$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: yPuQ9KAu3wZPqFwyw3rqA9Js1YAqaHf+iwl/3iwZG98= Subject key identifier: F2:BB:D0:32:3F:C0:D9:EB:88:3E:86:B3:99:B1:66:FC:38:38:03:7C Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: AD Signing time: Mon 03 Nov 2025 06:09:09 +0000 Manifest this update: Mon 03 Nov 2025 06:09:09 +0000 Manifest next update: Mon 10 Nov 2025 06:09:08 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: EIqo4utEdyyC/ZsY90MBIB7KZqK8Rzdvx7cNLuX1Sl4=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Nov 3 06:09:09 2025 GMT Not After : Nov 10 06:09:08 2025 GMT Subject: CN=69084705-153e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cb:aa:84:fa:96:61:eb:32:a4:7b:3e:fc:b0: c7:67:eb:dd:12:70:ff:78:f3:e0:2c:be:4f:76:e9: eb:99:b7:48:c0:9d:8b:65:55:cf:03:9b:16:59:60: ea:5c:b0:3b:f3:fd:fc:91:36:37:4d:5f:06:73:1b: f0:b8:a4:c7:d1:ce:7b:1c:47:1a:38:0a:e9:9a:87: 9b:0f:8a:86:1f:92:39:f8:ea:fc:5e:14:6b:ca:f7: 37:32:1d:8f:7f:af:a1:87:fb:25:6c:64:f3:d8:84: b4:3e:c0:dc:fd:bb:05:be:36:aa:07:28:8a:98:6f: 8c:a3:9d:75:1b:fb:34:b8:a2:91:45:9c:40:9c:d6: 5f:ca:3e:83:ec:d4:1c:a8:de:e5:7e:f8:3f:ce:5c: 3a:80:d4:1c:1f:3e:71:93:be:90:6f:0b:cb:00:cd: 2c:6c:14:09:e2:e6:0c:67:87:a8:f8:bd:a7:d3:a6: 0d:e3:de:53:97:de:d4:e0:d7:a9:67:95:6f:19:e6: 48:ff:0b:23:72:1d:20:65:6d:8a:80:0e:87:79:97: 16:cc:91:06:e8:9b:28:1a:2e:d3:02:60:47:d6:25: 2a:e7:05:54:fa:0c:79:d1:1c:c8:28:bb:0f:ac:2c: f8:49:f1:8a:41:c8:03:3f:3c:d6:00:39:e7:65:f4: 5a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BB:D0:32:3F:C0:D9:EB:88:3E:86:B3:99:B1:66:FC:38:38:03:7C X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:51:01:25:25:fa:5b:39:5c:c1:de:02:31:a0:07:e1:47:df: 45:77:9a:08:fa:72:9d:c3:3e:b5:ce:43:61:7d:51:13:da:b3: 8d:ee:b7:50:50:bb:30:58:b1:36:45:a1:4c:3c:28:b4:4f:0d: d3:b8:3c:8a:88:a6:65:6b:d6:68:a3:2a:e7:b9:5d:6a:43:e2: 3d:db:2d:ec:b1:5c:39:cc:2c:cb:fc:a2:51:7c:3b:08:35:6f: ae:3b:d5:97:0e:bc:f4:89:3a:43:94:18:f6:38:8c:06:d6:95: 5e:86:83:ac:e2:0e:87:28:55:24:91:ea:87:7b:8b:cb:26:50: 0c:d7:57:13:cd:ff:4c:bd:d7:d7:7a:0c:52:42:b9:02:58:76: 6c:e3:f3:c3:62:3e:3d:b4:d9:a3:20:15:ef:94:b3:fe:b2:57: ea:e3:23:42:d4:c0:b5:d2:b5:14:c0:60:a8:13:92:36:67:97: 26:24:2a:22:d7:1f:bb:13:c5:17:68:33:f0:02:6c:60:db:18: d1:19:b8:b3:50:d9:a8:cb:32:f6:dc:c4:7b:8a:7a:15:09:03: f7:52:bc:50:ff:eb:de:0c:b3:75:4a:6f:6b:3e:b2:f0:7a:e5: fc:e8:fb:c9:b0:2c:09:4c:33:b2:bc:9e:c8:48:c6:37:4a:87: bf:5a:bf:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjUxMTAzMDYwOTA5WhcNMjUxMTEwMDYwOTA4WjAYMRYwFAYD VQQDEw02OTA4NDcwNS0xNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8uqhPqWYesypHs+/LDHZ+vdEnD/ePPgLL5PdunrmbdIwJ2LZVXPA5sWWWDq XLA78/38kTY3TV8GcxvwuKTH0c57HEcaOArpmoebD4qGH5I5+Or8XhRryvc3Mh2P f6+hh/slbGTz2IS0PsDc/bsFvjaqByiKmG+Mo511G/s0uKKRRZxAnNZfyj6D7NQc qN7lfvg/zlw6gNQcHz5xk76QbwvLAM0sbBQJ4uYMZ4eo+L2n06YN495Tl97U4Nep Z5VvGeZI/wsjch0gZW2KgA6HeZcWzJEG6JsoGi7TAmBH1iUq5wVU+gx50RzIKLsP rCz4SfGKQcgDPzzWADnnZfRa1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPK70DI/ wNnriD6Gs5mxZvw4OAN8MB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJ UUNIZmxQZFlZbVRzUjlORGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgUQElJfpbOVzB3gIxoAfhR99Fd5oI+nKdwz61zkNhfVET2rON7rdQ ULswWLE2RaFMPCi0Tw3TuDyKiKZla9ZooyrnuV1qQ+I92y3ssVw5zCzL/KJRfDsI NW+uO9WXDrz0iTpDlBj2OIwG1pVehoOs4g6HKFUkkeqHe4vLJlAM11cTzf9MvdfX egxSQrkCWHZs4/PDYj49tNmjIBXvlLP+slfq4yNC1MC10rUUwGCoE5I2Z5cmJCoi 1x+7E8UXaDPwAmxg2xjRGbizUNmoyzL23MR7inoVCQP3UrxQ/+veDLN1Sm9rPrLw euX86PvJsCwJTDOyvJ7ISMY3Soe/Wr// -----END CERTIFICATE-----Generated at Mon Nov 3 18:15:11 2025 by rpki-client