$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft File: 83-esXYeax0_fqbWxvyluZc5FKs.mft (raw, json) Hash identifier: EZhwJ0/qM9qTakXycootxTZBvvQJB7agzzIiadqcV6w= Subject key identifier: 63:2E:F0:A3:8B:B5:61:B2:F8:F2:FD:4F:EB:05:1B:03:C5:B9:B2:B0 Authority key identifier: F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB Certificate issuer: /CN=A91B8FA2/serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Certificate serial: 0475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft Manifest number: 0470 Signing time: Wed 05 Nov 2025 00:14:21 +0000 Manifest this update: Wed 05 Nov 2025 00:14:20 +0000 Manifest next update: Wed 12 Nov 2025 00:14:20 +0000 Files and hashes: 1: 83-esXYeax0_fqbWxvyluZc5FKs.crl (hash: 71UPLIpgY0dfbpX34p9fWIOHpV3hJ3NFos0LCoomxwQ=) 2: FEDE0F2066C611EC93A73A3DC4F9AE02.roa (hash: OrbaAoDN+OT8Q5oOwIoJmcxxZsgOvnH47cr4vwyZT3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1141 (0x475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8FA2, serialNumber=F37F9EB1761E6B1D3F7EA6D6C6FCA5B9973914AB Validity Not Before: Nov 5 00:14:20 2025 GMT Not After : Nov 12 00:14:20 2025 GMT Subject: CN=690a96dc-421b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7c:fd:63:29:69:27:98:47:c7:30:3a:7c:54: ee:f9:74:e2:cf:7b:7f:78:8c:c4:7d:17:3a:ae:63: 67:36:f4:c9:38:e7:fc:33:20:0b:7b:f5:79:b7:9c: 34:14:48:2a:16:92:fa:36:c1:f7:5f:94:42:a7:85: ab:0f:71:ee:4b:9a:56:f2:ac:e3:d8:41:98:64:e2: 78:0d:d5:b9:45:57:94:e8:a0:ec:2c:c3:02:39:3e: 42:d5:dc:8c:54:03:06:e8:92:93:d9:e2:85:d7:68: a7:18:3a:b2:69:30:6b:18:92:0d:6b:b9:22:27:fe: 4c:58:a2:25:0e:ec:53:a7:1b:e4:6b:e4:31:5f:5d: be:52:5a:73:2b:d2:14:72:85:ae:45:d7:84:b0:d5: 4e:d5:9f:e5:13:97:31:a3:cf:58:34:02:da:93:f5: a1:e7:55:df:4c:b9:08:06:f0:40:67:bf:c1:06:31: ec:c1:9a:a4:b8:f1:37:0f:aa:63:49:62:57:96:13: e1:a5:3d:4e:45:02:51:3b:5e:f5:56:56:bc:75:55: 43:ff:05:ac:03:cd:7e:1d:1c:13:f8:cf:f2:00:bc: fb:33:82:57:76:b4:99:4c:47:f6:93:03:0b:be:e0: 49:21:2a:29:96:8a:c9:79:e4:ea:81:06:0f:fd:02: 6b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2E:F0:A3:8B:B5:61:B2:F8:F2:FD:4F:EB:05:1B:03:C5:B9:B2:B0 X509v3 Authority Key Identifier: keyid:F3:7F:9E:B1:76:1E:6B:1D:3F:7E:A6:D6:C6:FC:A5:B9:97:39:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83-esXYeax0_fqbWxvyluZc5FKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8FA2/91B7DF4C66C211ECB55A9F31C4F9AE02/83-esXYeax0_fqbWxvyluZc5FKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:bd:d6:ce:9d:78:37:71:72:91:78:4c:a2:e6:94:b8:b4:ad: dc:68:66:ac:78:48:0f:4e:ef:cc:2e:9e:12:77:be:9e:e5:22: cf:ea:cc:c5:4b:79:7c:72:02:3a:6c:8f:61:6f:95:40:87:be: a5:3f:f2:bf:6e:46:ad:c1:3f:f0:7e:d5:35:50:0c:18:a7:4d: 69:5e:2d:d7:71:af:79:8f:73:06:c2:9b:ee:dc:53:28:f0:2e: 84:96:3e:89:b4:95:ec:5d:d3:34:d5:03:cc:0e:cb:19:f6:74: 88:49:94:22:04:74:6f:d8:c9:6e:e2:fc:bb:e7:da:74:e1:e2: 48:d3:94:fc:0f:00:ec:07:a5:b3:22:5f:87:ca:50:9c:3d:7a: af:af:3e:66:e7:65:8a:c4:80:b1:e8:b5:2c:9a:ef:41:9f:7d: c3:bd:20:13:ef:6c:3c:47:ea:aa:62:73:2a:6f:e6:26:91:98: 22:40:76:fd:3e:d4:8e:2a:5c:0e:b6:9e:c9:af:fb:41:b3:f9: 9a:ba:16:c7:25:9e:12:86:a1:47:1c:1c:f2:9b:49:f3:2d:76: 89:c1:d4:6f:06:4f:ee:d4:8f:38:2c:0d:2d:2f:a1:e6:44:cb: 5b:2e:87:c6:70:ad:cb:a3:83:ca:8b:d8:b9:a5:fb:5a:78:56: be:b3:9e:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhGQTIxMTAvBgNVBAUTKEYzN0Y5RUIxNzYxRTZCMUQzRjdFQTZENkM2RkNBNUI5 OTczOTE0QUIwHhcNMjUxMTA1MDAxNDIwWhcNMjUxMTEyMDAxNDIwWjAYMRYwFAYD VQQDEw02OTBhOTZkYy00MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXz9YylpJ5hHxzA6fFTu+XTiz3t/eIzEfRc6rmNnNvTJOOf8MyALe/V5t5w0 FEgqFpL6NsH3X5RCp4WrD3HuS5pW8qzj2EGYZOJ4DdW5RVeU6KDsLMMCOT5C1dyM VAMG6JKT2eKF12inGDqyaTBrGJINa7kiJ/5MWKIlDuxTpxvka+QxX12+UlpzK9IU coWuRdeEsNVO1Z/lE5cxo89YNALak/Wh51XfTLkIBvBAZ7/BBjHswZqkuPE3D6pj SWJXlhPhpT1ORQJRO171Vla8dVVD/wWsA81+HRwT+M/yALz7M4JXdrSZTEf2kwML vuBJISoplorJeeTqgQYP/QJrjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMu8KOL tWGy+PL9T+sFGwPFubKwMB8GA1UdIwQYMBaAFPN/nrF2HmsdP36m1sb8pbmXORSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEZBMi85MUI3REY0QzY2 QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4MF9mcWJXeHZ5bHVaYzVG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzLWVzWFllYXgwX2ZxYld4dnlsdVpjNUZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEZBMi85MUI3REY0QzY2QzIxMUVDQjU1QTlGMzFDNEY5QUUwMi84My1lc1hZZWF4 MF9mcWJXeHZ5bHVaYzVGS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBevdbOnXg3cXKReEyi5pS4tK3caGaseEgPTu/MLp4Sd76e5SLP6szF S3l8cgI6bI9hb5VAh76lP/K/bkatwT/wftU1UAwYp01pXi3Xca95j3MGwpvu3FMo 8C6Elj6JtJXsXdM01QPMDssZ9nSISZQiBHRv2Mlu4vy759p04eJI05T8DwDsB6Wz Il+HylCcPXqvrz5m52WKxICx6LUsmu9Bn33DvSAT72w8R+qqYnMqb+YmkZgiQHb9 PtSOKlwOtp7Jr/tBs/mauhbHJZ4ShqFHHBzym0nzLXaJwdRvBk/u1I84LA0tL6Hm RMtbLofGcK3Lo4PKi9i5pftaeFa+s543 -----END CERTIFICATE-----Generated at Thu Nov 6 00:32:44 2025 by rpki-client