$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: +iC8u2VLxw0Z7yQev2ulVGCMcnRg2hzHzMsN03KgKbs= Subject key identifier: 19:81:D8:47:BF:CE:46:83:37:7B:CD:E3:84:CA:E2:94:F2:EE:CC:42 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 06A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 06A0 Signing time: Sun 02 Nov 2025 22:18:16 +0000 Manifest this update: Sun 02 Nov 2025 22:18:16 +0000 Manifest next update: Sun 09 Nov 2025 22:18:16 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: bz8pWj87HjsP1PlOlkBEB7SyTtlIY7HEUVcQIhwM4Z8=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: tNq0wofO9dQz+k+RyZIdbIOpj1vNXpBAnuEbiTZO6hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1703 (0x6a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Nov 2 22:18:16 2025 GMT Not After : Nov 9 22:18:16 2025 GMT Subject: CN=6907d8a8-e078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:0b:6a:96:a5:8b:1b:77:15:32:d1:30:f0: d1:8a:ca:e2:b3:28:8c:73:67:2f:94:6e:6b:89:b2: b9:b2:79:c6:01:81:9b:73:9f:61:e8:d1:81:f1:93: 4c:d2:25:8b:bd:12:0c:56:e5:0f:09:98:b3:a3:81: d6:4a:ed:a8:32:15:34:d1:9c:bd:52:79:55:2e:80: f1:71:63:08:4e:3b:d6:30:50:3d:7a:f3:af:14:f4: 25:f4:f4:4d:ab:1b:f1:2f:7a:22:c4:18:55:76:a0: 74:f0:dc:f8:94:2d:8c:36:69:9c:8d:19:17:38:01: 03:89:67:b2:92:c0:b7:89:64:cf:47:81:28:db:ea: 6c:a1:09:0b:eb:55:aa:45:99:ed:64:db:b9:8d:e0: b2:60:bd:7a:d2:0d:50:98:d6:88:59:74:c9:18:3b: 41:dd:cf:21:03:f5:65:6f:d0:9e:85:94:48:1a:af: ae:22:56:cf:df:fb:6e:33:b9:63:ca:e9:b9:ab:1e: 09:ef:cb:52:aa:96:bb:b7:37:06:6c:95:47:a5:4d: e3:48:d8:a1:88:e5:e8:bf:15:39:62:57:6d:56:fd: ca:24:77:ae:71:07:73:49:c8:28:3a:a8:1a:12:2e: 57:7d:c8:11:67:bb:cb:27:65:9e:89:db:c7:ea:a9: 9d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:81:D8:47:BF:CE:46:83:37:7B:CD:E3:84:CA:E2:94:F2:EE:CC:42 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c7:e5:9a:40:73:12:c4:74:d0:af:e8:6e:73:10:03:39:f9: 44:89:5a:b4:42:44:ab:cf:a3:b9:bd:61:f3:f4:f9:fe:12:a3: 5b:1e:2b:05:5d:a8:39:96:37:8a:58:c5:04:a1:c9:54:18:d1: ff:db:41:fb:a7:14:ca:1a:65:35:68:57:42:63:a7:d0:03:18: b2:66:3b:7b:78:c5:fe:be:21:fe:89:59:e3:57:bf:c7:ec:47: 78:8b:69:09:14:af:19:9e:bd:78:0a:60:aa:2b:14:e1:76:c6: ec:9d:b7:13:13:6a:86:6b:7f:ea:d5:2c:0d:3c:a4:c6:39:75: aa:99:59:75:df:e8:bc:ee:a8:23:a2:8d:8a:91:c4:95:f2:14: 68:e1:9e:6b:61:3c:ff:33:e7:da:14:f4:b5:17:71:a6:65:b6: b9:be:d2:e5:20:f8:b0:c1:c1:6d:1c:0d:93:98:c1:d2:89:84: 09:26:b7:00:be:b7:75:77:36:16:6c:5a:57:a3:2a:e9:f4:63: 6a:c0:15:ff:b2:54:dd:37:50:ad:46:24:01:0d:2b:2f:e3:7b: a1:2b:31:27:40:8b:b1:12:19:71:31:fb:18:e9:25:a1:7f:42: fe:99:29:8a:95:5b:5f:df:5b:ae:8d:f2:4b:c0:8c:73:df:05: 55:f9:7e:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUxMTAyMjIxODE2WhcNMjUxMTA5MjIxODE2WjAYMRYwFAYD VQQDEw02OTA3ZDhhOC1lMDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk8Lapalixt3FTLRMPDRisrisyiMc2cvlG5ribK5snnGAYGbc59h6NGB8ZNM 0iWLvRIMVuUPCZizo4HWSu2oMhU00Zy9UnlVLoDxcWMITjvWMFA9evOvFPQl9PRN qxvxL3oixBhVdqB08Nz4lC2MNmmcjRkXOAEDiWeyksC3iWTPR4Eo2+psoQkL61Wq RZntZNu5jeCyYL160g1QmNaIWXTJGDtB3c8hA/Vlb9CehZRIGq+uIlbP3/tuM7lj yum5qx4J78tSqpa7tzcGbJVHpU3jSNihiOXovxU5YldtVv3KJHeucQdzScgoOqga Ei5XfcgRZ7vLJ2WeidvH6qmdFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmB2Ee/ zkaDN3vN44TK4pTy7sxCMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBx+WaQHMSxHTQr+hucxADOflEiVq0QkSrz6O5vWHz9Pn+EqNbHisF Xag5ljeKWMUEoclUGNH/20H7pxTKGmU1aFdCY6fQAxiyZjt7eMX+viH+iVnjV7/H 7Ed4i2kJFK8Znr14CmCqKxThdsbsnbcTE2qGa3/q1SwNPKTGOXWqmVl13+i87qgj oo2KkcSV8hRo4Z5rYTz/M+faFPS1F3GmZba5vtLlIPiwwcFtHA2TmMHSiYQJJrcA vrd1dzYWbFpXoyrp9GNqwBX/slTdN1CtRiQBDSsv43uhKzEnQIuxEhlxMfsY6SWh f0L+mSmKlVtf31uujfJLwIxz3wVV+X4F -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:15 2025 by rpki-client