$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: D5mZZav9x1v+284Vqu5wyqPA3vmoByN29xUWh7+o9FQ= Subject key identifier: 7D:D5:25:4A:D9:74:A8:B8:01:6A:7E:E2:FF:1B:C8:60:8B:98:D6:17 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 09BC Signing time: Sun 02 Nov 2025 19:57:55 +0000 Manifest this update: Sun 02 Nov 2025 19:57:54 +0000 Manifest next update: Sun 09 Nov 2025 19:57:54 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: PCJrb3jEeuVYG0SIU/56jydQszd7IEevkyT2cSvcR7Q=) 2: 7AEEA290829E11F0975FC440C4F9AE02.roa (hash: ylXeGQVKEpyBpdJm+bvsrD7tk3lV9xXY1bBsN7fiPY0=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Nov 2 19:57:54 2025 GMT Not After : Nov 9 19:57:54 2025 GMT Subject: CN=6907b7c3-2254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:38:23:13:17:a9:39:58:95:cd:36:fe:13: e0:0d:53:27:9a:c2:63:18:df:d8:d2:d4:1e:9f:a0: d2:ad:aa:6e:af:44:52:63:63:7a:7d:6e:89:07:21: b1:e8:a7:8f:e7:bd:9f:6b:b6:17:f8:ba:e7:0b:46: 69:bd:3e:97:99:8e:9d:1a:49:7e:45:4c:75:64:01: 4d:b0:a1:5b:85:c5:95:6e:60:fb:27:56:15:97:24: 9a:24:96:0f:94:e6:42:e5:62:84:c6:38:67:de:da: 14:9f:c5:3e:95:45:a4:53:f0:7c:1c:71:43:12:46: e5:72:53:99:3b:52:13:7e:8b:a7:a0:74:4a:52:ab: 30:6a:c0:45:60:0c:57:da:a9:1d:14:9c:1f:d5:6a: 7b:41:7d:54:38:ff:fb:72:72:5b:b2:8f:09:f7:d3: 15:39:a9:5f:a1:7c:0e:f6:8e:9c:b3:1c:79:4c:2f: b1:70:ee:ed:28:96:74:91:fd:7c:b9:7f:56:b7:b3: a6:ef:d7:9e:bd:ad:11:ce:08:bd:53:99:1b:31:50: a9:6f:54:04:6a:b0:57:58:19:4e:ea:85:7b:a5:9b: 8c:42:ab:2a:9b:fc:13:ec:b4:2f:0b:dd:fc:1d:e6: 9f:e3:3f:5a:7f:4a:aa:39:a1:57:1f:4d:0e:9c:ea: e5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D5:25:4A:D9:74:A8:B8:01:6A:7E:E2:FF:1B:C8:60:8B:98:D6:17 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c9:d3:96:59:78:09:de:f1:f9:41:81:ba:75:a6:93:ef:4a: f3:32:28:67:31:d9:da:53:c1:94:b4:96:17:12:2a:d8:14:bb: cd:01:4a:5e:05:36:15:35:13:84:47:78:f7:c0:3f:34:de:07: 18:e4:f3:a2:3f:93:16:ed:73:a2:77:f6:54:bd:0f:d3:91:81: 85:92:3f:64:86:aa:3b:f8:eb:70:c4:8c:13:f1:29:18:84:09: c0:e0:59:6a:5d:0a:1d:f3:20:5e:32:77:4b:49:88:67:a0:30: 85:12:cd:89:a1:72:50:e7:f7:b6:a0:fc:0a:01:e1:bf:58:4b: 3b:29:de:c2:16:2b:26:e0:ee:24:62:78:a4:5e:25:7f:f1:ca: ae:12:9d:30:75:2d:30:81:cd:7f:f4:0f:f1:4c:84:c5:9e:04: e6:0f:ec:ca:50:50:d3:1d:de:5f:02:cb:08:69:58:6f:56:fb: d4:25:57:c0:d1:09:cd:29:90:81:7c:56:e7:d0:fa:95:8f:b5: ba:b7:b3:53:a2:56:a1:5a:3d:6b:36:27:d7:be:23:dd:35:30: 7c:97:10:2c:0d:aa:f1:6a:18:1d:f1:4e:c8:e5:6b:6a:4f:84: af:f2:81:ec:5d:cd:f8:f2:be:65:be:c0:c2:8d:05:dc:13:8f: c7:9e:95:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUxMTAyMTk1NzU0WhcNMjUxMTA5MTk1NzU0WjAYMRYwFAYD VQQDEw02OTA3YjdjMy0yMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEA4IxMXqTlYlc02/hPgDVMnmsJjGN/Y0tQen6DSrapur0RSY2N6fW6JByGx 6KeP572fa7YX+LrnC0ZpvT6XmY6dGkl+RUx1ZAFNsKFbhcWVbmD7J1YVlySaJJYP lOZC5WKExjhn3toUn8U+lUWkU/B8HHFDEkblclOZO1ITfounoHRKUqswasBFYAxX 2qkdFJwf1Wp7QX1UOP/7cnJbso8J99MVOalfoXwO9o6csxx5TC+xcO7tKJZ0kf18 uX9Wt7Om79eeva0Rzgi9U5kbMVCpb1QEarBXWBlO6oV7pZuMQqsqm/wT7LQvC938 Heaf4z9af0qqOaFXH00OnOrlKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3VJUrZ dKi4AWp+4v8byGCLmNYXMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmydOWWXgJ3vH5QYG6daaT70rzMihnMdnaU8GUtJYXEirYFLvNAUpe BTYVNROER3j3wD803gcY5POiP5MW7XOid/ZUvQ/TkYGFkj9khqo7+OtwxIwT8SkY hAnA4FlqXQod8yBeMndLSYhnoDCFEs2JoXJQ5/e2oPwKAeG/WEs7Kd7CFism4O4k YnikXiV/8cquEp0wdS0wgc1/9A/xTITFngTmD+zKUFDTHd5fAssIaVhvVvvUJVfA 0QnNKZCBfFbn0PqVj7W6t7NTolahWj1rNifXviPdNTB8lxAsDarxahgd8U7I5Wtq T4Sv8oHsXc348r5lvsDCjQXcE4/HnpWJ -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:31 2025 by rpki-client