$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: Kz02rc/yRM5ys7zvDOSw/KaqQ8wjDqSY1e1Mgv37+mo= Subject key identifier: C5:F3:DE:1F:59:B8:CB:D8:25:71:D2:4A:99:F6:87:7E:17:AF:83:D9 Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 010B Signing time: Tue 04 Nov 2025 15:48:20 +0000 Manifest this update: Tue 04 Nov 2025 15:48:20 +0000 Manifest next update: Tue 11 Nov 2025 15:48:20 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: CsMUKUX7viJ2aZBQAkLMV2b2t3mK8+sY6JX1OgvhnZw=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Nov 4 15:48:20 2025 GMT Not After : Nov 11 15:48:20 2025 GMT Subject: CN=690a2044-10e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a2:96:dd:7e:bc:40:52:01:54:cf:f6:36:14: ba:7c:af:66:45:7a:14:54:c2:e4:23:7b:08:b1:4d: 55:94:33:82:73:45:d7:60:23:f1:f5:d6:e5:90:0a: 13:12:4e:2d:54:de:55:5b:c8:18:87:96:9e:3d:dd: 9b:73:4e:c5:24:bd:92:d3:7c:45:50:b5:65:d2:dc: b5:bc:43:f7:80:d7:3e:ab:c2:9e:8a:1c:55:34:64: d4:bb:28:93:31:1c:e3:ab:35:85:23:08:9e:41:19: 0b:5d:f0:3a:c1:c5:90:10:89:f7:08:db:f8:29:8b: 05:42:b0:2b:27:57:0c:60:c7:bd:55:5e:a1:a7:2e: 08:d9:32:7d:00:a1:74:3f:49:58:52:d6:d7:81:0b: 34:b2:3c:6a:0b:36:ec:54:bd:bf:42:69:20:16:b8: 85:71:c0:1e:fd:fe:22:08:44:e2:75:d5:8d:00:7f: 32:7d:bd:36:32:d4:d4:5d:30:4b:11:c2:24:48:64: dd:50:1d:4f:89:45:94:8c:b3:38:a4:f4:6a:71:53: 36:fa:5a:39:ef:10:f1:18:22:b8:25:e9:84:2f:a4: fb:78:bf:59:f8:2c:6b:6b:f2:8d:96:3f:bf:dd:be: 59:a0:dd:04:26:45:4d:da:11:8a:11:5e:59:57:dc: ce:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F3:DE:1F:59:B8:CB:D8:25:71:D2:4A:99:F6:87:7E:17:AF:83:D9 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:9b:70:c7:46:da:32:87:6b:20:f5:de:c6:26:4b:da:fc:7f: 76:7b:11:f3:43:20:ca:d3:b0:e7:43:41:60:8f:e1:0f:67:7a: 6d:ef:a1:87:49:cc:1b:d0:f6:0e:31:25:95:b7:ce:ef:f1:b0: 7c:b4:13:3f:73:68:67:c0:83:c3:03:bf:ed:3a:d9:d9:b0:31: a1:da:a9:28:ab:62:6e:c6:e0:cf:42:fa:8b:65:58:c6:66:00: 87:ea:14:ec:93:70:7d:61:4a:40:17:a1:1b:4e:8b:db:db:b7: 3a:98:ea:b9:96:3e:bb:af:14:5a:59:d5:40:6d:f9:67:89:70: 9b:8e:4a:ba:2f:db:c3:68:c3:ea:d2:16:99:83:78:e3:7c:a9: 06:1e:57:2c:a3:b1:a6:24:96:7e:80:60:83:3f:57:41:42:0f: ac:b1:b1:99:49:4a:6e:9a:09:81:b3:35:16:99:62:e3:7c:e0: f6:7c:43:65:5f:0c:bd:37:db:3a:bb:ef:22:5b:49:8b:db:0a: 69:fa:56:0a:26:f0:a0:f9:f1:c7:d9:4c:8f:25:86:5a:78:ef: 87:6c:49:f5:60:9b:ad:a8:f8:50:43:b0:e2:8b:af:22:94:de: a6:7f:4d:e4:41:86:0d:c4:92:b0:98:6e:ad:c8:6d:0e:85:59: ed:1e:25:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUxMTA0MTU0ODIwWhcNMjUxMTExMTU0ODIwWjAYMRYwFAYD VQQDEw02OTBhMjA0NC0xMGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqKW3X68QFIBVM/2NhS6fK9mRXoUVMLkI3sIsU1VlDOCc0XXYCPx9dblkAoT Ek4tVN5VW8gYh5aePd2bc07FJL2S03xFULVl0ty1vEP3gNc+q8KeihxVNGTUuyiT MRzjqzWFIwieQRkLXfA6wcWQEIn3CNv4KYsFQrArJ1cMYMe9VV6hpy4I2TJ9AKF0 P0lYUtbXgQs0sjxqCzbsVL2/QmkgFriFccAe/f4iCETiddWNAH8yfb02MtTUXTBL EcIkSGTdUB1PiUWUjLM4pPRqcVM2+lo57xDxGCK4JemEL6T7eL9Z+Cxra/KNlj+/ 3b5ZoN0EJkVN2hGKEV5ZV9zOqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXz3h9Z uMvYJXHSSpn2h34Xr4PZMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApm3DHRtoyh2sg9d7GJkva/H92exHzQyDK07DnQ0Fgj+EPZ3pt76GH Scwb0PYOMSWVt87v8bB8tBM/c2hnwIPDA7/tOtnZsDGh2qkoq2JuxuDPQvqLZVjG ZgCH6hTsk3B9YUpAF6EbTovb27c6mOq5lj67rxRaWdVAbflniXCbjkq6L9vDaMPq 0haZg3jjfKkGHlcso7GmJJZ+gGCDP1dBQg+ssbGZSUpumgmBszUWmWLjfOD2fENl Xwy9N9s6u+8iW0mL2wpp+lYKJvCg+fHH2UyPJYZaeO+HbEn1YJutqPhQQ7Dii68i lN6mf03kQYYNxJKwmG6tyG0OhVntHiXR -----END CERTIFICATE-----Generated at Tue Nov 4 21:30:06 2025 by rpki-client