$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: 02dbWZXUpLcKYv0vYBrxNRrcshyD7/YcfIdRtxcG3g0= Subject key identifier: EA:BF:C4:13:C6:75:D0:FC:DC:E8:41:8E:E6:06:17:70:CA:A2:C6:07 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 049C Signing time: Wed 05 Nov 2025 00:04:22 +0000 Manifest this update: Wed 05 Nov 2025 00:04:21 +0000 Manifest next update: Wed 12 Nov 2025 00:04:21 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: S7IytHpnFRht6pzDv8hP7Z6S9N3p0L5T+z65LOF21rA=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 6npCQGD8mKRcXKLy4jKCYWBhRpmmG05TZblrhBE83zM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Nov 5 00:04:21 2025 GMT Not After : Nov 12 00:04:21 2025 GMT Subject: CN=690a9485-fad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cf:b7:6a:8b:5d:51:9f:8d:7f:61:a9:a2:04: fa:04:fc:57:de:2b:0f:ab:f5:e0:3a:93:b6:49:57: 3e:69:da:87:1a:42:93:e0:e4:cb:e2:3a:09:62:d6: 07:3f:09:9d:2f:e6:31:5c:8c:89:35:2f:16:89:0d: df:02:07:6c:a5:02:0f:40:ac:0b:d2:d3:f2:d4:70: 6f:0e:3d:81:c7:2c:4c:1a:b8:d0:28:8a:81:9b:22: d8:9d:0e:90:d5:af:76:8c:5d:c5:7d:10:95:c3:24: 37:e7:7e:d1:b1:71:e1:9b:70:8e:ef:18:8a:44:20: 1e:53:a2:74:28:46:1c:6b:1c:27:be:e2:56:e6:d6: f1:a3:51:6e:46:74:1e:a3:a5:1f:9a:20:0c:43:cb: ba:fb:f3:49:59:f5:03:93:40:10:60:2b:6d:47:c1: e7:b4:e5:53:a0:0e:8e:47:18:8c:a2:89:02:8d:37: 76:45:ca:72:df:9d:5f:ab:7c:8a:00:a5:97:fc:22: 59:84:d4:21:18:97:ca:a6:ec:37:f8:dc:5a:88:70: 08:da:37:49:a5:82:0b:7d:08:2d:ce:f6:ab:03:27: b5:c5:9d:ca:61:61:6c:32:2c:2e:61:93:8b:4a:70: ab:8d:c2:fe:c2:36:8e:78:61:73:b3:19:c6:03:ee: 28:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BF:C4:13:C6:75:D0:FC:DC:E8:41:8E:E6:06:17:70:CA:A2:C6:07 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:a6:31:0d:9a:2d:7d:94:bf:7f:d8:f8:28:62:4c:61:7e:ce: 77:15:3a:34:e0:85:4e:e9:d5:5f:c0:58:14:e1:3b:0e:55:56: cf:fd:90:4f:3e:9f:4d:25:92:b2:b3:3b:87:a2:f6:e0:65:af: 2a:6f:b0:9c:cc:e8:a9:69:33:8b:25:b5:b8:80:70:8a:fa:21: 2f:54:b8:8c:51:2a:6e:c8:43:62:8c:69:b5:5c:4a:b1:ef:6c: 82:d2:6d:dd:ba:dd:06:8f:53:24:c4:ab:2c:76:aa:cf:a3:de: 8f:df:b5:ac:a4:54:ba:f5:51:5a:f2:ea:16:fb:2e:29:ab:f9: a6:df:c9:d4:f6:a6:8f:3a:e2:da:e4:cf:ef:be:8d:61:db:bf: b6:7d:3d:ae:ca:69:da:89:47:17:75:11:89:a3:c2:c8:43:f8: 49:e4:f9:ac:4b:0b:71:ce:3f:1b:26:09:11:02:49:9c:e7:7a: 2e:6e:33:d8:d3:b4:17:23:bc:d1:42:54:3c:96:68:ff:1e:80: 2d:c4:4a:0a:01:c9:61:59:4d:83:30:7c:a6:b5:e4:fd:d0:66: 50:67:9f:69:85:c4:26:ca:f6:4c:b2:c1:da:5b:cd:ea:97:46: cf:25:b2:9e:27:f5:43:51:37:bb:0a:6a:dd:56:11:d8:de:fd: 0a:70:d1:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUxMTA1MDAwNDIxWhcNMjUxMTEyMDAwNDIxWjAYMRYwFAYD VQQDEw02OTBhOTQ4NS1mYWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c+3aotdUZ+Nf2GpogT6BPxX3isPq/XgOpO2SVc+adqHGkKT4OTL4joJYtYH PwmdL+YxXIyJNS8WiQ3fAgdspQIPQKwL0tPy1HBvDj2BxyxMGrjQKIqBmyLYnQ6Q 1a92jF3FfRCVwyQ3537RsXHhm3CO7xiKRCAeU6J0KEYcaxwnvuJW5tbxo1FuRnQe o6UfmiAMQ8u6+/NJWfUDk0AQYCttR8HntOVToA6ORxiMookCjTd2Rcpy351fq3yK AKWX/CJZhNQhGJfKpuw3+NxaiHAI2jdJpYILfQgtzvarAye1xZ3KYWFsMiwuYZOL SnCrjcL+wjaOeGFzsxnGA+4orwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOq/xBPG ddD83OhBjuYGF3DKosYHMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6pjENmi19lL9/2PgoYkxhfs53FTo04IVO6dVfwFgU4TsOVVbP/ZBP Pp9NJZKyszuHovbgZa8qb7CczOipaTOLJbW4gHCK+iEvVLiMUSpuyENijGm1XEqx 72yC0m3dut0Gj1MkxKssdqrPo96P37WspFS69VFa8uoW+y4pq/mm38nU9qaPOuLa 5M/vvo1h27+2fT2uymnaiUcXdRGJo8LIQ/hJ5PmsSwtxzj8bJgkRAkmc53oubjPY 07QXI7zRQlQ8lmj/HoAtxEoKAclhWU2DMHymteT90GZQZ59phcQmyvZMssHaW83q l0bPJbKeJ/VDUTe7CmrdVhHY3v0KcNEL -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:25 2025 by rpki-client