$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: m2jYk71cCg1w74DMfQ5VEbGIAt332zxqpcgzAzKHnyA= Subject key identifier: B8:F6:B2:E7:21:1C:83:AC:05:A1:7A:20:36:32:3A:6E:6A:90:BB:80 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 094E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 0947 Signing time: Sun 02 Nov 2025 20:08:16 +0000 Manifest this update: Sun 02 Nov 2025 20:08:16 +0000 Manifest next update: Sun 09 Nov 2025 20:08:16 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: VkARGiR77wQQ333D2unlZTTYU2hUHoN2+LpkTsflwWY=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2382 (0x94e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Nov 2 20:08:16 2025 GMT Not After : Nov 9 20:08:16 2025 GMT Subject: CN=6907ba30-afb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:66:10:2b:73:75:ee:c2:ba:d8:8d:59:bc: 4b:35:86:68:07:eb:f5:d9:ae:58:ed:d0:78:2f:ac: f9:cd:1d:59:39:7a:3e:44:dd:96:6f:bf:ef:d3:27: 8c:cd:52:6f:f4:8b:ce:ab:3b:0f:35:c4:5b:a8:c0: 42:03:28:0b:e0:a4:68:bf:79:85:57:77:95:da:aa: a3:33:f2:0e:9c:dc:f5:fb:00:d3:7e:bc:65:68:5c: 1e:c4:d8:97:4a:b4:56:40:50:36:fc:05:6f:7b:5b: 10:15:7b:4b:4a:23:11:32:df:4a:90:da:26:6d:41: 91:50:dc:8b:b5:d5:6b:a8:ff:0c:58:07:c5:94:31: f8:93:98:82:54:ea:f8:97:62:37:d9:1d:19:4a:d2: 2d:d1:2e:57:ad:37:b9:c0:b3:1f:50:3b:7a:03:56: 10:29:15:c8:a6:7f:2e:1c:3b:4c:9c:79:e5:01:60: 65:c8:db:6a:f1:fd:bc:8a:1f:e8:09:10:00:6e:12: 86:2d:84:a1:a1:6a:f9:d9:cc:bf:f6:a4:58:0c:cd: a9:01:b5:41:6f:08:55:d2:68:df:bd:be:d2:60:58: ae:ff:b5:04:fa:75:77:c8:a0:3b:91:a1:af:54:3e: 9a:f9:d6:1d:b4:52:76:ee:ac:84:66:b9:e3:79:ad: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F6:B2:E7:21:1C:83:AC:05:A1:7A:20:36:32:3A:6E:6A:90:BB:80 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:36:ae:43:9c:8f:55:91:3f:e1:ab:78:e1:9e:7c:61:61:5d: 5a:b7:41:7c:bb:cb:4c:37:8d:f1:96:19:02:72:89:6a:ca:a6: 71:91:ca:ef:ea:21:dd:d6:31:97:7d:c2:6f:82:b4:3c:76:5b: a5:82:dd:da:9d:e2:a7:d6:46:c2:41:fd:00:62:ae:af:e2:4f: 0d:ab:47:c8:c9:1f:17:8d:37:7f:ee:dc:34:ac:83:ea:d3:4d: 07:b8:3d:71:2a:08:73:3c:83:41:25:63:4c:bb:16:82:bf:84: 90:5c:16:9e:df:c5:c2:02:07:89:bd:89:01:ca:42:75:05:7c: ed:73:01:d9:16:03:d7:54:16:63:69:0a:85:64:ea:41:f4:ae: 6c:51:c0:b6:72:6c:65:25:77:0e:48:8b:12:13:87:f8:2b:b5: c5:a8:a3:90:a4:96:67:15:b1:79:f6:a5:61:e7:88:73:37:17: c5:0d:66:23:af:32:11:16:e9:46:1e:60:6a:de:3a:95:0e:a2: 73:a7:51:b1:b4:f1:23:3a:d3:96:86:59:08:3e:13:c9:4c:38: d2:2f:bf:ec:41:68:65:c6:7c:4b:39:09:9b:0e:9a:6c:02:fd: 09:4f:b1:3b:bd:2a:17:11:2d:e2:29:62:2f:de:7c:00:a0:ec: 7b:24:b7:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUxMTAyMjAwODE2WhcNMjUxMTA5MjAwODE2WjAYMRYwFAYD VQQDEw02OTA3YmEzMC1hZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZ1mECtzde7CutiNWbxLNYZoB+v12a5Y7dB4L6z5zR1ZOXo+RN2Wb7/v0yeM zVJv9IvOqzsPNcRbqMBCAygL4KRov3mFV3eV2qqjM/IOnNz1+wDTfrxlaFwexNiX SrRWQFA2/AVve1sQFXtLSiMRMt9KkNombUGRUNyLtdVrqP8MWAfFlDH4k5iCVOr4 l2I32R0ZStIt0S5XrTe5wLMfUDt6A1YQKRXIpn8uHDtMnHnlAWBlyNtq8f28ih/o CRAAbhKGLYShoWr52cy/9qRYDM2pAbVBbwhV0mjfvb7SYFiu/7UE+nV3yKA7kaGv VD6a+dYdtFJ27qyEZrnjea25oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLj2such HIOsBaF6IDYyOm5qkLuAMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDENq5DnI9VkT/hq3jhnnxhYV1at0F8u8tMN43xlhkCcolqyqZxkcrv 6iHd1jGXfcJvgrQ8dlulgt3aneKn1kbCQf0AYq6v4k8Nq0fIyR8XjTd/7tw0rIPq 000HuD1xKghzPINBJWNMuxaCv4SQXBae38XCAgeJvYkBykJ1BXztcwHZFgPXVBZj aQqFZOpB9K5sUcC2cmxlJXcOSIsSE4f4K7XFqKOQpJZnFbF59qVh54hzNxfFDWYj rzIRFulGHmBq3jqVDqJzp1GxtPEjOtOWhlkIPhPJTDjSL7/sQWhlxnxLOQmbDpps Av0JT7E7vSoXES3iKWIv3nwAoOx7JLfc -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:44 2025 by rpki-client