$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: Ci3ty4KkEWSgoKgNvjfNRs3WFdgNtGUKyafb6UXVPbo= Subject key identifier: EF:46:9B:54:D6:77:3D:E4:C3:16:6F:DC:66:5D:47:2B:54:04:0A:C9 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0548 Signing time: Sun 02 Nov 2025 23:26:46 +0000 Manifest this update: Sun 02 Nov 2025 23:26:45 +0000 Manifest next update: Sun 09 Nov 2025 23:26:45 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: j6pSZCmGOcPjsgX8fvn0MpbuOlhMFi3/i/aKbbj2du4=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: 4gKis+++tXEeHG38EwpejzSM+kE6A6gIMsrjZpkNJeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Nov 2 23:26:45 2025 GMT Not After : Nov 9 23:26:45 2025 GMT Subject: CN=6907e8b5-b47c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:d2:b0:3c:ad:97:5d:56:e3:7e:85:19:01: 59:e9:fa:b5:4d:f2:94:b6:fc:63:52:80:a5:42:3c: 55:8b:91:c7:14:61:b8:04:a9:c5:a2:0e:49:5c:33: 2e:b3:97:ff:fc:66:07:05:de:36:23:ec:a4:c6:f5: a6:33:3f:f0:0a:07:d0:35:7c:db:d3:40:d7:a2:5c: 7c:85:d2:0d:50:22:a3:4f:53:a8:07:bf:e7:b7:9d: 96:f7:0b:7c:80:ab:4d:cc:ef:22:5b:31:92:8b:1e: e2:96:c5:6d:a5:30:5b:c3:3e:f4:33:6b:f4:c0:7e: 04:a3:5f:02:31:cf:db:78:5c:d5:a1:94:f4:ad:4d: e7:1c:68:a0:1c:4a:64:7b:26:b1:41:f9:ab:a0:e1: e2:4e:51:2c:05:45:34:6d:c5:1e:02:64:8a:1d:05: 5c:67:e7:5d:bf:c7:3b:53:48:b1:47:9e:7d:85:d9: b5:6d:ad:6f:73:1f:0e:b3:f0:9a:2d:44:b4:37:72: 1c:b6:77:bf:14:f8:02:57:51:5b:6e:62:ba:f3:e0: b4:97:8e:e4:f1:0a:01:59:53:b9:02:14:51:e1:93: 94:f8:f9:56:a7:13:65:84:35:98:34:3c:27:33:c0: 9d:2d:04:00:a4:4b:7a:3c:91:ce:e9:03:b6:5b:07: 68:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:46:9B:54:D6:77:3D:E4:C3:16:6F:DC:66:5D:47:2B:54:04:0A:C9 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ae:64:f0:ac:a6:bf:c0:8a:ca:e7:59:96:58:e0:b8:89:1e: 4e:fa:4d:2b:16:46:70:4a:87:79:2d:ab:fd:7f:14:1d:3d:d0: 7f:a0:11:e1:3f:27:55:82:77:50:34:d2:91:9f:64:30:a0:7a: 79:df:2f:22:f4:b3:a4:d3:33:82:46:4f:9f:5d:f3:76:ba:24: 2b:47:7c:63:f6:ce:fb:4f:0d:e9:36:b9:50:70:03:d0:1b:f5: dd:30:d9:cf:e0:1f:54:ac:7d:71:ab:11:7d:90:23:66:3b:5f: 44:8b:f8:ac:16:58:1e:a2:e6:8f:9c:ae:e4:9a:ce:b9:6b:e5: 71:fb:e2:33:91:a9:b6:04:1c:04:45:a3:9e:fa:64:25:d6:82: cd:31:aa:e6:3d:ac:12:ce:9f:4f:e2:69:4a:5a:e1:a0:25:e6: 1b:6b:5d:fe:8c:82:6e:72:6b:47:b5:6c:04:9e:f7:48:07:cf: 2e:b7:a9:f2:c9:9d:d1:d5:11:3f:22:2f:c7:0b:6f:c9:45:5f: 50:7e:14:38:54:03:41:75:90:27:bb:51:fd:4f:b0:f5:e8:45: 68:92:d3:fc:d7:0c:96:f4:79:e9:da:f2:72:19:a0:df:56:62: c3:75:ce:34:74:95:7d:41:e9:71:97:8a:7d:c0:35:63:ef:72: 15:f7:15:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUxMTAyMjMyNjQ1WhcNMjUxMTA5MjMyNjQ1WjAYMRYwFAYD VQQDEw02OTA3ZThiNS1iNDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZPSsDytl11W436FGQFZ6fq1TfKUtvxjUoClQjxVi5HHFGG4BKnFog5JXDMu s5f//GYHBd42I+ykxvWmMz/wCgfQNXzb00DXolx8hdINUCKjT1OoB7/nt52W9wt8 gKtNzO8iWzGSix7ilsVtpTBbwz70M2v0wH4Eo18CMc/beFzVoZT0rU3nHGigHEpk eyaxQfmroOHiTlEsBUU0bcUeAmSKHQVcZ+ddv8c7U0ixR559hdm1ba1vcx8Os/Ca LUS0N3Ictne/FPgCV1FbbmK68+C0l47k8QoBWVO5AhRR4ZOU+PlWpxNlhDWYNDwn M8CdLQQApEt6PJHO6QO2WwdokwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9Gm1TW dz3kwxZv3GZdRytUBArJMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmrmTwrKa/wIrK51mWWOC4iR5O+k0rFkZwSod5Lav9fxQdPdB/oBHh PydVgndQNNKRn2QwoHp53y8i9LOk0zOCRk+fXfN2uiQrR3xj9s77Tw3pNrlQcAPQ G/XdMNnP4B9UrH1xqxF9kCNmO19Ei/isFlgeouaPnK7kms65a+Vx++Izkam2BBwE RaOe+mQl1oLNMarmPawSzp9P4mlKWuGgJeYba13+jIJucmtHtWwEnvdIB88ut6ny yZ3R1RE/Ii/HC2/JRV9QfhQ4VANBdZAnu1H9T7D16EVoktP81wyW9Hnp2vJyGaDf VmLDdc40dJV9Qelxl4p9wDVj73IV9xWL -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:41 2025 by rpki-client