$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft File: 49O0eIJzzkWSmwmYOr9ktdRNHwg.mft (raw, json) Hash identifier: BGnswyaNX9OQm6pzGDux8JNxK7fbXZs7wNdHkF+4bVU= Subject key identifier: DB:A8:1C:B4:FD:75:D4:47:36:69:8C:02:DE:7D:43:AA:D7:4B:C4:9A Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 117C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft Manifest number: 1165 Signing time: Sun 02 Nov 2025 17:16:14 +0000 Manifest this update: Sun 02 Nov 2025 17:16:14 +0000 Manifest next update: Sun 09 Nov 2025 17:16:14 +0000 Files and hashes: 1: 49O0eIJzzkWSmwmYOr9ktdRNHwg.crl (hash: 0aagvEyAHRocEa8pup9HutOEEHq3ntgraMwoirtwekc=) 2: 97F937E440BC11EAA2B89432C4F9AE02.roa (hash: YvhnTG1A1W5kz0Vch4cPsIzgbILMaDioP1ySIyj5aeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4476 (0x117c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634, serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Validity Not Before: Nov 2 17:16:14 2025 GMT Not After : Nov 9 17:16:14 2025 GMT Subject: CN=690791de-cd23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:48:00:89:9b:7a:06:22:b3:16:27:1c:3f:1c: 76:e1:f7:21:05:a9:2e:85:76:ef:56:3d:cf:b6:d6: d5:56:d5:f5:92:d5:85:93:7a:89:ca:91:c8:07:ca: 1b:24:8e:03:cb:42:24:02:03:93:0c:88:1c:ba:54: ec:b1:60:fb:e5:79:d8:c0:25:24:2d:ff:01:2c:a7: f4:01:4c:0d:e3:da:8c:5a:37:ba:34:3f:ac:7a:e9: d6:27:34:7a:8a:b0:01:a0:9c:d4:7f:d2:d7:d3:ef: 02:39:bc:e9:94:52:ab:37:d6:3c:3f:51:e5:ac:e7: ab:ec:d0:5e:43:33:c6:83:2b:dd:8c:91:60:ac:50: a7:d8:11:37:8a:b5:49:92:11:e2:8a:53:26:46:94: 4d:28:96:ea:a6:c8:b9:03:a2:42:7d:65:2c:f9:75: 26:16:05:a9:ef:69:fb:f4:7d:26:28:d0:88:e2:f4: 78:a6:e2:9d:83:6e:be:fd:dd:89:f3:12:3c:6b:59: 6c:61:83:37:15:3e:5d:86:dc:76:c0:f8:7c:35:f8: 4d:8e:91:ca:43:02:d4:fd:42:a1:fb:84:04:c2:82: ab:af:ec:46:0b:d1:09:b3:61:4a:1e:05:66:0b:78: c8:c5:9a:09:3d:3e:3a:3f:e3:b3:2e:fb:43:25:2b: a7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A8:1C:B4:FD:75:D4:47:36:69:8C:02:DE:7D:43:AA:D7:4B:C4:9A X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e7:72:fd:74:0d:0c:66:2d:81:29:d0:ae:61:73:fa:c3:9e: 97:e9:5c:d2:80:1b:bc:30:8f:6b:51:22:b5:9b:9a:b2:3c:bd: 8b:12:40:a7:09:ad:91:88:8c:e4:1d:74:d5:d8:dc:52:e4:19: 7d:cb:1a:b5:01:0e:d8:6c:7c:8a:da:18:76:f3:8b:d4:4a:18: 73:66:4b:d8:68:8f:db:9f:24:6c:dc:31:b4:b9:be:ac:87:79: 0e:35:d6:bf:c8:ee:ed:a6:2c:f4:03:7a:7f:bf:fd:fa:e3:c3: 91:c1:7b:2e:09:ce:fd:42:7e:b3:6d:87:75:c5:9b:52:cd:e5: 07:13:06:fd:98:f4:92:bb:72:bf:2d:3d:9b:6a:7d:6b:a8:26: d3:cf:f2:6d:7c:9f:f5:01:be:ef:14:48:97:fd:46:27:c8:bb: 67:01:be:14:a4:0f:89:40:f5:81:fe:b0:6a:22:09:11:9e:b2: 8f:23:8f:3b:77:4d:68:2d:25:be:8d:b1:06:f8:7c:d9:ba:6b: 6d:25:bf:0b:75:56:b2:f9:91:75:09:45:c5:3b:e3:1f:b5:68: 12:63:52:b0:88:f5:6c:db:fe:5d:6c:1d:c5:eb:17:6b:b2:ce: 9a:9b:cf:a8:a4:2e:ba:98:ad:8b:c7:25:41:51:a7:37:61:55: 0a:06:86:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjUxMTAyMTcxNjE0WhcNMjUxMTA5MTcxNjE0WjAYMRYwFAYD VQQDEw02OTA3OTFkZS1jZDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUgAiZt6BiKzFiccPxx24fchBakuhXbvVj3PttbVVtX1ktWFk3qJypHIB8ob JI4Dy0IkAgOTDIgculTssWD75XnYwCUkLf8BLKf0AUwN49qMWje6ND+seunWJzR6 irABoJzUf9LX0+8CObzplFKrN9Y8P1HlrOer7NBeQzPGgyvdjJFgrFCn2BE3irVJ khHiilMmRpRNKJbqpsi5A6JCfWUs+XUmFgWp72n79H0mKNCI4vR4puKdg26+/d2J 8xI8a1lsYYM3FT5dhtx2wPh8NfhNjpHKQwLU/UKh+4QEwoKrr+xGC9EJs2FKHgVm C3jIxZoJPT46P+OzLvtDJSuniQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNuoHLT9 ddRHNmmMAt59Q6rXS8SaMB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzNC8xMzI3QTczRTE3MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenpr V1Ntd21ZT3I5a3RkUk5Id2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb53L9dA0MZi2BKdCuYXP6w56X6VzSgBu8MI9rUSK1m5qyPL2LEkCn Ca2RiIzkHXTV2NxS5Bl9yxq1AQ7YbHyK2hh284vUShhzZkvYaI/bnyRs3DG0ub6s h3kONda/yO7tpiz0A3p/v/3648ORwXsuCc79Qn6zbYd1xZtSzeUHEwb9mPSSu3K/ LT2ban1rqCbTz/JtfJ/1Ab7vFEiX/UYnyLtnAb4UpA+JQPWB/rBqIgkRnrKPI487 d01oLSW+jbEG+HzZumttJb8LdVay+ZF1CUXFO+MftWgSY1KwiPVs2/5dbB3F6xdr ss6am8+opC66mK2LxyVBUac3YVUKBoYI -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:35 2025 by rpki-client