$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: dQZekGEcRfuOytLuDsfhyoxbzqdqduEg3UOKw9mTwMI= Subject key identifier: 9D:F2:7D:C0:0A:22:9B:0A:47:00:14:01:7C:49:09:D4:79:0D:94:CF Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: BB Signing time: Wed 05 Nov 2025 06:12:15 +0000 Manifest this update: Wed 05 Nov 2025 06:12:14 +0000 Manifest next update: Wed 12 Nov 2025 06:12:14 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: HPy535fafJF/drS1P8V/vp5fzD1f0NvKdffFgvA8ahM=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: hQ884t+I5StX9TWBv4SYubO1nFPYJpeoarqEYGTcC7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Nov 5 06:12:14 2025 GMT Not After : Nov 12 06:12:14 2025 GMT Subject: CN=690aeabe-32c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6e:ad:68:72:2a:98:fe:cd:09:42:3f:c3:f9: 8e:6d:f3:f5:00:3f:10:71:82:74:30:03:16:ed:5d: 6e:ba:50:1d:54:46:4f:51:9b:83:56:2e:e0:5c:91: 21:9e:4e:0b:9b:1c:70:ed:40:27:f5:5c:fc:a8:07: 98:e8:c5:8d:4c:40:44:6e:31:62:8c:66:4c:c2:70: 5c:2f:f9:26:1d:f5:93:59:f5:7a:c2:36:0c:50:3a: 0d:4c:48:53:48:7f:6a:e8:39:f9:b8:35:ed:9a:55: 4f:81:01:9a:8b:7a:ec:f6:c2:49:1a:b3:b4:91:1d: be:e3:83:fe:61:10:e7:15:06:3b:67:04:f6:92:b1: f8:52:37:9e:17:3c:64:3c:3d:1a:f0:09:03:a4:4f: 78:be:77:4f:81:94:bc:98:62:fd:6d:06:30:66:c7: f1:c0:74:f3:7a:6d:a4:e7:e5:cd:2a:8e:e0:b1:13: 58:04:b9:ea:51:c3:f4:6a:07:79:fa:d9:e9:b1:03: f4:5b:e9:23:03:02:ac:0b:22:aa:bd:3c:e7:f0:44: fd:9f:61:10:62:3d:78:7a:22:41:66:99:4c:fe:24: a4:81:79:96:1c:6d:1a:54:f2:c3:28:d0:a1:37:31: eb:3f:48:50:de:c2:14:c7:f3:ba:66:79:6a:e6:4a: a8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F2:7D:C0:0A:22:9B:0A:47:00:14:01:7C:49:09:D4:79:0D:94:CF X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:1a:23:30:8a:c1:ec:2d:29:cf:64:4c:9a:77:2a:f8:05:d8: 47:ec:64:e7:f6:dd:eb:64:6e:fe:a0:1c:57:84:e3:5f:1e:4a: a7:bb:3e:05:a2:56:9f:50:21:36:d4:13:44:36:81:8a:27:83: 46:3b:04:a0:37:2c:44:1d:8a:a0:15:05:b1:6c:4c:2e:f5:38: 9b:61:22:cb:9e:c1:fb:2e:2b:de:64:cf:d4:ed:00:97:6e:fc: bb:a4:71:08:cd:70:a3:53:03:f8:01:45:2f:96:5d:95:6e:8e: 1c:5c:04:68:0b:b6:87:c1:16:f2:f5:a6:02:cb:19:8d:66:a7: 2b:4b:8a:ef:7d:93:4d:e9:28:e2:d5:5c:a9:dd:b7:d0:5f:53: 55:a6:35:c4:e3:d0:dd:39:34:3b:53:d5:da:69:33:82:d4:00: e5:66:ae:f1:1e:a8:99:35:43:ad:df:f8:0f:d6:ee:4f:12:27: fd:76:2b:47:3e:4d:7c:38:8c:6e:ed:af:a2:b3:2c:52:05:f2: 90:f5:c9:24:e2:83:55:ca:01:41:ac:eb:6c:77:6e:5e:ee:b6: 04:58:44:e8:76:52:3c:e5:44:65:0f:ef:03:ce:ac:d9:98:dd: 73:0d:aa:18:a9:59:20:f7:82:0f:d4:02:e7:71:19:af:d3:51: c7:05:d2:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5NDExMTAvBgNVBAUTKDczMTdENzc3QkRBQTYzMzNDRDk2QTgxMDRCOTRERTBG QTQ3NTIxMTMwHhcNMjUxMTA1MDYxMjE0WhcNMjUxMTEyMDYxMjE0WjAYMRYwFAYD VQQDEw02OTBhZWFiZS0zMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAum6taHIqmP7NCUI/w/mObfP1AD8QcYJ0MAMW7V1uulAdVEZPUZuDVi7gXJEh nk4Lmxxw7UAn9Vz8qAeY6MWNTEBEbjFijGZMwnBcL/kmHfWTWfV6wjYMUDoNTEhT SH9q6Dn5uDXtmlVPgQGai3rs9sJJGrO0kR2+44P+YRDnFQY7ZwT2krH4UjeeFzxk PD0a8AkDpE94vndPgZS8mGL9bQYwZsfxwHTzem2k5+XNKo7gsRNYBLnqUcP0agd5 +tnpsQP0W+kjAwKsCyKqvTzn8ET9n2EQYj14eiJBZplM/iSkgXmWHG0aVPLDKNCh NzHrP0hQ3sIUx/O6Znlq5kqoIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3yfcAK IpsKRwAUAXxJCdR5DZTPMB8GA1UdIwQYMBaAFHMX13e9qmMzzZaoEEuU3g+kdSET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTk0MS85QjNEMjU0OEEw QTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6UE5scWdRUzVUZUQ2UjFJ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTk0MS85QjNEMjU0OEEwQTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6 UE5scWdRUzVUZUQ2UjFJUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGGiMwisHsLSnPZEyadyr4BdhH7GTn9t3rZG7+oBxXhONfHkqnuz4F olafUCE21BNENoGKJ4NGOwSgNyxEHYqgFQWxbEwu9TibYSLLnsH7LiveZM/U7QCX bvy7pHEIzXCjUwP4AUUvll2Vbo4cXARoC7aHwRby9aYCyxmNZqcrS4rvfZNN6Sji 1Vyp3bfQX1NVpjXE49DdOTQ7U9XaaTOC1ADlZq7xHqiZNUOt3/gP1u5PEif9ditH Pk18OIxu7a+isyxSBfKQ9ckk4oNVygFBrOtsd25e7rYEWETodlI85URlD+8DzqzZ mN1zDaoYqVkg94IP1ALncRmv01HHBdJb -----END CERTIFICATE-----Generated at Wed Nov 5 19:29:45 2025 by rpki-client