$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: tWTG2rjx+4zinas0NIOqPNz9rX6pC8KJ5PfHaZ1QA80= Subject key identifier: C0:3C:09:F8:AD:C4:97:9A:A3:3E:54:FD:E4:3B:A1:88:F0:C7:52:44 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 0300 Signing time: Wed 05 Nov 2025 01:15:53 +0000 Manifest this update: Wed 05 Nov 2025 01:15:52 +0000 Manifest next update: Wed 12 Nov 2025 01:15:52 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: qRLYdK3frCxDyTur5YfAHNGO8C5hqH6ZOZN3DkFU42M=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Nov 5 01:15:52 2025 GMT Not After : Nov 12 01:15:52 2025 GMT Subject: CN=690aa548-c3eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:61:a7:8a:06:c6:e7:ad:19:86:29:bd:02:5a: fe:15:dc:a2:d1:66:c3:1a:e1:1a:8e:2d:86:c5:e6: 39:73:62:c3:26:b5:ec:47:1e:67:1d:a4:57:75:e5: 4f:a7:cd:9d:ef:c0:83:18:f4:42:c7:65:68:1a:30: a6:f8:03:48:96:0e:86:71:eb:35:d2:f7:a1:4d:b3: 52:8d:b1:c5:6d:84:b4:1f:b3:c0:11:51:dc:62:5b: a8:02:54:b6:9c:0a:1a:11:e9:d3:28:7d:e3:63:c8: 07:fa:7e:ae:8b:37:9d:07:89:67:3b:39:f1:99:75: 05:63:11:88:ad:5b:5c:95:b9:24:0c:52:d6:4d:da: 86:ac:07:fd:39:81:86:56:58:e7:e5:e6:10:24:76: b7:20:84:11:eb:95:51:93:93:32:d5:c2:92:f2:84: fa:a3:44:ea:d1:5a:21:6d:9a:9c:06:3b:1f:44:41: 91:cb:e6:74:47:02:be:9c:ef:0a:3d:c2:9b:e8:42: 1c:0f:6e:4c:09:f7:b6:44:22:64:e3:3f:fa:f6:a2: c2:94:c3:4a:66:e6:f3:f6:de:bf:a1:82:81:28:01: 1b:fe:8f:fc:13:52:66:90:ef:c0:a9:3f:dc:67:b1: 04:ba:cc:65:a3:43:8f:31:c7:34:28:75:b7:43:fa: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3C:09:F8:AD:C4:97:9A:A3:3E:54:FD:E4:3B:A1:88:F0:C7:52:44 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:46:90:eb:cc:38:42:22:88:6d:9c:83:b2:71:32:5f:7d:d6: 4b:f9:b9:c0:03:87:8b:d1:cf:36:62:6f:a4:98:10:ff:d0:90: b3:66:0b:dc:39:02:d8:4e:bc:41:11:13:b2:b8:2d:b2:10:ab: 26:8a:87:8b:35:0f:00:4f:3c:9c:38:0a:c4:2d:03:4e:42:7a: e4:77:f5:75:b6:b1:c7:5e:72:3b:33:89:03:32:18:e6:af:7e: 5c:df:f8:6f:46:18:dd:06:c7:97:fc:7f:aa:26:88:2b:37:19: 61:a1:e5:52:c1:6c:db:af:1a:d5:9e:92:67:e0:6f:93:09:dd: e8:26:6d:a4:4f:57:b9:85:1e:6f:5c:d1:e0:11:fa:0f:67:40: 1c:93:8e:f6:11:e7:bd:0c:81:58:94:03:91:60:29:e4:47:89: d7:ff:d2:1c:c8:26:5e:36:9a:f9:d8:27:44:7c:78:eb:33:3f: ec:2d:69:97:8a:4e:16:a1:1c:81:e8:66:91:fe:99:3d:b6:a3: c7:39:cb:05:74:dd:29:c4:e3:3b:27:6f:a5:de:ca:c6:40:48: 1c:c5:e1:e9:28:6a:d8:20:56:4e:ae:89:1e:aa:2f:c3:ed:33: 2c:f2:4e:ac:ac:61:a2:cd:6d:f2:df:c8:0c:fc:6e:e0:59:10: f9:b1:a5:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUxMTA1MDExNTUyWhcNMjUxMTEyMDExNTUyWjAYMRYwFAYD VQQDEw02OTBhYTU0OC1jM2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWGnigbG560Zhim9Alr+Fdyi0WbDGuEaji2GxeY5c2LDJrXsRx5nHaRXdeVP p82d78CDGPRCx2VoGjCm+ANIlg6Gces10vehTbNSjbHFbYS0H7PAEVHcYluoAlS2 nAoaEenTKH3jY8gH+n6uizedB4lnOznxmXUFYxGIrVtclbkkDFLWTdqGrAf9OYGG Vljn5eYQJHa3IIQR65VRk5My1cKS8oT6o0Tq0VohbZqcBjsfREGRy+Z0RwK+nO8K PcKb6EIcD25MCfe2RCJk4z/69qLClMNKZubz9t6/oYKBKAEb/o/8E1JmkO/AqT/c Z7EEusxlo0OPMcc0KHW3Q/rhkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMA8Cfit xJeaoz5U/eQ7oYjwx1JEMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLRpDrzDhCIohtnIOycTJffdZL+bnAA4eL0c82Ym+kmBD/0JCzZgvc OQLYTrxBEROyuC2yEKsmioeLNQ8ATzycOArELQNOQnrkd/V1trHHXnI7M4kDMhjm r35c3/hvRhjdBseX/H+qJogrNxlhoeVSwWzbrxrVnpJn4G+TCd3oJm2kT1e5hR5v XNHgEfoPZ0Ack472Eee9DIFYlAORYCnkR4nX/9IcyCZeNpr52CdEfHjrMz/sLWmX ik4WoRyB6GaR/pk9tqPHOcsFdN0pxOM7J2+l3srGQEgcxeHpKGrYIFZOrokeqi/D 7TMs8k6srGGizW3y38gM/G7gWRD5saU/ -----END CERTIFICATE-----Generated at Wed Nov 5 16:40:56 2025 by rpki-client