$ rpki-client -vvf rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft File: sxnfFFXYouFJjNxdSRVpgxxa_aE.mft (raw, json) Hash identifier: X0JCYgwXJmb0CtdfRTJYjeR9rfH9ATBoDSAOdsWCAF4= Subject key identifier: D9:93:7D:13:98:34:DA:92:97:B5:EB:CC:AA:2B:84:34:D7:1B:09:60 Authority key identifier: B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 Certificate issuer: /CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Certificate serial: 044A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft Manifest number: 043D Signing time: Mon 03 Nov 2025 00:14:20 +0000 Manifest this update: Mon 03 Nov 2025 00:14:19 +0000 Manifest next update: Mon 10 Nov 2025 00:14:19 +0000 Files and hashes: 1: sxnfFFXYouFJjNxdSRVpgxxa_aE.crl (hash: b9yQ6KPI+016MgKnIUZqC5elddEAZ1tl9bv0si7V7d8=) 2: 88B3F0026E9F11EEB03D9582C4F9AE02.roa (hash: OnZeTeaYB5z7AJuz8oi6jGvWEckKykDi+qBUmv+U0QM=) 3: DDCB6B02D9D311EEBB3BDF10C4F9AE02.roa (hash: NYRjezFURAIZr5dfzYcgObUcS0k2GZmBPMzd9N07gUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F87BB, serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Validity Not Before: Nov 3 00:14:19 2025 GMT Not After : Nov 10 00:14:19 2025 GMT Subject: CN=6907f3db-52d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:38:76:aa:fb:9f:7e:1d:80:4d:b0:42:88:80: c9:f2:40:13:00:aa:a3:c0:92:6c:54:3f:83:0a:a9: f3:66:2f:76:52:9b:74:15:3e:ac:0e:70:60:e2:e8: f1:a7:34:34:2d:9f:03:68:43:d7:ae:13:d6:fc:49: 05:8b:d9:31:3c:61:c2:0f:68:b9:86:a5:51:d4:24: 47:1c:d4:c8:b9:63:36:3b:06:6f:58:2d:17:7c:b8: 98:74:b5:e0:bb:f4:bc:a6:4d:5f:57:12:4b:ac:52: 5e:e6:78:fc:8b:37:60:bd:37:bb:e3:7b:70:2a:43: 66:d8:ae:aa:41:7d:9c:3f:73:a3:6d:c6:8d:8a:c2: 28:46:3b:16:6a:45:0a:dd:17:e4:6c:69:6f:f4:f0: 3e:e7:7e:15:97:02:e9:40:84:f9:58:c9:19:74:b0: 2f:df:43:dd:2b:dc:5e:cd:9e:80:c4:5e:31:19:aa: 77:56:c9:85:e2:5a:fc:77:20:f6:b5:8e:74:ac:f8: 38:17:8c:3a:a9:c2:c1:f6:9e:99:96:38:01:e1:95: 5f:47:ae:0a:de:b2:a1:41:72:de:22:be:91:01:24: f6:cd:0b:21:50:e1:52:b8:d6:39:9a:ee:5f:2a:79: 08:23:f2:87:2c:2b:59:b3:99:09:86:a9:25:49:90: 2a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:93:7D:13:98:34:DA:92:97:B5:EB:CC:AA:2B:84:34:D7:1B:09:60 X509v3 Authority Key Identifier: keyid:B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:33:3b:55:ec:a5:39:af:59:b3:56:91:6a:29:c0:d7:dd:91: c9:77:fd:ac:06:4e:d6:c8:40:44:c5:86:fa:1f:e7:20:35:0e: b4:80:11:a5:f1:90:1a:62:ec:cf:f6:61:f7:95:aa:c7:66:f6: 06:75:7e:d3:df:2d:34:dc:7e:22:9f:c8:bf:02:3d:80:1f:7f: 14:37:16:4b:c8:76:df:ab:74:a9:0b:56:40:89:3e:bf:dd:81: 81:fb:25:1c:8f:0d:49:cb:53:44:3f:7e:db:d4:74:44:5d:4b: 65:bf:0e:95:78:be:34:31:cd:aa:64:f4:0f:f2:99:6f:9a:a6: bf:e3:16:76:0b:86:d0:49:13:21:5c:cd:32:ea:20:a5:c2:fc: 66:80:34:76:37:85:66:63:11:4d:8d:64:36:0a:95:7b:70:28: 74:94:06:d9:83:50:06:1f:1b:a9:e3:fd:cd:b9:55:97:21:b3: 69:22:06:b7:24:cc:f6:1e:ba:02:a4:5a:d8:72:4e:96:ae:ef: 98:c4:fb:1a:33:7e:d0:7a:b0:e0:82:7e:ad:1f:f3:87:a1:5c: 3f:45:02:6b:c2:3c:48:c8:b9:26:d5:95:b7:ae:6c:dd:4e:a4: 16:24:a6:a1:5c:6b:4e:7b:52:8e:cc:17:26:e9:26:0d:b2:9d: 01:cb:dc:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg3QkIxMTAvBgNVBAUTKEIzMTlERjE0NTVEOEEyRTE0OThDREM1RDQ5MTU2OTgz MUM1QUZEQTEwHhcNMjUxMTAzMDAxNDE5WhcNMjUxMTEwMDAxNDE5WjAYMRYwFAYD VQQDEw02OTA3ZjNkYi01MmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzh2qvuffh2ATbBCiIDJ8kATAKqjwJJsVD+DCqnzZi92Upt0FT6sDnBg4ujx pzQ0LZ8DaEPXrhPW/EkFi9kxPGHCD2i5hqVR1CRHHNTIuWM2OwZvWC0XfLiYdLXg u/S8pk1fVxJLrFJe5nj8izdgvTe743twKkNm2K6qQX2cP3OjbcaNisIoRjsWakUK 3RfkbGlv9PA+534VlwLpQIT5WMkZdLAv30PdK9xezZ6AxF4xGap3VsmF4lr8dyD2 tY50rPg4F4w6qcLB9p6ZljgB4ZVfR64K3rKhQXLeIr6RAST2zQshUOFSuNY5mu5f KnkII/KHLCtZs5kJhqklSZAqBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmTfROY NNqSl7XrzKorhDTXGwlgMB8GA1UdIwQYMBaAFLMZ3xRV2KLhSYzcXUkVaYMcWv2h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODdCQi85REYwREZCRTdE RTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91RkpqTnhkU1JWcGd4eGFf YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N4bmZGRlhZb3VGSmpOeGRTUlZwZ3h4YV9hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODdCQi85REYwREZCRTdERTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91 RkpqTnhkU1JWcGd4eGFfYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAMztV7KU5r1mzVpFqKcDX3ZHJd/2sBk7WyEBExYb6H+cgNQ60gBGl 8ZAaYuzP9mH3larHZvYGdX7T3y003H4in8i/Aj2AH38UNxZLyHbfq3SpC1ZAiT6/ 3YGB+yUcjw1Jy1NEP37b1HREXUtlvw6VeL40Mc2qZPQP8plvmqa/4xZ2C4bQSRMh XM0y6iClwvxmgDR2N4VmYxFNjWQ2CpV7cCh0lAbZg1AGHxup4/3NuVWXIbNpIga3 JMz2HroCpFrYck6Wru+YxPsaM37QerDggn6tH/OHoVw/RQJrwjxIyLkm1ZW3rmzd TqQWJKahXGtOe1KOzBcm6SYNsp0By9xc -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:01 2025 by rpki-client