$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: 7WM5/+/XTG9Va8vuY9YHPX+uiltPZ4Zya7wRnT35/ug= Subject key identifier: 4B:30:50:C8:A9:07:B3:40:E9:DB:E9:E6:C2:C0:48:E3:10:6E:61:EF Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 0231 Signing time: Mon 03 Nov 2025 01:54:25 +0000 Manifest this update: Mon 03 Nov 2025 01:54:24 +0000 Manifest next update: Mon 10 Nov 2025 01:54:24 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: GqLWukSxnbPprPLO0GrJU3QM620g+zYnrPomm3LyUP8=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: N+dN6EXW9kLpuaXIDcRP+SypH2TkoWeKEFt5XA9cnJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44, serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: Nov 3 01:54:24 2025 GMT Not After : Nov 10 01:54:24 2025 GMT Subject: CN=69080b50-7c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:97:8a:3d:43:4d:ef:ad:af:09:98:df:cd:95: 60:a3:f7:aa:c3:93:fc:66:ef:cc:6f:4c:aa:18:b6: 15:29:c5:56:2d:25:e5:f8:91:ba:da:51:f5:81:0e: 9c:97:99:f2:24:a5:8b:3b:9b:ef:ac:59:90:18:fb: e2:fb:f8:96:c7:05:da:cf:6c:d2:48:c8:e6:bd:2b: d3:fb:1d:d4:1b:7d:bd:86:84:bd:bf:1a:e8:1f:01: 29:e3:c1:d3:23:7e:ec:7e:43:af:99:0f:f9:5b:d1: ee:6b:eb:7a:1b:e9:f0:e5:17:6e:7e:c7:4c:99:13: 23:ab:19:07:45:7d:da:40:82:5e:f1:86:51:99:b4: eb:f1:dd:e5:f8:f7:ec:f1:87:a5:c0:c2:2d:fe:f5: 11:d3:2a:e1:b0:13:fa:fb:0c:89:38:45:b4:2c:23: 86:6c:74:0c:f6:45:c9:d9:cb:1f:e8:c2:2e:82:20: 2f:8d:d6:19:c0:da:ef:4a:53:b5:44:cd:d3:ee:61: a7:86:61:07:ac:4a:45:9f:87:cb:cb:75:82:c2:3d: 0d:26:4d:65:9f:01:28:5d:82:69:d2:1c:75:80:61: 88:5c:c0:35:b8:95:0c:6b:4a:6c:5a:5a:d6:0b:25: b2:4c:01:b9:8e:c5:7f:84:4c:03:21:08:14:da:23: ec:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:30:50:C8:A9:07:B3:40:E9:DB:E9:E6:C2:C0:48:E3:10:6E:61:EF X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8d:2d:4e:43:7f:54:0d:ee:4f:00:f4:5b:5c:b2:8c:54:b3: a6:e4:cd:c9:52:f1:b7:16:e0:c3:ad:e1:d0:bc:6c:fc:b5:4a: c1:06:b1:70:8e:e6:ad:e1:f1:60:2d:52:9a:be:26:ae:5f:08: 21:1e:72:f7:f1:38:17:09:cd:ce:99:36:26:99:c3:98:e2:3a: be:a3:73:90:e4:6a:4c:6e:e7:18:aa:55:23:dd:c6:7c:3c:0e: 87:4c:be:22:63:7d:49:23:84:61:3a:ef:b2:a9:88:58:fb:4e: 26:af:a1:38:a1:81:54:e4:5b:08:9c:3b:43:73:11:62:88:7c: 5c:df:fa:b9:5c:5a:63:28:f2:91:95:4e:77:a2:ff:7c:5b:51: 9e:1c:60:ea:0b:4c:c6:29:af:25:ed:1c:25:35:38:ee:e6:ee: 55:a3:a0:a3:fb:56:b9:20:05:db:cd:61:fd:6b:09:36:bc:f1: 40:7b:ae:1e:23:06:b3:e7:81:cf:85:27:1d:a8:af:65:53:14: 7c:04:81:7e:17:1d:e3:4d:40:32:a5:29:9c:c2:c4:c8:39:02: d7:e8:b3:1e:3a:b5:b4:f1:f3:39:ff:ad:cd:a3:d3:b7:bf:80: 7f:76:8a:ba:c9:8f:61:e7:cc:5b:1e:70:93:33:30:2e:70:f3: 0c:4a:cd:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjUxMTAzMDE1NDI0WhcNMjUxMTEwMDE1NDI0WjAYMRYwFAYD VQQDEw02OTA4MGI1MC03Yzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypeKPUNN762vCZjfzZVgo/eqw5P8Zu/Mb0yqGLYVKcVWLSXl+JG62lH1gQ6c l5nyJKWLO5vvrFmQGPvi+/iWxwXaz2zSSMjmvSvT+x3UG329hoS9vxroHwEp48HT I37sfkOvmQ/5W9Hua+t6G+nw5RdufsdMmRMjqxkHRX3aQIJe8YZRmbTr8d3l+Pfs 8YelwMIt/vUR0yrhsBP6+wyJOEW0LCOGbHQM9kXJ2csf6MIugiAvjdYZwNrvSlO1 RM3T7mGnhmEHrEpFn4fLy3WCwj0NJk1lnwEoXYJp0hx1gGGIXMA1uJUMa0psWlrW CyWyTAG5jsV/hEwDIQgU2iPscwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEswUMip B7NA6dvp5sLASOMQbmHvMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfjS1OQ39UDe5PAPRbXLKMVLOm5M3JUvG3FuDDreHQvGz8tUrBBrFw juat4fFgLVKaviauXwghHnL38TgXCc3OmTYmmcOY4jq+o3OQ5GpMbucYqlUj3cZ8 PA6HTL4iY31JI4RhOu+yqYhY+04mr6E4oYFU5FsInDtDcxFiiHxc3/q5XFpjKPKR lU53ov98W1GeHGDqC0zGKa8l7RwlNTju5u5Vo6Cj+1a5IAXbzWH9awk2vPFAe64e Iwaz54HPhScdqK9lUxR8BIF+Fx3jTUAypSmcwsTIOQLX6LMeOrW08fM5/63No9O3 v4B/doq6yY9h58xbHnCTMzAucPMMSs0D -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:47 2025 by rpki-client