$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft File: 4190GdVyqG920uv3gpq22dA0CQU.mft (raw, json) Hash identifier: ed/DPo5XEr0b5mqHoLrDYbyDpEJOZgOsy77jI574PqY= Subject key identifier: 37:83:49:B6:F3:09:BB:68:62:23:A7:C9:77:90:81:F7:22:4C:0F:13 Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft Manifest number: 01A9 Signing time: Mon 03 Nov 2025 03:12:19 +0000 Manifest this update: Mon 03 Nov 2025 03:12:18 +0000 Manifest next update: Mon 10 Nov 2025 03:12:18 +0000 Files and hashes: 1: 4190GdVyqG920uv3gpq22dA0CQU.crl (hash: u8FFTsOMXiR0s4qqSKfU8FuKeWYHRsTGaVDED5TH87Y=) 2: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (hash: gPmbtMjtLenMFEAnNmFzzGl8ckVYYI4uHTkTnXpU64U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Nov 3 03:12:18 2025 GMT Not After : Nov 10 03:12:18 2025 GMT Subject: CN=69081d92-d778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:78:72:d9:cc:89:17:c3:c4:89:e5:df:8d:bd: 10:0e:84:97:be:df:28:3c:9d:e5:2f:b0:b4:b0:ee: 17:54:93:e3:4c:a1:03:25:74:06:d6:fc:9e:07:09: 35:58:93:d5:5b:5f:9c:2f:9a:61:45:14:6b:e5:8c: 19:0a:ff:a4:58:1a:43:5d:c9:62:c7:01:da:f0:41: b1:30:80:d6:06:6a:ed:45:08:05:47:98:57:b6:0e: a5:42:e7:d3:e9:16:f3:bf:19:a6:ef:58:58:fa:62: ac:7b:f6:fb:d3:e4:57:f1:db:ca:98:1b:b8:a0:c5: 0d:31:ee:1c:50:69:99:ba:a5:af:a7:a2:28:a9:47: f6:b6:0f:06:70:c3:87:38:71:cb:c3:d7:0e:91:b5: 31:bf:71:f8:43:2e:0e:4b:34:07:91:20:0f:db:0b: db:b2:43:3e:66:9f:ad:c2:6f:96:8e:7f:15:02:27: 06:13:94:4e:4f:ac:88:f4:4a:16:1d:e4:d1:5d:54: a4:04:fc:d1:05:c0:34:55:a8:89:08:1e:1b:e4:36: 94:a8:57:5b:3b:bb:ea:dd:29:80:00:df:6f:37:b7: 95:0e:60:4c:31:ae:54:43:ec:82:4f:ce:a3:d1:c4: ef:0a:6f:75:92:a0:92:1e:3e:b6:97:09:7e:49:5a: 0a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:83:49:B6:F3:09:BB:68:62:23:A7:C9:77:90:81:F7:22:4C:0F:13 X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ef:10:69:8d:34:98:72:70:32:45:1b:e0:3b:ca:62:df:bc: 34:e5:69:d3:cb:1c:4d:0c:eb:ad:2c:ae:96:f8:b1:35:d0:73: b0:5a:a0:4b:a9:e4:11:1c:26:08:02:1e:99:87:78:3e:bc:3e: 42:8f:c6:0a:df:da:a8:af:72:24:8e:1d:fe:ad:20:3b:f7:e9: e9:78:26:af:84:af:4a:0d:d1:3e:48:f2:bd:f8:69:6c:ee:9e: 04:7f:44:a1:9a:dd:1c:f8:7c:13:6f:56:43:0d:d5:3a:da:b4: 24:91:77:66:f4:33:21:85:fe:c0:e5:2e:6f:5a:26:00:8e:11: 0e:39:fb:ce:70:99:1d:ff:db:15:14:1b:1a:27:47:bd:fc:3f: d3:81:cf:b5:f8:85:f1:55:60:bd:51:09:8f:2b:a0:3d:e5:d8: 4c:4f:7c:41:ca:54:78:b1:87:1e:49:34:4b:11:b1:ef:de:cf: 5f:64:02:c4:85:dd:69:b8:72:c6:64:0e:93:ea:66:39:f6:9c: e7:e2:b9:7f:80:82:37:ae:bf:21:a2:78:11:08:31:9f:96:93: 3b:7c:f8:3e:07:39:bb:47:62:d2:94:29:cb:fb:c4:28:66:e5: 07:c4:e9:93:00:d8:35:ee:5c:62:3b:34:27:0e:dc:89:b0:dc: 01:68:37:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUxMTAzMDMxMjE4WhcNMjUxMTEwMDMxMjE4WjAYMRYwFAYD VQQDEw02OTA4MWQ5Mi1kNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3hy2cyJF8PEieXfjb0QDoSXvt8oPJ3lL7C0sO4XVJPjTKEDJXQG1vyeBwk1 WJPVW1+cL5phRRRr5YwZCv+kWBpDXclixwHa8EGxMIDWBmrtRQgFR5hXtg6lQufT 6Rbzvxmm71hY+mKse/b70+RX8dvKmBu4oMUNMe4cUGmZuqWvp6IoqUf2tg8GcMOH OHHLw9cOkbUxv3H4Qy4OSzQHkSAP2wvbskM+Zp+twm+Wjn8VAicGE5ROT6yI9EoW HeTRXVSkBPzRBcA0VaiJCB4b5DaUqFdbO7vq3SmAAN9vN7eVDmBMMa5UQ+yCT86j 0cTvCm91kqCSHj62lwl+SVoKmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeDSbbz CbtoYiOnyXeQgfciTA8TMB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGNS8zM0Y3MjU4NjJEMTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFH OTIwdXYzZ3BxMjJkQTBDUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl7xBpjTSYcnAyRRvgO8pi37w05WnTyxxNDOutLK6W+LE10HOwWqBL qeQRHCYIAh6Zh3g+vD5Cj8YK39qor3Ikjh3+rSA79+npeCavhK9KDdE+SPK9+Gls 7p4Ef0Shmt0c+HwTb1ZDDdU62rQkkXdm9DMhhf7A5S5vWiYAjhEOOfvOcJkd/9sV FBsaJ0e9/D/Tgc+1+IXxVWC9UQmPK6A95dhMT3xBylR4sYceSTRLEbHv3s9fZALE hd1puHLGZA6T6mY59pzn4rl/gII3rr8hongRCDGflpM7fPg+Bzm7R2LSlCnL+8Qo ZuUHxOmTANg17lxiOzQnDtyJsNwBaDdA -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:16 2025 by rpki-client