$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft File: MxG_l-IbcmqcAFa75KhbH38pXzU.mft (raw, json) Hash identifier: gEIiVL7EVWKCadmZteSx//IfJE5iEVBLJwPxU2/jqyU= Subject key identifier: 4C:D9:8B:B6:BF:DB:2F:D2:91:CC:2C:F4:31:23:16:10:41:77:43:FD Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 Certificate issuer: /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Certificate serial: 11A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft Manifest number: 119A Signing time: Tue 04 Nov 2025 17:18:06 +0000 Manifest this update: Tue 04 Nov 2025 17:18:05 +0000 Manifest next update: Tue 11 Nov 2025 17:18:05 +0000 Files and hashes: 1: MxG_l-IbcmqcAFa75KhbH38pXzU.crl (hash: apDcX4xGK9rfBc2+3Vb+VopKu4+qiDw9pBOyvutTOPY=) 2: 51273D9A08EE11E99E30172AC4F9AE02.roa (hash: w5Wibqq/9uZKFdplDNzWfbo2U0mV8bZOoGj0UNzkyfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4518 (0x11a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7454, serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Validity Not Before: Nov 4 17:18:05 2025 GMT Not After : Nov 11 17:18:05 2025 GMT Subject: CN=690a354e-e32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f5:2e:e6:23:2c:1d:18:11:e3:12:ef:d3:aa: ce:f3:1a:6d:15:30:8e:e2:aa:05:be:1f:ed:2b:c3: 9a:eb:bb:9b:0d:5e:5b:3b:dc:34:9e:e0:66:63:25: 8c:52:3a:22:5c:cb:52:ae:66:8c:a7:e9:00:5b:65: 94:3f:65:20:08:05:23:51:ee:c1:ce:4d:77:df:61: fb:55:21:3c:64:0d:65:7a:2d:16:91:aa:86:15:e2: c7:8a:b6:9d:75:e3:24:74:6d:0c:bc:a4:5b:06:9a: 19:ac:73:95:f3:0f:07:2e:e9:6d:cb:90:7c:7b:33: 8b:b9:89:25:a2:24:fb:bf:79:ab:dd:e1:bf:57:2b: 74:b5:1d:ed:4b:80:4a:21:2d:22:be:ef:0e:64:af: f6:e8:41:85:86:03:67:7e:31:31:2c:2c:82:79:97: ad:df:6f:01:7c:0f:f4:d6:21:2a:45:84:38:5d:ae: e5:b6:c2:10:33:a7:b8:5f:be:06:a2:2e:ac:a3:33: 94:8b:23:fc:85:cc:60:18:bf:fe:e4:8b:75:1d:13: 80:e9:ba:95:f7:91:ee:0f:49:3c:81:a4:33:a4:4f: fb:8c:e1:b4:b1:15:c6:b9:b5:4f:ba:f9:2c:7a:72: 5f:53:01:82:be:85:e2:68:74:5e:42:f9:c7:07:9d: 77:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D9:8B:B6:BF:DB:2F:D2:91:CC:2C:F4:31:23:16:10:41:77:43:FD X509v3 Authority Key Identifier: keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:60:93:08:1f:e4:bf:01:ff:8e:01:9d:a2:c4:c1:4c:80:11: 27:2a:72:ed:fd:01:1b:8e:9e:10:1f:8a:a2:ec:dd:94:2a:f6: 27:e0:4c:04:59:e8:05:b6:df:26:ce:c0:a7:c2:ef:a5:8a:4c: da:14:a6:8f:64:9c:e6:e9:9f:ad:64:1b:74:54:5b:cc:f2:14: ed:d0:fc:ad:4e:15:34:ac:d9:60:d5:57:19:7d:9f:89:19:ca: b1:49:e4:48:4c:9f:0c:26:de:36:8a:78:4d:30:93:ba:1b:8c: 71:0d:b6:a4:45:0e:1f:01:07:a2:34:a5:bf:03:ad:cf:1a:0f: cb:5a:b4:a3:d4:00:4a:5c:c2:60:5c:3d:65:d8:fb:30:9b:10: b7:1d:8f:fc:1c:fc:70:09:f8:a6:75:29:24:cf:82:22:5c:36: 2d:2b:ad:21:3d:51:c0:00:81:48:e9:5d:6c:23:67:57:6c:d1: 50:ea:3c:d6:33:e9:03:93:78:a9:0c:e6:1a:27:d4:ec:6e:88: 07:25:32:29:65:24:2b:a3:46:09:58:cd:80:58:a1:7e:3e:82: e3:1b:f0:54:6d:cc:51:cb:e3:85:31:4f:cd:7e:52:87:2d:01: 2d:33:de:45:42:70:bf:75:b2:6d:38:7a:6a:49:1c:be:9c:38: 70:f2:d1:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0NTQxMTAvBgNVBAUTKDMzMTFCRjk3RTIxQjcyNkE5QzAwNTZCQkU0QTg1QjFG N0YyOTVGMzUwHhcNMjUxMTA0MTcxODA1WhcNMjUxMTExMTcxODA1WjAYMRYwFAYD VQQDEw02OTBhMzU0ZS1lMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfUu5iMsHRgR4xLv06rO8xptFTCO4qoFvh/tK8Oa67ubDV5bO9w0nuBmYyWM UjoiXMtSrmaMp+kAW2WUP2UgCAUjUe7Bzk1332H7VSE8ZA1lei0WkaqGFeLHirad deMkdG0MvKRbBpoZrHOV8w8HLulty5B8ezOLuYkloiT7v3mr3eG/Vyt0tR3tS4BK IS0ivu8OZK/26EGFhgNnfjExLCyCeZet328BfA/01iEqRYQ4Xa7ltsIQM6e4X74G oi6sozOUiyP8hcxgGL/+5It1HROA6bqV95HuD0k8gaQzpE/7jOG0sRXGubVPuvks enJfUwGCvoXiaHReQvnHB513SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzZi7a/ 2y/Skcws9DEjFhBBd0P9MB8GA1UdIwQYMBaAFDMRv5fiG3JqnABWu+SoWx9/KV81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzQ1NC83OUM2MUU3QzA4 RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNtcWNBRmE3NUtoYkgzOHBY elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014R19sLUliY21xY0FGYTc1S2hiSDM4cFh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzQ1NC83OUM2MUU3QzA4RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNt cWNBRmE3NUtoYkgzOHBYelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLYJMIH+S/Af+OAZ2ixMFMgBEnKnLt/QEbjp4QH4qi7N2UKvYn4EwE WegFtt8mzsCnwu+likzaFKaPZJzm6Z+tZBt0VFvM8hTt0PytThU0rNlg1VcZfZ+J GcqxSeRITJ8MJt42inhNMJO6G4xxDbakRQ4fAQeiNKW/A63PGg/LWrSj1ABKXMJg XD1l2PswmxC3HY/8HPxwCfimdSkkz4IiXDYtK60hPVHAAIFI6V1sI2dXbNFQ6jzW M+kDk3ipDOYaJ9TsbogHJTIpZSQro0YJWM2AWKF+PoLjG/BUbcxRy+OFMU/NflKH LQEtM95FQnC/dbJtOHpqSRy+nDhw8tFK -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:45 2025 by rpki-client