$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: apYUNrEDu0CjZeea6P9Tz13I4hogeyeRGlt/bxv25nY= Subject key identifier: 46:8E:E6:FF:5E:EA:C3:F5:07:07:72:ED:98:7A:4F:19:06:F3:CA:8E Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: C9 Signing time: Wed 05 Nov 2025 06:02:14 +0000 Manifest this update: Wed 05 Nov 2025 06:02:14 +0000 Manifest next update: Wed 12 Nov 2025 06:02:14 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: bbKY4Rvwhg3TWZYLytHizLrPCw1WzYrLZK3++NQAcIE=) 2: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: 9nhYmTgkqcOjR0NO2+wz26tomnd/zZ4DybayX4g1JJs=) 3: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: Z/zZPYkWKXvraJfJSL/aeXz0Ni43Av6pEICr2Ba1ixA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Nov 5 06:02:14 2025 GMT Not After : Nov 12 06:02:14 2025 GMT Subject: CN=690ae866-9d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:91:c3:e6:78:5f:61:75:bc:e8:a8:c1:0c:86: c0:d5:e4:50:95:5e:9e:22:8a:59:f1:73:b7:46:cf: 13:bd:54:5d:3f:f2:a9:07:a2:9e:9d:be:ad:0f:03: 01:08:62:6a:15:f3:ff:95:d1:fb:b1:47:c4:c1:29: 07:58:75:96:bf:0b:0e:1a:da:a6:99:da:01:82:ff: 7d:05:55:fe:3d:8e:e8:2e:3e:64:db:cd:f1:8c:dc: 86:16:f0:b3:e4:73:03:a1:69:c8:d5:d8:d1:da:83: d1:e0:8a:59:d0:46:bd:ee:ba:97:30:26:53:4d:6f: ea:ab:28:2b:0b:52:b1:b7:1c:f1:54:59:f6:0e:93: 06:3c:37:27:22:47:50:88:79:19:87:32:f7:4b:b3: f7:81:41:f0:40:57:9e:2d:26:86:2d:f1:66:dc:00: 1d:40:eb:a8:50:f4:67:70:d0:1b:9d:92:98:61:57: f6:37:ea:c8:80:44:b5:90:32:1c:f3:9b:e6:cf:25: c4:e9:5d:94:23:77:1d:68:32:4e:99:98:9d:b1:37: e3:bd:fb:c1:44:55:83:3a:fb:ee:14:ce:05:e4:19: 6b:4f:15:2b:c0:00:0a:9c:e7:e2:0a:32:c2:7e:2f: e9:ea:de:1d:2d:83:bc:0a:d0:93:0c:8c:10:37:a6: 94:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:8E:E6:FF:5E:EA:C3:F5:07:07:72:ED:98:7A:4F:19:06:F3:CA:8E X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:89:97:3a:48:9b:ab:be:36:92:12:39:a2:63:67:08:b9:7d: 7e:a2:b9:c0:92:f4:a4:02:d5:5a:6c:91:fe:08:ed:b2:ed:0b: 36:39:8e:51:c6:5b:08:6b:67:d5:8f:65:f6:90:18:94:d0:ef: 8d:bf:23:51:f4:b2:13:d2:1f:63:1e:70:06:38:d0:17:d3:1c: 25:f3:99:9a:ff:9a:8d:50:37:b4:41:3d:e9:d0:55:c6:8b:d5: de:f4:cb:9a:60:ec:30:c7:8d:8f:29:02:73:e0:ad:7e:fc:48: 25:1a:30:31:9a:2d:19:c7:0e:df:9d:2b:b5:d7:4a:56:0d:b5: 49:ae:fd:dd:55:4b:b2:4b:49:4d:e1:ca:f7:9a:01:37:38:d2: e9:9a:17:6f:88:93:6c:3c:4d:51:25:57:16:ed:45:65:2c:eb: 2c:32:81:cc:47:e4:bb:b1:5d:e5:7f:76:a1:58:7c:5a:0e:e7: e9:be:e1:f1:67:87:b1:94:5c:7d:03:eb:78:b6:3b:c8:2f:43: 2d:2a:44:18:79:13:0f:89:65:7a:ce:d5:d5:06:0e:dd:59:79: a8:f6:73:d3:29:c6:2d:b7:96:52:19:99:50:b1:2f:63:96:d1: 7f:1c:10:bb:5f:a0:82:c1:a8:e5:1f:70:f9:d3:69:37:84:c1: d2:7e:ce:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjUxMTA1MDYwMjE0WhcNMjUxMTEyMDYwMjE0WjAYMRYwFAYD VQQDEw02OTBhZTg2Ni05ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5HD5nhfYXW86KjBDIbA1eRQlV6eIopZ8XO3Rs8TvVRdP/KpB6Kenb6tDwMB CGJqFfP/ldH7sUfEwSkHWHWWvwsOGtqmmdoBgv99BVX+PY7oLj5k283xjNyGFvCz 5HMDoWnI1djR2oPR4IpZ0Ea97rqXMCZTTW/qqygrC1KxtxzxVFn2DpMGPDcnIkdQ iHkZhzL3S7P3gUHwQFeeLSaGLfFm3AAdQOuoUPRncNAbnZKYYVf2N+rIgES1kDIc 85vmzyXE6V2UI3cdaDJOmZidsTfjvfvBRFWDOvvuFM4F5BlrTxUrwAAKnOfiCjLC fi/p6t4dLYO8CtCTDIwQN6aUNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaO5v9e 6sP1Bwdy7Zh6TxkG88qOMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAniZc6SJurvjaSEjmiY2cIuX1+ornAkvSkAtVabJH+CO2y7Qs2OY5R xlsIa2fVj2X2kBiU0O+NvyNR9LIT0h9jHnAGONAX0xwl85ma/5qNUDe0QT3p0FXG i9Xe9MuaYOwwx42PKQJz4K1+/EglGjAxmi0Zxw7fnSu110pWDbVJrv3dVUuyS0lN 4cr3mgE3ONLpmhdviJNsPE1RJVcW7UVlLOssMoHMR+S7sV3lf3ahWHxaDufpvuHx Z4exlFx9A+t4tjvIL0MtKkQYeRMPiWV6ztXVBg7dWXmo9nPTKcYtt5ZSGZlQsS9j ltF/HBC7X6CCwajlH3D502k3hMHSfs6F -----END CERTIFICATE-----Generated at Wed Nov 5 19:17:35 2025 by rpki-client