$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: KpPmDAYkYt//9G6YvSKYGMnI+jUChjbmJkkH+teQcV0= Subject key identifier: 77:C9:63:01:A6:99:D3:10:5B:14:3F:3E:7B:C6:1E:BA:00:FD:AB:AB Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: C6 Signing time: Mon 03 Nov 2025 05:53:55 +0000 Manifest this update: Mon 03 Nov 2025 05:53:55 +0000 Manifest next update: Mon 10 Nov 2025 05:53:55 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: x4d+fQso2pvcV/rplbQQtd68t6JMFdxAI1nHjM5/g2s=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Nov 3 05:53:55 2025 GMT Not After : Nov 10 05:53:55 2025 GMT Subject: CN=69084373-2e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:50:8c:2c:87:b7:bc:5f:4d:6f:1d:a6:09:d3: ad:63:ee:db:2f:64:2b:9d:ee:ea:af:10:23:dd:d9: a9:d4:83:00:83:82:e8:ca:04:0c:c9:01:d4:28:d2: cf:87:00:90:92:82:8e:3e:6f:35:7e:bb:a6:bf:98: c5:7a:fd:c9:bd:31:b8:89:c6:5a:37:02:ce:4e:16: d9:76:24:27:c3:9f:77:b6:5b:cd:b1:74:61:5a:2a: c6:10:f7:50:4e:eb:56:30:f7:3f:79:8c:02:57:36: 68:58:f9:c3:9b:31:f7:30:ff:eb:e2:9d:3f:ad:a2: ca:1b:49:80:23:78:96:73:55:e5:62:74:e8:dc:10: 95:e9:39:ce:13:22:36:b7:dd:db:bd:63:2b:0b:e8: 22:ac:ff:ee:7c:3b:0e:05:f6:93:80:55:06:83:da: 45:37:d1:ca:92:30:d9:d0:b9:8b:72:53:bb:fc:19: 38:8f:b5:de:d5:ef:35:2d:25:94:31:33:2c:36:dd: 4a:b6:81:72:f6:6a:00:2f:5f:39:98:92:c4:71:12: b0:fe:7e:9b:55:d3:ee:d4:6d:d6:d1:2e:f9:f9:97: b0:43:1c:fb:33:22:b5:43:db:70:5c:85:88:f2:13: f3:32:32:b9:ad:b0:d3:13:c7:1d:e4:08:9b:a1:46: f6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:C9:63:01:A6:99:D3:10:5B:14:3F:3E:7B:C6:1E:BA:00:FD:AB:AB X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:80:4c:c3:73:a7:a6:c3:df:e4:db:5f:d3:65:11:8d:2f:41: 0e:1e:26:f8:81:61:fb:0f:ba:b7:7a:eb:13:df:04:76:d6:91: df:a0:d2:a7:76:0e:23:a1:36:46:c5:d2:df:90:b7:b9:45:91: d9:c8:6f:30:3f:fe:a1:66:21:cd:2f:dd:ae:e6:2b:cf:50:e6: 01:c1:23:b3:83:fd:b8:76:7f:36:1d:5d:2b:14:d5:30:70:3c: e1:f7:19:b7:98:41:37:4f:eb:48:04:83:d8:8c:df:80:bd:95: 38:82:7e:4f:b7:06:38:b1:0a:2e:34:83:11:9f:9d:92:70:ce: 1b:d3:9f:3d:bf:b9:f3:9e:bd:e9:03:50:86:79:1c:39:43:2a: 6c:ec:f8:ee:f6:64:a4:be:96:6e:7e:ac:4b:20:ea:bb:ec:f8: 10:3e:d9:0f:41:13:a7:99:e0:90:74:b2:c3:44:5c:a3:26:75: 6d:25:44:fa:30:32:8c:36:5e:f4:57:72:64:92:d6:07:b1:09: a0:c4:14:0d:a8:0b:69:9d:c4:2f:77:0a:39:ba:f6:2e:c2:b2: 8a:c8:d8:c4:2c:b3:36:28:bc:bc:d4:ff:17:4a:88:11:bb:22: de:6f:9d:65:ab:69:0d:05:38:ec:73:77:26:35:0b:d5:dd:0b: e6:1e:f2:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUxMTAzMDU1MzU1WhcNMjUxMTEwMDU1MzU1WjAYMRYwFAYD VQQDEw02OTA4NDM3My0yZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlCMLIe3vF9Nbx2mCdOtY+7bL2Qrne7qrxAj3dmp1IMAg4LoygQMyQHUKNLP hwCQkoKOPm81frumv5jFev3JvTG4icZaNwLOThbZdiQnw593tlvNsXRhWirGEPdQ TutWMPc/eYwCVzZoWPnDmzH3MP/r4p0/raLKG0mAI3iWc1XlYnTo3BCV6TnOEyI2 t93bvWMrC+girP/ufDsOBfaTgFUGg9pFN9HKkjDZ0LmLclO7/Bk4j7Xe1e81LSWU MTMsNt1KtoFy9moAL185mJLEcRKw/n6bVdPu1G3W0S75+ZewQxz7MyK1Q9twXIWI 8hPzMjK5rbDTE8cd5AiboUb23QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfJYwGm mdMQWxQ/PnvGHroA/aurMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMgEzDc6emw9/k21/TZRGNL0EOHib4gWH7D7q3eusT3wR21pHfoNKn dg4joTZGxdLfkLe5RZHZyG8wP/6hZiHNL92u5ivPUOYBwSOzg/24dn82HV0rFNUw cDzh9xm3mEE3T+tIBIPYjN+AvZU4gn5PtwY4sQouNIMRn52ScM4b0589v7nznr3p A1CGeRw5Qyps7Pju9mSkvpZufqxLIOq77PgQPtkPQROnmeCQdLLDRFyjJnVtJUT6 MDKMNl70V3JkktYHsQmgxBQNqAtpncQvdwo5uvYuwrKKyNjELLM2KLy81P8XSogR uyLeb51lq2kNBTjsc3cmNQvV3QvmHvJB -----END CERTIFICATE-----Generated at Tue Nov 4 18:39:31 2025 by rpki-client