$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: o9pJHeqmeLQHEWt1bjWCaFJEPxweCNL1tmpOmnNghBk= Subject key identifier: 50:1C:35:95:B0:5C:52:CC:37:B1:BE:E6:67:23:B6:1D:ED:34:1F:BC Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 023A Signing time: Mon 03 Nov 2025 01:48:16 +0000 Manifest this update: Mon 03 Nov 2025 01:48:15 +0000 Manifest next update: Mon 10 Nov 2025 01:48:15 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: AUaNde3iDRNxUac9NReTNDfJdkXw6NaD1tBIb9PKBlc=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ih5APdD+Nurby0NtdsRTrQ51xACa7dPtth9SlQyC+ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Nov 3 01:48:15 2025 GMT Not After : Nov 10 01:48:15 2025 GMT Subject: CN=690809e0-dd5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d3:12:9b:16:5a:1e:e7:d6:6d:13:a6:e7:1b: 8d:d3:bc:e6:de:78:2c:eb:df:ca:cb:c8:c0:4f:d0: f5:a6:d8:74:1e:c9:bd:28:ee:0c:a8:70:a0:a6:2c: 72:0d:4e:e0:5c:39:27:55:f4:95:f9:9a:67:49:bb: c6:18:b4:85:16:bd:41:30:c1:b9:0e:5a:59:76:a6: 89:3e:20:f2:6f:c3:f2:98:05:d3:93:ac:f8:41:b4: 49:ce:0b:4e:7d:9e:d8:97:4d:56:ae:ba:18:8b:f8: 8c:97:a7:e4:73:2f:17:70:c3:a7:b8:30:26:8a:bd: 80:d4:cb:0f:74:60:5f:d8:be:87:80:44:88:bd:65: 6f:5d:c4:95:03:98:4f:8c:84:32:3e:33:3f:10:0b: fb:12:bc:61:b2:8a:41:1f:13:0b:3c:9a:f2:0c:a2: 4f:9c:f9:00:22:f7:41:7a:f5:08:d0:11:5a:b7:c3: 9d:35:bc:d3:1a:22:28:0c:cb:20:79:6b:dd:6d:ec: 1b:54:ef:c5:53:7e:8e:62:7f:bb:11:db:08:f3:d0: 68:cf:54:f6:0b:bb:ae:65:1e:7f:44:44:c4:7c:c2: d1:56:58:22:be:f4:e4:3a:6f:d7:47:47:b5:1c:0e: d9:5f:f6:84:b0:49:0f:d9:34:72:24:b8:cc:39:52: c9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1C:35:95:B0:5C:52:CC:37:B1:BE:E6:67:23:B6:1D:ED:34:1F:BC X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ee:0a:ec:06:82:e5:3d:61:9b:10:4a:8a:1b:12:2c:52:d6: 44:ad:63:1e:46:2b:98:85:cd:6d:9a:b3:c0:68:c7:e4:3d:56: 87:d6:67:b2:f3:09:f6:87:63:53:38:c4:2a:4a:ee:2d:36:20: d5:af:c1:98:c1:7d:36:f8:3a:c9:ae:8a:b2:31:f3:24:df:be: 79:a9:dd:78:68:5b:af:56:f5:6c:ee:23:93:05:90:8a:e6:f2: f3:ac:a8:ad:8a:9a:40:12:19:a6:3f:f1:87:4b:62:77:1a:4b: c9:1e:e5:74:4b:c1:8a:e4:43:46:0b:77:d1:16:cc:56:c3:c1: 68:6e:7a:f6:45:84:05:72:9b:ba:22:f7:34:a2:d9:4a:ea:02: 21:d8:be:7c:e5:04:7e:a6:ae:4d:b4:2a:76:62:00:8d:fb:ae: a7:75:e8:c8:b6:df:71:43:e8:11:84:e8:b7:52:18:21:3d:26: 68:1d:d9:f8:12:cc:9f:7a:26:4f:76:f7:b3:e6:09:d6:f8:7f: 3d:a7:31:60:6f:04:0d:dd:3d:4d:22:fd:b8:e9:ad:2d:7d:67: 2d:57:ed:44:2a:68:aa:12:5c:d6:61:9a:7b:4d:9c:40:68:cd: 49:35:29:1b:5c:61:4e:62:cb:ea:bf:f1:3d:74:36:ea:bf:0d: 14:22:10:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUxMTAzMDE0ODE1WhcNMjUxMTEwMDE0ODE1WjAYMRYwFAYD VQQDEw02OTA4MDllMC1kZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdMSmxZaHufWbROm5xuN07zm3ngs69/Ky8jAT9D1pth0Hsm9KO4MqHCgpixy DU7gXDknVfSV+ZpnSbvGGLSFFr1BMMG5DlpZdqaJPiDyb8PymAXTk6z4QbRJzgtO fZ7Yl01WrroYi/iMl6fkcy8XcMOnuDAmir2A1MsPdGBf2L6HgESIvWVvXcSVA5hP jIQyPjM/EAv7ErxhsopBHxMLPJryDKJPnPkAIvdBevUI0BFat8OdNbzTGiIoDMsg eWvdbewbVO/FU36OYn+7EdsI89Boz1T2C7uuZR5/RETEfMLRVlgivvTkOm/XR0e1 HA7ZX/aEsEkP2TRyJLjMOVLJ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAcNZWw XFLMN7G+5mcjth3tNB+8MB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo7grsBoLlPWGbEEqKGxIsUtZErWMeRiuYhc1tmrPAaMfkPVaH1mey 8wn2h2NTOMQqSu4tNiDVr8GYwX02+DrJroqyMfMk3755qd14aFuvVvVs7iOTBZCK 5vLzrKitippAEhmmP/GHS2J3GkvJHuV0S8GK5ENGC3fRFsxWw8Fobnr2RYQFcpu6 Ivc0otlK6gIh2L585QR+pq5NtCp2YgCN+66ndejItt9xQ+gRhOi3UhghPSZoHdn4 EsyfeiZPdvez5gnW+H89pzFgbwQN3T1NIv246a0tfWctV+1EKmiqElzWYZp7TZxA aM1JNSkbXGFOYsvqv/E9dDbqvw0UIhAc -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:26 2025 by rpki-client