$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: EhTX+OnOYR3ZPDuQ1WNkkGEE5gy6CH3SXpTMPjrf5Pc= Subject key identifier: 68:63:1C:CA:20:23:5F:53:86:FD:82:AC:8B:A9:96:98:11:FE:59:2A Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 34D3 Signing time: Tue 04 Nov 2025 15:19:47 +0000 Manifest this update: Tue 04 Nov 2025 15:19:46 +0000 Manifest next update: Tue 11 Nov 2025 15:19:46 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: v3IQ3yyEzravA92cXkd9fR7kL8QAx85SNQzzlDxjcso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Nov 4 15:19:46 2025 GMT Not After : Nov 11 15:19:46 2025 GMT Subject: CN=690a1993-8b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:11:2b:1e:88:a4:7b:3b:b6:01:7c:ef:f2:8f: 74:60:99:a5:d3:56:9b:df:8e:c7:d1:f6:46:30:16: 6a:46:79:9f:15:49:bf:5f:37:97:34:ba:ca:e0:2e: a8:f7:12:a8:a5:c9:1a:06:93:68:25:6e:ab:8f:92: 5a:97:aa:a2:35:f3:6e:2b:e1:39:3d:10:c1:f1:0f: 4c:a5:29:fa:b0:90:85:14:10:5d:7e:9d:44:37:cb: d8:1d:e7:b8:bc:c0:bb:2e:dd:7f:0f:7a:17:8e:4b: 94:a1:6d:a4:4a:97:9d:82:92:2d:06:6c:28:a1:05: b8:1c:cc:87:b3:5d:86:09:93:72:c7:20:ee:41:76: 54:5e:d5:80:25:bc:4b:54:7b:05:6a:f2:77:79:5d: 08:57:98:c4:c8:1b:2c:5f:55:1a:d3:9d:71:87:b3: 1f:69:a6:7e:64:ae:e3:0d:b2:29:43:be:95:d3:64: 19:90:22:d2:d8:21:4d:95:d6:bd:6b:4b:07:e9:47: 5b:cc:b3:e1:91:c1:30:5a:cb:2b:8e:3d:3a:ec:a5: 5c:8f:1b:32:b7:62:a3:61:ef:e0:f1:fc:f0:ea:32: 99:d0:7b:1a:31:2b:7a:d3:ba:63:21:83:1a:da:9f: 4b:82:bb:79:ab:b3:e1:5a:47:48:d1:4c:c7:33:fb: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:63:1C:CA:20:23:5F:53:86:FD:82:AC:8B:A9:96:98:11:FE:59:2A X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:8a:56:95:f6:b8:f2:f2:fe:78:f1:b3:e3:23:c9:31:90:ce: 5c:01:83:70:95:98:18:b8:32:36:08:26:cf:a8:94:92:00:0d: 69:db:1c:3f:7e:9b:66:c7:b8:4c:ea:88:80:6e:1a:81:f2:f7: 37:5d:97:bf:db:95:9e:18:39:44:02:54:41:56:aa:53:21:55: 86:86:0a:23:a2:08:77:fe:18:62:04:93:49:05:29:7b:a2:4f: 64:9c:2b:50:32:0e:3b:39:19:fb:90:72:ef:3d:9b:00:50:ff: a3:02:fc:2c:23:dc:8a:d4:46:8c:fe:ff:f8:7c:27:ed:f7:91: 88:fa:f3:56:73:fe:38:e2:52:60:78:9a:db:8b:1d:31:23:d0: 1b:0c:02:95:a3:85:a8:d1:ab:ef:8a:75:b6:e5:25:01:e3:d1: dd:8e:b9:d2:86:90:c3:2d:6e:a4:d6:53:3c:26:78:95:0d:6f: 92:be:46:01:e6:d7:69:e3:9a:0b:3b:1a:a3:11:b9:41:fc:dc: ab:ed:1a:1c:3e:68:8a:1e:58:0d:3c:84:28:10:e7:95:65:63: 34:a2:32:66:dc:5b:dd:8a:2b:57:d9:d5:60:06:37:3e:9a:53: a1:54:90:47:1b:4e:4e:da:39:3e:a1:9a:4b:20:8e:01:bb:14: a3:22:fc:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUxMTA0MTUxOTQ2WhcNMjUxMTExMTUxOTQ2WjAYMRYwFAYD VQQDEw02OTBhMTk5My04YjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRErHoikezu2AXzv8o90YJml01ab347H0fZGMBZqRnmfFUm/XzeXNLrK4C6o 9xKopckaBpNoJW6rj5Jal6qiNfNuK+E5PRDB8Q9MpSn6sJCFFBBdfp1EN8vYHee4 vMC7Lt1/D3oXjkuUoW2kSpedgpItBmwooQW4HMyHs12GCZNyxyDuQXZUXtWAJbxL VHsFavJ3eV0IV5jEyBssX1Ua051xh7MfaaZ+ZK7jDbIpQ76V02QZkCLS2CFNlda9 a0sH6UdbzLPhkcEwWssrjj067KVcjxsyt2KjYe/g8fzw6jKZ0HsaMSt607pjIYMa 2p9Lgrt5q7PhWkdI0UzHM/uyCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhjHMog I19Thv2CrIuplpgR/lkqMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWilaV9rjy8v548bPjI8kxkM5cAYNwlZgYuDI2CCbPqJSSAA1p2xw/ fptmx7hM6oiAbhqB8vc3XZe/25WeGDlEAlRBVqpTIVWGhgojogh3/hhiBJNJBSl7 ok9knCtQMg47ORn7kHLvPZsAUP+jAvwsI9yK1EaM/v/4fCft95GI+vNWc/444lJg eJrbix0xI9AbDAKVo4Wo0avvinW25SUB49HdjrnShpDDLW6k1lM8JniVDW+SvkYB 5tdp45oLOxqjEblB/Nyr7RocPmiKHlgNPIQoEOeVZWM0ojJm3FvdiitX2dVgBjc+ mlOhVJBHG05O2jk+oZpLII4BuxSjIvyo -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:18 2025 by rpki-client