$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: /AmtrDzg2eOJo1uptWib+u+44ylFcm3cuoongj6rpYc= Subject key identifier: D1:2D:AD:51:80:31:81:D4:A6:50:10:18:76:1B:9C:BA:89:0D:13:BE Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 22FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 22EB Signing time: Sun 02 Nov 2025 15:51:40 +0000 Manifest this update: Sun 02 Nov 2025 15:51:40 +0000 Manifest next update: Sun 09 Nov 2025 15:51:40 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: RspEbSz568GRMbp4QNHYFyiBzPP83OOsi1C7G43F2Kk=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: +yqS5ARpGMGBWr2MyFGiajoFZUJV/KOEs+STzodgJKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8954 (0x22fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Nov 2 15:51:40 2025 GMT Not After : Nov 9 15:51:40 2025 GMT Subject: CN=69077e0c-3ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f2:0a:6c:62:cf:03:3a:8a:96:c4:11:6c:bc: df:ee:19:3d:44:e3:77:1b:49:cf:07:8c:b5:e3:86: a1:91:16:e6:15:1c:3b:37:49:09:3d:e4:01:18:5c: 13:1c:d8:45:bd:dd:66:b2:66:1e:c9:99:51:93:cf: 56:93:36:79:fe:9e:8b:c5:71:68:7c:be:2b:30:91: 24:c9:26:d6:f6:96:bc:b8:c6:65:be:50:a9:f0:13: 8c:09:e1:30:45:f2:ee:d2:7d:16:f5:10:5b:f4:87: 52:79:86:d6:4d:51:1c:70:c1:0d:67:f2:87:df:28: 83:4c:de:e1:29:76:09:30:24:02:51:d9:4f:08:3f: 9a:aa:3d:16:2c:90:82:0e:cc:f3:c1:06:fd:9c:34: 33:db:51:b8:3d:a9:b7:9a:a7:5e:1b:35:83:19:d2: 20:66:56:df:5d:39:e8:ca:a7:f6:c7:26:10:e5:3e: 5c:1a:0c:a4:18:a3:d5:a1:e7:51:cb:91:cb:df:63: 59:a1:e8:92:5b:ec:a8:9a:a7:01:be:3a:a2:02:14: a2:d3:9b:7e:9c:03:66:4c:92:a4:6c:81:5c:54:b7: 27:9f:b2:29:af:52:1b:58:2f:cc:8c:53:d1:b6:40: 33:27:c9:85:86:d1:f7:eb:64:d6:0a:3c:3b:f1:fc: 7f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2D:AD:51:80:31:81:D4:A6:50:10:18:76:1B:9C:BA:89:0D:13:BE X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:27:cf:34:54:7e:5f:95:b5:3a:20:5d:0f:0a:2a:64:b5:02: 83:f8:e4:c6:9f:b5:f8:ba:e4:3a:65:7f:70:87:c5:0f:7e:44: 40:c9:54:1e:71:b0:c8:01:3d:96:ec:91:d5:92:0c:2b:51:d5: b3:e1:cf:da:42:e7:b5:52:21:44:3f:30:01:86:5b:b7:e5:78: 96:d0:44:0b:b4:17:bf:e7:a3:d7:3b:01:2d:6b:de:55:8a:34: c0:55:01:1e:24:ba:c8:c8:97:e4:f9:ef:61:c6:de:97:02:69: 8a:56:ef:85:ff:44:95:8d:a4:90:1e:f0:7e:a1:b2:63:b5:33: f0:6a:5b:c3:20:91:3e:85:fc:48:45:1e:da:83:fb:49:33:e1: bf:c2:33:17:fc:65:00:ec:6e:9b:b2:9d:6e:9c:90:e6:99:a8: 0a:8d:b5:4f:de:b0:3c:42:43:c7:d3:56:e1:8e:c5:3d:19:a3: 99:f0:2c:c1:ad:d4:fa:69:d8:19:e2:90:53:c3:84:76:38:20: 5a:5f:0e:eb:79:31:4f:6a:1f:3a:2f:32:94:29:b4:b5:e8:79: d6:00:1c:f3:2b:9d:4d:9e:67:dd:e2:e8:29:e3:e6:d5:4d:9f: 68:d5:20:18:d7:46:8a:fc:6e:cf:2b:17:33:9b:3e:6e:0f:6e: eb:90:53:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUxMTAyMTU1MTQwWhcNMjUxMTA5MTU1MTQwWjAYMRYwFAYD VQQDEw02OTA3N2UwYy0zZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPIKbGLPAzqKlsQRbLzf7hk9RON3G0nPB4y144ahkRbmFRw7N0kJPeQBGFwT HNhFvd1msmYeyZlRk89WkzZ5/p6LxXFofL4rMJEkySbW9pa8uMZlvlCp8BOMCeEw RfLu0n0W9RBb9IdSeYbWTVEccMENZ/KH3yiDTN7hKXYJMCQCUdlPCD+aqj0WLJCC DszzwQb9nDQz21G4Pam3mqdeGzWDGdIgZlbfXTnoyqf2xyYQ5T5cGgykGKPVoedR y5HL32NZoeiSW+yomqcBvjqiAhSi05t+nANmTJKkbIFcVLcnn7Ipr1IbWC/MjFPR tkAzJ8mFhtH362TWCjw78fx/ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEtrVGA MYHUplAQGHYbnLqJDRO+MB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKJ880VH5flbU6IF0PCipktQKD+OTGn7X4uuQ6ZX9wh8UPfkRAyVQe cbDIAT2W7JHVkgwrUdWz4c/aQue1UiFEPzABhlu35XiW0EQLtBe/56PXOwEta95V ijTAVQEeJLrIyJfk+e9hxt6XAmmKVu+F/0SVjaSQHvB+obJjtTPwalvDIJE+hfxI RR7ag/tJM+G/wjMX/GUA7G6bsp1unJDmmagKjbVP3rA8QkPH01bhjsU9GaOZ8CzB rdT6adgZ4pBTw4R2OCBaXw7reTFPah86LzKUKbS16HnWABzzK51Nnmfd4ugp4+bV TZ9o1SAY10aK/G7PKxczmz5uD27rkFNG -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:59 2025 by rpki-client