$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: lEwqOC21x5sDZHW63SgHJ0Ut8LmopCCkUGHtesxlpp8= Subject key identifier: 02:C7:79:D2:74:02:53:6E:2E:3D:67:F6:BB:2D:B3:71:BB:00:20:3B Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 023B Signing time: Wed 05 Nov 2025 01:57:35 +0000 Manifest this update: Wed 05 Nov 2025 01:57:35 +0000 Manifest next update: Wed 12 Nov 2025 01:57:35 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: StkTPVUI5OJeqUzlhb2QI5UU9a3MTmI0GN+QHvUFMF8=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ih5APdD+Nurby0NtdsRTrQ51xACa7dPtth9SlQyC+ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Nov 5 01:57:35 2025 GMT Not After : Nov 12 01:57:35 2025 GMT Subject: CN=690aaf0f-a76d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:14:64:f8:a3:06:c5:0f:81:b1:df:46:e8:c4: 8d:83:e1:1c:b9:be:a6:96:72:ac:c9:55:10:e2:33: 61:66:46:52:7a:7d:eb:30:bf:e3:ed:09:ce:75:ef: d0:36:62:76:d0:d4:17:56:54:24:0b:68:4b:9d:0a: df:6e:2d:5a:89:f0:d3:f7:1a:c3:11:7c:46:9b:8d: 83:61:ac:c6:74:08:e2:85:31:63:5a:1a:fe:f5:21: 14:37:a1:46:0d:eb:51:f1:8d:f2:b4:be:fa:f1:f9: 55:e3:46:55:06:d4:b5:61:31:06:b9:a4:85:80:17: d8:5a:58:c6:30:66:ff:02:b2:3c:05:65:57:64:27: c2:41:e9:69:80:ca:18:1d:81:66:9c:f7:80:db:ff: dc:85:cc:9f:9b:13:8d:fd:bf:71:32:2d:19:c5:04: b7:10:08:af:da:70:01:c4:d3:ec:1b:bc:62:66:33: 91:f1:ec:96:cc:1d:49:59:e2:25:c4:aa:a6:ca:a4: fb:b0:39:78:c4:44:0a:76:f7:ed:f9:a8:59:98:d1: c6:5c:fb:84:04:03:2d:63:2b:35:b9:8d:80:3f:8f: 9f:71:fa:ee:99:d4:83:f7:ac:d5:6a:4f:52:a9:d4: 5a:f8:7a:47:d9:e1:e6:d7:41:3c:3f:1c:d0:9a:9c: 36:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C7:79:D2:74:02:53:6E:2E:3D:67:F6:BB:2D:B3:71:BB:00:20:3B X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f5:41:fb:1c:0c:1b:8c:6c:d8:18:71:64:c3:f1:d6:52:7d: 42:99:48:a3:53:e0:fe:35:84:ce:9b:d0:37:1e:b4:ee:28:2e: 26:76:e3:1b:17:ea:75:b2:68:84:f9:c0:40:72:a8:9d:60:ed: 06:7b:40:95:25:b9:19:18:75:d3:81:1b:fe:1f:81:cd:42:94: f0:51:8e:5f:3a:7a:cd:74:27:64:63:b1:9a:84:c3:c0:a3:c4: 00:57:f6:dc:68:97:dc:da:41:49:b7:94:24:b0:e4:f2:e7:85: a6:27:ad:28:93:1b:ce:77:f9:da:45:0b:70:64:8c:3a:fa:f7: 1d:20:33:f1:0a:fa:01:7e:4d:ff:da:51:1c:bc:b2:be:28:3f: 7b:bb:0a:8d:3e:eb:2b:2a:17:5e:85:a5:d8:1a:20:0f:02:a9: 4b:cc:b7:e4:28:d9:c5:af:ff:c9:44:55:1b:a9:24:5e:e1:7f: 44:1e:fa:08:6b:a2:30:8d:36:84:66:fa:f5:09:a1:2c:7b:6b: e8:fe:56:17:ce:c8:f5:c9:d8:76:79:a2:7f:dc:26:bd:0e:38: 28:d4:bc:10:1f:6b:c9:7c:7d:f8:6b:c9:a9:9a:e1:09:63:d5: 94:15:89:cb:55:a3:01:15:36:be:20:08:35:cc:e4:4f:ec:25: 93:cf:4c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUxMTA1MDE1NzM1WhcNMjUxMTEyMDE1NzM1WjAYMRYwFAYD VQQDEw02OTBhYWYwZi1hNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRRk+KMGxQ+Bsd9G6MSNg+Ecub6mlnKsyVUQ4jNhZkZSen3rML/j7QnOde/Q NmJ20NQXVlQkC2hLnQrfbi1aifDT9xrDEXxGm42DYazGdAjihTFjWhr+9SEUN6FG DetR8Y3ytL768flV40ZVBtS1YTEGuaSFgBfYWljGMGb/ArI8BWVXZCfCQelpgMoY HYFmnPeA2//chcyfmxON/b9xMi0ZxQS3EAiv2nABxNPsG7xiZjOR8eyWzB1JWeIl xKqmyqT7sDl4xEQKdvft+ahZmNHGXPuEBAMtYys1uY2AP4+fcfrumdSD96zVak9S qdRa+HpH2eHm10E8PxzQmpw28QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALHedJ0 AlNuLj1n9rsts3G7ACA7MB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+9UH7HAwbjGzYGHFkw/HWUn1CmUijU+D+NYTOm9A3HrTuKC4mduMb F+p1smiE+cBAcqidYO0Ge0CVJbkZGHXTgRv+H4HNQpTwUY5fOnrNdCdkY7GahMPA o8QAV/bcaJfc2kFJt5QksOTy54WmJ60okxvOd/naRQtwZIw6+vcdIDPxCvoBfk3/ 2lEcvLK+KD97uwqNPusrKhdehaXYGiAPAqlLzLfkKNnFr//JRFUbqSRe4X9EHvoI a6IwjTaEZvr1CaEse2vo/lYXzsj1ydh2eaJ/3Ca9Djgo1LwQH2vJfH34a8mpmuEJ Y9WUFYnLVaMBFTa+IAg1zORP7CWTz0zV -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:15 2025 by rpki-client