$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: nl89QN9JVSpvSkK+wMdnz6dIOSShc/DDaWmKn8s0r5Q= Subject key identifier: 72:2E:78:9D:46:06:32:28:6B:BF:C1:DC:A1:E1:1E:A3:CC:12:60:37 Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 0594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 058A Signing time: Tue 04 Nov 2025 23:18:32 +0000 Manifest this update: Tue 04 Nov 2025 23:18:32 +0000 Manifest next update: Tue 11 Nov 2025 23:18:32 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: wVLVT1RSX3hD7GQn6cJu/J8QMJtK9jPLA283jtlLmRY=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: bYFWsdvkvj/YP0lWqT722iQHX6ldCjoCu3l/f+mKfk8=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: CWQZ2s8MFSjBmURLoXYowyPCs3y0c7wnZAfg2tROfa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Nov 4 23:18:32 2025 GMT Not After : Nov 11 23:18:32 2025 GMT Subject: CN=690a89c8-c926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:aa:f5:c8:b4:f2:af:7f:3e:51:50:58:2f:a5: f2:85:ab:93:e6:b1:32:dc:dd:01:5d:5e:f5:96:0b: f3:7b:fb:dd:53:bf:2f:63:f9:cc:d3:c2:06:7d:5b: cb:94:18:9a:40:46:8f:32:ab:aa:85:c9:bf:c5:71: 8e:77:59:dc:cf:b7:e6:eb:56:2d:3f:d6:b0:f9:35: 95:77:9d:a5:38:fc:a5:db:c0:cb:0c:b1:16:20:1e: 0d:6a:73:7f:df:6f:fc:e3:87:84:a0:f6:87:3e:33: e2:0c:c8:c3:0d:a6:d9:f7:7d:cc:24:f0:08:91:5e: 5a:ff:0a:ee:03:7b:09:95:bb:7b:27:ce:28:63:11: 28:c5:be:cb:7c:7e:a8:dc:93:dd:23:9c:81:9a:e4: 27:12:70:a7:bf:3e:2d:68:f3:95:12:2f:21:ac:e8: 04:74:fa:a0:6a:c5:4f:54:29:7d:34:93:b1:88:bf: 30:8a:cb:96:f8:a4:f6:de:b6:02:5c:98:c3:4a:2b: 3e:d8:1e:31:f5:89:d9:25:28:3f:25:0a:ac:95:e1: ef:36:1a:bb:6c:ed:70:2e:3a:42:17:50:83:13:43: e8:54:61:c2:d3:0e:48:32:49:a3:17:d5:32:23:1a: 9f:7f:ab:d2:81:c9:31:71:2f:a5:21:69:e9:17:65: 18:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2E:78:9D:46:06:32:28:6B:BF:C1:DC:A1:E1:1E:A3:CC:12:60:37 X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:61:2d:00:4f:7b:3c:e8:28:79:06:86:44:71:be:23:a8:b7: 5e:b0:57:69:73:2e:03:1b:6f:bb:bf:60:56:f6:0c:87:b0:58: 5d:82:62:23:cb:72:65:fc:83:88:37:a9:62:5d:c0:2a:a8:17: 3e:87:0c:e2:c0:9b:82:74:45:39:4b:ad:90:08:16:f2:a4:a0: ed:0f:c9:a8:ee:04:87:ee:3c:0b:fe:4f:53:fb:ec:10:09:4c: 81:ee:3f:17:2f:d2:e7:f7:19:50:59:87:57:b5:e1:38:01:c0: b7:ba:b1:03:6b:77:1f:c6:c8:c1:a4:99:25:58:c4:f2:f8:ba: ce:02:09:2c:2c:b7:a0:8c:99:d1:7c:bd:2d:f7:c5:e8:b9:8f: 12:0f:0a:74:0e:8c:2d:75:78:1c:f6:03:f9:db:10:dc:31:1b: 74:67:74:5f:dc:74:64:fc:9f:1d:cb:31:6d:e4:6e:34:f4:51: a6:99:67:0d:4a:2d:4e:3b:1d:20:25:ba:d7:7e:b7:79:be:08: a2:a5:b6:27:b5:46:a5:1a:08:ce:0e:5c:04:51:00:83:9e:4c: 1f:32:31:ad:9d:14:ee:7c:89:44:2f:56:c1:97:24:04:bc:15: 15:96:da:7d:f4:02:28:5f:61:b0:e7:79:1b:69:c1:46:9f:c2: 31:58:50:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUxMTA0MjMxODMyWhcNMjUxMTExMjMxODMyWjAYMRYwFAYD VQQDEw02OTBhODljOC1jOTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qr1yLTyr38+UVBYL6XyhauT5rEy3N0BXV71lgvze/vdU78vY/nM08IGfVvL lBiaQEaPMquqhcm/xXGOd1ncz7fm61YtP9aw+TWVd52lOPyl28DLDLEWIB4NanN/ 32/844eEoPaHPjPiDMjDDabZ933MJPAIkV5a/wruA3sJlbt7J84oYxEoxb7LfH6o 3JPdI5yBmuQnEnCnvz4taPOVEi8hrOgEdPqgasVPVCl9NJOxiL8wisuW+KT23rYC XJjDSis+2B4x9YnZJSg/JQqsleHvNhq7bO1wLjpCF1CDE0PoVGHC0w5IMkmjF9Uy Ixqff6vSgckxcS+lIWnpF2UYoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIueJ1G BjIoa7/B3KHhHqPMEmA3MB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrYS0AT3s86Ch5BoZEcb4jqLdesFdpcy4DG2+7v2BW9gyHsFhdgmIj y3Jl/IOIN6liXcAqqBc+hwziwJuCdEU5S62QCBbypKDtD8mo7gSH7jwL/k9T++wQ CUyB7j8XL9Ln9xlQWYdXteE4AcC3urEDa3cfxsjBpJklWMTy+LrOAgksLLegjJnR fL0t98XouY8SDwp0DowtdXgc9gP52xDcMRt0Z3Rf3HRk/J8dyzFt5G409FGmmWcN Si1OOx0gJbrXfrd5vgiipbYntUalGgjODlwEUQCDnkwfMjGtnRTufIlEL1bBlyQE vBUVltp99AIoX2Gw53kbacFGn8IxWFD6 -----END CERTIFICATE-----Generated at Wed Nov 5 10:59:35 2025 by rpki-client