$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: qNDiC1ctGXWcFmOimUPzFOl7jZRyKZv1pAAjQXI+VC8= Subject key identifier: 09:25:7E:6A:65:A2:EA:10:8B:2B:48:81:DE:4A:4C:DF:87:4D:90:B2 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 02CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 02CB Signing time: Wed 05 Nov 2025 01:28:19 +0000 Manifest this update: Wed 05 Nov 2025 01:28:19 +0000 Manifest next update: Wed 12 Nov 2025 01:28:19 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: XxpNzvU5tWXTzn4fHS1CulZeiR461J4iqPhNXHzMDqk=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: M5cm8ltbxVdRcxdqwX20eH12vgkHWhKoQMG7Vy7tBQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Nov 5 01:28:19 2025 GMT Not After : Nov 12 01:28:19 2025 GMT Subject: CN=690aa833-55ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:04:d3:dd:f6:79:7f:0c:ca:d6:b5:36:38:12: ea:4b:69:c4:ae:d8:93:3b:80:4f:b9:3e:2b:95:fa: d1:15:e0:04:a9:4b:16:d1:63:b7:4f:59:94:6a:8b: 28:26:61:28:51:f1:d1:e9:35:58:7d:da:13:d5:22: 72:e4:b5:c2:e4:7d:9c:62:e7:80:02:1b:76:5e:30: 2a:05:ae:d0:9f:ba:49:84:81:69:17:18:c9:7e:4e: dc:3e:f5:a7:ad:36:25:88:41:72:e4:49:b6:90:c9: b1:44:e4:3b:bc:ef:a2:11:6c:e2:c4:8c:8f:3a:c3: 12:82:0e:45:1f:e1:32:fa:3c:36:6e:cc:ac:6e:a7: e1:c5:5e:29:10:ab:85:a1:f7:6b:5b:4b:c0:fd:ae: fa:ca:b1:5a:4a:1c:9b:ea:3c:44:61:f2:ed:46:83: 0c:de:96:21:68:b2:f4:5b:7a:f5:78:d8:ba:93:81: 46:60:27:fc:26:0b:a6:52:19:c5:1c:12:4d:13:11: ee:ef:d7:21:21:77:71:27:47:79:f9:6c:d4:8e:66: 74:e5:d5:85:8f:71:dc:37:33:0b:87:a5:63:01:57: f2:ac:74:f3:ad:9e:e9:fe:24:fe:d0:31:96:c7:48: 0b:e0:5b:f9:bf:f5:2a:8f:c7:7c:ea:e4:f4:b3:31: 22:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:25:7E:6A:65:A2:EA:10:8B:2B:48:81:DE:4A:4C:DF:87:4D:90:B2 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:58:de:8f:8a:58:f9:1e:a2:ae:02:f1:ce:49:c6:f2:af:77: 23:03:ba:3e:da:3b:d4:35:4a:3c:ab:9b:4b:42:bb:6c:9a:22: 9a:78:00:50:c2:78:ee:d5:2c:fd:19:38:27:6c:b1:de:39:ff: c5:64:48:2a:5c:d2:e0:58:e9:bc:57:d7:2b:5e:95:95:50:b7: 20:56:d3:9e:fc:b8:04:91:fa:8a:8c:e6:1c:c4:a5:95:8f:9a: 13:f0:57:5c:75:3e:03:fa:4b:d9:8d:0b:d6:59:26:6d:59:20: b0:e3:40:02:f2:18:b3:41:ff:08:0b:c0:59:f5:19:db:19:92: 6d:5f:cf:51:a8:58:42:b2:fe:97:7d:7a:20:73:9e:ed:f0:59: 3f:32:90:73:a1:50:b2:5e:67:13:ea:53:0c:68:c3:cd:03:55: fc:d6:82:b4:e7:97:f9:bf:05:73:07:b2:b5:99:62:ba:ad:02: 2c:c8:49:ce:f8:53:6b:41:e4:84:d9:64:85:ca:5d:36:53:00: fd:55:98:12:09:04:9e:1f:d5:e4:21:20:08:7b:29:c3:ce:ce: 1b:3f:c7:4d:ff:52:fe:aa:2a:45:11:eb:9f:58:10:df:74:03: 02:42:aa:da:d6:32:6f:19:92:98:e2:8f:b1:90:e3:3a:75:fd: 68:fb:ea:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUxMTA1MDEyODE5WhcNMjUxMTEyMDEyODE5WjAYMRYwFAYD VQQDEw02OTBhYTgzMy01NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gTT3fZ5fwzK1rU2OBLqS2nErtiTO4BPuT4rlfrRFeAEqUsW0WO3T1mUaoso JmEoUfHR6TVYfdoT1SJy5LXC5H2cYueAAht2XjAqBa7Qn7pJhIFpFxjJfk7cPvWn rTYliEFy5Em2kMmxROQ7vO+iEWzixIyPOsMSgg5FH+Ey+jw2bsysbqfhxV4pEKuF ofdrW0vA/a76yrFaShyb6jxEYfLtRoMM3pYhaLL0W3r1eNi6k4FGYCf8JgumUhnF HBJNExHu79chIXdxJ0d5+WzUjmZ05dWFj3HcNzMLh6VjAVfyrHTzrZ7p/iT+0DGW x0gL4Fv5v/Uqj8d86uT0szEiLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAklfmpl ouoQiytIgd5KTN+HTZCyMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAWN6Pilj5HqKuAvHOScbyr3cjA7o+2jvUNUo8q5tLQrtsmiKaeABQ wnju1Sz9GTgnbLHeOf/FZEgqXNLgWOm8V9crXpWVULcgVtOe/LgEkfqKjOYcxKWV j5oT8FdcdT4D+kvZjQvWWSZtWSCw40AC8hizQf8IC8BZ9RnbGZJtX89RqFhCsv6X fXogc57t8Fk/MpBzoVCyXmcT6lMMaMPNA1X81oK055f5vwVzB7K1mWK6rQIsyEnO +FNrQeSE2WSFyl02UwD9VZgSCQSeH9XkISAIeynDzs4bP8dN/1L+qipFEeufWBDf dAMCQqra1jJvGZKY4o+xkOM6df1o++o6 -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:31 2025 by rpki-client