$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft File: x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft (raw, json) Hash identifier: RuCBHnV7N2jatA9RrcNlI4dJ/+hhFK6urNwF7XD8hPU= Subject key identifier: 0A:68:7D:F2:76:53:A1:21:BC:78:DF:28:E3:6A:46:59:EA:7C:65:9D Authority key identifier: C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 Certificate issuer: /CN=A91E01B2/serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft Manifest number: 03AA Signing time: Wed 05 Nov 2025 00:48:39 +0000 Manifest this update: Wed 05 Nov 2025 00:48:38 +0000 Manifest next update: Wed 12 Nov 2025 00:48:38 +0000 Files and hashes: 1: x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl (hash: ZlsX4ZqLKai0mgYCqSKMYHvyRlYuyuaoHyUsQdjD25I=) 2: A8E34E9CB66611ECAF76DA4CC4F9AE02.roa (hash: U+TSb4gwFFQAjrhJgD02yjkinWTnlvFp6oUJxouw0Y4=) 3: A9906244B66611ECAF76DA4CC4F9AE02.roa (hash: +CW3v5l7R9gMqeCZZxElin+bWDGaYeldrsVB5lTI+Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01B2, serialNumber=C7E5790B05E0D4D209DB43DC680FB788279814A9 Validity Not Before: Nov 5 00:48:38 2025 GMT Not After : Nov 12 00:48:38 2025 GMT Subject: CN=690a9ee6-5f81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:06:b3:fe:8e:71:4e:45:05:34:e5:fa:04:42: 71:13:30:b5:c6:6b:2a:fa:e8:e9:13:68:4c:6b:c5: 4f:c1:34:29:80:e8:55:2f:f7:1a:83:a1:20:db:78: 97:35:6d:5e:7a:d2:da:61:2b:33:5e:95:e3:29:b3: b2:76:25:d0:a2:19:1f:22:87:be:5e:47:f4:81:b6: fe:e5:a7:a3:c7:14:0c:a8:c6:6e:17:fa:12:2a:c9: 91:c1:a3:e3:19:1a:50:48:bf:f8:f2:bd:ba:73:88: e7:f4:75:45:37:db:ae:9a:95:e5:1c:1a:4e:fd:d4: 98:3d:f1:89:98:5c:ee:ed:e7:15:ec:3d:c0:c3:5e: 2d:f1:80:28:30:65:3b:cf:cf:39:ba:4e:ab:92:59: 15:63:68:42:4d:c0:b3:4c:53:84:c6:1d:e3:58:f4: 3e:2a:df:2e:5e:62:c5:d7:f6:71:b8:da:ee:12:06: c6:3a:23:6f:b9:87:b8:bb:d3:ae:99:0a:8a:b6:82: 4a:2b:db:83:7f:74:f8:4f:2e:3d:70:7c:d3:f9:e8: 4a:d8:62:be:0f:e5:a2:0a:2c:69:69:65:69:86:ce: 0c:ff:ca:b0:97:58:e9:a3:d1:06:3b:23:ba:0f:c8: 88:75:86:5c:76:64:b3:a6:19:8d:d3:36:43:98:26: 9f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:68:7D:F2:76:53:A1:21:BC:78:DF:28:E3:6A:46:59:EA:7C:65:9D X509v3 Authority Key Identifier: keyid:C7:E5:79:0B:05:E0:D4:D2:09:DB:43:DC:68:0F:B7:88:27:98:14:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x-V5CwXg1NIJ20PcaA-3iCeYFKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01B2/6DE9F410B66311EC8D54A449C4F9AE02/x-V5CwXg1NIJ20PcaA-3iCeYFKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:ff:bb:77:76:7c:33:4a:d6:31:96:a5:15:de:b0:d3:f7:56: eb:67:68:74:5f:97:7f:1d:bc:99:6a:78:d3:1e:9e:75:98:42: 29:f2:f0:c5:0d:90:03:b6:10:4b:3b:96:86:1c:4d:2f:75:83: 72:2a:d5:66:7b:30:31:7a:58:cd:c4:04:95:0c:0e:d5:0b:f9: a2:b0:83:7b:8e:cf:c9:f1:21:64:65:13:0a:68:f9:82:b8:bf: d4:2f:59:e1:06:0d:e6:e0:83:c1:a4:d8:f9:89:b2:c7:ee:be: ca:24:00:d8:8c:e2:c2:c3:e7:0c:b0:47:ad:91:db:3c:a4:43: 6b:83:d5:9d:89:b5:27:fb:e9:3e:25:6d:a1:e8:6a:6b:aa:51: 8d:8e:f4:0b:64:64:ab:ae:40:d0:4c:e3:c9:ca:a3:da:58:12: 0d:47:52:ad:26:0c:c1:a7:31:b8:c8:2b:54:50:3d:e7:7d:16: 63:69:f5:99:d0:ec:06:4b:5b:d7:8f:fa:1b:9f:cd:00:0f:6a: b0:fa:5d:e7:bf:94:64:3c:8b:c4:b3:94:6c:b9:b9:65:65:df: 57:ff:75:db:ad:99:e3:3e:55:b6:56:13:b7:2e:36:a2:4f:ed: 8e:a9:6c:b1:9d:48:b6:75:31:d0:ed:2f:0d:3a:04:99:b1:3c: e0:c0:87:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQjIxMTAvBgNVBAUTKEM3RTU3OTBCMDVFMEQ0RDIwOURCNDNEQzY4MEZCNzg4 Mjc5ODE0QTkwHhcNMjUxMTA1MDA0ODM4WhcNMjUxMTEyMDA0ODM4WjAYMRYwFAYD VQQDEw02OTBhOWVlNi01ZjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQaz/o5xTkUFNOX6BEJxEzC1xmsq+ujpE2hMa8VPwTQpgOhVL/cag6Eg23iX NW1eetLaYSszXpXjKbOydiXQohkfIoe+Xkf0gbb+5aejxxQMqMZuF/oSKsmRwaPj GRpQSL/48r26c4jn9HVFN9uumpXlHBpO/dSYPfGJmFzu7ecV7D3Aw14t8YAoMGU7 z885uk6rklkVY2hCTcCzTFOExh3jWPQ+Kt8uXmLF1/ZxuNruEgbGOiNvuYe4u9Ou mQqKtoJKK9uDf3T4Ty49cHzT+ehK2GK+D+WiCixpaWVphs4M/8qwl1jpo9EGOyO6 D8iIdYZcdmSzphmN0zZDmCaf+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApoffJ2 U6EhvHjfKONqRlnqfGWdMB8GA1UdIwQYMBaAFMfleQsF4NTSCdtD3GgPt4gnmBSp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFCMi82REU5RjQxMEI2 NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFOSUoyMFBjYUEtM2lDZVlG S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gtVjVDd1hnMU5JSjIwUGNhQS0zaUNlWUZLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFCMi82REU5RjQxMEI2NjMxMUVDOEQ1NEE0NDlDNEY5QUUwMi94LVY1Q3dYZzFO SUoyMFBjYUEtM2lDZVlGS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3/7t3dnwzStYxlqUV3rDT91brZ2h0X5d/HbyZanjTHp51mEIp8vDF DZADthBLO5aGHE0vdYNyKtVmezAxeljNxASVDA7VC/misIN7js/J8SFkZRMKaPmC uL/UL1nhBg3m4IPBpNj5ibLH7r7KJADYjOLCw+cMsEetkds8pENrg9WdibUn++k+ JW2h6GprqlGNjvQLZGSrrkDQTOPJyqPaWBINR1KtJgzBpzG4yCtUUD3nfRZjafWZ 0OwGS1vXj/obn80AD2qw+l3nv5RkPIvEs5RsubllZd9X/3XbrZnjPlW2VhO3Ljai T+2OqWyxnUi2dTHQ7S8NOgSZsTzgwIfE -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:10 2025 by rpki-client