$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: STvg+em4734ItaNaIPjLR0hBbTgzLyQa7yxBEmXPPog= Subject key identifier: B7:07:0B:E1:B5:13:08:B9:E7:37:34:24:A3:73:02:C1:71:28:2F:BD Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E7D Signing time: Tue 04 Nov 2025 17:48:43 +0000 Manifest this update: Tue 04 Nov 2025 17:48:42 +0000 Manifest next update: Tue 11 Nov 2025 17:48:42 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: hdiRhkv+pfEMbvKycv4jS2GY1p8l6bdLTgD8pyCRg7I=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3719 (0xe87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Nov 4 17:48:42 2025 GMT Not After : Nov 11 17:48:42 2025 GMT Subject: CN=690a3c7a-1116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:fa:25:08:9c:2b:f0:b9:d3:11:15:a5:d2: a5:67:41:af:ee:d7:71:70:3d:b6:a6:3a:54:ec:7d: 0d:ac:a9:83:18:51:ae:dc:f3:93:97:9d:5b:fe:80: 76:f4:49:ba:f7:cb:27:b1:f2:b8:4f:aa:60:ac:0f: f8:01:35:7b:f4:93:65:a6:dd:b5:6b:e8:e6:ab:7a: cd:e1:f6:98:f2:2b:b8:c6:27:30:c7:bd:d7:49:b7: 31:76:5a:45:1c:6f:0b:ae:35:2b:4d:2d:bf:eb:d6: 21:ff:cf:1c:8a:ec:ee:20:50:df:04:39:f9:f0:92: f8:38:53:7c:e5:fe:ac:c0:f9:1e:c0:45:cb:e0:99: 93:ea:7f:1b:d2:a8:b2:d0:ec:36:b5:f2:dd:85:c0: 60:a2:7e:95:80:fd:d5:03:65:34:3d:53:83:9b:e9: 55:93:b1:4d:d4:8d:91:66:4f:6f:eb:4e:21:01:fd: c1:59:20:06:ed:bd:82:59:25:68:ed:0d:b4:d9:c1: 7b:f6:77:cf:7d:65:8c:55:48:a1:d1:63:2f:44:14: 98:58:9c:18:1f:63:6f:ff:7b:07:64:6d:8e:87:88: df:84:3a:c8:75:d7:5e:f8:08:65:83:9a:1a:0f:5f: 19:41:94:93:1f:27:d9:bc:a9:c0:fc:19:ce:0e:0b: d5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:07:0B:E1:B5:13:08:B9:E7:37:34:24:A3:73:02:C1:71:28:2F:BD X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:7b:78:ae:99:5e:e9:5a:86:12:3c:a0:e8:29:51:c5:06:13: 46:83:f1:11:c9:73:23:ad:af:84:09:0e:9b:9c:ac:a5:94:06: 17:b1:e0:df:a5:c7:b7:e7:53:b1:c8:ee:72:ce:33:4e:0f:0c: 44:34:d2:08:20:0e:44:2f:6d:57:f3:8a:43:86:ae:7a:43:21: d8:a3:14:00:1e:28:f6:6b:55:c3:3d:bd:b6:8a:97:e2:55:22: 4c:44:5d:56:80:3d:48:53:9a:5f:a0:bb:a0:44:0a:1a:e4:25: a0:ec:81:16:97:c4:bd:1e:97:77:fd:80:e1:74:de:34:19:7a: cb:0e:e8:04:72:81:1c:99:6a:d5:13:76:73:e1:4e:fd:03:e7: 16:19:3c:1a:ec:1c:a1:bd:b3:c9:aa:c4:12:04:98:2a:12:bd: 1d:18:f0:0f:0a:0f:8a:a0:41:4c:cd:ac:8c:42:8f:93:c3:ef: 4e:52:fb:2f:c8:c7:c6:3e:d5:af:a2:b0:4a:66:ae:e8:cf:8c: 64:d8:30:8b:c9:85:91:91:be:5f:2b:ea:61:33:67:93:c0:da: aa:64:f4:9b:4d:ad:57:73:ff:54:bf:80:c7:ce:d3:82:f4:7b: 60:9e:02:b8:da:5b:cc:81:46:b0:7a:15:74:ce:8e:2e:a2:b0: 66:d9:6e:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUxMTA0MTc0ODQyWhcNMjUxMTExMTc0ODQyWjAYMRYwFAYD VQQDEw02OTBhM2M3YS0xMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArun6JQicK/C50xEVpdKlZ0Gv7tdxcD22pjpU7H0NrKmDGFGu3POTl51b/oB2 9Em698snsfK4T6pgrA/4ATV79JNlpt21a+jmq3rN4faY8iu4xicwx73XSbcxdlpF HG8LrjUrTS2/69Yh/88ciuzuIFDfBDn58JL4OFN85f6swPkewEXL4JmT6n8b0qiy 0Ow2tfLdhcBgon6VgP3VA2U0PVODm+lVk7FN1I2RZk9v604hAf3BWSAG7b2CWSVo 7Q202cF79nfPfWWMVUih0WMvRBSYWJwYH2Nv/3sHZG2Oh4jfhDrIddde+Ahlg5oa D18ZQZSTHyfZvKnA/BnODgvVMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcHC+G1 Ewi55zc0JKNzAsFxKC+9MB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBge3iumV7pWoYSPKDoKVHFBhNGg/ERyXMjra+ECQ6bnKyllAYXseDf pce351OxyO5yzjNODwxENNIIIA5EL21X84pDhq56QyHYoxQAHij2a1XDPb22ipfi VSJMRF1WgD1IU5pfoLugRAoa5CWg7IEWl8S9Hpd3/YDhdN40GXrLDugEcoEcmWrV E3Zz4U79A+cWGTwa7ByhvbPJqsQSBJgqEr0dGPAPCg+KoEFMzayMQo+Tw+9OUvsv yMfGPtWvorBKZq7oz4xk2DCLyYWRkb5fK+phM2eTwNqqZPSbTa1Xc/9Uv4DHztOC 9HtgngK42lvMgUawehV0zo4uorBm2W6j -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:06 2025 by rpki-client