$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: fuO8tQswiCYba3F2VUzkffZq7NEhcdYteWAkGFuRzrI= Subject key identifier: 95:F4:C9:D1:09:A6:61:64:22:17:B7:5C:48:15:21:96:19:8A:39:47 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0170 Signing time: Mon 03 Nov 2025 03:53:11 +0000 Manifest this update: Mon 03 Nov 2025 03:53:10 +0000 Manifest next update: Mon 10 Nov 2025 03:53:10 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: MuE9H9WwIC8baFNzV/1IakcUGPIBGo+l2mtRzysMHAY=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Nov 3 03:53:10 2025 GMT Not After : Nov 10 03:53:10 2025 GMT Subject: CN=69082727-8190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:60:cd:83:2e:82:a2:c2:7c:33:22:cf:17: 63:fc:59:55:83:b3:db:b7:fd:f2:7c:9f:b3:b3:7b: ee:59:8a:55:1a:42:0e:ec:07:43:1c:0e:af:fd:73: 97:8b:31:5d:1d:35:3b:4d:2b:7b:75:44:56:97:74: 9d:24:dd:06:72:06:e9:1e:ab:96:d6:f0:24:8e:b7: 8c:27:c5:31:a7:a3:b3:b9:94:e6:d2:bd:8a:b1:d3: 6b:af:68:26:3a:78:9b:53:34:8f:43:ca:58:09:e2: 48:6e:b0:9b:af:70:01:dd:a5:ac:26:e7:47:65:72: d2:41:d1:13:68:67:5b:18:88:44:5c:85:c3:8f:fe: b6:9d:2a:99:7e:21:27:d6:7c:47:51:76:a7:f6:1d: 5b:d2:e1:6c:0d:58:af:99:c1:00:cf:6a:92:38:ef: d5:86:24:73:75:9c:39:16:cb:31:3e:8d:93:32:1a: f6:8c:82:bf:25:77:a5:0c:2e:9e:3e:31:84:4b:56: d6:33:25:29:30:7e:6c:6d:0b:20:3e:07:81:ec:42: 37:e9:79:f2:c3:cc:e5:54:ca:ad:15:70:5f:d9:93: 62:f2:34:c4:f1:01:b3:1c:fc:fb:ef:8b:08:8b:45: 0f:2a:f5:3b:3a:b3:60:2b:f4:96:b8:77:d4:de:03: 5c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F4:C9:D1:09:A6:61:64:22:17:B7:5C:48:15:21:96:19:8A:39:47 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:2e:01:36:fc:23:13:a3:9c:9e:2f:60:ee:2f:2f:0c:97:ab: 7f:82:82:b8:ed:7e:56:2f:0b:5d:9d:36:85:c9:7c:e1:f1:87: fb:67:e3:ea:fc:47:8a:41:0b:ec:20:8e:a9:b7:3d:1a:23:e7: d7:32:04:36:48:68:00:a3:a7:ca:43:6d:17:33:c8:d7:2d:16: b0:74:75:bb:ea:2b:8c:e1:b8:ce:18:ed:29:0e:af:42:fd:17: 4c:d3:fc:54:a5:28:9f:39:57:0a:2e:21:53:ec:69:03:50:d5: c8:99:27:37:82:d4:cc:e8:d6:f8:8f:88:99:e6:22:cb:65:4c: 9d:79:92:78:da:25:ec:b3:23:f2:72:38:be:d9:37:4b:29:e6: f5:a3:89:42:e8:24:23:1a:39:77:5a:c5:e2:ce:41:96:f9:ac: ec:08:76:d8:d1:a5:8c:30:9d:7a:64:e0:14:9f:98:f5:07:52: bb:b3:ad:2e:97:fa:8d:61:59:2b:b7:6a:3f:af:5b:34:35:c9: e5:b6:d3:e5:f2:25:99:27:d9:49:75:80:87:01:d0:e4:43:01: a5:0d:39:00:90:fa:7b:f3:69:6b:85:40:3d:d3:24:95:13:74: 17:8e:ed:b6:84:ef:a3:3b:df:42:43:e5:c9:67:07:ea:1f:d7: 51:40:49:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUxMTAzMDM1MzEwWhcNMjUxMTEwMDM1MzEwWjAYMRYwFAYD VQQDEw02OTA4MjcyNy04MTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs5gzYMugqLCfDMizxdj/FlVg7Pbt/3yfJ+zs3vuWYpVGkIO7AdDHA6v/XOX izFdHTU7TSt7dURWl3SdJN0GcgbpHquW1vAkjreMJ8Uxp6OzuZTm0r2KsdNrr2gm OnibUzSPQ8pYCeJIbrCbr3AB3aWsJudHZXLSQdETaGdbGIhEXIXDj/62nSqZfiEn 1nxHUXan9h1b0uFsDVivmcEAz2qSOO/VhiRzdZw5FssxPo2TMhr2jIK/JXelDC6e PjGES1bWMyUpMH5sbQsgPgeB7EI36Xnyw8zlVMqtFXBf2ZNi8jTE8QGzHPz774sI i0UPKvU7OrNgK/SWuHfU3gNcBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJX0ydEJ pmFkIhe3XEgVIZYZijlHMB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPLgE2/CMTo5yeL2DuLy8Ml6t/goK47X5WLwtdnTaFyXzh8Yf7Z+Pq /EeKQQvsII6ptz0aI+fXMgQ2SGgAo6fKQ20XM8jXLRawdHW76iuM4bjOGO0pDq9C /RdM0/xUpSifOVcKLiFT7GkDUNXImSc3gtTM6Nb4j4iZ5iLLZUydeZJ42iXssyPy cji+2TdLKeb1o4lC6CQjGjl3WsXizkGW+azsCHbY0aWMMJ16ZOAUn5j1B1K7s60u l/qNYVkrt2o/r1s0NcnlttPl8iWZJ9lJdYCHAdDkQwGlDTkAkPp782lrhUA90ySV E3QXju22hO+jO99CQ+XJZwfqH9dRQElr -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:35 2025 by rpki-client