$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: aOtO1phrSPXk75hPVemO6bndP0U4XCzbzB4pwfBC0pc= Subject key identifier: BF:37:2A:F4:A3:2F:57:70:BE:5C:E1:C9:1E:31:81:C0:D4:DF:5E:73 Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: 97 Signing time: Wed 05 Nov 2025 06:51:19 +0000 Manifest this update: Wed 05 Nov 2025 06:51:19 +0000 Manifest next update: Wed 12 Nov 2025 06:51:19 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: cAU51SKpe0vFZncy5eWjYeThNCThRtCfDcoqLEwhFfI=) 2: 000A7CE25A5911F0948C6D20C4F9AE02.roa (hash: GWfp52D5q+ZWDIE0kYIw+TpLPvEGwRDdK6mh7QUL+8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Nov 5 06:51:19 2025 GMT Not After : Nov 12 06:51:19 2025 GMT Subject: CN=690af3e7-9b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:20:96:03:a1:92:92:53:7f:3b:4f:8d:eb:2e: a0:f5:5a:24:8f:ef:ed:cf:6d:b6:8c:60:0c:fe:18: 23:5a:db:2b:51:55:66:81:8c:d2:e5:ca:4a:1d:e0: 3b:b8:d0:d2:21:2c:41:70:dc:f0:92:31:ec:66:45: 9a:60:41:3b:93:1e:f3:92:36:92:5a:77:d6:ba:ba: ba:5c:17:9c:1f:0e:01:80:58:e2:49:3b:09:c6:8f: 67:dc:25:f1:a8:04:e1:b9:61:0d:b6:2a:b8:20:d0: e9:1e:ed:64:b3:a5:7d:c5:2e:e9:c1:72:69:b6:dd: 99:40:ad:9f:fb:ca:96:7c:20:a0:60:54:66:3e:38: b2:21:4b:ce:dd:f6:a1:3e:2c:4e:c7:b5:fa:13:07: f0:0d:e1:d0:40:0b:e8:47:04:bc:4c:28:a1:b5:a4: f8:cd:18:4e:b3:19:c5:8a:ac:8e:42:9a:f9:2a:d3: e4:79:3a:37:ce:30:88:32:3b:4f:ea:41:e3:b0:8c: 9a:78:bc:4d:0f:0d:91:52:72:9e:6a:ad:57:7e:67: b9:6b:44:8d:61:9f:b8:33:e9:40:0f:a4:d8:d7:42: 6a:85:81:b8:f9:4b:7e:53:94:27:d6:25:74:60:59: 71:1d:ad:bc:1e:e2:d3:dc:14:d9:f6:c6:90:66:a0: 35:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:37:2A:F4:A3:2F:57:70:BE:5C:E1:C9:1E:31:81:C0:D4:DF:5E:73 X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:dc:46:15:5a:ca:7c:dd:09:88:69:3e:f7:32:d0:dc:b0:8d: cc:aa:87:32:8f:67:30:10:68:f9:20:33:6c:36:d9:34:6e:78: f7:14:2d:52:9f:d0:72:ce:1c:95:2a:7c:f1:56:a1:c1:d6:ec: 72:2b:95:4b:17:43:ef:89:77:6d:8a:b7:50:c2:d9:03:e0:d8: 18:ca:9f:b7:d1:0a:7f:8f:c4:dc:54:1a:ba:57:68:5b:36:e5: 32:34:22:55:52:75:18:ad:36:47:2a:99:84:ac:2e:30:f2:5e: 9d:ec:0e:5a:5e:2c:0d:35:53:27:cb:c5:eb:94:a7:d2:f3:2e: b4:fd:1a:a4:a6:c9:22:a7:bc:3c:6a:be:3f:e6:0d:9f:2f:47: 3f:1a:5a:b0:b3:24:bf:60:1d:b0:14:7e:26:d4:98:a0:dc:80: ee:03:93:d5:ce:a9:41:84:d7:bf:31:a9:ca:03:f5:74:b0:b2: 9c:8d:7e:3a:fa:3e:4c:85:3f:bb:7b:a5:de:8e:68:38:ba:10: ce:ce:6e:34:67:3d:4d:d7:5e:84:4c:1b:eb:8f:3d:80:46:0e: 18:42:39:93:d9:fc:84:9a:cd:ab:d4:64:ef:31:70:ef:94:87: f4:ca:b7:de:ca:46:d0:6a:89:be:19:44:b3:35:f2:f7:b0:00: 07:24:cc:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJDODkxMTAvBgNVBAUTKEIxNzRBM0Q0QkE5QjQ3NkUyQjMxRTQ3QzcyQTI5OEQw NDREOTg3ODUwHhcNMjUxMTA1MDY1MTE5WhcNMjUxMTEyMDY1MTE5WjAYMRYwFAYD VQQDEw02OTBhZjNlNy05YjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCCWA6GSklN/O0+N6y6g9Vokj+/tz222jGAM/hgjWtsrUVVmgYzS5cpKHeA7 uNDSISxBcNzwkjHsZkWaYEE7kx7zkjaSWnfWurq6XBecHw4BgFjiSTsJxo9n3CXx qAThuWENtiq4INDpHu1ks6V9xS7pwXJptt2ZQK2f+8qWfCCgYFRmPjiyIUvO3fah PixOx7X6EwfwDeHQQAvoRwS8TCihtaT4zRhOsxnFiqyOQpr5KtPkeTo3zjCIMjtP 6kHjsIyaeLxNDw2RUnKeaq1Xfme5a0SNYZ+4M+lAD6TY10JqhYG4+Ut+U5Qn1iV0 YFlxHa28HuLT3BTZ9saQZqA1RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL83KvSj L1dwvlzhyR4xgcDU315zMB8GA1UdIwQYMBaAFLF0o9S6m0duKzHkfHKimNBE2YeF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkM4OS85RTcyNjJCRUVG Q0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIyNHJNZVI4Y3FLWTBFVFpo NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIy NHJNZVI4Y3FLWTBFVFpoNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ3EYVWsp83QmIaT73MtDcsI3Mqocyj2cwEGj5IDNsNtk0bnj3FC1S n9ByzhyVKnzxVqHB1uxyK5VLF0PviXdtirdQwtkD4NgYyp+30Qp/j8TcVBq6V2hb NuUyNCJVUnUYrTZHKpmErC4w8l6d7A5aXiwNNVMny8XrlKfS8y60/Rqkpskip7w8 ar4/5g2fL0c/GlqwsyS/YB2wFH4m1Jig3IDuA5PVzqlBhNe/ManKA/V0sLKcjX46 +j5MhT+7e6Xejmg4uhDOzm40Zz1N116ETBvrjz2ARg4YQjmT2fyEms2r1GTvMXDv lIf0yrfeykbQaom+GUSzNfL3sAAHJMwJ -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:20 2025 by rpki-client