$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: +J9pExhYAl97xiuWYSq+BTl42wOEeVFNx8Ko5Aw+1eA= Subject key identifier: 42:05:A7:BA:EA:6B:C3:93:6C:E5:2F:AA:3B:07:8F:CA:75:DE:A9:42 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 04B5 Signing time: Sun 02 Nov 2025 23:51:38 +0000 Manifest this update: Sun 02 Nov 2025 23:51:37 +0000 Manifest next update: Sun 09 Nov 2025 23:51:37 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: 3MkdUH0dGMd4k2l9ou7H7wdamagFKykJFrjIrGrNafQ=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: IcEuGPt4GTNEbPQpjAanlaif3gO8wRzi48eufGxQr4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Nov 2 23:51:37 2025 GMT Not After : Nov 9 23:51:37 2025 GMT Subject: CN=6907ee89-6112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:da:e2:50:b6:77:2d:47:a2:61:52:ee:57:de: 3b:01:25:51:5b:75:8f:a2:77:f9:06:db:a0:fe:07: e9:9f:f0:cf:54:b4:57:22:68:11:f0:ec:3f:00:47: f0:af:98:38:3a:e5:55:2f:e7:ba:76:4a:db:9c:bb: c7:52:14:a0:8b:64:b0:b8:f2:b6:cc:8f:b6:2f:df: 85:b4:26:53:45:0b:69:7a:3a:dc:3b:a8:f6:91:58: f2:66:85:8d:40:92:bc:95:a9:1d:97:fe:ed:aa:7a: b5:bb:8e:ea:78:46:2f:b6:1a:58:85:90:c7:e8:09: eb:7f:db:88:71:20:87:c4:40:81:a1:f4:f1:7f:93: db:ed:f5:d7:32:56:4e:26:41:5d:41:7d:3a:8e:07: 63:0b:27:57:2f:ce:9d:bc:a0:d8:98:29:d7:92:82: 67:36:89:77:c9:df:01:35:5a:34:9a:a0:f4:bc:5c: bd:d3:cc:88:46:e2:28:d1:65:8d:23:82:f7:7b:e3: f4:a6:b7:c9:72:7a:a3:48:06:92:b5:19:7b:fb:2b: b9:f0:48:c3:33:f3:ef:c5:82:05:aa:a2:05:69:a6: b5:8f:cb:1b:d2:28:7e:a2:07:53:24:2d:b2:ca:18: 30:d6:dd:93:89:b7:f9:8f:5f:c3:ba:32:18:39:8f: ad:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:05:A7:BA:EA:6B:C3:93:6C:E5:2F:AA:3B:07:8F:CA:75:DE:A9:42 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a4:63:1d:55:c7:33:aa:57:0b:8e:12:6c:63:34:0e:b0:41: 85:5b:b2:d5:7f:60:c9:3a:95:2d:23:32:80:df:08:3b:bc:2a: af:a2:21:47:66:65:90:41:28:62:87:84:cd:e9:a1:ff:94:58: 57:2c:a9:47:7c:76:20:2c:bc:90:a3:9d:6b:8a:37:f3:b6:a2: 2d:e5:98:44:b9:37:f0:34:a9:49:9c:33:b7:9d:a3:42:22:03: ca:e0:ff:b6:de:7b:78:9c:ab:60:4b:16:5c:dc:ae:b9:8a:10: 9b:c9:20:8f:86:6c:d2:ff:39:a0:62:e5:2c:68:4c:bc:c1:67: 15:50:1a:97:01:81:aa:fd:a3:5a:20:95:a6:0d:85:41:69:94: 03:95:2e:4f:2e:7b:52:57:6b:9d:9c:33:18:b2:73:06:45:b0: 09:dd:bc:26:09:69:36:53:cb:c4:55:58:9f:fd:3a:51:55:d0: f0:eb:8a:87:35:6b:10:50:c2:9c:3e:d3:e5:20:2e:7a:d7:fa: 2a:9c:13:07:7c:e7:b9:1b:08:b1:12:a1:c9:e2:ca:b9:7a:be: 74:88:e3:73:4a:9e:05:17:05:71:f0:55:cc:a3:c9:e2:2f:22: d7:d2:65:10:ee:84:65:34:af:43:d4:6f:f1:3e:02:4e:01:b7: a4:c8:bd:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUxMTAyMjM1MTM3WhcNMjUxMTA5MjM1MTM3WjAYMRYwFAYD VQQDEw02OTA3ZWU4OS02MTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0triULZ3LUeiYVLuV947ASVRW3WPonf5Btug/gfpn/DPVLRXImgR8Ow/AEfw r5g4OuVVL+e6dkrbnLvHUhSgi2SwuPK2zI+2L9+FtCZTRQtpejrcO6j2kVjyZoWN QJK8lakdl/7tqnq1u47qeEYvthpYhZDH6Anrf9uIcSCHxECBofTxf5Pb7fXXMlZO JkFdQX06jgdjCydXL86dvKDYmCnXkoJnNol3yd8BNVo0mqD0vFy908yIRuIo0WWN I4L3e+P0prfJcnqjSAaStRl7+yu58EjDM/PvxYIFqqIFaaa1j8sb0ih+ogdTJC2y yhgw1t2Tibf5j1/DujIYOY+t3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIFp7rq a8OTbOUvqjsHj8p13qlCMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADpGMdVcczqlcLjhJsYzQOsEGFW7LVf2DJOpUtIzKA3wg7vCqvoiFH ZmWQQShih4TN6aH/lFhXLKlHfHYgLLyQo51rijfztqIt5ZhEuTfwNKlJnDO3naNC IgPK4P+23nt4nKtgSxZc3K65ihCbySCPhmzS/zmgYuUsaEy8wWcVUBqXAYGq/aNa IJWmDYVBaZQDlS5PLntSV2udnDMYsnMGRbAJ3bwmCWk2U8vEVVif/TpRVdDw64qH NWsQUMKcPtPlIC561/oqnBMHfOe5GwixEqHJ4sq5er50iONzSp4FFwVx8FXMo8ni LyLX0mUQ7oRlNK9D1G/xPgJOAbekyL3p -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:32 2025 by rpki-client