$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: nYuutlluZ480s81yj7WFovqbuEzcwXlKx/5aywGdbz0= Subject key identifier: A9:4B:15:90:3B:FA:22:73:6B:97:D6:46:40:1F:DF:D1:6C:00:67:83 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B70 Signing time: Tue 04 Nov 2025 19:11:01 +0000 Manifest this update: Tue 04 Nov 2025 19:11:01 +0000 Manifest next update: Tue 11 Nov 2025 19:11:01 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: mKDuV16GF2Bq8qWU7gOOjIhWxbNt2U4bJm9ajG12XgI=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: 3BW+6nymo9tOkRv2HmgjHdbdXck1fJ3/WU7dqQPErF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2936 (0xb78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Nov 4 19:11:01 2025 GMT Not After : Nov 11 19:11:01 2025 GMT Subject: CN=690a4fc5-80d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:75:28:24:24:4b:47:1d:f0:84:72:eb:de:6b: 50:73:40:f4:03:9e:a4:98:04:cf:fd:6b:b8:ef:e6: 96:a6:f5:fb:4e:7a:50:0f:e7:d5:4d:57:1b:59:bb: df:8a:9d:72:e9:a4:00:94:40:99:ed:1b:cb:f7:e8: 63:58:47:e0:00:c8:a8:dc:38:9d:a4:27:de:d8:d2: 3e:d7:a7:e2:fd:85:f9:67:0f:94:8e:7d:0f:55:ca: fa:91:f2:df:70:cf:6b:b3:fc:a7:00:30:4e:59:69: 68:70:d3:7f:cf:af:2f:eb:9f:d2:f4:74:ad:ff:c7: ea:95:69:54:06:d4:65:f6:71:d8:ff:ea:47:0d:49: be:f3:11:9f:34:08:7d:48:02:d5:7d:48:ad:06:bb: 79:ba:7d:d1:e8:89:f8:6e:a9:30:d7:21:64:7a:8e: b1:76:0a:80:dd:81:e1:c0:ea:a4:b4:f4:78:a4:00: fc:28:b8:30:5a:b4:88:63:1a:58:ed:f7:26:d1:07: 2a:fd:dd:be:f8:ff:9f:4b:ec:43:a6:7a:a8:71:51: 23:22:b2:29:ce:b1:14:2f:a1:fc:09:0e:64:4f:a7: 1e:c6:96:39:23:6a:b1:c5:9a:70:20:44:c6:c7:82: f8:c1:47:56:c9:dc:57:1e:9d:82:d6:e9:db:7e:dd: 75:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4B:15:90:3B:FA:22:73:6B:97:D6:46:40:1F:DF:D1:6C:00:67:83 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f4:18:e9:4c:29:ae:12:0d:a3:71:71:c9:5e:59:87:5d:53: 7f:a6:de:87:9c:b3:54:3b:70:3f:0e:98:6f:2a:ed:95:59:69: d1:78:c3:83:ee:6f:96:2d:9d:9a:33:4f:3e:15:d2:60:1e:35: 22:43:d6:71:f4:a8:7a:62:43:6e:1e:5d:3b:10:1e:fd:63:05: 4c:58:6b:08:18:18:23:f4:fa:8b:f8:80:ea:58:86:95:df:11: 1f:99:4b:74:b9:a5:3b:36:1b:e3:56:27:92:43:01:bb:79:e7: 72:a1:4f:cf:14:e8:64:1d:09:2e:19:78:9c:1f:f9:49:95:fb: b0:e5:0e:21:b8:3d:12:56:8b:05:6b:ed:1e:7d:e5:08:25:ab: 47:2c:ba:79:35:02:bd:e7:15:8a:bf:1c:d3:04:6c:9f:69:78: 2c:95:55:12:34:d5:93:ff:76:f3:58:90:a7:ca:ef:71:9f:57: 75:56:ac:82:46:d7:96:b0:4d:28:d0:20:c0:35:d6:9a:89:dd: c9:86:c1:35:c4:7a:aa:29:3b:6f:1d:7a:a1:43:b3:02:58:4e: fc:84:49:0a:fd:34:95:e9:e6:7b:06:13:60:b1:50:69:1f:af: c7:a4:d4:d1:fc:e1:43:cd:2e:89:c5:98:4c:ba:27:c9:65:ce: 77:a2:68:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUxMTA0MTkxMTAxWhcNMjUxMTExMTkxMTAxWjAYMRYwFAYD VQQDEw02OTBhNGZjNS04MGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnUoJCRLRx3whHLr3mtQc0D0A56kmATP/Wu47+aWpvX7TnpQD+fVTVcbWbvf ip1y6aQAlECZ7RvL9+hjWEfgAMio3DidpCfe2NI+16fi/YX5Zw+Ujn0PVcr6kfLf cM9rs/ynADBOWWlocNN/z68v65/S9HSt/8fqlWlUBtRl9nHY/+pHDUm+8xGfNAh9 SALVfUitBrt5un3R6In4bqkw1yFkeo6xdgqA3YHhwOqktPR4pAD8KLgwWrSIYxpY 7fcm0Qcq/d2++P+fS+xDpnqocVEjIrIpzrEUL6H8CQ5kT6cexpY5I2qxxZpwIETG x4L4wUdWydxXHp2C1unbft11RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlLFZA7 +iJza5fWRkAf39FsAGeDMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/9BjpTCmuEg2jcXHJXlmHXVN/pt6HnLNUO3A/DphvKu2VWWnReMOD 7m+WLZ2aM08+FdJgHjUiQ9Zx9Kh6YkNuHl07EB79YwVMWGsIGBgj9PqL+IDqWIaV 3xEfmUt0uaU7NhvjVieSQwG7eedyoU/PFOhkHQkuGXicH/lJlfuw5Q4huD0SVosF a+0efeUIJatHLLp5NQK95xWKvxzTBGyfaXgslVUSNNWT/3bzWJCnyu9xn1d1VqyC RteWsE0o0CDANdaaid3JhsE1xHqqKTtvHXqhQ7MCWE78hEkK/TSV6eZ7BhNgsVBp H6/HpNTR/OFDzS6JxZhMuifJZc53omhA -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:17 2025 by rpki-client