$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft File: 53BQiRv4knQyZQtwbyv-3ZKhEck.mft (raw, json) Hash identifier: ZgCC9LhZHJSa+0GiG4NXP9CDrXPV5zLAU3cyuzTtSVo= Subject key identifier: 45:C6:DE:D5:20:10:97:26:9C:AB:39:B1:0D:40:04:82:E9:CF:78:55 Authority key identifier: E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 Certificate issuer: /CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft Manifest number: 01D1 Signing time: Wed 05 Nov 2025 02:56:13 +0000 Manifest this update: Wed 05 Nov 2025 02:56:12 +0000 Manifest next update: Wed 12 Nov 2025 02:56:12 +0000 Files and hashes: 1: 53BQiRv4knQyZQtwbyv-3ZKhEck.crl (hash: m935IjaOqzsjWxNZMDq9WHOz9aTjdc+xziF96ROV/CQ=) 2: F3210638F06D11ED9055A212C4F9AE02.roa (hash: MagQfzBe5yekFsZC62iyjicRBCCYPyKf7/pA5fRZ3FI=) 3: F2948C58F06D11ED9055A212C4F9AE02.roa (hash: WtNf5u0VPKCbZuWxho7o4y46h8TygPH5bunfDKzrwyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8ADF, serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Validity Not Before: Nov 5 02:56:12 2025 GMT Not After : Nov 12 02:56:12 2025 GMT Subject: CN=690abccd-5b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4a:46:18:f2:c4:15:16:cd:36:eb:1e:60:79: 04:31:54:43:62:2f:98:8b:96:b3:e2:80:f6:b5:b2: 14:96:3d:cc:25:b9:34:88:db:d1:06:17:15:03:09: 0a:47:05:17:55:52:f3:6a:02:0a:b9:14:b1:42:45: 29:dc:30:f3:5a:4a:65:92:b7:00:03:e5:f9:2f:28: f2:ab:5d:a3:f7:79:4d:64:ed:cd:50:18:f4:f3:9c: 78:76:23:32:2d:1c:dc:f6:b8:a1:7b:2d:dd:ae:46: c7:1d:cf:49:f3:d8:c5:3d:29:44:7e:aa:e6:b9:3f: 2a:a2:c9:fe:5a:d4:af:e4:e4:ce:76:15:d7:62:dd: 3c:92:ff:22:7c:b1:ec:75:84:02:eb:21:4c:8f:12: ac:e3:31:bc:12:00:7a:05:97:77:5f:c6:62:e4:28: e1:65:9a:99:a2:82:75:9c:39:d3:f7:cf:60:24:3d: 39:71:44:47:75:27:16:a6:cd:05:b5:05:9c:50:d7: 06:c9:fa:4c:9a:19:46:f3:50:32:da:73:61:86:9b: 60:1f:a2:12:f9:29:e4:02:b1:d3:45:e9:52:20:6e: ae:f1:3d:4d:6d:93:f0:ae:77:15:f8:d0:0a:ca:87: 00:6e:40:b2:68:8f:b0:ea:f3:cb:56:5e:ae:f0:6d: 80:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C6:DE:D5:20:10:97:26:9C:AB:39:B1:0D:40:04:82:E9:CF:78:55 X509v3 Authority Key Identifier: keyid:E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c0:ef:bb:ed:2c:7f:80:c4:d7:6a:d4:71:96:da:b1:6c:48: 95:3a:10:30:ab:2c:98:5e:b2:74:e8:a4:41:80:c2:c0:da:e4: 48:61:3d:42:cd:d6:64:44:66:da:70:43:81:35:76:c4:19:d1: 67:f5:3f:fc:f8:d8:cb:79:13:69:6f:c1:db:c2:d6:37:4b:98: 16:2c:81:33:0c:af:a2:36:5a:c5:e2:a2:d0:93:ce:61:a4:00: c6:68:66:be:1a:62:9c:a4:fa:b1:de:b5:89:06:78:5d:39:64: dc:2d:4f:6d:10:91:f5:ac:53:b6:4b:d8:e7:a6:1b:ae:1b:41: b1:08:ca:36:26:df:17:e9:d5:5e:22:21:84:03:a7:14:9c:31: 56:ae:e9:3f:8f:0d:ce:27:db:ba:75:f4:88:d8:42:59:f2:d8: f9:2c:e9:30:c0:d3:d4:14:e3:22:c1:28:e3:79:fc:37:1f:33: 3a:8a:6b:49:38:16:24:df:a6:c2:43:15:3a:e4:19:43:19:cb: c1:a4:0b:06:6c:8b:63:c8:e9:5c:58:27:48:5a:bb:5f:69:ae: e6:05:4c:be:a3:d1:85:19:a2:7b:57:85:32:7a:31:41:b9:fd: 82:9f:0f:34:ed:e9:6c:67:39:4c:13:ab:9e:54:52:09:d8:36: 9f:a5:a6:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBREYxMTAvBgNVBAUTKEU3NzA1MDg5MUJGODkyNzQzMjY1MEI3MDZGMkJGRURE OTJBMTExQzkwHhcNMjUxMTA1MDI1NjEyWhcNMjUxMTEyMDI1NjEyWjAYMRYwFAYD VQQDEw02OTBhYmNjZC01YjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0pGGPLEFRbNNuseYHkEMVRDYi+Yi5az4oD2tbIUlj3MJbk0iNvRBhcVAwkK RwUXVVLzagIKuRSxQkUp3DDzWkplkrcAA+X5Lyjyq12j93lNZO3NUBj085x4diMy LRzc9rihey3drkbHHc9J89jFPSlEfqrmuT8qosn+WtSv5OTOdhXXYt08kv8ifLHs dYQC6yFMjxKs4zG8EgB6BZd3X8Zi5CjhZZqZooJ1nDnT989gJD05cURHdScWps0F tQWcUNcGyfpMmhlG81Ay2nNhhptgH6IS+SnkArHTRelSIG6u8T1NbZPwrncV+NAK yocAbkCyaI+w6vPLVl6u8G2AYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXG3tUg EJcmnKs5sQ1ABILpz3hVMB8GA1UdIwQYMBaAFOdwUIkb+JJ0MmULcG8r/t2SoRHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFERi9DREY0MDVDMkYw NjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtuUXlaUXR3Ynl2LTNaS2hF Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzQlFpUnY0a25ReVpRdHdieXYtM1pLaEVjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFERi9DREY0MDVDMkYwNjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtu UXlaUXR3Ynl2LTNaS2hFY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/wO+77Sx/gMTXatRxltqxbEiVOhAwqyyYXrJ06KRBgMLA2uRIYT1C zdZkRGbacEOBNXbEGdFn9T/8+NjLeRNpb8HbwtY3S5gWLIEzDK+iNlrF4qLQk85h pADGaGa+GmKcpPqx3rWJBnhdOWTcLU9tEJH1rFO2S9jnphuuG0GxCMo2Jt8X6dVe IiGEA6cUnDFWruk/jw3OJ9u6dfSI2EJZ8tj5LOkwwNPUFOMiwSjjefw3HzM6imtJ OBYk36bCQxU65BlDGcvBpAsGbItjyOlcWCdIWrtfaa7mBUy+o9GFGaJ7V4UyejFB uf2Cnw807elsZzlME6ueVFIJ2DafpaZl -----END CERTIFICATE-----Generated at Wed Nov 5 09:50:22 2025 by rpki-client