$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: 9N0+wslUGi2HlZ2YPeTnS/D9Pet5LgotLXfKzdjamgs= Subject key identifier: F7:D8:BA:4D:58:4B:D0:20:18:38:16:C2:6D:67:B8:F6:FF:DD:12:DC Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05E3 Signing time: Sun 02 Nov 2025 22:59:47 +0000 Manifest this update: Sun 02 Nov 2025 22:59:46 +0000 Manifest next update: Sun 09 Nov 2025 22:59:46 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: Ja3w6ZZ/iUaSzju25jLDmbZfF461lQRC16ynSnJh6ds=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Nov 2 22:59:46 2025 GMT Not After : Nov 9 22:59:46 2025 GMT Subject: CN=6907e263-16df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:91:c6:ed:e0:66:1b:20:85:7d:86:47:6f:d1: 8e:1a:f3:9c:ba:71:1b:84:0b:50:f7:82:9b:68:94: dd:cd:7a:b0:94:5c:49:9e:ec:32:6c:33:4c:a6:fa: 16:31:9d:2d:38:6f:13:c4:1d:8a:bc:bd:b3:86:3e: 48:1e:83:df:c5:f4:2a:40:66:58:56:f0:39:63:6a: 4d:a1:f9:c1:b0:7c:09:20:51:49:d2:f2:e7:37:81: be:ce:5f:d5:6e:2c:67:2b:d5:d8:a8:fc:5c:5a:b0: e6:80:94:a3:77:06:01:00:17:26:f1:2c:31:76:9a: f2:5a:73:7d:39:77:7b:0e:ef:4c:24:85:60:4a:ae: ad:cb:c0:23:cc:67:a9:47:9f:c4:11:11:e1:09:16: 7a:c2:c5:4c:b0:89:a6:f8:74:a0:24:07:87:d6:f1: 2a:31:25:47:af:8e:9e:55:05:b8:5d:1f:96:88:b1: c0:b7:68:e3:2c:a5:83:71:83:78:30:eb:03:4a:0a: 47:30:c9:6b:04:77:bb:6a:69:6e:3b:e7:d7:95:69: 29:61:3d:bc:2d:16:b9:86:e4:44:e5:12:ab:b3:b6: e9:3f:98:b3:71:64:27:4e:95:87:42:3a:29:bf:66: b8:e6:87:74:32:60:f4:4b:c0:76:6b:21:f7:0d:94: 71:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D8:BA:4D:58:4B:D0:20:18:38:16:C2:6D:67:B8:F6:FF:DD:12:DC X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:b6:86:a0:1f:d4:3e:0c:f1:f3:e9:f8:ec:df:bd:a4:e8:0c: ad:e4:8c:d7:ea:a4:1a:63:68:09:bb:65:a4:0d:c0:df:d6:56: db:76:dc:95:1f:41:e4:4e:a1:8e:c5:01:e6:f4:92:64:2d:01: 6b:3e:5f:f3:6f:1d:05:7c:f3:89:a2:4e:8d:cc:34:75:06:a4: a2:cf:0f:6b:a7:77:c5:d9:1e:2c:44:42:79:11:10:3a:3c:22: 5a:c9:32:2c:0f:b3:94:e9:7b:8e:71:44:5b:af:8e:70:6b:5f: 0e:9e:1f:26:3a:c2:d4:cb:9d:9e:7f:f2:d6:00:a3:8a:02:b2: ca:ad:f5:4b:61:40:a9:1d:3d:b0:70:38:3e:de:2b:b4:7b:1c: 57:d3:d6:35:6f:1d:de:76:33:00:77:ec:3c:41:e5:46:4b:89: d3:36:d7:6d:2a:9c:5c:40:53:c3:8c:1d:61:53:a7:42:2e:14: 86:15:df:05:e8:5b:ee:a0:79:ab:d2:e9:b3:cd:bc:59:c7:44: ef:62:d0:d4:c3:7b:5d:b0:fd:a6:c2:ea:9e:8f:f2:4f:82:48: f0:e6:ad:84:42:0d:07:e9:bf:a6:6c:2a:ea:2f:03:17:15:c3: 1d:7e:0d:67:ef:c3:00:f2:fb:07:9f:a1:21:4a:d4:a4:2b:2b: 44:89:5b:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUxMTAyMjI1OTQ2WhcNMjUxMTA5MjI1OTQ2WjAYMRYwFAYD VQQDEw02OTA3ZTI2My0xNmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5HG7eBmGyCFfYZHb9GOGvOcunEbhAtQ94KbaJTdzXqwlFxJnuwybDNMpvoW MZ0tOG8TxB2KvL2zhj5IHoPfxfQqQGZYVvA5Y2pNofnBsHwJIFFJ0vLnN4G+zl/V bixnK9XYqPxcWrDmgJSjdwYBABcm8SwxdpryWnN9OXd7Du9MJIVgSq6ty8AjzGep R5/EERHhCRZ6wsVMsImm+HSgJAeH1vEqMSVHr46eVQW4XR+WiLHAt2jjLKWDcYN4 MOsDSgpHMMlrBHe7amluO+fXlWkpYT28LRa5huRE5RKrs7bpP5izcWQnTpWHQjop v2a45od0MmD0S8B2ayH3DZRx/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfYuk1Y S9AgGDgWwm1nuPb/3RLcMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2toagH9Q+DPHz6fjs372k6Ayt5IzX6qQaY2gJu2WkDcDf1lbbdtyV H0HkTqGOxQHm9JJkLQFrPl/zbx0FfPOJok6NzDR1BqSizw9rp3fF2R4sREJ5ERA6 PCJayTIsD7OU6XuOcURbr45wa18Onh8mOsLUy52ef/LWAKOKArLKrfVLYUCpHT2w cDg+3iu0exxX09Y1bx3edjMAd+w8QeVGS4nTNtdtKpxcQFPDjB1hU6dCLhSGFd8F 6FvuoHmr0umzzbxZx0TvYtDUw3tdsP2mwuqej/JPgkjw5q2EQg0H6b+mbCrqLwMX FcMdfg1n78MA8vsHn6EhStSkKytEiVt6 -----END CERTIFICATE-----Generated at Tue Nov 4 04:13:58 2025 by rpki-client