$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft File: f5auCiLKk4vV-dmnMor1g2LrIsE.mft (raw, json) Hash identifier: Wmk56bme1Mv+GwYFlWn5ESonEjuj1FTjWZzvkgAMjrQ= Subject key identifier: 91:39:C0:ED:A4:BB:7F:69:57:7E:FF:F9:C7:78:3E:62:03:82:2F:B3 Authority key identifier: 7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 Certificate issuer: /CN=A91BFFBE/serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft Manifest number: B8 Signing time: Mon 03 Nov 2025 05:59:03 +0000 Manifest this update: Mon 03 Nov 2025 05:59:02 +0000 Manifest next update: Mon 10 Nov 2025 05:59:02 +0000 Files and hashes: 1: f5auCiLKk4vV-dmnMor1g2LrIsE.crl (hash: hHPUBH/kfMpMIJ9UAIrEu551MQ3OJSVZJ4r7qMQdx6c=) 2: 4450DA2C9D0311EF877CD229C4F9AE02.roa (hash: buSMZTKEc3PdwiMwBtG/n0gmpQCMqdjfMf4AjKQfjyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFFBE, serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Validity Not Before: Nov 3 05:59:02 2025 GMT Not After : Nov 10 05:59:02 2025 GMT Subject: CN=690844a7-6faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:23:5a:3d:31:36:29:d5:b0:1c:1b:ba:07:02: c4:5e:f0:30:80:0b:3c:50:dc:93:f1:4f:86:c6:35: 0e:21:49:8a:dd:5e:ad:7f:ee:6b:02:7a:6f:c8:ed: 74:ed:e2:ab:e8:1e:90:2f:0c:3c:79:d0:55:81:e5: 35:d8:b7:78:2f:f5:12:2c:5e:57:6f:f3:9a:e1:67: e8:7c:a1:41:43:d9:b3:1b:8e:b7:63:f2:7d:70:ee: 3d:42:0f:70:58:f1:94:7c:fe:71:5f:67:3b:df:8a: 32:a1:44:d1:b0:d8:50:5b:bd:93:3e:bf:83:08:60: 44:65:bb:35:b9:82:1c:c1:e9:60:08:a4:c5:49:c3: a6:d8:e7:ed:3e:19:01:66:b9:0e:11:24:fd:85:f9: 60:7b:d7:c1:7d:9f:4e:d8:95:17:a4:1b:2b:9a:d4: 2b:de:30:61:d9:2c:00:b5:04:6f:0b:5c:83:08:c3: 41:89:cc:8d:11:46:bf:aa:93:d2:23:2b:5a:84:09: 3b:87:a3:0a:e1:44:a6:53:16:d9:29:40:36:c0:4c: 05:3c:7a:a0:39:a8:ae:1a:38:fb:83:81:ed:15:ac: dc:f4:e7:fe:a9:f1:8a:d8:4b:18:e9:19:5a:27:08: ed:0f:34:61:2d:f6:29:c3:60:89:0a:42:43:37:c7: 3b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:39:C0:ED:A4:BB:7F:69:57:7E:FF:F9:C7:78:3E:62:03:82:2F:B3 X509v3 Authority Key Identifier: keyid:7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:0b:f4:c8:c5:f5:e1:5c:6f:2e:fe:9a:75:22:c7:52:b5:89: b3:7f:64:28:f5:37:28:1c:ec:96:b4:a5:c1:6b:41:40:93:83: e3:a8:78:34:74:be:43:fb:b5:9c:01:ab:02:e8:45:79:a1:ed: 01:f5:b8:7c:64:fa:47:a4:8b:85:39:eb:10:9e:e6:f9:c7:f8: 03:dc:89:35:4b:f8:f6:a8:27:1c:97:9f:9f:13:36:f7:e4:8a: 90:c0:38:ff:21:e2:50:bd:ae:b2:5e:44:98:03:5b:02:42:23: 04:e1:f6:16:55:4a:91:d7:e0:77:38:67:bd:36:3e:d1:11:31: 09:cc:bc:64:b6:59:9b:23:06:5b:00:c9:9c:bd:2a:54:db:da: 9c:54:f3:62:a8:03:bc:61:20:d7:c3:5e:88:df:33:06:02:e3: fd:cd:71:d1:d6:56:a3:1c:d6:d0:5a:0a:02:96:8e:64:de:0c: 26:32:d9:e3:6b:8b:77:7f:43:fc:a1:15:f9:0e:82:f4:f1:32: d5:fd:bc:8e:8b:d3:38:24:2d:4e:68:0b:d6:36:47:74:b6:01: 0a:0b:e2:47:b0:4d:ea:64:2d:d1:b1:39:9e:12:e5:0e:52:43: a4:ca:c3:0e:f9:37:79:47:28:bb:d4:a4:8f:ba:a1:ca:1e:d9: 6c:42:38:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZGQkUxMTAvBgNVBAUTKDdGOTZBRTBBMjJDQTkzOEJENUY5RDlBNzMyOEFGNTgz NjJFQjIyQzEwHhcNMjUxMTAzMDU1OTAyWhcNMjUxMTEwMDU1OTAyWjAYMRYwFAYD VQQDEw02OTA4NDRhNy02ZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSNaPTE2KdWwHBu6BwLEXvAwgAs8UNyT8U+GxjUOIUmK3V6tf+5rAnpvyO10 7eKr6B6QLww8edBVgeU12Ld4L/USLF5Xb/Oa4WfofKFBQ9mzG463Y/J9cO49Qg9w WPGUfP5xX2c734oyoUTRsNhQW72TPr+DCGBEZbs1uYIcwelgCKTFScOm2OftPhkB ZrkOEST9hflge9fBfZ9O2JUXpBsrmtQr3jBh2SwAtQRvC1yDCMNBicyNEUa/qpPS IytahAk7h6MK4USmUxbZKUA2wEwFPHqgOaiuGjj7g4HtFazc9Of+qfGK2EsY6Rla JwjtDzRhLfYpw2CJCkJDN8c71QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE5wO2k u39pV37/+cd4PmIDgi+zMB8GA1UdIwQYMBaAFH+WrgoiypOL1fnZpzKK9YNi6yLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkZCRS80MjE1OUY1QTlE MDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0dlYtZG1uTW9yMWcyTHJJ c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y1YXVDaUxLazR2Vi1kbW5Nb3IxZzJMcklzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkZCRS80MjE1OUY1QTlEMDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0 dlYtZG1uTW9yMWcyTHJJc0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0C/TIxfXhXG8u/pp1IsdStYmzf2Qo9TcoHOyWtKXBa0FAk4PjqHg0 dL5D+7WcAasC6EV5oe0B9bh8ZPpHpIuFOesQnub5x/gD3Ik1S/j2qCccl5+fEzb3 5IqQwDj/IeJQva6yXkSYA1sCQiME4fYWVUqR1+B3OGe9Nj7RETEJzLxktlmbIwZb AMmcvSpU29qcVPNiqAO8YSDXw16I3zMGAuP9zXHR1lajHNbQWgoClo5k3gwmMtnj a4t3f0P8oRX5DoL08TLV/byOi9M4JC1OaAvWNkd0tgEKC+JHsE3qZC3RsTmeEuUO UkOkysMO+Td5Ryi71KSPuqHKHtlsQjj5 -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:48 2025 by rpki-client