$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: oYYoo03HaYxH4sF2ohtM/z2yoWUVCW7+HhhG5MgFj30= Subject key identifier: A8:DE:67:4B:DD:A1:8D:F5:D3:1A:20:0B:74:1D:4C:69:7B:50:08:2C Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0C89 Signing time: Sun 02 Nov 2025 19:12:26 +0000 Manifest this update: Sun 02 Nov 2025 19:12:25 +0000 Manifest next update: Sun 09 Nov 2025 19:12:25 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: //U/FCvq5gam46gUpawR2lUhtwGQwyy5vok1OYJ41WM=) 2: 6360524E03D311F0A6C64177C4F9AE02.roa (hash: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8=) 3: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: fNb48r4M+gfLXajaKFGp8VWXxugH32v0si+d8iboCho=) 4: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: EO+r4YCRXrWQGjZoJ/CD1KsxdVzlBHVNlbdYh39PLSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Nov 2 19:12:25 2025 GMT Not After : Nov 9 19:12:25 2025 GMT Subject: CN=6907ad19-bdf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:f6:b7:02:1f:b9:cf:0b:2d:36:ed:4f:94: b0:3f:8c:60:ab:7c:e3:1b:8f:e9:9c:63:b7:9d:98: 4e:c1:59:63:6c:a6:1f:43:cf:5f:b7:03:9f:40:9f: b8:48:d8:42:00:3b:6b:a2:05:6b:b3:a5:96:f2:d8: 74:6c:0b:0f:9f:30:8f:99:26:e7:f1:28:22:c8:4f: 57:2f:22:c9:d3:a1:2c:b5:64:6d:b0:74:cb:ab:91: 22:1a:58:ff:d1:d5:2e:27:1a:91:30:12:78:55:a9: 56:04:71:13:62:38:7b:b6:36:b3:19:3e:89:ea:ad: a4:bf:10:ad:f5:1a:6a:b1:15:1d:16:ba:42:b2:ef: ee:01:90:d1:2b:c2:c1:04:29:c3:dc:3c:42:cd:59: 03:84:b5:6e:52:ee:e1:23:30:4d:4a:58:24:60:43: 46:c9:fb:40:e1:79:85:9c:62:4c:3e:79:43:a7:16: b9:d0:d8:e7:94:8f:06:c3:df:7f:44:3a:64:08:b1: 8f:19:0b:39:f0:9b:a6:1b:c5:15:e3:7b:8e:70:d9: a0:8a:a3:4b:80:d6:b2:23:0b:9a:29:a6:03:22:57: d2:51:79:9d:c1:8e:b1:96:3f:48:8e:18:ef:76:ef: 9b:a1:3a:34:61:62:3f:8d:e9:fc:f3:c8:8f:ec:65: c9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DE:67:4B:DD:A1:8D:F5:D3:1A:20:0B:74:1D:4C:69:7B:50:08:2C X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7b:2b:c2:4c:90:bd:98:c7:5f:fc:4e:f9:a7:f3:74:e3:72: 75:ca:69:ae:de:c4:0c:68:ea:b0:2d:5a:d1:ce:ec:06:34:69: ca:91:dc:9a:35:6b:9f:75:cd:93:30:1e:47:a6:9d:b4:b1:a3: 1f:ba:19:6a:3b:4d:dc:cf:23:43:41:35:f2:6f:0b:30:5a:d4: f5:88:6e:d0:d0:25:9c:55:a5:ed:94:cb:ef:d4:20:a3:52:bc: 4f:ee:23:8e:84:ac:cd:62:b8:b8:29:1c:e9:db:58:b5:75:97: 51:f8:d3:62:ab:93:d4:3e:ad:4a:38:cd:d4:67:2d:d3:26:65: 90:4d:23:1e:19:34:8d:3e:df:39:6a:80:43:37:e0:15:f0:99: 6d:d6:5c:0a:f0:fa:ab:03:2b:56:0c:cc:50:ef:d5:b7:c3:d2: 8c:82:ca:c3:70:0f:b1:72:63:f9:f0:2f:3a:a6:81:28:31:4b: 7c:e7:ee:ea:51:97:cf:7b:24:7a:df:38:e2:f0:5a:ba:8f:44: e3:9b:a8:2d:23:b6:18:41:2f:40:57:2b:c5:1f:9b:09:56:ec: eb:1d:c7:b5:7b:e8:a7:96:8c:6a:44:59:e4:79:0b:f7:f1:fa: 72:f3:5c:ce:75:47:75:48:de:7e:d2:3c:07:ea:a0:03:83:d2: b0:c7:15:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUxMTAyMTkxMjI1WhcNMjUxMTA5MTkxMjI1WjAYMRYwFAYD VQQDEw02OTA3YWQxOS1iZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjf2twIfuc8LLTbtT5SwP4xgq3zjG4/pnGO3nZhOwVljbKYfQ89ftwOfQJ+4 SNhCADtrogVrs6WW8th0bAsPnzCPmSbn8SgiyE9XLyLJ06EstWRtsHTLq5EiGlj/ 0dUuJxqRMBJ4ValWBHETYjh7tjazGT6J6q2kvxCt9RpqsRUdFrpCsu/uAZDRK8LB BCnD3DxCzVkDhLVuUu7hIzBNSlgkYENGyftA4XmFnGJMPnlDpxa50NjnlI8Gw99/ RDpkCLGPGQs58JumG8UV43uOcNmgiqNLgNayIwuaKaYDIlfSUXmdwY6xlj9Ijhjv du+boTo0YWI/jen888iP7GXJswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjeZ0vd oY310xogC3QdTGl7UAgsMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUeyvCTJC9mMdf/E75p/N043J1ymmu3sQMaOqwLVrRzuwGNGnKkdya NWufdc2TMB5Hpp20saMfuhlqO03czyNDQTXybwswWtT1iG7Q0CWcVaXtlMvv1CCj UrxP7iOOhKzNYri4KRzp21i1dZdR+NNiq5PUPq1KOM3UZy3TJmWQTSMeGTSNPt85 aoBDN+AV8Jlt1lwK8PqrAytWDMxQ79W3w9KMgsrDcA+xcmP58C86poEoMUt85+7q UZfPeyR63zji8Fq6j0Tjm6gtI7YYQS9AVyvFH5sJVuzrHce1e+inloxqRFnkeQv3 8fpy81zOdUd1SN5+0jwH6qADg9KwxxU1 -----END CERTIFICATE-----Generated at Mon Nov 3 13:46:36 2025 by rpki-client