$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft File: rRapGbMt65RQ0upjx51QMV2RgVU.mft (raw, json) Hash identifier: 3ND9zi/xVowMEK2iFzN79vYA6G9srzubJQh0qhmFCUs= Subject key identifier: 79:76:C3:C1:18:64:ED:3D:10:3D:E6:93:8A:3D:9C:27:1E:3E:82:01 Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0B34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft Manifest number: 0B29 Signing time: Sun 02 Nov 2025 19:15:48 +0000 Manifest this update: Sun 02 Nov 2025 19:15:47 +0000 Manifest next update: Sun 09 Nov 2025 19:15:47 +0000 Files and hashes: 1: rRapGbMt65RQ0upjx51QMV2RgVU.crl (hash: fxuCX7J2+Kw2YYiFzguHTyK1NMOGL7Oa0UdvxMHWLdY=) 2: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (hash: TavcsNbKSaSDXkcGP72u+jTcP48G3Su8SEY/uwppPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2868 (0xb34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F, serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Nov 2 19:15:47 2025 GMT Not After : Nov 9 19:15:47 2025 GMT Subject: CN=6907ade4-6dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f4:6a:3a:54:00:9a:97:42:e2:86:01:dc:94: 31:88:64:0b:88:10:85:e5:fc:e4:eb:4e:c2:c2:e8: 95:8e:e1:bb:d9:93:ca:cb:ee:fe:3c:0c:d5:f2:bf: 27:fd:0c:40:f3:56:4d:cb:1f:65:cf:7f:0e:67:f3: 77:a8:97:a8:8a:5d:28:9e:b2:31:78:e9:1a:3e:1f: c2:40:52:19:dc:41:f8:84:76:5a:11:48:fa:b7:f7: ad:2b:d3:c4:6d:86:b6:46:64:d8:c1:6d:3a:9b:29: d8:ce:aa:99:56:c5:2c:c4:f3:74:fe:0d:28:ee:5e: fe:43:12:23:99:bc:e9:79:ea:87:61:07:0c:10:51: d6:8a:18:10:9c:f7:0a:00:f6:58:a4:45:d7:97:f5: 04:4a:14:02:b5:ce:17:04:29:11:c9:f7:d9:76:3d: ca:18:00:e7:8b:0c:39:32:a1:21:ee:95:63:c7:4d: 03:ee:90:6d:34:07:a2:01:27:35:c4:02:3d:bf:23: 6a:a3:e0:d5:6f:0d:77:a6:53:6d:ef:bf:11:03:50: df:4d:d2:a5:05:aa:ad:ac:b3:92:54:c3:82:da:35: 0f:f0:77:14:4e:63:b3:bd:66:9e:14:57:f9:21:1b: 3b:a9:38:3f:5d:a4:f4:c9:4b:9f:8a:e4:b0:66:00: 0d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:76:C3:C1:18:64:ED:3D:10:3D:E6:93:8A:3D:9C:27:1E:3E:82:01 X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:3a:8c:7a:24:79:3a:5c:6c:56:51:ab:7f:aa:74:d1:15:a3: d8:6e:e0:b5:b8:bb:55:99:92:05:0f:bb:e2:93:c8:17:72:12: 9c:43:26:35:e5:ee:dd:a2:2a:a0:4a:bf:eb:d3:9f:5d:ac:3f: 2c:05:dc:14:c2:9e:af:fc:09:30:ff:4c:b3:bf:64:40:0a:00: 97:64:60:10:38:01:cc:6b:76:b5:ae:25:51:3d:0e:27:e3:c2: 7b:6f:5a:65:1f:f1:6d:be:c2:5d:93:64:9f:a6:0d:33:01:76: 02:95:58:f5:22:f5:76:e1:d2:5c:17:6b:fb:0e:33:4d:5d:4c: 0d:be:bc:ae:a7:33:65:42:b1:3b:6f:87:fc:18:34:8b:28:30: 0f:64:e8:ea:71:59:dc:a4:0e:a0:42:8a:82:4d:aa:b6:26:f6: dc:56:af:aa:d4:88:dc:5c:06:e2:07:e0:1c:ff:bb:b7:08:01: d7:57:3d:75:2a:64:42:25:f4:af:18:73:90:3d:eb:db:ed:5e: 2e:7b:3c:1c:26:8b:24:5e:0b:97:af:1f:56:be:84:5c:75:4e: 20:f8:67:a0:47:cc:83:39:6c:ad:e6:9f:9b:e4:24:20:d1:f1: b1:f8:04:63:f3:de:77:9a:77:78:a9:2e:98:42:a3:9a:04:c9: 39:ea:c0:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjUxMTAyMTkxNTQ3WhcNMjUxMTA5MTkxNTQ3WjAYMRYwFAYD VQQDEw02OTA3YWRlNC02ZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvRqOlQAmpdC4oYB3JQxiGQLiBCF5fzk607CwuiVjuG72ZPKy+7+PAzV8r8n /QxA81ZNyx9lz38OZ/N3qJeoil0onrIxeOkaPh/CQFIZ3EH4hHZaEUj6t/etK9PE bYa2RmTYwW06mynYzqqZVsUsxPN0/g0o7l7+QxIjmbzpeeqHYQcMEFHWihgQnPcK APZYpEXXl/UEShQCtc4XBCkRyffZdj3KGADniww5MqEh7pVjx00D7pBtNAeiASc1 xAI9vyNqo+DVbw13plNt778RA1DfTdKlBaqtrLOSVMOC2jUP8HcUTmOzvWaeFFf5 IRs7qTg/XaT0yUufiuSwZgANaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHl2w8EY ZO09ED3mk4o9nCcePoIBMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkEwRi9EOTAwNjdGRTRDRDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1 UlEwdXBqeDUxUU1WMlJnVlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3Oox6JHk6XGxWUat/qnTRFaPYbuC1uLtVmZIFD7vik8gXchKcQyY1 5e7doiqgSr/r059drD8sBdwUwp6v/Akw/0yzv2RACgCXZGAQOAHMa3a1riVRPQ4n 48J7b1plH/FtvsJdk2Sfpg0zAXYClVj1IvV24dJcF2v7DjNNXUwNvryupzNlQrE7 b4f8GDSLKDAPZOjqcVncpA6gQoqCTaq2JvbcVq+q1IjcXAbiB+Ac/7u3CAHXVz11 KmRCJfSvGHOQPevb7V4uezwcJoskXguXrx9WvoRcdU4g+GegR8yDOWyt5p+b5CQg 0fGx+ARj8953mnd4qS6YQqOaBMk56sBF -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:44 2025 by rpki-client