$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: lnysc6NxibwEWt/oGU+vfa06TnSaU+CMlg32wXhWPYk= Subject key identifier: 45:71:95:5C:15:EE:7C:74:E8:5D:B6:B7:8A:A0:9B:89:67:BC:25:3B Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: 8E Signing time: Mon 03 Nov 2025 06:32:40 +0000 Manifest this update: Mon 03 Nov 2025 06:32:40 +0000 Manifest next update: Mon 10 Nov 2025 06:32:40 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: ja/biemRcT7XVMiYrrvebLqtNXXwrbeYCrUqhqpKpHI=) 2: 7970EAA266DA11F084325D42C4F9AE02.roa (hash: PikBYoAiLsYP3+Plkjib3H61VZb7HfjBFcsCC14z91s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Nov 3 06:32:40 2025 GMT Not After : Nov 10 06:32:40 2025 GMT Subject: CN=69084c88-e1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4f:d2:e1:90:39:96:1c:54:89:ff:60:7c:bf: 26:af:6a:dd:56:87:3a:08:bb:f0:b4:13:15:a1:ae: d3:5b:d3:b2:dd:a6:59:34:4c:5c:1f:67:46:48:9c: 26:1d:8e:a4:77:bc:ce:aa:fa:f4:48:66:00:b0:91: f7:c3:c9:58:41:b8:43:e0:3f:84:67:6b:1b:98:d9: bc:fd:4c:f7:af:12:04:a5:b3:00:bb:db:ec:70:a6: db:a6:1c:b9:ce:2a:6f:01:82:e1:53:00:64:fc:17: 52:16:d7:77:06:df:68:df:36:f7:ac:62:3d:49:4e: 29:ac:7d:5c:98:a2:18:36:4d:5e:61:13:25:ec:6a: 3d:75:c8:37:82:10:81:2e:cf:8c:e9:c8:3c:22:f3: 83:b7:d8:7d:94:53:6e:b7:40:6d:fa:c2:50:2c:b5: 01:4d:17:15:d4:be:be:9f:89:b2:35:1c:6e:2c:ed: 56:31:98:b3:59:3e:e9:fb:d7:a1:31:da:46:0b:f2: b9:ed:e1:33:b9:21:36:43:cc:92:86:d0:29:75:09: 20:e6:7b:6b:14:6f:9c:57:36:64:6a:c2:dc:aa:a2: a4:dc:c4:c7:c1:f9:ab:db:a6:13:d1:7f:27:df:98: e0:a9:cc:de:57:f5:4d:30:fe:dd:00:87:65:2f:4d: e6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:71:95:5C:15:EE:7C:74:E8:5D:B6:B7:8A:A0:9B:89:67:BC:25:3B X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d9:2d:81:27:23:fd:1b:26:c6:55:a1:35:ea:d8:6d:ec:7b: 0b:8d:6e:80:93:a2:07:bb:e8:47:1e:50:2b:e9:da:64:04:ac: 7a:e0:94:61:36:98:61:8a:38:95:1b:9e:c8:c7:6f:a9:5b:c4: 4b:a8:b9:1f:ea:8b:b6:0a:c5:c9:73:d3:c1:89:e0:d7:75:b0: a3:ca:0b:18:88:ad:a7:d2:f5:3c:8f:4a:ae:98:21:2d:bc:dd: 96:b2:75:f1:3e:11:8c:4f:39:6c:ce:ec:8e:f6:38:cd:af:79: 8a:d6:54:ea:79:e5:13:8d:54:a3:70:c7:4a:bf:c2:3b:70:a8: 32:f3:07:60:94:a4:77:69:bd:27:48:95:c3:25:72:e0:1e:58: 52:5b:61:71:7a:d6:03:ed:41:76:22:c4:11:5f:3c:a8:1a:90: a1:c4:f2:68:c3:d6:8c:2a:1e:f6:ca:e3:fc:3a:57:bc:06:ac: 3e:4f:93:d1:ca:be:6d:50:73:fd:b7:99:e2:dc:8c:1b:95:c9: af:eb:63:1b:2a:1c:1d:ab:12:c7:95:15:36:96:37:7e:d0:b7: 09:f9:0e:c2:36:f4:cc:8f:a5:03:ed:02:cf:37:4b:63:ca:7f: 42:97:f0:e9:2e:a8:35:40:cb:42:01:b1:69:5b:31:12:b4:ca: 8f:86:9e:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA5RUExMTAvBgNVBAUTKDAwRkQzMUZEMDZCNDIwNEMzRERDQjYzNTA3MTg5NTMz Nzc4Q0NDRjgwHhcNMjUxMTAzMDYzMjQwWhcNMjUxMTEwMDYzMjQwWjAYMRYwFAYD VQQDEw02OTA4NGM4OC1lMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxU/S4ZA5lhxUif9gfL8mr2rdVoc6CLvwtBMVoa7TW9Oy3aZZNExcH2dGSJwm HY6kd7zOqvr0SGYAsJH3w8lYQbhD4D+EZ2sbmNm8/Uz3rxIEpbMAu9vscKbbphy5 zipvAYLhUwBk/BdSFtd3Bt9o3zb3rGI9SU4prH1cmKIYNk1eYRMl7Go9dcg3ghCB Ls+M6cg8IvODt9h9lFNut0Bt+sJQLLUBTRcV1L6+n4myNRxuLO1WMZizWT7p+9eh MdpGC/K57eEzuSE2Q8yShtApdQkg5ntrFG+cVzZkasLcqqKk3MTHwfmr26YT0X8n 35jgqczeV/VNMP7dAIdlL03mGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVxlVwV 7nx06F22t4qgm4lnvCU7MB8GA1UdIwQYMBaAFAD9Mf0GtCBMPdy2NQcYlTN3jMz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDlFQS84QzU5MTJGRUUx M0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElFdzkzTFkxQnhpVk0zZU16 UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDlFQS84QzU5MTJGRUUxM0IxMUVGQkE3QkRGM0JDNEY5QUUwMi9BUDB4X1FhMElF dzkzTFkxQnhpVk0zZU16UGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP2S2BJyP9GybGVaE16tht7HsLjW6Ak6IHu+hHHlAr6dpkBKx64JRh NphhijiVG57Ix2+pW8RLqLkf6ou2CsXJc9PBieDXdbCjygsYiK2n0vU8j0qumCEt vN2WsnXxPhGMTzlszuyO9jjNr3mK1lTqeeUTjVSjcMdKv8I7cKgy8wdglKR3ab0n SJXDJXLgHlhSW2FxetYD7UF2IsQRXzyoGpChxPJow9aMKh72yuP8Ole8Bqw+T5PR yr5tUHP9t5ni3Iwblcmv62MbKhwdqxLHlRU2ljd+0LcJ+Q7CNvTMj6UD7QLPN0tj yn9Cl/DpLqg1QMtCAbFpWzEStMqPhp5w -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:23 2025 by rpki-client