$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: 3fmIPCfmM3AILsVJCblyHn58j1XGLU1LeHGxPgdbhK8= Subject key identifier: FF:43:07:DF:56:D6:E7:66:1F:48:8F:E7:9C:25:CD:CA:6F:8A:48:37 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 0535 Signing time: Tue 04 Nov 2025 23:34:31 +0000 Manifest this update: Tue 04 Nov 2025 23:34:30 +0000 Manifest next update: Tue 11 Nov 2025 23:34:30 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: 2KHm576Kk7QcWUCFit5TCAbqrGQeLbBdKzROa7vIg/8=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: K6zEQIX3Xs70jZXyUBIkq7itCCV+/w4+T7TPTazGJDw=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: K4Tk1pgMDNh5SKenYzBLQtmFUIf8LUH33Tf6G2W39As=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Nov 4 23:34:30 2025 GMT Not After : Nov 11 23:34:30 2025 GMT Subject: CN=690a8d86-38b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c2:53:9e:5d:e9:46:d8:8b:64:77:17:0f:61: c6:6c:f9:68:dd:25:8c:e4:5c:09:18:a7:fe:a9:ee: d9:78:f0:69:3e:94:39:ab:e1:96:c3:9e:eb:0f:b0: cd:81:b8:e8:bc:bf:83:84:5f:b2:fd:8b:ad:7b:4a: 4f:04:ee:fe:be:b6:35:03:67:45:7a:d6:0d:39:d5: 6e:d2:02:93:d1:34:dc:ea:5f:d6:b7:bc:41:3f:df: d9:7b:d4:3c:fc:e9:65:11:ee:5c:d4:cc:4d:76:fe: 7e:aa:f3:a8:db:0d:58:13:f9:8b:ff:82:68:37:c3: 8f:2e:e6:20:f2:44:8c:03:88:2d:56:65:da:85:07: e3:78:b5:06:a9:f2:ea:3c:7c:7a:66:d4:54:7d:1f: fc:4b:60:b7:cc:41:5f:55:ff:b2:20:f2:a3:66:43: df:94:8b:7a:e9:0a:da:a2:dd:e1:51:c3:d0:20:93: 95:c2:3f:45:de:47:d1:8c:a8:c2:2f:2a:cb:e2:ef: fd:5a:fa:2f:76:88:72:15:a7:5a:d2:0c:5e:b7:c0: af:7a:fb:35:4c:81:e5:b1:7a:57:04:7c:69:1e:63: 70:7d:80:1c:d2:73:61:f8:a3:91:54:41:21:70:41: c8:e7:e1:7e:f7:c7:b7:21:3c:8c:24:7e:5c:f5:88: 06:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:43:07:DF:56:D6:E7:66:1F:48:8F:E7:9C:25:CD:CA:6F:8A:48:37 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:33:e6:2e:d3:76:85:7b:40:20:d0:e6:91:cf:da:7e:42:4f: 87:4e:9f:d4:2e:ec:05:77:60:ec:e6:c9:8e:d3:5f:07:ed:05: cc:e8:50:34:38:ea:6c:13:c2:b7:a2:f1:ff:89:d3:92:8d:55: d0:da:8c:ee:25:e2:f3:a9:32:06:61:82:2b:31:34:9a:5a:fb: d9:ae:87:4e:78:98:52:6d:0f:12:3b:b6:5b:7f:a6:07:d0:47: b4:6e:20:62:56:0c:4c:13:56:3e:6d:05:04:a3:f1:83:6a:c5: de:e5:87:d9:3d:41:83:0d:08:4c:97:1f:2b:cf:ea:6c:8c:d3: 41:8d:9f:6c:c9:5b:d3:01:38:34:bf:29:eb:44:14:cc:52:71: 7c:12:24:f3:a5:45:c1:7b:8f:e6:ab:e2:63:a4:b4:7a:4c:ed: d2:99:66:a4:d1:e6:a7:c0:c6:6a:84:f5:5e:6c:d5:5c:ca:4a: 85:b9:f0:d0:4b:88:1c:a3:8e:02:2b:78:e1:c5:74:5b:25:b3: 95:00:0b:81:89:90:12:dd:8d:e1:78:a4:4f:d2:ae:ba:44:38: ae:11:f3:92:da:6b:a6:25:76:5c:5c:11:2b:34:fc:cb:7c:fc: c3:ef:ee:b5:f0:d4:55:7d:be:58:fc:41:07:bb:74:2f:dc:79: cb:49:20:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUxMTA0MjMzNDMwWhcNMjUxMTExMjMzNDMwWjAYMRYwFAYD VQQDEw02OTBhOGQ4Ni0zOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8JTnl3pRtiLZHcXD2HGbPlo3SWM5FwJGKf+qe7ZePBpPpQ5q+GWw57rD7DN gbjovL+DhF+y/Yute0pPBO7+vrY1A2dFetYNOdVu0gKT0TTc6l/Wt7xBP9/Ze9Q8 /OllEe5c1MxNdv5+qvOo2w1YE/mL/4JoN8OPLuYg8kSMA4gtVmXahQfjeLUGqfLq PHx6ZtRUfR/8S2C3zEFfVf+yIPKjZkPflIt66Qraot3hUcPQIJOVwj9F3kfRjKjC LyrL4u/9WvovdohyFada0gxet8Cvevs1TIHlsXpXBHxpHmNwfYAc0nNh+KORVEEh cEHI5+F+98e3ITyMJH5c9YgG/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9DB99W 1udmH0iP55wlzcpvikg3MB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfM+Yu03aFe0Ag0OaRz9p+Qk+HTp/ULuwFd2Ds5smO018H7QXM6FA0 OOpsE8K3ovH/idOSjVXQ2ozuJeLzqTIGYYIrMTSaWvvZrodOeJhSbQ8SO7Zbf6YH 0Ee0biBiVgxME1Y+bQUEo/GDasXe5YfZPUGDDQhMlx8rz+psjNNBjZ9syVvTATg0 vynrRBTMUnF8EiTzpUXBe4/mq+JjpLR6TO3SmWak0eanwMZqhPVebNVcykqFufDQ S4gco44CK3jhxXRbJbOVAAuBiZAS3Y3heKRP0q66RDiuEfOS2mumJXZcXBErNPzL fPzD7+618NRVfb5Y/EEHu3Qv3HnLSSAn -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:36 2025 by rpki-client