$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: mnVirZ+IKwMKpJ5zDVugIzUaQFYRbDepSz9qPDhMZZk= Subject key identifier: F0:16:B1:8A:DF:D4:67:7B:19:F2:D3:48:CD:8F:60:A1:01:5E:2C:31 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 063A Signing time: Tue 04 Nov 2025 22:48:05 +0000 Manifest this update: Tue 04 Nov 2025 22:48:05 +0000 Manifest next update: Tue 11 Nov 2025 22:48:05 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: OSPFuqBQC3nsHkabxotqmqfDIZ5pC9k35SfxfbInq1E=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Nov 4 22:48:05 2025 GMT Not After : Nov 11 22:48:05 2025 GMT Subject: CN=690a82a5-e167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:89:20:ca:0b:fb:8f:c8:16:c3:a6:eb:3d:6b: f1:a0:0d:24:60:9b:d1:0b:a1:60:2e:22:8b:59:83: 13:6b:bf:4a:bd:c0:ed:d1:01:18:a6:f5:7f:40:5b: 4d:1e:7d:9f:bb:3b:7b:35:c3:cb:d0:f8:08:99:28: 6a:6f:a6:12:fd:1d:b1:08:a6:65:6a:78:9f:83:01: 9a:2f:75:d0:58:d9:36:11:d0:00:cc:30:43:8a:35: 6e:3f:8d:30:56:c2:9e:fa:2e:9a:a4:3d:13:a3:c2: 6b:05:15:fb:a3:b3:d0:20:ed:dd:fb:2b:b9:63:47: 66:aa:71:14:da:7e:13:5f:82:c1:82:b4:fc:c8:4c: 6f:24:fa:c8:75:0f:77:aa:56:36:3a:f0:fd:46:67: 14:72:b5:11:5f:18:33:63:15:07:17:6c:c2:8c:3a: 7b:7d:c9:6c:b8:ab:2a:a7:d0:74:9a:2f:bb:df:4d: 16:3f:91:31:a0:5a:f6:54:23:26:5d:a1:82:35:31: a0:12:9b:1e:72:b5:44:bc:86:ef:1b:de:3d:8b:1a: 74:72:01:ea:cd:c8:54:1a:32:0c:76:a1:c2:58:f6: 54:2f:9e:64:8f:1d:8e:94:b3:c9:65:d3:98:1d:76: 11:23:26:6c:3c:2b:a0:53:e2:5e:f6:08:9d:7a:51: 6a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:16:B1:8A:DF:D4:67:7B:19:F2:D3:48:CD:8F:60:A1:01:5E:2C:31 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:7e:90:40:37:d6:dc:df:58:52:1f:07:ad:6d:e1:58:4f:fa: 25:23:06:52:a2:3b:92:b7:77:84:5f:c9:78:77:dd:89:bd:06: 8f:fe:4c:0c:1b:51:d4:44:c2:56:c9:a7:52:c9:ab:22:69:8d: 0d:97:16:f3:db:ef:49:83:7b:5b:af:36:14:59:e1:92:ec:f3: d1:a9:ef:e3:76:b4:1b:b4:8f:24:0c:0b:f8:7c:41:c3:b8:9e: 59:ff:6f:cb:64:fd:ab:01:d9:b6:c9:59:a0:be:79:ee:c1:1a: 90:ec:f8:ce:75:89:6d:b7:55:f3:dc:8a:70:cb:c5:63:3a:cf: 85:68:1a:76:f6:35:cc:9c:3b:b6:92:f8:35:13:a9:45:dd:f3: 6e:50:61:39:82:5e:20:61:2e:8f:4e:cf:79:a9:96:63:bb:22: 1f:f0:f0:97:d9:b8:8b:d7:6b:3b:81:21:dd:c5:60:8f:0f:30: 7d:15:2e:1b:97:c6:cd:8f:4a:88:04:1f:f5:ef:70:e6:6c:3b: 4b:f6:9c:60:0a:8d:55:a5:78:8c:df:e2:78:6a:06:3e:cc:bc: f5:b3:c7:6c:aa:27:95:4f:c0:98:dc:52:9c:4d:99:08:4f:da: c7:a5:02:c3:75:9e:39:14:26:94:66:e5:3d:65:3b:46:20:4d: 26:d6:f3:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUxMTA0MjI0ODA1WhcNMjUxMTExMjI0ODA1WjAYMRYwFAYD VQQDEw02OTBhODJhNS1lMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIkgygv7j8gWw6brPWvxoA0kYJvRC6FgLiKLWYMTa79KvcDt0QEYpvV/QFtN Hn2fuzt7NcPL0PgImShqb6YS/R2xCKZlanifgwGaL3XQWNk2EdAAzDBDijVuP40w VsKe+i6apD0To8JrBRX7o7PQIO3d+yu5Y0dmqnEU2n4TX4LBgrT8yExvJPrIdQ93 qlY2OvD9RmcUcrURXxgzYxUHF2zCjDp7fclsuKsqp9B0mi+7300WP5ExoFr2VCMm XaGCNTGgEpsecrVEvIbvG949ixp0cgHqzchUGjIMdqHCWPZUL55kjx2OlLPJZdOY HXYRIyZsPCugU+Je9gidelFqrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAWsYrf 1Gd7GfLTSM2PYKEBXiwxMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5fpBAN9bc31hSHwetbeFYT/olIwZSojuSt3eEX8l4d92JvQaP/kwM G1HURMJWyadSyasiaY0Nlxbz2+9Jg3tbrzYUWeGS7PPRqe/jdrQbtI8kDAv4fEHD uJ5Z/2/LZP2rAdm2yVmgvnnuwRqQ7PjOdYltt1Xz3Ipwy8VjOs+FaBp29jXMnDu2 kvg1E6lF3fNuUGE5gl4gYS6PTs95qZZjuyIf8PCX2biL12s7gSHdxWCPDzB9FS4b l8bNj0qIBB/173DmbDtL9pxgCo1VpXiM3+J4agY+zLz1s8dsqieVT8CY3FKcTZkI T9rHpQLDdZ45FCaUZuU9ZTtGIE0m1vO8 -----END CERTIFICATE-----Generated at Wed Nov 5 08:27:36 2025 by rpki-client