCREQ0MDM4NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVS c0tXakFUODB3c3ZhX1FIOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZHxVB2vkQGpSppdiLlrmzOp8O0h9mGZQxVNGfEvm56tY5KUhImxB8 FPHWCedsdapodWSuoVuRUz+aeqWOzOkeuFdnJGTQlqwf5Ia5W2X1NBDxcgzQQNf/ NFKFBCR44WoPtfkfUpumMZtt588Ub+wrNu9Ieb0XoguD8cPu+l4jCDwGU8eZtLmU EL1s+zmJCIY5pUwUcwuWxMW0k9+HEqGNqxOM9B62N2BhCnGAlzV9iXZdPhBwB/Rw Td+syoRRkDVgaAUX8EsNiQRVUs2VBuTBFby43yrNvjOPtnmUqHSps3LUT0qf/5qA mhARE5hqC/Yokcd5nJWJGtHQPD3M2PQn -----END CERTIFICATE-----Generated at Wed Nov 5 16:32:36 2025 by rpki-client