$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: YSaY32rMBj0YKVeIwKJFjBCB0Mo+KDQmHuC0IWNTpk8= Subject key identifier: 49:18:5D:CB:63:AA:4C:8C:5F:A3:71:87:9E:5C:B8:F7:A4:4A:FD:7E Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 094F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 0948 Signing time: Tue 04 Nov 2025 20:16:13 +0000 Manifest this update: Tue 04 Nov 2025 20:16:12 +0000 Manifest next update: Tue 11 Nov 2025 20:16:12 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: IjQlrM28Ptaz01hQZtsEisfzrQso9y9R8Oe3mtORIdc=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2383 (0x94f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Nov 4 20:16:12 2025 GMT Not After : Nov 11 20:16:12 2025 GMT Subject: CN=690a5f0c-2cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cf:ea:a5:83:6e:88:08:99:9a:f9:4c:ce:e7: 15:89:9a:a9:30:1b:3a:37:cf:d0:11:fa:2f:bb:78: 2b:c8:59:f6:29:8e:14:5d:e1:a4:6f:f0:db:09:37: 84:56:56:21:e2:e3:c1:8b:27:f0:59:f0:0d:e7:69: 7b:12:a8:c9:2d:d8:a3:9e:a2:32:3c:14:50:48:c6: 68:d6:40:04:f4:01:31:30:6a:9b:58:c7:64:fe:92: e9:88:dd:97:ba:48:f9:da:92:fc:ad:2a:95:7d:f1: 53:76:b9:43:ac:11:64:0a:e4:f7:7a:03:7e:82:a6: 65:f7:40:0c:37:1a:4f:9e:c0:ef:1f:4d:2e:68:b4: 34:0a:ec:f7:7c:70:c9:c3:3a:b7:f2:cd:95:60:58: d7:62:fd:c4:d1:4d:53:26:b7:70:b0:bd:57:49:06: 0c:7f:55:a4:91:fe:4f:30:1b:a9:f5:cc:44:04:03: 5a:cc:96:4a:67:0a:9f:b8:3d:2b:c5:0b:ac:ab:2f: c9:16:de:8b:9c:22:64:9c:2f:67:58:e5:1a:1c:4e: 91:76:54:22:44:ef:43:ad:2b:68:cf:3d:8a:8f:e4: 86:81:69:b7:53:44:a7:f6:2e:13:dd:d9:d3:c2:72: cf:bd:d9:46:9a:d4:31:1c:7b:5b:f5:97:5e:3b:6a: 99:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:18:5D:CB:63:AA:4C:8C:5F:A3:71:87:9E:5C:B8:F7:A4:4A:FD:7E X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:8d:70:9f:cb:e7:54:8f:5e:31:68:a8:e9:4e:dc:39:a4:a2: fa:04:88:b9:0a:e9:76:24:09:82:b8:cf:ad:2a:ae:5c:f9:50: 67:bc:4d:b5:0f:89:b7:93:b6:b4:55:ae:17:d9:44:98:32:1a: 7a:0f:86:56:f9:44:cc:70:83:33:fb:8b:ab:c7:b8:4d:7c:75: ab:1b:f0:3f:4c:70:05:75:9a:1a:24:87:2c:f7:80:c7:8c:b5: 9b:19:49:d9:0b:a9:25:65:f0:c1:cf:c0:40:fe:77:a7:5b:4f: f0:01:44:39:c7:7b:d2:b7:b8:df:47:19:4d:84:18:21:2f:53: 02:53:e2:3b:41:74:c1:32:e4:fb:31:1d:af:7f:9d:05:9c:16: 40:dd:f4:63:d7:e9:14:b8:1b:e6:ed:47:b7:91:70:e8:b4:3a: 05:1f:a7:46:03:4e:41:9d:f6:a1:12:6f:88:71:0d:44:f9:e2: 9d:ff:7f:7c:4b:3b:e4:10:51:8d:62:fa:20:cc:db:43:3d:40: 67:46:8b:0b:1e:b2:ba:75:18:13:04:3c:11:e8:dd:31:7d:c3: 13:8a:83:6e:f2:4a:12:87:12:c9:23:98:9e:2e:cb:ea:d0:5e: f7:eb:23:a1:9d:f5:86:43:df:77:54:aa:d2:b7:43:3d:4c:fa: 0f:d9:a1:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUxMTA0MjAxNjEyWhcNMjUxMTExMjAxNjEyWjAYMRYwFAYD VQQDEw02OTBhNWYwYy0yY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8/qpYNuiAiZmvlMzucViZqpMBs6N8/QEfovu3gryFn2KY4UXeGkb/DbCTeE VlYh4uPBiyfwWfAN52l7EqjJLdijnqIyPBRQSMZo1kAE9AExMGqbWMdk/pLpiN2X ukj52pL8rSqVffFTdrlDrBFkCuT3egN+gqZl90AMNxpPnsDvH00uaLQ0Cuz3fHDJ wzq38s2VYFjXYv3E0U1TJrdwsL1XSQYMf1Wkkf5PMBup9cxEBANazJZKZwqfuD0r xQusqy/JFt6LnCJknC9nWOUaHE6RdlQiRO9DrStozz2Kj+SGgWm3U0Sn9i4T3dnT wnLPvdlGmtQxHHtb9ZdeO2qZ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkYXctj qkyMX6Nxh55cuPekSv1+MB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSjXCfy+dUj14xaKjpTtw5pKL6BIi5Cul2JAmCuM+tKq5c+VBnvE21 D4m3k7a0Va4X2USYMhp6D4ZW+UTMcIMz+4urx7hNfHWrG/A/THAFdZoaJIcs94DH jLWbGUnZC6klZfDBz8BA/nenW0/wAUQ5x3vSt7jfRxlNhBghL1MCU+I7QXTBMuT7 MR2vf50FnBZA3fRj1+kUuBvm7Ue3kXDotDoFH6dGA05BnfahEm+IcQ1E+eKd/398 SzvkEFGNYvogzNtDPUBnRosLHrK6dRgTBDwR6N0xfcMTioNu8koShxLJI5ieLsvq 0F736yOhnfWGQ993VKrSt0M9TPoP2aHY -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:45 2025 by rpki-client