$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: dlSXTMFAZdCKjueAdXtD+QtUUloJuSCH9fZaRF952RI= Subject key identifier: 83:6A:18:1A:00:0B:89:18:F7:E2:37:E0:59:A0:1D:64:84:18:19:13 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 024C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0248 Signing time: Wed 05 Nov 2025 01:51:45 +0000 Manifest this update: Wed 05 Nov 2025 01:51:45 +0000 Manifest next update: Wed 12 Nov 2025 01:51:45 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: lqQNcsyjjDPNz48UD80glVXjj4wgCDGcaygQ2haDtVI=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: tO/Vg+1jM6TnaROUPSYxvRElxqw/2z5ZN8ZDcSK7tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Nov 5 01:51:45 2025 GMT Not After : Nov 12 01:51:45 2025 GMT Subject: CN=690aadb1-abc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:51:45:29:41:07:99:77:01:f6:94:c8:49:3e: de:b0:08:c7:c3:ad:7e:24:97:e7:52:3f:90:2c:d4: 55:d1:d1:89:d4:56:7b:0f:d7:98:2c:7d:28:9b:53: a8:0e:89:58:0c:ce:c5:47:a9:c5:7e:c9:04:15:b9: a4:b7:bb:50:9e:9f:1b:1a:c9:e8:5d:cc:5d:ed:ba: cc:51:6a:51:02:f9:7e:bf:d6:40:7b:07:a6:4b:51: 37:97:f4:76:53:ad:27:22:e6:f4:06:80:8e:8b:bd: 47:46:9e:de:a8:f9:46:89:57:fe:c3:10:30:28:43: b8:2a:a7:2d:c2:5f:dd:73:c1:20:b7:e4:18:a4:f3: 5d:4f:97:30:8c:35:f8:ab:b4:d9:c4:98:b4:b9:5f: 23:f9:de:ca:16:2f:34:ff:bc:5b:88:66:33:7e:e2: c6:5a:f9:b8:83:b7:0a:9f:6a:80:e3:59:19:78:11: b4:f6:62:fa:df:eb:41:f6:0d:e3:41:95:81:28:22: 7a:4d:3b:30:3f:f1:a6:94:4b:a9:01:bd:f0:d1:a9: e2:b5:49:e5:63:7a:de:cc:f8:ab:ec:fc:6f:c0:2e: ce:d2:ea:c4:e9:ce:05:17:48:d5:d1:c6:67:40:e9: ee:fa:93:de:01:be:02:11:fd:e4:62:a3:1b:18:39: 08:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6A:18:1A:00:0B:89:18:F7:E2:37:E0:59:A0:1D:64:84:18:19:13 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:99:52:0f:be:0d:e3:84:22:46:94:1c:54:48:e0:b2:87:48: 4b:84:01:b5:70:b6:51:a4:83:59:37:ca:9e:43:ef:a6:f5:35: c6:09:ac:ff:43:7a:55:d6:0f:d1:ab:8c:4d:2b:de:4c:2c:37: 81:e3:6a:7b:02:ef:4b:7d:ed:ab:e3:0e:2b:b4:78:eb:23:20: c9:41:ad:06:66:e3:83:80:75:98:1f:3e:5f:44:5f:78:d7:57: b2:98:fe:fa:2f:2c:10:54:77:14:db:85:36:dc:fb:5b:d6:26: d9:83:52:bc:76:c4:7a:43:d7:1d:e6:d3:aa:c4:1e:d1:39:7a: fb:e3:f2:cf:07:bd:ea:47:7b:38:3c:ac:58:53:06:d6:58:75: f6:ec:a0:91:db:e1:53:c6:8b:e0:09:e3:3d:5f:0f:89:bf:e2: 6d:48:41:a0:17:9b:a9:f0:bf:c2:4d:a5:29:8c:e2:27:c2:2b: 93:fe:dd:6c:59:d2:4b:a1:34:0f:6f:5f:8e:8a:03:cb:7b:4f: c8:5f:bd:09:01:9f:48:53:c8:4d:49:17:a6:b5:21:b5:a3:65: 9b:1f:06:1b:3b:59:b0:b7:19:02:19:50:a9:16:8f:09:ee:a6: ad:6b:59:53:17:9c:7b:82:10:c6:05:f0:e1:2d:22:2e:05:cb: f5:16:ec:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUxMTA1MDE1MTQ1WhcNMjUxMTEyMDE1MTQ1WjAYMRYwFAYD VQQDEw02OTBhYWRiMS1hYmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolFFKUEHmXcB9pTIST7esAjHw61+JJfnUj+QLNRV0dGJ1FZ7D9eYLH0om1Oo DolYDM7FR6nFfskEFbmkt7tQnp8bGsnoXcxd7brMUWpRAvl+v9ZAewemS1E3l/R2 U60nIub0BoCOi71HRp7eqPlGiVf+wxAwKEO4Kqctwl/dc8Egt+QYpPNdT5cwjDX4 q7TZxJi0uV8j+d7KFi80/7xbiGYzfuLGWvm4g7cKn2qA41kZeBG09mL63+tB9g3j QZWBKCJ6TTswP/GmlEupAb3w0anitUnlY3rezPir7PxvwC7O0urE6c4FF0jV0cZn QOnu+pPeAb4CEf3kYqMbGDkIlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINqGBoA C4kY9+I34FmgHWSEGBkTMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYmVIPvg3jhCJGlBxUSOCyh0hLhAG1cLZRpINZN8qeQ++m9TXGCaz/ Q3pV1g/Rq4xNK95MLDeB42p7Au9Lfe2r4w4rtHjrIyDJQa0GZuODgHWYHz5fRF94 11eymP76LywQVHcU24U23Ptb1ibZg1K8dsR6Q9cd5tOqxB7ROXr74/LPB73qR3s4 PKxYUwbWWHX27KCR2+FTxovgCeM9Xw+Jv+JtSEGgF5up8L/CTaUpjOInwiuT/t1s WdJLoTQPb1+OigPLe0/IX70JAZ9IU8hNSRemtSG1o2WbHwYbO1mwtxkCGVCpFo8J 7qata1lTF5x7ghDGBfDhLSIuBcv1FuwU -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:51 2025 by rpki-client