$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft File: -0q1qaTcN7vWXmHkKkJWz5UbjHM.mft (raw, json) Hash identifier: IFMv+QlYKcwcus8I+a/Zx/hnyZtrVKsfHbCxHRzktY0= Subject key identifier: F8:50:7A:CB:5A:FE:32:38:4F:B4:87:69:33:E6:64:B2:B1:2E:18:64 Authority key identifier: FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 Certificate issuer: /CN=A91AE567/serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Certificate serial: 0418 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft Manifest number: 040E Signing time: Wed 05 Nov 2025 00:31:41 +0000 Manifest this update: Wed 05 Nov 2025 00:31:40 +0000 Manifest next update: Wed 12 Nov 2025 00:31:40 +0000 Files and hashes: 1: -0q1qaTcN7vWXmHkKkJWz5UbjHM.crl (hash: IT7wnPdpMkqQ53GGZQJY1lyjFdJJiOpEoFF2ixYqGn4=) 2: B1B6929CCFD611ED8BEF6866C4F9AE02.roa (hash: 9DfUOxvFR13SpwnP9dE6JJ+qwtWuEZ4XB8tC3ndW1gI=) 3: C657777835BD11EEBBA15F71C4F9AE02.roa (hash: dBKzmRV5kLqxEgnT/9vEMvol4LmNVdPd79i3sVZVmJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE567, serialNumber=FB4AB5A9A4DC37BBD65E61E42A4256CF951B8C73 Validity Not Before: Nov 5 00:31:40 2025 GMT Not After : Nov 12 00:31:40 2025 GMT Subject: CN=690a9aec-32d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:55:5b:23:70:d6:0c:c8:9e:a7:26:3a:f7:08: 23:9f:84:fd:e3:19:94:66:3d:61:4f:c3:62:af:7b: 16:d5:de:96:28:0e:a0:dd:fa:f1:20:de:ba:9e:b4: 58:c6:9f:ae:81:db:16:c9:60:33:0f:d6:67:3d:f7: af:24:c5:0f:f6:31:c7:f5:db:51:01:34:74:f3:6d: 3e:b6:9d:53:21:71:7e:d1:3b:c8:de:57:61:06:ee: 75:6d:7d:d2:44:f9:dd:a9:49:f3:d2:94:c7:0f:78: 6c:c9:20:45:c6:77:15:ed:8a:b6:c1:5c:77:f9:47: 06:c9:1b:24:8f:e2:36:c9:7c:03:9f:02:cb:f7:c4: ff:9d:4b:d4:40:8b:dd:cc:ec:80:8a:9d:56:dd:7f: f6:cb:be:ec:aa:74:5d:f6:e5:a3:dd:79:9b:de:ba: ab:00:dd:21:a7:34:df:16:53:50:52:94:65:ec:73: 5a:0e:7b:ec:60:8f:d1:ac:61:07:f3:d6:cd:59:01: bd:22:1c:4a:ef:5a:5a:b7:0d:f6:3e:00:c5:87:77: b9:f3:9c:64:d9:cb:8f:5d:b0:d4:84:9a:52:ea:94: e3:b6:ac:7f:33:9c:86:f6:64:88:9f:81:6a:47:bb: 6e:aa:cf:dd:c0:d0:8a:bc:b8:15:44:1c:ba:a0:fc: 58:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:50:7A:CB:5A:FE:32:38:4F:B4:87:69:33:E6:64:B2:B1:2E:18:64 X509v3 Authority Key Identifier: keyid:FB:4A:B5:A9:A4:DC:37:BB:D6:5E:61:E4:2A:42:56:CF:95:1B:8C:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0q1qaTcN7vWXmHkKkJWz5UbjHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE567/E67994DE8FF411EC90472F7DC4F9AE02/-0q1qaTcN7vWXmHkKkJWz5UbjHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:36:df:61:1d:24:7f:f6:ba:bd:47:bf:1e:0e:99:31:e5:c9: 2b:37:2d:19:81:2b:53:1a:64:37:b6:43:cc:fb:dc:b6:65:98: b3:94:2e:d0:45:28:90:d8:33:f2:a6:e5:4f:c6:5c:48:79:65: 02:58:17:65:b2:a4:c7:75:45:5d:a4:58:35:be:e2:8e:0a:36: 86:a5:7a:04:e5:97:2a:54:d3:5f:4a:38:ee:db:4d:19:8d:17: b0:60:3b:8f:9d:f9:12:2b:f8:6e:b5:da:24:e5:fc:c3:4e:10: a8:21:a9:07:0f:08:bd:ba:df:65:55:88:63:66:3b:c5:82:79: 69:ce:63:b8:cb:9e:35:cb:73:57:2d:a8:d2:61:cb:5d:cf:c2: 0f:f8:26:32:34:c5:f2:ed:5d:2e:b5:aa:7a:d7:99:2f:a6:26: 63:65:05:2e:7e:35:1d:37:41:a1:7d:22:b9:54:ff:51:0e:cf: 95:9e:3b:71:ca:2c:32:02:71:4b:da:32:af:5e:41:0c:77:d7: 3f:fa:e9:c7:9b:7c:13:3c:d0:d1:96:01:24:1e:ed:c6:43:56: 43:06:f1:c2:3f:c4:2f:1f:5b:ef:0f:27:80:c8:e1:be:ef:69: 5e:a9:60:40:14:32:02:0c:44:19:6a:fe:e1:bb:74:ed:ae:c3: bc:31:74:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU1NjcxMTAvBgNVBAUTKEZCNEFCNUE5QTREQzM3QkJENjVFNjFFNDJBNDI1NkNG OTUxQjhDNzMwHhcNMjUxMTA1MDAzMTQwWhcNMjUxMTEyMDAzMTQwWjAYMRYwFAYD VQQDEw02OTBhOWFlYy0zMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulVbI3DWDMiepyY69wgjn4T94xmUZj1hT8Nir3sW1d6WKA6g3frxIN66nrRY xp+ugdsWyWAzD9ZnPfevJMUP9jHH9dtRATR0820+tp1TIXF+0TvI3ldhBu51bX3S RPndqUnz0pTHD3hsySBFxncV7Yq2wVx3+UcGyRskj+I2yXwDnwLL98T/nUvUQIvd zOyAip1W3X/2y77sqnRd9uWj3Xmb3rqrAN0hpzTfFlNQUpRl7HNaDnvsYI/RrGEH 89bNWQG9IhxK71patw32PgDFh3e585xk2cuPXbDUhJpS6pTjtqx/M5yG9mSIn4Fq R7tuqs/dwNCKvLgVRBy6oPxYVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhQesta /jI4T7SHaTPmZLKxLhhkMB8GA1UdIwQYMBaAFPtKtamk3De71l5h5CpCVs+VG4xz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTU2Ny9FNjc5OTRERThG RjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043dldYbUhrS2tKV3o1VWJq SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0wcTFxYVRjTjd2V1htSGtLa0pXejVVYmpITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTU2Ny9FNjc5OTRERThGRjQxMUVDOTA0NzJGN0RDNEY5QUUwMi8tMHExcWFUY043 dldYbUhrS2tKV3o1VWJqSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCINt9hHSR/9rq9R78eDpkx5ckrNy0ZgStTGmQ3tkPM+9y2ZZizlC7Q RSiQ2DPypuVPxlxIeWUCWBdlsqTHdUVdpFg1vuKOCjaGpXoE5ZcqVNNfSjju200Z jRewYDuPnfkSK/hutdok5fzDThCoIakHDwi9ut9lVYhjZjvFgnlpzmO4y541y3NX LajSYctdz8IP+CYyNMXy7V0utap615kvpiZjZQUufjUdN0GhfSK5VP9RDs+Vnjtx yiwyAnFL2jKvXkEMd9c/+unHm3wTPNDRlgEkHu3GQ1ZDBvHCP8QvH1vvDyeAyOG+ 72leqWBAFDICDEQZav7hu3TtrsO8MXTh -----END CERTIFICATE-----Generated at Wed Nov 5 23:48:24 2025 by rpki-client