$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft File: 1WeS1ZfpzdAr_BbQtJLaParggPw.mft (raw, json) Hash identifier: owuyKUxdFbeHwXWjYXrI4iLesH7UC+lGHQdxyH+RocI= Subject key identifier: B9:3E:9D:DA:9D:60:30:85:1D:0A:C8:E0:E0:8E:C7:8F:EB:BD:4D:82 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1F71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft Manifest number: 1F4A Signing time: Tue 04 Nov 2025 16:07:05 +0000 Manifest this update: Tue 04 Nov 2025 16:07:05 +0000 Manifest next update: Tue 11 Nov 2025 16:07:05 +0000 Files and hashes: 1: 1WeS1ZfpzdAr_BbQtJLaParggPw.crl (hash: r5td77nI3eJBJEe6HOYPvEqD/fyEAxnkyE6cVkbdzYQ=) 2: 317CF2A634E811EFA8BEA738C4F9AE02.roa (hash: zBjYJnHa1n009AI95wfFYThs3iAA9crPH92IoCYjy4g=) 3: 500DFDA8578611EA8CC3B124C4F9AE02.roa (hash: U+HOR1WWM3bWUanGm2xW2p0h9XaY3gPXOWuTGfO7XNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8049 (0x1f71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Nov 4 16:07:05 2025 GMT Not After : Nov 11 16:07:05 2025 GMT Subject: CN=690a24a9-08d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a2:75:e7:a6:f0:7d:37:8c:14:be:96:5a:78: 1a:aa:f4:c5:8b:71:55:00:49:be:6b:1f:06:eb:93: 1b:e7:a6:56:50:bc:8f:6c:fd:fc:d0:6b:1f:f2:68: 13:07:85:0c:ca:84:88:6d:61:a7:f9:9e:67:27:5d: 8e:58:9e:ed:3b:54:b0:11:fa:21:7f:5d:4c:c1:e8: 51:b4:02:db:03:ce:b9:86:8f:d7:0a:81:4c:e6:de: a4:77:40:97:54:8b:d3:77:b7:d5:f7:ba:3f:b7:ca: 8e:40:b0:8b:2f:ed:c3:9e:28:74:83:d8:62:00:5d: e3:db:2c:af:47:3f:bd:fe:60:4b:f8:59:6b:1b:96: f2:39:62:50:b0:95:79:40:b2:64:cb:a2:d1:8e:b5: 66:f9:87:52:e3:e4:2a:4f:6d:3a:82:65:79:0e:f5: 1a:44:9e:d0:c8:74:c7:4a:a3:5b:0e:82:90:0a:26: b6:91:83:5a:d3:45:43:f4:4a:36:92:a1:86:60:64: 22:f8:3a:96:6a:fc:f2:6c:d9:0b:b4:09:89:a2:69: 77:3f:52:ea:9f:49:a4:49:10:c4:7c:f3:f1:26:5c: aa:d0:44:dd:8e:8c:c4:08:4d:c9:59:39:ff:f0:ae: b5:ac:6c:f2:3c:7e:9c:ae:47:1f:95:98:ff:4a:3d: f2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3E:9D:DA:9D:60:30:85:1D:0A:C8:E0:E0:8E:C7:8F:EB:BD:4D:82 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:02:31:b0:75:13:5a:52:2a:c6:0c:b5:eb:64:6f:71:12:2c: ff:f4:c8:37:f9:7e:e7:9e:0c:d8:1e:f9:8e:46:dc:b0:e8:36: 4e:21:47:ed:a5:aa:24:8c:b5:f6:2b:15:62:20:00:a4:da:c3: 8b:9a:f9:d6:d5:29:f0:97:b1:c6:89:57:bc:68:76:6a:cc:38: 7c:98:1f:cd:5d:1c:10:67:24:ec:8c:14:23:84:ef:da:0b:7a: b8:e8:f0:ec:26:ed:b1:64:fc:8a:58:d3:b4:18:16:52:f6:9e: 73:dd:36:e7:40:00:69:7e:1f:45:01:4e:c4:ff:3a:96:34:53: 4d:28:be:c6:67:0d:6a:2e:43:30:fc:11:d5:bf:4c:bb:fa:1f: c0:ac:80:84:ee:cf:00:de:99:37:44:28:af:94:8b:fd:1f:f6: 76:9b:78:b9:06:59:0e:40:e6:8f:22:91:0a:49:21:4a:eb:25: 90:3f:c7:bd:9d:40:06:3c:14:c2:ab:3f:51:08:80:86:f7:84: 04:59:4e:ad:03:c7:18:a5:94:f2:ff:43:73:06:9c:40:aa:87: b3:8c:42:f0:09:08:a7:c4:75:6b:ea:f4:91:31:13:f3:1a:8e: b6:c4:e7:aa:c1:57:5f:71:f0:23:35:1a:9f:a2:b4:bd:c1:ad: 39:1a:f4:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUxMTA0MTYwNzA1WhcNMjUxMTExMTYwNzA1WjAYMRYwFAYD VQQDEw02OTBhMjRhOS0wOGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlaJ156bwfTeMFL6WWngaqvTFi3FVAEm+ax8G65Mb56ZWULyPbP380Gsf8mgT B4UMyoSIbWGn+Z5nJ12OWJ7tO1SwEfohf11MwehRtALbA865ho/XCoFM5t6kd0CX VIvTd7fV97o/t8qOQLCLL+3Dnih0g9hiAF3j2yyvRz+9/mBL+FlrG5byOWJQsJV5 QLJky6LRjrVm+YdS4+QqT206gmV5DvUaRJ7QyHTHSqNbDoKQCia2kYNa00VD9Eo2 kqGGYGQi+DqWavzybNkLtAmJoml3P1Lqn0mkSRDEfPPxJlyq0ETdjozECE3JWTn/ 8K61rGzyPH6crkcflZj/Sj3y2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLk+ndqd YDCFHQrI4OCOx4/rvU2CMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFFQS85QUYzRUQyODVFRUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpk QXJfQmJRdEpMYVBhcmdnUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUAjGwdRNaUirGDLXrZG9xEiz/9Mg3+X7nngzYHvmORtyw6DZOIUft paokjLX2KxViIACk2sOLmvnW1Snwl7HGiVe8aHZqzDh8mB/NXRwQZyTsjBQjhO/a C3q46PDsJu2xZPyKWNO0GBZS9p5z3TbnQABpfh9FAU7E/zqWNFNNKL7GZw1qLkMw /BHVv0y7+h/ArICE7s8A3pk3RCivlIv9H/Z2m3i5BlkOQOaPIpEKSSFK6yWQP8e9 nUAGPBTCqz9RCICG94QEWU6tA8cYpZTy/0NzBpxAqoezjELwCQinxHVr6vSRMRPz Go62xOeqwVdfcfAjNRqforS9wa05GvRB -----END CERTIFICATE-----Generated at Wed Nov 5 10:00:37 2025 by rpki-client