$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft File: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft (raw, json) Hash identifier: 3jHP5d/1b/Vnyz6L7wJ2c4KQO7OFVNwUIapbQ8zhL4c= Subject key identifier: E5:35:7B:0E:2C:19:51:BC:15:AE:01:2C:74:8A:34:EB:78:C2:00:FB Authority key identifier: 37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 Certificate issuer: /CN=A91EA409/serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft Manifest number: B9 Signing time: Mon 03 Nov 2025 05:58:27 +0000 Manifest this update: Mon 03 Nov 2025 05:58:27 +0000 Manifest next update: Mon 10 Nov 2025 05:58:27 +0000 Files and hashes: 1: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl (hash: SvIGLD35EXvdOAo613EerFSyrUO7EMV0MFe5egZ1GIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409, serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Validity Not Before: Nov 3 05:58:27 2025 GMT Not After : Nov 10 05:58:27 2025 GMT Subject: CN=69084483-c457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:db:8e:e1:64:d1:d1:b3:9d:5e:26:ed:97:5d: a5:58:16:5d:59:38:4b:f5:27:5e:d5:7c:df:63:4d: fa:ee:cf:3d:4b:35:89:16:5d:21:50:39:e5:4d:9c: 60:68:aa:16:8f:89:81:78:ed:a5:b2:31:d3:76:08: c5:8d:ca:6c:5d:08:fa:b9:7c:2c:40:8b:ff:6f:66: 04:db:f6:c5:5a:0f:2c:62:af:5c:3c:69:73:cf:30: f5:78:a8:60:39:b0:a2:3c:ab:20:79:a5:c6:58:2e: b5:b2:a1:29:4c:25:0f:6b:b8:7c:e9:a7:29:c4:f6: 38:36:6a:aa:ee:83:56:ed:e2:62:65:d7:58:0e:74: 6f:df:6b:e0:3c:ed:08:1c:7a:c6:59:25:fb:76:35: cd:3a:6a:eb:3b:30:6b:4a:49:0b:88:8b:67:f2:1d: ba:9a:27:e9:27:8d:ff:d4:2f:8d:3a:67:58:f6:52: aa:bc:74:8b:d1:26:1d:5a:0c:7e:08:02:d9:55:e3: ec:02:c1:91:b5:0e:93:80:5a:85:55:8a:b8:f9:26: 13:d7:8f:26:9c:67:ae:fe:30:31:5d:18:39:ad:63: a6:3d:d3:92:40:37:4b:b3:42:25:e7:62:1c:3c:97: 2a:06:af:84:cd:db:bf:82:1b:d6:d9:77:e6:63:61: 1c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:35:7B:0E:2C:19:51:BC:15:AE:01:2C:74:8A:34:EB:78:C2:00:FB X509v3 Authority Key Identifier: keyid:37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:49:46:94:a1:7d:8d:da:81:36:b4:3e:ae:ad:d9:70:d9:c0: 7c:6a:b3:41:4d:6d:f1:5c:1d:b0:e1:38:dc:03:e5:a6:51:96: 12:35:b1:30:ca:72:4d:fb:fe:15:82:c4:dc:cf:23:aa:bc:6a: 91:e8:df:31:94:79:49:19:87:63:b5:a9:10:ea:7a:b8:7d:47: 87:20:e7:78:c8:86:fa:61:81:53:37:04:76:8d:d2:bd:5d:0d: f1:7f:fa:6d:5a:c7:0a:01:45:87:2f:f2:0f:5e:09:11:52:77: 33:02:08:55:c8:2f:41:43:51:28:3e:ef:85:8a:04:da:78:53: 1a:95:ce:d4:55:91:0c:61:b4:91:36:1d:4f:e5:60:ba:a0:23: 0b:9a:e0:6c:b9:4d:c8:02:e6:57:4a:c1:4b:23:42:a5:6b:b4: 04:36:74:b5:25:d4:70:74:aa:31:13:8b:a6:98:f0:c0:8d:53: 2a:c0:3a:75:ea:38:01:d9:86:51:14:3d:9c:08:e7:34:17:e1: 76:34:76:bd:0d:ce:88:24:42:c8:80:64:46:fd:72:dd:3a:ab: af:ed:5a:1e:d1:a4:dc:5e:e7:fb:ef:1f:86:27:14:c0:4c:a7: 09:18:c6:19:03:04:cb:b6:2c:06:27:ad:5f:e7:8a:a0:86:e1: 74:28:6f:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0MDkxMTAvBgNVBAUTKDM3NzgzNUNEQTJCRDYzNjdFRjBGRUI1RUE1ODE5OEY4 MTgzQTg3QzEwHhcNMjUxMTAzMDU1ODI3WhcNMjUxMTEwMDU1ODI3WjAYMRYwFAYD VQQDEw02OTA4NDQ4My1jNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNuO4WTR0bOdXibtl12lWBZdWThL9Sde1XzfY0367s89SzWJFl0hUDnlTZxg aKoWj4mBeO2lsjHTdgjFjcpsXQj6uXwsQIv/b2YE2/bFWg8sYq9cPGlzzzD1eKhg ObCiPKsgeaXGWC61sqEpTCUPa7h86acpxPY4Nmqq7oNW7eJiZddYDnRv32vgPO0I HHrGWSX7djXNOmrrOzBrSkkLiItn8h26mifpJ43/1C+NOmdY9lKqvHSL0SYdWgx+ CALZVePsAsGRtQ6TgFqFVYq4+SYT148mnGeu/jAxXRg5rWOmPdOSQDdLs0Il52Ic PJcqBq+Ezdu/ghvW2XfmY2EcYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOU1ew4s GVG8Fa4BLHSKNOt4wgD7MB8GA1UdIwQYMBaAFDd4Nc2ivWNn7w/rXqWBmPgYOofB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQwOS8wMjg5RjZGQzlD QUMxMUVGQUI1OTU1MTZDNEY5QUUwMi9OM2cxemFLOVkyZnZELXRlcFlHWS1CZzZo OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zZzF6YUs5WTJmdkQtdGVwWUdZLUJnNmg4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQwOS8wMjg5RjZGQzlDQUMxMUVGQUI1OTU1MTZDNEY5QUUwMi9OM2cxemFLOVky ZnZELXRlcFlHWS1CZzZoOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADSUaUoX2N2oE2tD6urdlw2cB8arNBTW3xXB2w4TjcA+WmUZYSNbEw ynJN+/4VgsTczyOqvGqR6N8xlHlJGYdjtakQ6nq4fUeHIOd4yIb6YYFTNwR2jdK9 XQ3xf/ptWscKAUWHL/IPXgkRUnczAghVyC9BQ1EoPu+FigTaeFMalc7UVZEMYbSR Nh1P5WC6oCMLmuBsuU3IAuZXSsFLI0Kla7QENnS1JdRwdKoxE4ummPDAjVMqwDp1 6jgB2YZRFD2cCOc0F+F2NHa9Dc6IJELIgGRG/XLdOquv7Voe0aTcXuf77x+GJxTA TKcJGMYZAwTLtiwGJ61f54qghuF0KG+M -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:07 2025 by rpki-client