$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: sB/z4SdL9BY5iWvwJQYWtwFV06YuhBLHJqnwJGl8Vfo= Subject key identifier: 20:DD:01:E9:FB:7D:94:7E:5E:B1:88:4C:D8:BB:BE:55:19:7C:86:6C Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 0853 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 082A Signing time: Sun 02 Nov 2025 20:54:39 +0000 Manifest this update: Sun 02 Nov 2025 20:54:38 +0000 Manifest next update: Sun 09 Nov 2025 20:54:38 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: ZysvhFl8M8Yt9M2WNuMGuHJEB1BFb8TAOfbCrDn1+hw=) 2: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: D2PIDDhjMLrJzP//kuZEMaof293KC1FejYs4Z1FlT9g=) 3: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 4: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: doeraFCMJ4YY06qP/CyZ7CStviCw2H65v541coUCoQs=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 6: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: BxPajmDdLGfIydsWc2EIPgDs9jrVdPhKlvGIPc4xwYE=) 7: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Nov 2 20:54:38 2025 GMT Not After : Nov 9 20:54:38 2025 GMT Subject: CN=6907c50e-57be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:5b:e4:7c:22:fc:6f:5c:e6:4f:bb:01:75: b0:83:46:99:1a:93:4c:cb:1f:4d:a4:a8:d1:e8:92: e0:e5:e9:ed:3d:5b:37:ee:78:09:25:dd:cd:8e:a8: 57:3f:e1:3e:66:dd:b7:ae:3e:d6:29:49:49:49:4d: 32:77:6e:9a:7b:a9:b9:39:94:09:d5:a2:fa:63:7c: 6a:b6:53:e3:15:c8:26:3a:33:c5:f2:b2:b5:26:96: 59:4c:16:0a:3b:c3:ba:8e:ab:c0:56:f4:9a:96:b4: 53:04:15:84:d0:bf:ee:24:dc:bf:a8:83:2a:a1:cd: 0f:ef:c2:eb:dd:9b:ea:6a:4b:5d:e4:29:59:f6:34: 26:e3:15:29:24:b3:4e:d0:ba:a8:ca:64:1c:39:74: 87:91:57:c5:73:e6:00:21:5f:5a:e9:cb:7e:e5:82: a9:c4:dd:8b:df:88:94:64:fd:bb:80:e9:50:6f:28: bb:87:32:46:4a:2e:02:c3:90:fe:7e:cd:c9:b2:a0: a4:8b:24:0d:b0:64:03:a7:ff:75:a9:67:e7:ca:6c: 71:d4:53:ae:fa:21:c8:2f:73:fd:f7:56:00:a6:53: 18:6f:ef:89:ef:8e:29:81:88:51:5a:88:76:24:13: 0c:91:eb:b7:d9:92:2b:3d:60:ad:63:d1:52:e5:2a: 38:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DD:01:E9:FB:7D:94:7E:5E:B1:88:4C:D8:BB:BE:55:19:7C:86:6C X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ac:14:1d:a3:dd:c0:ce:3e:ef:8d:28:ad:28:13:06:91:a4: 7e:6a:7d:32:83:bb:e6:5b:e4:59:3a:95:87:84:8b:cb:0e:48: bf:e2:cd:ba:2d:d9:7d:5c:d7:53:7b:3e:5a:e5:45:1a:29:ce: 30:9f:86:7d:ad:09:09:62:aa:60:0e:7d:c5:24:7c:91:09:66: 74:a6:39:89:c4:df:7a:5d:6b:3c:69:ba:b7:37:39:ac:cd:36: 47:c8:f7:1f:84:f9:61:0a:28:29:8f:31:d6:13:5e:4a:20:30: f3:8a:86:27:c3:4a:2d:63:cb:98:ae:7e:14:63:ef:e4:35:1a: 36:66:1b:64:e5:e6:40:f8:b9:18:a5:fb:7e:a6:f8:f1:be:24: 52:1a:64:45:b4:21:f4:e0:45:9e:23:eb:56:88:c9:d5:8e:80: 66:c2:96:c6:b4:f1:dc:f2:09:fc:38:66:2d:25:0b:7e:f3:a4: 64:1f:55:47:86:6f:b0:b9:d3:ff:e2:d8:62:3a:fe:83:bc:44: e8:79:c5:d9:b7:93:42:63:8f:31:33:6b:16:6b:b2:cc:be:52: fe:fc:7c:3f:be:8a:61:d0:8c:f5:05:ec:f6:bc:b9:ea:6d:8f: 2c:17:7e:4b:21:60:f7:38:2c:2a:17:1b:97:36:b1:d9:07:a2: 30:8a:49:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUxMTAyMjA1NDM4WhcNMjUxMTA5MjA1NDM4WjAYMRYwFAYD VQQDEw02OTA3YzUwZS01N2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwChb5Hwi/G9c5k+7AXWwg0aZGpNMyx9NpKjR6JLg5entPVs37ngJJd3NjqhX P+E+Zt23rj7WKUlJSU0yd26ae6m5OZQJ1aL6Y3xqtlPjFcgmOjPF8rK1JpZZTBYK O8O6jqvAVvSalrRTBBWE0L/uJNy/qIMqoc0P78Lr3Zvqaktd5ClZ9jQm4xUpJLNO 0LqoymQcOXSHkVfFc+YAIV9a6ct+5YKpxN2L34iUZP27gOlQbyi7hzJGSi4Cw5D+ fs3JsqCkiyQNsGQDp/91qWfnymxx1FOu+iHIL3P991YAplMYb++J744pgYhRWoh2 JBMMkeu32ZIrPWCtY9FS5So4wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDdAen7 fZR+XrGITNi7vlUZfIZsMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBorBQdo93Azj7vjSitKBMGkaR+an0yg7vmW+RZOpWHhIvLDki/4s26 Ldl9XNdTez5a5UUaKc4wn4Z9rQkJYqpgDn3FJHyRCWZ0pjmJxN96XWs8abq3Nzms zTZHyPcfhPlhCigpjzHWE15KIDDzioYnw0otY8uYrn4UY+/kNRo2Zhtk5eZA+LkY pft+pvjxviRSGmRFtCH04EWeI+tWiMnVjoBmwpbGtPHc8gn8OGYtJQt+86RkH1VH hm+wudP/4thiOv6DvEToecXZt5NCY48xM2sWa7LMvlL+/Hw/voph0Iz1Bez2vLnq bY8sF35LIWD3OCwqFxuXNrHZB6Iwikmd -----END CERTIFICATE-----Generated at Tue Nov 4 19:02:50 2025 by rpki-client