$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft (raw, json) Hash identifier: hqhqfK1U9+UrEWBESPX4O/RCIAymxeYAqlYvqnLE/qU= Subject key identifier: 5F:1A:1A:1E:03:31:BD:28:A9:FE:C8:3C:6A:4F:C8:07:D3:F9:A0:26 Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft Manifest number: 7C Signing time: Wed 05 Nov 2025 07:09:00 +0000 Manifest this update: Wed 05 Nov 2025 07:08:59 +0000 Manifest next update: Wed 12 Nov 2025 07:08:59 +0000 Files and hashes: 1: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl (hash: 0gnk5JI594YBtzcuCK5k86aMiRN2ZUQ5x6rRz7Lo1Yc=) 2: EFE35156B61811F0AEA87331C4F9AE02.roa (hash: yGF0/J4YTOhabvB6dHd/CkU6xMGpr2zyh/tO91R2r30=) 3: B2E521ACB61911F08CF0DC33C4F9AE02.roa (hash: qhmSvaZGy1wgMrEHyKh0anKTUZYqwOr3QNOLophEj2o=) 4: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (hash: vb7fSe4hGTfYiR3X8s03oFhLsFFESwK0obRkUpL5Xz0=) 5: 692243D640AA11F096F2746AC4F9AE02.roa (hash: 9g7lOOD5JnVMfPoV+CkyAbWN9NrLgMODndTwuqHyDZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Nov 5 07:08:59 2025 GMT Not After : Nov 12 07:08:59 2025 GMT Subject: CN=690af80c-70e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b6:66:a2:b9:f4:1e:7e:bc:28:ca:0f:a1:6e: 72:e5:66:c0:c1:4f:3c:e7:f1:d6:9b:16:a0:11:43: 22:5d:42:bc:b3:eb:62:5e:2e:72:ac:3b:81:18:3c: 6e:82:04:b2:e2:b4:89:10:c5:50:b9:7d:75:1f:61: 34:5c:c8:da:31:bd:ba:ab:4c:37:57:67:0b:93:8b: 7b:08:93:97:a9:b9:72:0a:01:61:6a:f5:7c:2e:4e: 06:80:42:ae:28:de:55:f6:37:f3:94:4d:90:e7:ac: 49:92:73:f6:18:be:3a:d0:d1:8f:cf:0f:4e:a1:f7: e0:74:4b:8f:6f:c3:e1:87:34:e9:fb:2e:18:00:0b: 29:01:6e:0e:63:e8:e1:49:f5:54:44:d5:7a:2b:6b: f1:4d:2f:a2:b9:7f:6f:08:dd:46:d5:83:73:0e:72: d9:dc:1e:66:94:76:89:65:ce:e0:6a:1e:6e:21:6c: 5f:cf:33:17:bd:3b:a3:9d:78:db:50:a2:43:5b:fe: 1e:68:5d:80:26:8b:6d:df:b6:3a:e8:8c:08:5c:3f: 44:96:d0:0c:52:66:5a:fd:e8:72:2a:f6:71:0f:58: 80:18:d4:e6:3f:57:e5:6b:84:24:fe:e9:ec:80:f7: 4d:da:7c:79:a6:45:77:0f:eb:a3:ab:09:76:8b:f4: 66:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:1A:1A:1E:03:31:BD:28:A9:FE:C8:3C:6A:4F:C8:07:D3:F9:A0:26 X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:52:fe:9e:56:ce:bc:92:5f:b2:d7:84:15:b2:ad:ee:ea:c5: 17:6e:82:6a:9a:a4:30:a2:f2:d8:27:cf:88:74:1f:36:65:8f: 59:ef:c4:91:db:71:43:ed:7b:fa:68:17:b8:7f:84:3a:4b:48: 9a:d1:d0:76:7d:5b:14:ee:52:e4:9b:de:47:47:ac:df:78:20: 46:82:1a:a1:28:77:fb:1d:d4:b2:c7:34:f3:4b:3e:66:2f:29: da:7a:9b:ed:ab:20:02:09:bf:90:b2:9c:1a:7f:04:ac:78:18: 3d:f1:64:81:f7:69:c4:d4:d0:43:f2:77:9b:30:1f:5f:fa:fe: 24:94:ba:06:76:95:69:55:03:4e:97:89:50:90:39:a3:bf:e2: 88:8e:af:62:d1:03:b0:ff:16:6f:e4:7b:97:aa:71:8a:61:1f: 6f:a5:fa:27:4f:6a:08:d2:9e:ac:42:d2:69:5f:57:24:d2:72: 18:86:a4:30:bd:94:c3:f2:88:5d:01:f7:ff:47:c3:f5:a8:26: 9e:f2:67:1c:5e:2c:ef:f7:48:a5:61:6e:1e:e9:6d:bd:3d:bc: a0:92:96:ce:83:2f:86:16:f3:2c:ac:6b:2c:a4:db:2f:d6:40: 5e:6c:22:fb:c5:38:9d:6c:c9:f6:54:0e:fb:30:0d:1f:cb:45: c3:60:3f:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2RkYxMTAvBgNVBAUTKERGQ0E4RkRBQTVGRUY5NDhFMEVDRjZGOUM3MDM2MzlC NTY1MzlEOTkwHhcNMjUxMTA1MDcwODU5WhcNMjUxMTEyMDcwODU5WjAYMRYwFAYD VQQDEw02OTBhZjgwYy03MGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LZmorn0Hn68KMoPoW5y5WbAwU885/HWmxagEUMiXUK8s+tiXi5yrDuBGDxu ggSy4rSJEMVQuX11H2E0XMjaMb26q0w3V2cLk4t7CJOXqblyCgFhavV8Lk4GgEKu KN5V9jfzlE2Q56xJknP2GL460NGPzw9OoffgdEuPb8PhhzTp+y4YAAspAW4OY+jh SfVURNV6K2vxTS+iuX9vCN1G1YNzDnLZ3B5mlHaJZc7gah5uIWxfzzMXvTujnXjb UKJDW/4eaF2AJott37Y66IwIXD9EltAMUmZa/ehyKvZxD1iAGNTmP1fla4Qk/uns gPdN2nx5pkV3D+ujqwl2i/Rm+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8aGh4D Mb0oqf7IPGpPyAfT+aAmMB8GA1UdIwQYMBaAFN/Kj9ql/vlI4Oz2+ccDY5tWU52Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTZGRi8yREE1NTkxMjE0 MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1Vamc3UGI1eHdOam0xWlRu WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTZGRi8yREE1NTkxMjE0MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1V amc3UGI1eHdOam0xWlRuWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBUv6eVs68kl+y14QVsq3u6sUXboJqmqQwovLYJ8+IdB82ZY9Z78SR 23FD7Xv6aBe4f4Q6S0ia0dB2fVsU7lLkm95HR6zfeCBGghqhKHf7HdSyxzTzSz5m LynaepvtqyACCb+QspwafwSseBg98WSB92nE1NBD8nebMB9f+v4klLoGdpVpVQNO l4lQkDmjv+KIjq9i0QOw/xZv5HuXqnGKYR9vpfonT2oI0p6sQtJpX1ck0nIYhqQw vZTD8ohdAff/R8P1qCae8mccXizv90ilYW4e6W29PbygkpbOgy+GFvMsrGsspNsv 1kBebCL7xTidbMn2VA77MA0fy0XDYD/A -----END CERTIFICATE-----Generated at Wed Nov 5 13:08:41 2025 by rpki-client