$ rpki-client -vvf rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft File: EDki63fZQHF8gZ4oyWZGKUgLvOU.mft (raw, json) Hash identifier: V0PZHI5fEq7Y9B78wcBYpecpRS9kaeekf0GZnCvQJd0= Subject key identifier: A2:C1:4D:F6:5E:BD:C4:4F:D7:57:82:8C:2F:AC:06:79:34:2C:54:DD Authority key identifier: 10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 Certificate issuer: /CN=A91A030C/serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft Manifest number: 84 Signing time: Wed 05 Nov 2025 06:52:42 +0000 Manifest this update: Wed 05 Nov 2025 06:52:42 +0000 Manifest next update: Wed 12 Nov 2025 06:52:42 +0000 Files and hashes: 1: EDki63fZQHF8gZ4oyWZGKUgLvOU.crl (hash: oepEbXGL5wBFy49KaAqgAQksLJTyHsgOk3fLjT/76QY=) 2: 17D98518FD6911EFA889E84DC4F9AE02.roa (hash: TAYiLVNUfBDudM++NA0KlcXDtTA+39+D4En0/M5r2I8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A030C, serialNumber=103922EB77D940717C819E28C9664629480BBCE5 Validity Not Before: Nov 5 06:52:42 2025 GMT Not After : Nov 12 06:52:42 2025 GMT Subject: CN=690af43a-f64c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:35:9b:86:2d:f1:b6:14:54:b0:4e:db:b9:58: 37:d9:09:86:00:3d:9a:5b:65:61:4c:f4:2d:96:a3: c1:e6:69:7f:a8:9b:2b:19:ed:5f:06:02:29:c3:48: b7:6d:2d:97:7a:f9:eb:04:f2:97:f1:b1:cc:41:16: 54:6f:f6:36:f8:8f:86:31:59:28:6d:24:0c:47:96: 09:62:86:94:94:4b:73:39:18:01:7a:28:18:1c:f3: 86:1c:fc:bc:6a:c5:24:83:85:57:e8:77:c9:5f:05: 19:7f:0b:2f:28:63:83:6b:77:0d:70:4a:54:d9:0e: ee:73:00:37:5e:bc:34:fd:3c:2a:f0:c9:8d:7e:01: 07:7c:23:5e:d3:9a:81:45:58:bb:50:78:0c:67:0a: 6f:a6:e7:7a:df:96:7d:10:88:9f:d2:69:f0:86:3e: 8a:af:9d:04:71:b5:70:1d:4f:a4:c4:1c:3f:7d:8a: a6:d2:05:53:13:9a:dc:2a:d4:5a:0d:7e:a8:5b:ae: f0:72:0f:fd:93:22:dd:08:62:80:ff:dd:a5:a2:00: ac:46:fd:b9:68:27:01:40:4a:61:4a:2d:ee:c7:d7: 85:0c:96:c4:eb:0b:50:b7:ba:7b:38:c7:3a:d3:f6: 95:ee:a4:b2:22:15:02:31:ae:57:73:20:76:bf:8c: 2f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C1:4D:F6:5E:BD:C4:4F:D7:57:82:8C:2F:AC:06:79:34:2C:54:DD X509v3 Authority Key Identifier: keyid:10:39:22:EB:77:D9:40:71:7C:81:9E:28:C9:66:46:29:48:0B:BC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDki63fZQHF8gZ4oyWZGKUgLvOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A030C/A7036700F47611EFBE466D7FC4F9AE02/EDki63fZQHF8gZ4oyWZGKUgLvOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:d0:d6:99:9d:e0:78:bb:fc:ed:20:01:be:d2:8f:3f:b2:46: cf:45:88:44:2d:0a:10:3c:24:fa:6a:cd:c3:c4:5a:30:b7:75: 1d:ad:46:0b:0e:f8:54:63:a0:32:4b:20:5e:e3:ab:eb:e0:dc: 4f:f7:29:02:54:ab:82:f6:4c:60:e4:40:99:49:36:cd:0b:e1: e2:b3:aa:37:70:7a:7c:59:60:86:c4:3b:bb:4e:d8:38:a2:4a: fe:22:c0:68:e4:5f:84:12:e0:f5:85:ae:e2:64:d3:fc:f7:a8: 1b:e2:44:aa:e6:9c:d8:d2:21:a1:53:d8:d1:10:82:fc:fd:97: 00:73:e6:4a:72:95:3e:ea:3c:56:4d:0b:b5:78:68:58:1b:4a: bf:13:b5:61:d6:12:f1:4b:aa:7a:33:55:de:3b:e1:49:53:b3: 33:c7:3b:01:28:89:b5:0e:d9:a6:fc:84:f0:51:0e:d6:ec:b5: 8b:60:1a:47:09:1e:57:6d:3f:44:fa:76:3c:71:a3:8d:3c:5c: 32:9d:58:8b:d8:6f:e0:ad:4d:b7:28:62:96:aa:f1:09:52:36: ed:b2:db:a0:d7:cb:86:f4:71:ac:25:5f:a8:c5:3e:39:a3:51: 82:31:4f:af:c5:a1:02:cc:15:6f:c9:41:a0:6b:f5:64:62:88: 02:dd:cf:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzMEMxMTAvBgNVBAUTKDEwMzkyMkVCNzdEOTQwNzE3QzgxOUUyOEM5NjY0NjI5 NDgwQkJDRTUwHhcNMjUxMTA1MDY1MjQyWhcNMjUxMTEyMDY1MjQyWjAYMRYwFAYD VQQDEw02OTBhZjQzYS1mNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDWbhi3xthRUsE7buVg32QmGAD2aW2VhTPQtlqPB5ml/qJsrGe1fBgIpw0i3 bS2XevnrBPKX8bHMQRZUb/Y2+I+GMVkobSQMR5YJYoaUlEtzORgBeigYHPOGHPy8 asUkg4VX6HfJXwUZfwsvKGODa3cNcEpU2Q7ucwA3Xrw0/Twq8MmNfgEHfCNe05qB RVi7UHgMZwpvpud635Z9EIif0mnwhj6Kr50EcbVwHU+kxBw/fYqm0gVTE5rcKtRa DX6oW67wcg/9kyLdCGKA/92logCsRv25aCcBQEphSi3ux9eFDJbE6wtQt7p7OMc6 0/aV7qSyIhUCMa5XcyB2v4wvEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLBTfZe vcRP11eCjC+sBnk0LFTdMB8GA1UdIwQYMBaAFBA5Iut32UBxfIGeKMlmRilIC7zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDMwQy9BNzAzNjcwMEY0 NzYxMUVGQkU0NjZEN0ZDNEY5QUUwMi9FRGtpNjNmWlFIRjhnWjRveVdaR0tVZ0x2 T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VEa2k2M2ZaUUhGOGdaNG95V1pHS1VnTHZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDMwQy9BNzAzNjcwMEY0NzYxMUVGQkU0NjZEN0ZDNEY5QUUwMi9FRGtpNjNmWlFI RjhnWjRveVdaR0tVZ0x2T1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi0NaZneB4u/ztIAG+0o8/skbPRYhELQoQPCT6as3DxFowt3UdrUYL DvhUY6AySyBe46vr4NxP9ykCVKuC9kxg5ECZSTbNC+His6o3cHp8WWCGxDu7Ttg4 okr+IsBo5F+EEuD1ha7iZNP896gb4kSq5pzY0iGhU9jREIL8/ZcAc+ZKcpU+6jxW TQu1eGhYG0q/E7Vh1hLxS6p6M1XeO+FJU7MzxzsBKIm1Dtmm/ITwUQ7W7LWLYBpH CR5XbT9E+nY8caONPFwynViL2G/grU23KGKWqvEJUjbtstug18uG9HGsJV+oxT45 o1GCMU+vxaECzBVvyUGga/VkYogC3c/2 -----END CERTIFICATE-----Generated at Wed Nov 5 12:11:55 2025 by rpki-client