$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: pkTf3sZkrou3HJY4maFZaUmSh8bs7fVsF8pO8vtINjo= Subject key identifier: D9:01:00:98:03:48:A7:E3:8E:76:12:F0:9E:B0:00:E1:98:A5:D7:16 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 01F8 Signing time: Mon 03 Nov 2025 02:28:09 +0000 Manifest this update: Mon 03 Nov 2025 02:28:08 +0000 Manifest next update: Mon 10 Nov 2025 02:28:08 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: FcPXH5RsURCJ8rPH1a0uL6JhUH6Gy1PamJpqXw1yw+M=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: Nov 3 02:28:08 2025 GMT Not After : Nov 10 02:28:08 2025 GMT Subject: CN=69081338-bc5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d0:de:65:75:17:1e:8a:20:6b:aa:6f:c3:20: 3a:ff:32:d3:cc:aa:6a:ee:90:ff:a0:6e:ab:71:9a: 1d:fa:99:bc:e8:7e:65:e8:6d:8b:14:bf:53:72:a8: c8:97:87:50:1d:51:ee:48:d9:47:2b:2b:65:20:f6: 34:1d:ff:9f:93:b6:5b:3a:db:dd:2a:77:33:8a:5c: 75:d7:1b:39:1a:17:56:c1:0d:eb:4d:dc:4e:9f:0f: 04:76:27:6d:d4:2a:e7:df:8a:4e:e5:dc:fa:60:16: b0:49:d7:03:33:fd:cc:24:67:cd:36:9a:ba:b5:93: ef:54:3e:bd:db:2c:ce:67:52:47:70:96:84:d8:ea: 44:0a:bd:21:cd:0a:d0:24:ef:37:7b:7c:3d:63:c9: 7f:5c:a3:32:ac:82:4f:8f:0d:05:a1:1f:35:03:00: da:16:03:10:bf:39:7b:36:4f:bc:8a:f1:d2:36:02: 17:77:63:82:49:f6:44:30:95:50:67:b3:a3:c6:c6: ab:6b:16:72:d7:2b:a4:a7:02:52:d9:30:b4:35:1a: ec:14:e3:c5:12:58:47:02:d2:57:24:32:89:f4:24: f2:d4:a9:cf:d2:e6:9b:88:85:1d:44:bf:6e:ae:89: 73:d0:5b:59:59:43:37:09:0f:a3:52:e4:32:f2:81: 7a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:01:00:98:03:48:A7:E3:8E:76:12:F0:9E:B0:00:E1:98:A5:D7:16 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:64:bb:e6:ef:bb:6b:25:5f:38:6c:da:7e:c1:53:09:02:1e: cf:de:6f:50:ad:7d:41:10:83:4b:a3:13:f0:51:d4:8b:63:78: 4f:16:4a:26:08:d4:b6:7e:2d:49:77:82:27:83:37:0c:9a:ba: 70:4e:6f:c1:28:29:a0:41:2f:ab:71:6d:0e:55:71:6d:b4:e2: 4b:3b:c3:b0:11:de:91:2b:02:b2:38:c8:e8:44:89:aa:c8:4d: f1:d5:00:b0:f1:64:4b:3d:51:32:04:17:72:3f:b6:61:e3:03: 15:c1:ed:9c:3d:b6:2f:53:0d:76:d3:16:7e:17:c1:f7:b4:7f: b5:41:ae:25:71:1a:ca:2d:9e:00:29:fa:7b:ef:09:9a:15:16: 84:c4:ee:fa:bf:8e:71:de:db:e1:91:32:75:05:73:b9:d4:a6: fa:8c:54:40:b6:3e:a4:1c:2a:c1:49:f7:b2:ea:97:4c:b0:c1: 16:2b:93:c3:57:6a:1a:51:bc:e2:48:de:a1:0b:eb:a7:23:4c: 08:54:2b:fa:0e:b0:12:8d:67:62:13:ad:67:cc:7a:1d:97:35: 81:b5:fb:b8:ec:2f:cf:ab:70:a9:b1:52:dd:bb:52:98:ee:6b: d4:e8:2d:e2:e3:5d:51:36:c8:79:46:f5:a1:84:eb:79:04:0b: a5:9c:2a:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUxMTAzMDIyODA4WhcNMjUxMTEwMDIyODA4WjAYMRYwFAYD VQQDEw02OTA4MTMzOC1iYzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNDeZXUXHooga6pvwyA6/zLTzKpq7pD/oG6rcZod+pm86H5l6G2LFL9TcqjI l4dQHVHuSNlHKytlIPY0Hf+fk7ZbOtvdKnczilx11xs5GhdWwQ3rTdxOnw8Edidt 1Crn34pO5dz6YBawSdcDM/3MJGfNNpq6tZPvVD692yzOZ1JHcJaE2OpECr0hzQrQ JO83e3w9Y8l/XKMyrIJPjw0FoR81AwDaFgMQvzl7Nk+8ivHSNgIXd2OCSfZEMJVQ Z7OjxsaraxZy1yukpwJS2TC0NRrsFOPFElhHAtJXJDKJ9CTy1KnP0uabiIUdRL9u rolz0FtZWUM3CQ+jUuQy8oF6mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkBAJgD SKfjjnYS8J6wAOGYpdcWMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIZLvm77trJV84bNp+wVMJAh7P3m9QrX1BEINLoxPwUdSLY3hPFkom CNS2fi1Jd4IngzcMmrpwTm/BKCmgQS+rcW0OVXFttOJLO8OwEd6RKwKyOMjoRImq yE3x1QCw8WRLPVEyBBdyP7Zh4wMVwe2cPbYvUw120xZ+F8H3tH+1Qa4lcRrKLZ4A Kfp77wmaFRaExO76v45x3tvhkTJ1BXO51Kb6jFRAtj6kHCrBSfey6pdMsMEWK5PD V2oaUbziSN6hC+unI0wIVCv6DrASjWdiE61nzHodlzWBtfu47C/Pq3CpsVLdu1KY 7mvU6C3i411RNsh5RvWhhOt5BAulnCou -----END CERTIFICATE-----Generated at Tue Nov 4 01:03:56 2025 by rpki-client