$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: gqeJrp2+dhLYGDzAWPHUbHzjUZGor0vGLHtGyWy8do0= Subject key identifier: 74:C6:18:48:2A:7C:E1:92:8A:D1:79:B8:3D:73:1A:4C:52:78:A9:72 Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 04C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 04C4 Signing time: Sun 02 Nov 2025 23:48:51 +0000 Manifest this update: Sun 02 Nov 2025 23:48:51 +0000 Manifest next update: Sun 09 Nov 2025 23:48:51 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: nHBmAouw2cYPq5ggzs1PZuwFjBD/P1Sm1Wpx8gAMnV4=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: TOciMmg+YXh13dYfOrB14chWnhLKZ+JRHOQLiS8Jf5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1225 (0x4c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9, serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Validity Not Before: Nov 2 23:48:51 2025 GMT Not After : Nov 9 23:48:51 2025 GMT Subject: CN=6907ede3-7b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fd:e1:8e:ae:16:77:e3:15:38:1e:97:0c:a1: ac:bb:39:97:28:90:46:62:60:9c:ed:b7:aa:df:de: 9f:e4:ed:63:36:d0:0b:fb:32:34:2a:b0:0c:90:00: d1:14:f8:9e:ae:01:04:65:13:a8:35:e5:f5:d4:ac: 0f:77:40:1c:bd:86:24:ff:22:48:b7:3a:1e:21:64: a3:00:dc:a3:99:28:eb:86:9a:29:5f:74:34:c9:74: df:89:03:33:5a:9f:a3:83:af:42:21:32:6d:cf:9a: 86:59:e4:1e:2c:a9:94:66:9c:b2:23:68:8e:72:d8: ed:63:0d:a0:e3:84:74:46:b9:9f:6a:4f:a8:74:9f: 38:34:bf:bb:58:55:e0:74:41:c9:31:b8:18:41:22: 37:4e:7d:0e:52:4e:29:fa:1b:6f:f5:91:27:b8:2b: ab:b1:dd:7b:d6:44:00:6a:d3:bf:55:9a:88:db:ce: 87:3f:2c:bb:6c:5c:ea:20:18:98:18:1d:3a:0a:6c: f2:e2:8f:c4:0f:00:8c:0b:58:c0:7c:97:1f:25:fc: 1a:7d:ac:82:0c:53:2c:ee:93:4f:b5:a0:cf:c5:48: b1:cf:89:19:53:78:b9:b1:bb:57:38:4f:c0:66:58: ec:7c:8c:0f:ec:bb:35:46:11:fd:d0:36:c9:a8:ff: 2e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C6:18:48:2A:7C:E1:92:8A:D1:79:B8:3D:73:1A:4C:52:78:A9:72 X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:20:0b:14:ef:dc:31:bb:c6:7f:13:34:6a:62:ae:e2:94:a6: c2:09:24:37:1c:de:6f:e6:5c:6e:50:82:53:55:23:00:8c:d4: ef:a6:1e:7a:71:0f:01:02:c5:c5:88:10:54:df:33:e9:19:c8: 0d:5a:d9:14:f0:4d:26:dc:0c:32:55:d0:bd:b2:dc:d3:64:4c: ba:a1:53:b7:a2:ee:e2:e7:12:fb:72:74:97:7a:76:62:e1:17: f5:c4:fd:d5:88:cb:c3:0d:b2:9f:b6:89:a5:30:f4:f6:1a:f5: fb:e1:24:7c:e2:4b:93:e2:d6:c2:4d:c4:dc:b2:38:f1:3e:3e: f4:02:35:99:91:eb:6a:49:df:01:bf:7d:ef:7b:98:3a:a2:f0: 50:b2:25:eb:47:c8:0b:8f:a3:a9:eb:cc:39:4b:bf:7f:22:91: 96:c5:29:ae:1d:3a:47:4d:bf:43:0f:89:cb:18:91:4f:92:5a: 40:4f:44:d0:de:3a:d3:a8:32:f8:f4:1a:85:23:58:0f:39:ca: 8b:a9:c5:e5:8b:30:7f:35:aa:b3:76:7c:1e:fc:a7:20:22:82: e6:45:4b:86:64:cb:4c:f9:b5:42:81:90:94:77:be:9a:9a:dd: 84:6c:03:a1:37:b8:d5:4a:c6:cc:8d:27:19:c5:a8:6f:3b:fd: 8b:c3:97:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjUxMTAyMjM0ODUxWhcNMjUxMTA5MjM0ODUxWjAYMRYwFAYD VQQDEw02OTA3ZWRlMy03YjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/3hjq4Wd+MVOB6XDKGsuzmXKJBGYmCc7beq396f5O1jNtAL+zI0KrAMkADR FPiergEEZROoNeX11KwPd0AcvYYk/yJItzoeIWSjANyjmSjrhpopX3Q0yXTfiQMz Wp+jg69CITJtz5qGWeQeLKmUZpyyI2iOctjtYw2g44R0Rrmfak+odJ84NL+7WFXg dEHJMbgYQSI3Tn0OUk4p+htv9ZEnuCursd171kQAatO/VZqI286HPyy7bFzqIBiY GB06Cmzy4o/EDwCMC1jAfJcfJfwafayCDFMs7pNPtaDPxUixz4kZU3i5sbtXOE/A ZljsfIwP7Ls1RhH90DbJqP8ulwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTGGEgq fOGSitF5uD1zGkxSeKlyMB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWIAsU79wxu8Z/EzRqYq7ilKbCCSQ3HN5v5lxuUIJTVSMAjNTvph56 cQ8BAsXFiBBU3zPpGcgNWtkU8E0m3AwyVdC9stzTZEy6oVO3ou7i5xL7cnSXenZi 4Rf1xP3ViMvDDbKftomlMPT2GvX74SR84kuT4tbCTcTcsjjxPj70AjWZketqSd8B v33ve5g6ovBQsiXrR8gLj6Op68w5S79/IpGWxSmuHTpHTb9DD4nLGJFPklpAT0TQ 3jrTqDL49BqFI1gPOcqLqcXlizB/Naqzdnwe/KcgIoLmRUuGZMtM+bVCgZCUd76a mt2EbAOhN7jVSsbMjScZxahvO/2Lw5f+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:43 2025 by rpki-client