$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: 3a07YaAdGLWB4olTRKcvJtYOkLYb6GuK2OpGIRvtjBw= Subject key identifier: 4B:DC:58:8C:11:40:E2:1E:A3:43:3B:23:DC:49:DA:76:37:72:F4:16 Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 041E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 0417 Signing time: Wed 05 Nov 2025 00:30:08 +0000 Manifest this update: Wed 05 Nov 2025 00:30:08 +0000 Manifest next update: Wed 12 Nov 2025 00:30:08 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: WIp+tWfbidcZql8++qZi2ptG388jaS+v+CLfd6iRSvA=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: 3IMIlDIIJ2OW6DDbM2+fc2GlxtLv0j04UxGtHanf/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Nov 5 00:30:08 2025 GMT Not After : Nov 12 00:30:08 2025 GMT Subject: CN=690a9a90-3bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2e:34:df:ba:79:d4:45:0d:47:49:a2:70:ee: f3:d6:e5:47:04:6d:b2:b4:c2:25:9b:32:74:6d:fc: b7:3c:f9:1b:94:68:f6:52:1f:af:b5:d0:3f:ce:84: eb:ba:f3:f7:76:22:eb:92:d5:da:51:93:41:9e:df: 9e:3b:ff:71:a1:8b:46:5b:33:81:d6:9d:42:40:2a: f5:b4:92:25:fe:70:93:23:30:cd:81:4f:eb:dc:6e: 77:a2:52:ca:16:c0:a4:31:f4:4c:13:1b:bf:63:61: 3c:1b:70:8a:1e:17:db:16:bd:e0:15:3f:55:8d:40: a8:97:7a:4e:5b:ad:72:9f:b2:5c:d0:32:01:63:4d: 6f:71:eb:e8:7b:e9:6a:42:8e:69:f0:5e:14:f2:d8: e0:c0:45:39:a3:1e:50:f2:f1:17:fe:67:71:6b:f6: 41:49:dc:94:77:7f:c9:3b:09:91:72:77:0e:e7:9b: 67:e8:e8:54:0d:58:d3:3a:fb:f5:f2:03:7b:fd:b4: e0:98:5d:0f:6b:55:8c:28:c3:78:8d:89:4f:05:f4: ec:47:a5:94:23:6d:f3:1c:85:ad:e8:c2:0b:df:2f: 45:03:8d:9e:29:b8:b8:35:45:97:2f:6d:22:7e:4a: 5f:0d:4e:bf:e2:e1:ed:5f:15:d5:7b:23:a7:a9:3c: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DC:58:8C:11:40:E2:1E:A3:43:3B:23:DC:49:DA:76:37:72:F4:16 X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:c9:6c:38:9f:73:f3:b0:47:fc:0b:be:d3:5c:86:34:e4:03: 80:51:66:ca:3e:6f:96:34:8f:03:0c:0c:07:5e:da:fa:82:0c: b8:ee:c7:0e:71:1a:4e:4f:18:b3:6c:b4:a6:76:07:42:31:a7: e4:db:d6:04:7f:7f:d8:2b:d0:6b:73:e1:57:23:f1:e3:d9:b7: eb:26:30:8d:5a:23:0b:9a:24:90:57:65:59:61:dd:7d:72:c9: 1b:3e:7f:72:1b:37:40:7c:6d:cf:31:9b:3e:3d:60:7a:b8:7f: 67:e3:4d:04:c6:43:e1:05:eb:c5:d3:73:39:02:fe:0c:a2:69: d1:ad:5a:ae:72:31:fa:68:e6:56:6f:1d:06:d3:03:fb:c6:85: 47:1f:89:cb:c2:be:b9:bb:44:77:6b:50:71:79:0f:d5:01:c4: 31:99:74:f1:9b:df:54:99:2b:72:c2:c3:24:c1:e8:20:90:70: b2:51:78:64:88:b5:27:d4:7f:fa:83:fd:35:4c:17:81:b8:f7: 74:16:28:63:bf:a0:0d:51:0d:3b:db:38:22:4a:30:d8:60:de: 50:ae:4c:8e:71:0f:32:ce:fb:e2:e0:ec:18:bc:69:f2:6b:43: d8:c1:ea:66:cd:07:32:a5:ce:f2:f1:d2:ee:a3:de:9f:82:39: 10:03:ba:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUxMTA1MDAzMDA4WhcNMjUxMTEyMDAzMDA4WjAYMRYwFAYD VQQDEw02OTBhOWE5MC0zYmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy4037p51EUNR0micO7z1uVHBG2ytMIlmzJ0bfy3PPkblGj2Uh+vtdA/zoTr uvP3diLrktXaUZNBnt+eO/9xoYtGWzOB1p1CQCr1tJIl/nCTIzDNgU/r3G53olLK FsCkMfRMExu/Y2E8G3CKHhfbFr3gFT9VjUCol3pOW61yn7Jc0DIBY01vcevoe+lq Qo5p8F4U8tjgwEU5ox5Q8vEX/mdxa/ZBSdyUd3/JOwmRcncO55tn6OhUDVjTOvv1 8gN7/bTgmF0Pa1WMKMN4jYlPBfTsR6WUI23zHIWt6MIL3y9FA42eKbi4NUWXL20i fkpfDU6/4uHtXxXVeyOnqTyjBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvcWIwR QOIeo0M7I9xJ2nY3cvQWMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQyWw4n3PzsEf8C77TXIY05AOAUWbKPm+WNI8DDAwHXtr6ggy47scO cRpOTxizbLSmdgdCMafk29YEf3/YK9Brc+FXI/Hj2bfrJjCNWiMLmiSQV2VZYd19 cskbPn9yGzdAfG3PMZs+PWB6uH9n400ExkPhBevF03M5Av4MomnRrVqucjH6aOZW bx0G0wP7xoVHH4nLwr65u0R3a1BxeQ/VAcQxmXTxm99UmStywsMkweggkHCyUXhk iLUn1H/6g/01TBeBuPd0Fihjv6ANUQ072zgiSjDYYN5QrkyOcQ8yzvvi4OwYvGny a0PYwepmzQcypc7y8dLuo96fgjkQA7rU -----END CERTIFICATE-----Generated at Wed Nov 5 07:58:51 2025 by rpki-client