$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: cIvv0Q3CFFFGnP13nFkHdacq/XM7qvdyIZr6jLTp+qA= Subject key identifier: 3D:53:FE:E9:2F:0F:F5:FD:D9:46:0C:D1:C4:F1:F2:0B:57:0D:BE:A7 Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 34D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 34D6 Signing time: Tue 04 Nov 2025 15:08:40 +0000 Manifest this update: Tue 04 Nov 2025 15:08:40 +0000 Manifest next update: Tue 11 Nov 2025 15:08:40 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: JBeu1RLgmTbrbjhZfwVTFbXnPFsvK75jm/qrZlU1y+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Nov 4 15:08:40 2025 GMT Not After : Nov 11 15:08:40 2025 GMT Subject: CN=690a16f8-1ec5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:bf:d6:dd:5a:a4:86:15:67:c6:50:b7:d5:11: 9a:fd:ee:72:45:ab:5f:9f:eb:9c:5a:ee:b9:b5:13: 79:92:6a:92:8e:ff:47:5c:cf:bd:b1:3f:d6:fb:de: 4d:90:0a:4e:c4:9e:bd:51:e7:f7:bb:29:18:51:dd: 66:96:8a:94:41:c5:76:ca:ee:a9:6c:7f:4f:bf:fe: 7c:40:be:2b:30:22:b8:29:22:f2:2b:31:7e:3f:58: 04:c1:60:50:32:a5:c7:e0:35:e9:f6:19:44:b3:1d: 61:d6:82:41:c3:5b:76:26:cc:fa:47:f1:65:69:f3: 9b:3e:a4:ba:b5:26:ae:b5:0c:9d:3c:3f:e0:a0:a4: 0c:49:bf:2b:2c:50:99:88:3d:de:39:6b:26:3d:88: 35:09:80:ad:2a:76:a7:23:9a:33:68:07:12:dc:39: 92:8e:17:cb:56:7a:8c:05:2b:93:b0:99:f6:df:31: 8d:03:6c:16:c1:cc:90:2f:c2:0a:e3:6c:59:b5:3b: 4f:57:92:13:59:ba:2b:9c:1b:bc:03:65:7d:41:ef: 17:94:cd:51:56:07:ad:fa:14:81:8c:88:e6:eb:19: b7:cf:1b:71:e8:4c:11:3f:7a:47:a0:8b:53:90:df: bd:5d:e0:0a:47:c5:78:77:49:9c:7a:57:2c:d9:c7: ef:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:53:FE:E9:2F:0F:F5:FD:D9:46:0C:D1:C4:F1:F2:0B:57:0D:BE:A7 X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:99:be:37:f8:ac:40:1d:e7:7d:2f:c3:06:99:e6:42:40:2e: 67:e4:13:a1:5c:02:be:82:d1:81:1d:dc:23:46:30:7c:b0:bf: 0d:df:bd:cd:db:67:53:70:b5:b9:4b:9d:47:7c:d2:f7:b9:62: 12:49:c9:57:36:67:3c:0c:0f:a4:c9:99:72:3b:d6:d4:35:32: 9e:e0:b7:41:f8:79:d5:63:15:c3:1d:36:b9:ec:87:da:d7:07: 3d:e8:06:72:94:df:3d:fa:b3:1d:12:66:3d:be:99:d9:cd:28: 19:b9:8e:aa:6f:ca:4d:e0:67:24:b2:ba:cc:ae:c8:17:b7:c6: ed:c5:97:ad:19:41:95:b6:56:22:be:d1:53:3a:7f:74:06:6f: bb:33:36:f2:6a:ac:f2:94:43:2d:00:d6:40:a2:4c:50:ca:4b: 5b:29:6f:64:5f:de:77:56:89:68:88:9d:91:e2:16:ed:17:68: 9c:21:d4:20:5c:b3:af:0d:07:be:b0:a0:e9:1d:b4:aa:2c:a6: 9b:7a:7f:a4:48:11:6a:fc:8a:78:3c:c0:0d:cf:c9:6c:ce:35: c4:ba:56:9f:76:97:c5:46:19:21:8a:71:5b:7a:3b:de:d4:f5: d0:72:3b:19:c5:2e:a0:03:e3:65:f9:99:f1:8b:7e:aa:54:38: f3:48:61:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUxMTA0MTUwODQwWhcNMjUxMTExMTUwODQwWjAYMRYwFAYD VQQDEw02OTBhMTZmOC0xZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+L/W3VqkhhVnxlC31RGa/e5yRatfn+ucWu65tRN5kmqSjv9HXM+9sT/W+95N kApOxJ69Uef3uykYUd1mloqUQcV2yu6pbH9Pv/58QL4rMCK4KSLyKzF+P1gEwWBQ MqXH4DXp9hlEsx1h1oJBw1t2Jsz6R/FlafObPqS6tSautQydPD/goKQMSb8rLFCZ iD3eOWsmPYg1CYCtKnanI5ozaAcS3DmSjhfLVnqMBSuTsJn23zGNA2wWwcyQL8IK 42xZtTtPV5ITWbornBu8A2V9Qe8XlM1RVget+hSBjIjm6xm3zxtx6EwRP3pHoItT kN+9XeAKR8V4d0mcelcs2cfvpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1T/ukv D/X92UYM0cTx8gtXDb6nMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRmb43+KxAHed9L8MGmeZCQC5n5BOhXAK+gtGBHdwjRjB8sL8N373N 22dTcLW5S51HfNL3uWISSclXNmc8DA+kyZlyO9bUNTKe4LdB+HnVYxXDHTa57Ifa 1wc96AZylN89+rMdEmY9vpnZzSgZuY6qb8pN4GcksrrMrsgXt8btxZetGUGVtlYi vtFTOn90Bm+7MzbyaqzylEMtANZAokxQyktbKW9kX953VoloiJ2R4hbtF2icIdQg XLOvDQe+sKDpHbSqLKaben+kSBFq/Ip4PMANz8lszjXEulafdpfFRhkhinFbejve 1PXQcjsZxS6gA+Nl+Znxi36qVDjzSGHa -----END CERTIFICATE-----Generated at Wed Nov 5 06:22:27 2025 by rpki-client