$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft File: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json) Hash identifier: WLOA3MBDRtPq4i+AopiJ2Xb0CqnQXIPayAVEu+B+Ls0= Subject key identifier: 15:3A:93:86:D8:22:48:75:73:32:B8:DC:8E:B2:3C:22:EF:89:6E:41 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft Manifest number: 01E0 Signing time: Mon 03 Nov 2025 02:47:23 +0000 Manifest this update: Mon 03 Nov 2025 02:47:22 +0000 Manifest next update: Mon 10 Nov 2025 02:47:22 +0000 Files and hashes: 1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: ZYfF0UN9kkpM6MQkvmnQd9InvTfhL2IexXt0RhJ1CbY=) 2: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: 1jcnYgiH1oCe12gdnItbi9E2/n5D/nkIQyDzvjflQcQ=) 3: 1333404E5A0D11EF8810E217C4F9AE02.roa (hash: LSSqPw0m9vdH2z02yt+UwvMOawigT/2JykBCEQ4iiVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Nov 3 02:47:22 2025 GMT Not After : Nov 10 02:47:22 2025 GMT Subject: CN=690817bb-2c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:6d:bd:10:89:58:98:ac:51:33:d0:84:d8: f0:e2:f2:ca:1b:47:e0:fd:c8:7e:61:36:3f:72:c1: 0e:0e:d6:74:90:93:c2:f1:5b:ea:18:cb:1d:42:be: bd:93:19:3a:86:a7:f8:3b:93:8a:77:bb:76:0c:30: b1:d6:60:98:69:6a:09:b2:b8:bd:c7:ff:3f:0c:1c: 46:8a:75:c0:16:78:de:e0:c9:b0:9c:ec:8e:bf:5d: dd:d1:16:30:fa:4a:2f:2c:db:26:22:d3:b4:8f:e0: df:ee:a4:7c:d9:33:b4:43:c3:d5:98:ad:03:ba:4c: 11:c8:b9:7c:1a:36:10:19:c7:58:f6:78:13:c0:8b: 40:62:a3:dc:1e:f9:6a:ad:29:21:d5:b7:71:d0:45: 5b:1f:4f:cb:70:9a:4c:94:00:c1:e1:1f:01:7a:73: 68:09:e4:7c:ac:36:19:cb:2f:88:04:05:38:fa:a3: 56:69:92:33:d0:61:88:30:7d:a8:11:f9:c8:46:e7: 1e:0b:24:21:a0:f4:bf:18:3e:07:85:df:eb:63:b6: 6f:f5:d2:4b:2d:36:f1:6a:32:52:a2:0a:a5:02:73: aa:a9:dc:82:71:4e:dc:95:2f:d7:52:70:75:2f:74: a5:fd:ca:85:68:e3:df:1e:34:0a:f8:c4:e4:66:8f: 8b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3A:93:86:D8:22:48:75:73:32:B8:DC:8E:B2:3C:22:EF:89:6E:41 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:d2:1b:c8:d2:82:1d:da:d6:b9:e4:7f:ee:32:db:14:5e:f8: 1b:c5:fe:bf:48:ec:4a:9a:96:78:09:c5:ca:e4:d9:27:e5:b9: de:50:4c:42:1a:3f:b2:c9:5b:b5:1d:ea:cb:0c:ff:87:e1:7a: 62:97:2d:d8:9b:81:c1:28:fc:e8:38:a6:60:6e:dc:fb:0b:5a: c9:bf:15:e7:7e:27:99:ce:71:8b:d2:84:f9:cf:d5:37:8a:cc: f3:e5:c3:39:f3:19:4e:87:b0:d0:83:f4:7b:e6:4f:30:9e:16: 8c:50:9b:67:23:14:43:06:3c:05:7d:77:86:eb:7d:eb:ca:5f: f3:9e:61:d7:c6:1f:20:74:68:7c:a0:a3:8d:d5:8f:b0:33:be: 39:b7:18:b3:5a:32:fb:46:84:27:c5:57:61:0d:bb:55:e0:b2: bb:7a:ae:07:47:1e:20:77:0a:a8:86:65:d3:6e:56:81:ac:66: 90:78:6b:82:6f:5f:f7:67:44:1d:a1:b6:78:04:83:1b:27:8e: e7:d9:d7:39:16:2c:1a:1a:e8:3c:a3:48:1a:13:df:a4:e6:ce: c2:60:89:3b:c7:c8:07:fa:b9:4d:6b:09:25:92:7e:21:e9:ff: 54:34:2a:cc:3a:38:6d:a0:a5:3e:c5:a9:7b:0c:f2:f8:b7:64: f4:34:36:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjUxMTAzMDI0NzIyWhcNMjUxMTEwMDI0NzIyWjAYMRYwFAYD VQQDEw02OTA4MTdiYi0yYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugJtvRCJWJisUTPQhNjw4vLKG0fg/ch+YTY/csEODtZ0kJPC8VvqGMsdQr69 kxk6hqf4O5OKd7t2DDCx1mCYaWoJsri9x/8/DBxGinXAFnje4MmwnOyOv13d0RYw +kovLNsmItO0j+Df7qR82TO0Q8PVmK0DukwRyLl8GjYQGcdY9ngTwItAYqPcHvlq rSkh1bdx0EVbH0/LcJpMlADB4R8BenNoCeR8rDYZyy+IBAU4+qNWaZIz0GGIMH2o EfnIRuceCyQhoPS/GD4Hhd/rY7Zv9dJLLTbxajJSogqlAnOqqdyCcU7clS/XUnB1 L3Sl/cqFaOPfHjQK+MTkZo+LiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBU6k4bY Ikh1czK43I6yPCLviW5BMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFOS9CQkNENUQyQ0VGQ0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2 WEJsYVhtMng2a1pIWTB2dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo0hvI0oId2ta55H/uMtsUXvgbxf6/SOxKmpZ4CcXK5Nkn5bneUExC Gj+yyVu1HerLDP+H4Xpily3Ym4HBKPzoOKZgbtz7C1rJvxXnfieZznGL0oT5z9U3 iszz5cM58xlOh7DQg/R75k8wnhaMUJtnIxRDBjwFfXeG633ryl/znmHXxh8gdGh8 oKON1Y+wM745txizWjL7RoQnxVdhDbtV4LK7eq4HRx4gdwqohmXTblaBrGaQeGuC b1/3Z0QdobZ4BIMbJ47n2dc5FiwaGug8o0gaE9+k5s7CYIk7x8gH+rlNawklkn4h 6f9UNCrMOjhtoKU+xal7DPL4t2T0NDYF -----END CERTIFICATE-----Generated at Tue Nov 4 15:27:27 2025 by rpki-client