$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft File: AQgOJC5FBGBlb__55qpDLh1A4lw.mft (raw, json) Hash identifier: Y1F79QyoMVO1E9TrvdmcYBbNFfbS/Qdq6NmS8dGTmJU= Subject key identifier: D7:EE:5D:BC:81:1A:2D:58:BA:B5:B2:E9:09:61:FD:CA:47:D4:17:5A Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 059F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft Manifest number: 0594 Signing time: Sun 02 Nov 2025 23:11:56 +0000 Manifest this update: Sun 02 Nov 2025 23:11:56 +0000 Manifest next update: Sun 09 Nov 2025 23:11:56 +0000 Files and hashes: 1: AQgOJC5FBGBlb__55qpDLh1A4lw.crl (hash: MN90XvFdIKCLD85AsD5iG2yGH8ZcP96QmvefEPLfwv8=) 2: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (hash: nnEDrBs5N1TINTxavJXzYMTFVmRpWUpTfX0eoMA2f+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:11:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1439 (0x59f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: Nov 2 23:11:56 2025 GMT Not After : Nov 9 23:11:56 2025 GMT Subject: CN=6907e53c-c113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:11:02:88:32:3b:a9:dc:b0:8e:59:27:8b: 22:32:2e:2b:9e:3d:e7:d1:97:76:cd:f4:fb:3e:f7: f3:ce:b9:d6:2b:85:a2:d7:77:a3:8c:f2:e9:4e:3b: b1:d0:cd:0c:77:3f:55:58:4f:2c:32:9b:ea:a2:5a: 8f:45:b7:b2:6c:37:8b:65:32:29:e9:61:d6:95:83: fa:a7:75:67:b6:92:84:6a:88:ec:08:95:74:b0:2e: 50:eb:66:30:34:3d:52:f8:07:01:98:7f:6d:17:ba: 1a:7e:69:f7:1d:66:d5:6d:13:71:af:83:b4:31:d8: 88:a8:2a:b8:1d:b4:72:ed:e2:ec:49:9d:3c:ee:f7: 54:8f:e0:7c:97:02:07:c8:f2:05:f5:46:b9:24:53: 94:2a:53:ac:1a:53:ef:83:25:71:d0:43:2a:8f:a1: 3b:9f:8b:a9:8b:e9:2a:51:c8:67:2a:72:c8:36:39: 51:94:5a:c6:bd:da:68:20:5d:cf:a5:b9:dc:8c:e9: 1f:39:d3:54:f0:f5:85:99:64:d4:c3:1d:59:59:df: 5e:15:cb:f9:35:cc:7e:84:d0:c4:14:11:6c:ca:6b: 4e:c1:14:93:40:e0:eb:fd:ea:7a:0c:53:f4:79:ee: 47:a6:1d:1c:3c:47:07:69:25:53:73:07:b4:52:a2: 2e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:EE:5D:BC:81:1A:2D:58:BA:B5:B2:E9:09:61:FD:CA:47:D4:17:5A X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:66:ad:0a:8c:f2:90:43:7f:58:7d:d5:e2:cf:f3:35:3d:7a: 0e:2e:59:0e:ba:57:0b:c0:c5:16:6a:10:fc:c6:6c:dc:ac:db: 09:6e:e3:b4:f0:1b:da:e7:f1:1b:89:09:d7:ed:7f:36:bd:c5: 6e:4c:06:1c:33:af:b2:4e:88:fa:39:af:f8:8a:7f:92:a4:3d: 23:9e:57:2d:cb:e5:55:9b:f8:5e:14:f9:1a:04:6d:bf:45:dc: 9d:60:93:66:cd:a9:89:da:8f:1e:4d:e1:72:00:72:65:a0:74: b2:4a:b6:e4:33:79:4c:ec:0e:c6:79:d9:38:99:18:c0:14:ad: a5:79:b4:84:43:0d:db:f3:50:1b:43:7e:c5:f9:c2:03:f8:69: af:3a:3c:6c:a0:85:80:ed:ad:8d:bf:83:af:c0:3b:97:cf:6e: 0a:f9:4c:d2:d1:3f:20:12:76:f8:3d:6e:ae:0c:96:79:19:c7: 91:1d:47:67:c6:1c:dd:ea:2e:e4:60:d5:fc:fd:25:c0:1d:35: 47:de:b7:bc:01:eb:b9:45:f2:2c:ff:1a:f3:bd:f3:6a:a0:a4: 2c:0d:c4:f8:c0:69:3b:14:3e:ba:73:47:ad:83:67:00:58:57: 0d:19:56:62:e0:51:7f:68:39:c4:35:26:b4:22:4a:64:20:17: b7:e0:80:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjUxMTAyMjMxMTU2WhcNMjUxMTA5MjMxMTU2WjAYMRYwFAYD VQQDEw02OTA3ZTUzYy1jMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu94RAogyO6ncsI5ZJ4siMi4rnj3n0Zd2zfT7PvfzzrnWK4Wi13ejjPLpTjux 0M0Mdz9VWE8sMpvqolqPRbeybDeLZTIp6WHWlYP6p3VntpKEaojsCJV0sC5Q62Yw ND1S+AcBmH9tF7oafmn3HWbVbRNxr4O0MdiIqCq4HbRy7eLsSZ087vdUj+B8lwIH yPIF9Ua5JFOUKlOsGlPvgyVx0EMqj6E7n4upi+kqUchnKnLINjlRlFrGvdpoIF3P pbncjOkfOdNU8PWFmWTUwx1ZWd9eFcv5Ncx+hNDEFBFsymtOwRSTQODr/ep6DFP0 ee5Hph0cPEcHaSVTcwe0UqIuEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfuXbyB Gi1YurWy6Qlh/cpH1BdaMB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVDMy84QTMzRDcyMEY0RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJH QmxiX181NXFwRExoMUE0bHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Zq0KjPKQQ39YfdXiz/M1PXoOLlkOulcLwMUWahD8xmzcrNsJbuO0 8Bva5/EbiQnX7X82vcVuTAYcM6+yToj6Oa/4in+SpD0jnlcty+VVm/heFPkaBG2/ RdydYJNmzamJ2o8eTeFyAHJloHSySrbkM3lM7A7Gedk4mRjAFK2lebSEQw3b81Ab Q37F+cID+GmvOjxsoIWA7a2Nv4OvwDuXz24K+UzS0T8gEnb4PW6uDJZ5GceRHUdn xhzd6i7kYNX8/SXAHTVH3re8Aeu5RfIs/xrzvfNqoKQsDcT4wGk7FD66c0etg2cA WFcNGVZi4FF/aDnENSa0IkpkIBe34IBl -----END CERTIFICATE-----Generated at Tue Nov 4 12:42:30 2025 by rpki-client