$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: awR6K7+Hmh7z7WapnwjMdrwexdtpql4OnJFt4RYvLxE= Subject key identifier: 57:48:79:AD:AD:CD:85:C1:52:C2:16:58:E0:4D:A2:6E:87:C3:FF:42 Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 0593 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 0589 Signing time: Sun 02 Nov 2025 23:13:10 +0000 Manifest this update: Sun 02 Nov 2025 23:13:10 +0000 Manifest next update: Sun 09 Nov 2025 23:13:10 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: WYgo8tEHmeMLFF7Qe5H1hwgwK1W8rxFa4yRMn/XZ88U=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: bYFWsdvkvj/YP0lWqT722iQHX6ldCjoCu3l/f+mKfk8=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: CWQZ2s8MFSjBmURLoXYowyPCs3y0c7wnZAfg2tROfa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1427 (0x593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Nov 2 23:13:10 2025 GMT Not After : Nov 9 23:13:10 2025 GMT Subject: CN=6907e586-1c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7f:81:17:d9:40:86:34:2d:78:90:83:ef:19: 0d:97:31:b8:5e:4a:3f:bb:4f:03:f8:ae:d4:5a:7d: b6:26:d6:8e:be:c6:37:f6:bb:47:3d:a7:46:95:21: 5b:1c:6c:bc:8f:68:c7:fb:9a:8f:84:d1:81:1b:36: 9a:1d:67:fe:b9:5c:a0:95:88:dc:5a:df:78:5c:5a: d8:74:43:96:2e:e6:25:af:75:f4:ca:69:ef:e7:d4: de:8a:bd:73:08:16:59:46:73:68:55:70:c7:27:29: fa:6d:6a:a6:50:a6:ec:48:92:1d:d9:a5:3b:f3:8c: 73:b8:4f:f5:33:62:8b:14:bc:a2:c8:31:bf:1f:fd: 19:d4:5f:36:39:5b:e4:82:c4:2a:b0:d4:74:d7:ca: e3:c2:8d:c6:5a:0c:0b:2a:64:4b:05:d7:2e:84:47: 5a:b2:33:84:d3:2a:61:c5:d6:11:1e:9e:92:e8:81: f2:a4:69:e7:fb:1a:f5:0e:d2:50:dd:3b:1d:58:4c: 12:17:f5:cd:a4:af:39:45:5b:19:70:04:9e:02:ef: f7:d6:6d:5d:76:73:6b:3b:d9:a2:d2:7d:3d:6c:20: 17:51:71:81:d4:d6:2b:3f:60:6d:c1:2c:20:ed:9d: 3e:f3:01:f6:88:53:3a:0e:cd:f2:1b:00:eb:e7:ec: 20:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:48:79:AD:AD:CD:85:C1:52:C2:16:58:E0:4D:A2:6E:87:C3:FF:42 X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:d9:2d:6c:a3:50:80:bb:9c:e6:2a:8d:40:84:87:c9:55:b9: 8d:d1:59:7c:1c:b3:f0:da:59:76:02:44:68:9c:da:e6:73:5c: 77:c2:8f:50:90:c8:ef:ec:f6:d7:61:32:84:eb:05:26:15:80: 08:17:89:b4:c0:47:c6:0d:ee:55:bb:54:47:1e:ce:8d:34:56: 42:9d:8d:7f:28:a7:72:68:96:b3:e1:49:be:cb:6b:e4:97:c9: e0:90:ee:da:81:16:0e:8e:93:c8:7b:d5:80:1f:40:ac:15:be: f9:b1:bc:53:c7:c4:7a:48:f9:d2:c6:d7:51:d8:82:5b:47:fa: 9e:41:e9:27:f4:84:72:d5:59:64:d0:81:f7:88:ee:2b:06:76: 0d:cb:e2:9a:80:5c:21:12:63:35:04:43:95:f3:0c:67:69:67: 8b:84:d4:29:d9:33:be:79:e9:54:9d:49:a5:9a:74:be:66:49: 66:fd:8f:3c:64:39:cc:e8:33:bd:91:96:7e:00:ae:6e:f3:4f: f8:9b:ed:0c:0f:38:1b:c1:c2:b1:57:d8:af:d1:e8:ad:a2:2e: b6:96:f2:ac:27:f9:6c:09:5f:e1:b7:92:57:09:b7:99:3c:c6: 0b:6c:f4:a7:27:02:74:74:c4:53:c7:7f:5b:9c:5a:58:82:cf: 1d:6b:6b:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUxMTAyMjMxMzEwWhcNMjUxMTA5MjMxMzEwWjAYMRYwFAYD VQQDEw02OTA3ZTU4Ni0xYzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArX+BF9lAhjQteJCD7xkNlzG4Xko/u08D+K7UWn22JtaOvsY39rtHPadGlSFb HGy8j2jH+5qPhNGBGzaaHWf+uVyglYjcWt94XFrYdEOWLuYlr3X0ymnv59Teir1z CBZZRnNoVXDHJyn6bWqmUKbsSJId2aU784xzuE/1M2KLFLyiyDG/H/0Z1F82OVvk gsQqsNR018rjwo3GWgwLKmRLBdcuhEdasjOE0yphxdYRHp6S6IHypGnn+xr1DtJQ 3TsdWEwSF/XNpK85RVsZcASeAu/31m1ddnNrO9mi0n09bCAXUXGB1NYrP2BtwSwg 7Z0+8wH2iFM6Ds3yGwDr5+wgrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdIea2t zYXBUsIWWOBNom6Hw/9CMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF2S1so1CAu5zmKo1AhIfJVbmN0Vl8HLPw2ll2AkRonNrmc1x3wo9Q kMjv7PbXYTKE6wUmFYAIF4m0wEfGDe5Vu1RHHs6NNFZCnY1/KKdyaJaz4Um+y2vk l8ngkO7agRYOjpPIe9WAH0CsFb75sbxTx8R6SPnSxtdR2IJbR/qeQekn9IRy1Vlk 0IH3iO4rBnYNy+KagFwhEmM1BEOV8wxnaWeLhNQp2TO+eelUnUmlmnS+Zklm/Y88 ZDnM6DO9kZZ+AK5u80/4m+0MDzgbwcKxV9iv0eitoi62lvKsJ/lsCV/ht5JXCbeZ PMYLbPSnJwJ0dMRTx39bnFpYgs8da2tD -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:56 2025 by rpki-client