$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: rwRucgpfeHghRuM3EofCW0vKCsn37dbZXEKAoZTXdq4= Subject key identifier: 81:EF:D1:0F:09:DD:6D:EA:61:D0:02:09:7A:38:5C:99:0F:8B:8F:F8 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 01E6 Signing time: Wed 05 Nov 2025 02:47:25 +0000 Manifest this update: Wed 05 Nov 2025 02:47:25 +0000 Manifest next update: Wed 12 Nov 2025 02:47:24 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: fRS82KPR2LNigd6oOoVeDdGIjnAwyGkKA8cCStL4gQY=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: tmK0iDwld+e+aTJhpXj4A3zlzhe3/irDCWSZWb2ca9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Nov 5 02:47:25 2025 GMT Not After : Nov 12 02:47:24 2025 GMT Subject: CN=690ababd-0d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1f:43:fb:90:c0:15:b3:70:93:83:aa:20:30: 59:3a:97:15:a1:64:65:fb:3d:cd:ca:cf:58:49:f5: 21:f8:65:48:df:e9:43:25:e8:46:62:6f:c0:0d:da: c3:8e:3a:c2:97:c1:41:7f:25:47:46:1d:f4:97:6f: f1:85:4a:e2:92:df:5d:0b:b5:0e:cb:d3:58:e2:2c: 07:72:20:34:59:fc:b0:cc:6c:07:7d:3c:ca:53:06: b7:14:ab:90:e8:ab:c7:55:f8:71:7c:12:21:d8:68: 33:91:b7:e8:68:c9:d8:d6:6a:7c:31:02:a4:35:79: a5:63:82:72:a0:0f:f8:8e:8e:0f:b8:70:3e:0e:b6: 02:33:f6:e7:b9:38:d3:5a:2a:77:9d:06:a8:40:ae: cf:b7:ea:e8:89:d3:81:73:d7:73:e3:e0:2a:c3:e8: 5a:b9:79:8c:c3:78:88:c8:df:e6:39:cc:51:41:f1: 72:aa:73:ea:ac:0d:1c:cf:f9:08:90:7e:75:82:61: 8f:70:a7:e8:1f:1f:e7:16:32:99:7a:5b:e4:33:d9: 2e:05:86:af:da:f4:6b:93:4c:90:ad:0b:f3:d0:67: e6:f0:fd:ea:40:6d:a2:e8:45:30:61:25:f0:81:9e: c0:31:33:d6:2b:ce:e0:97:4b:54:06:bf:04:86:79: d5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:EF:D1:0F:09:DD:6D:EA:61:D0:02:09:7A:38:5C:99:0F:8B:8F:F8 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:7f:1f:d1:4e:69:f7:5f:17:18:31:52:9a:20:02:a9:24:77: 13:31:b5:e1:e4:82:0c:6d:39:bb:92:71:93:0d:b7:f5:3c:a1: 95:99:11:2b:35:49:6c:9c:7c:9a:22:fd:35:15:70:bd:7f:66: a9:fe:10:33:0f:1d:b5:d3:b4:b4:56:f1:df:8a:15:7c:82:9e: e1:8e:ef:37:f8:f1:70:cd:82:56:20:dc:15:f9:aa:51:93:58: b2:a6:14:e4:89:ec:b6:0c:86:4e:98:dd:49:14:3f:6b:cd:22: b6:67:56:b3:45:39:5e:cf:1f:37:19:59:f9:8e:df:c2:5d:92: 44:8f:e6:93:5a:5f:03:08:5e:89:89:33:a8:5b:47:03:58:59: 12:db:09:6b:9c:a2:27:09:27:45:bd:84:8d:e8:dc:3a:d5:42: ef:fb:e7:a6:be:52:14:7c:12:b5:91:0d:e0:50:f5:7c:ba:ff: 9d:4f:4c:a1:6e:c8:a5:a3:9a:3b:49:b6:5e:f9:c8:99:78:8f: 3b:22:2c:df:dc:76:d7:24:02:bf:d5:06:ba:02:ec:cd:15:ad: 33:81:c0:c8:84:f5:6c:88:02:84:c7:af:27:16:b3:1f:06:4c: e4:e5:89:af:df:9d:0a:62:18:15:6c:92:9c:ca:e6:68:ec:49: d6:c7:a9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUxMTA1MDI0NzI1WhcNMjUxMTEyMDI0NzI0WjAYMRYwFAYD VQQDEw02OTBhYmFiZC0wZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2h9D+5DAFbNwk4OqIDBZOpcVoWRl+z3Nys9YSfUh+GVI3+lDJehGYm/ADdrD jjrCl8FBfyVHRh30l2/xhUrikt9dC7UOy9NY4iwHciA0WfywzGwHfTzKUwa3FKuQ 6KvHVfhxfBIh2GgzkbfoaMnY1mp8MQKkNXmlY4JyoA/4jo4PuHA+DrYCM/bnuTjT Wip3nQaoQK7Pt+roidOBc9dz4+Aqw+hauXmMw3iIyN/mOcxRQfFyqnPqrA0cz/kI kH51gmGPcKfoHx/nFjKZelvkM9kuBYav2vRrk0yQrQvz0Gfm8P3qQG2i6EUwYSXw gZ7AMTPWK87gl0tUBr8EhnnVxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHv0Q8J 3W3qYdACCXo4XJkPi4/4MB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUfx/RTmn3XxcYMVKaIAKpJHcTMbXh5IIMbTm7knGTDbf1PKGVmREr NUlsnHyaIv01FXC9f2ap/hAzDx2107S0VvHfihV8gp7hju83+PFwzYJWINwV+apR k1iyphTkiey2DIZOmN1JFD9rzSK2Z1azRTlezx83GVn5jt/CXZJEj+aTWl8DCF6J iTOoW0cDWFkS2wlrnKInCSdFvYSN6Nw61ULv++emvlIUfBK1kQ3gUPV8uv+dT0yh bsilo5o7SbZe+ciZeI87Iizf3HbXJAK/1Qa6AuzNFa0zgcDIhPVsiAKEx68nFrMf Bkzk5Ymv350KYhgVbJKcyuZo7EnWx6my -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:34 2025 by rpki-client