$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: /I7G5qwB9hiTgj3XbAygZtpmc5VHBriVXW1IXUanlRA= Subject key identifier: A5:86:75:33:89:EE:ED:11:9F:61:91:98:D3:F0:CB:C4:93:DB:AD:E1 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 165C Signing time: Tue 04 Nov 2025 16:48:24 +0000 Manifest this update: Tue 04 Nov 2025 16:48:24 +0000 Manifest next update: Tue 11 Nov 2025 16:48:24 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: 5itNp1LzTxekq/wrsJZeSEFjBVRQcQ1Ar0xZAzQMSqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5745 (0x1671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Nov 4 16:48:24 2025 GMT Not After : Nov 11 16:48:24 2025 GMT Subject: CN=690a2e58-a10e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f1:ce:08:8e:7d:c4:cf:68:66:61:f0:5d:a2: 90:c1:d8:01:32:9a:eb:2f:e3:d6:dc:e4:2d:d6:50: ac:31:fc:d1:df:13:75:5c:7e:00:a6:00:0d:9b:51: 54:c1:80:ff:eb:21:42:be:48:c4:12:d3:25:54:ed: a4:5f:a3:da:38:f6:1f:eb:2c:f4:07:9b:1d:fd:b8: c1:03:2a:80:25:d7:4b:34:21:78:6f:c6:a6:33:8a: b8:be:e1:db:7e:3b:ed:94:fd:f6:2f:35:b0:63:72: d6:45:20:2f:c3:61:ab:23:5d:3e:3f:42:bc:97:9a: ad:b2:8b:6f:e6:b3:8a:31:dc:c4:39:dd:6a:70:f9: 11:30:27:01:7c:0b:97:b8:a3:7a:66:24:a2:c3:1e: dc:3d:d3:11:56:11:46:be:2d:d6:5d:3b:3f:16:2c: a4:72:d1:24:15:c9:57:03:ad:0a:c3:77:41:04:c3: d4:5f:dd:38:84:be:bd:25:da:aa:b4:13:18:c1:74: 0b:82:d8:7e:77:3c:a4:95:74:dd:1c:29:a4:37:7e: 92:a8:25:4f:50:a5:1f:39:1a:22:05:8d:b3:7c:01: 28:7d:0c:ca:ef:66:4a:f3:ac:67:e6:14:aa:a8:22: a0:0d:9d:db:f7:d9:3f:aa:7c:58:be:b7:00:18:47: d4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:86:75:33:89:EE:ED:11:9F:61:91:98:D3:F0:CB:C4:93:DB:AD:E1 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:2e:10:53:69:36:63:fa:bf:d6:c0:ea:d7:46:f7:30:96:5e: 1b:1b:a7:2a:bc:7e:6b:ec:be:98:8a:ea:25:e3:39:45:c6:15: f8:2b:e8:c7:2c:c7:b7:fe:ed:3f:be:99:75:65:6b:c3:ff:df: de:07:c1:e6:92:10:52:81:4d:e1:63:b5:7c:f7:50:93:7a:a7: 2b:93:c3:62:66:94:b2:d8:10:d7:ce:01:5e:18:a8:fb:06:9d: f9:73:cb:72:f2:7f:50:b3:38:92:34:c4:db:75:96:8b:93:a5: 84:f9:d2:ab:1f:21:bd:f6:20:5c:a1:14:49:ef:0b:97:69:70: cd:51:b4:78:df:aa:81:28:35:12:1f:16:ea:b3:0f:fd:ec:be: 8b:de:90:57:d8:04:2b:fb:a0:56:5c:65:b2:b5:c3:8b:9d:9f: 3f:d3:0c:24:f7:3b:07:22:21:7f:f3:f0:23:6d:5f:c4:3b:00: fb:72:a9:e1:8b:36:5f:55:70:75:c6:07:76:6a:63:37:92:2d: 12:13:91:06:fd:89:88:b8:b4:e0:be:8a:a8:d1:71:92:95:bc: f6:52:36:f2:4d:a8:dd:1c:4f:9e:64:9b:ec:85:ab:c4:31:72: 0d:e6:f5:4e:79:aa:29:ea:0a:3f:87:ed:c3:11:c1:88:fe:d0: a8:5c:0c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUxMTA0MTY0ODI0WhcNMjUxMTExMTY0ODI0WjAYMRYwFAYD VQQDEw02OTBhMmU1OC1hMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PHOCI59xM9oZmHwXaKQwdgBMprrL+PW3OQt1lCsMfzR3xN1XH4ApgANm1FU wYD/6yFCvkjEEtMlVO2kX6PaOPYf6yz0B5sd/bjBAyqAJddLNCF4b8amM4q4vuHb fjvtlP32LzWwY3LWRSAvw2GrI10+P0K8l5qtsotv5rOKMdzEOd1qcPkRMCcBfAuX uKN6ZiSiwx7cPdMRVhFGvi3WXTs/FiykctEkFclXA60Kw3dBBMPUX904hL69Jdqq tBMYwXQLgth+dzyklXTdHCmkN36SqCVPUKUfORoiBY2zfAEofQzK72ZK86xn5hSq qCKgDZ3b99k/qnxYvrcAGEfUTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWGdTOJ 7u0Rn2GRmNPwy8ST263hMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMLhBTaTZj+r/WwOrXRvcwll4bG6cqvH5r7L6Yiuol4zlFxhX4K+jH LMe3/u0/vpl1ZWvD/9/eB8HmkhBSgU3hY7V891CTeqcrk8NiZpSy2BDXzgFeGKj7 Bp35c8ty8n9QsziSNMTbdZaLk6WE+dKrHyG99iBcoRRJ7wuXaXDNUbR436qBKDUS Hxbqsw/97L6L3pBX2AQr+6BWXGWytcOLnZ8/0wwk9zsHIiF/8/AjbV/EOwD7cqnh izZfVXB1xgd2amM3ki0SE5EG/YmIuLTgvoqo0XGSlbz2UjbyTajdHE+eZJvshavE MXIN5vVOeaop6go/h+3DEcGI/tCoXAwe -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:29 2025 by rpki-client