$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: Fz11svrhENJuM6yTeEQPGteyEQQqGjCjWJ4+Aj8QgxE= Subject key identifier: E8:1E:75:CB:CB:08:F4:7A:0C:B6:3D:77:D4:F3:EA:0C:CC:07:7D:50 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 01E2 Signing time: Wed 05 Nov 2025 02:48:27 +0000 Manifest this update: Wed 05 Nov 2025 02:48:26 +0000 Manifest next update: Wed 12 Nov 2025 02:48:26 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: DcdDOWJ8ZLM3rEy3WB2CmKwJnFwdUdc0vL7cxmGjXFk=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:48:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Nov 5 02:48:26 2025 GMT Not After : Nov 12 02:48:26 2025 GMT Subject: CN=690abafa-0357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fb:27:7e:04:d6:02:39:4f:77:4d:4d:5b:0f: ec:c5:df:4c:97:96:11:b8:b4:43:f3:df:0a:19:3a: 98:42:a3:6f:82:d0:39:19:db:a3:95:84:f6:86:0d: e5:9b:67:67:86:4d:1a:b4:db:cb:f2:9d:89:49:d5: d9:3f:2a:90:2d:52:3f:da:3f:6e:08:33:0d:ef:11: c8:2a:f2:d1:f2:a1:81:2c:f6:e1:18:e9:55:fc:0c: e5:1d:09:af:58:a5:09:ce:79:7d:ec:3a:0c:e1:63: 8b:f6:04:da:ed:5f:c3:69:cf:15:3a:ab:af:49:fc: 46:58:26:fd:3b:08:4c:8a:f1:b1:5e:03:82:e9:3d: 90:ef:0c:5b:6f:9f:3f:80:0d:4a:f9:c0:a5:2c:be: 08:f3:3d:86:49:05:7c:a8:94:3a:67:59:b4:ec:e1: 02:20:72:0d:d0:4e:1e:aa:17:05:95:cd:2f:97:ed: f6:fc:10:6e:08:ec:ff:d1:53:79:53:2a:15:f2:ec: b8:c3:b9:24:ea:c6:8b:95:1a:e3:11:05:2b:8b:e8: dc:1b:58:6d:c1:3a:ad:76:44:b1:33:d7:14:e9:1f: b0:e2:71:76:31:8d:b8:53:82:dd:af:ca:12:28:e8: 21:be:13:df:6f:be:c5:2d:30:79:17:83:7b:d1:26: 47:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1E:75:CB:CB:08:F4:7A:0C:B6:3D:77:D4:F3:EA:0C:CC:07:7D:50 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:45:81:3a:5e:2d:22:ca:7b:70:12:71:43:78:8d:cb:84:37: 20:2e:cd:d8:97:63:7a:45:9f:e0:2e:fb:9f:19:7e:a6:e9:d4: c8:56:15:d3:14:bb:29:bd:64:88:bc:ff:76:45:a5:4e:0d:02: f7:b5:98:1f:60:0f:16:0d:b2:16:fa:ba:15:ba:e9:27:ef:65: ee:f6:3b:de:65:ad:ee:13:10:c1:31:90:13:c4:49:7a:a2:c3: ed:89:26:47:c0:f7:48:fc:a4:2d:fc:69:06:79:08:6a:e3:df: 24:3e:d7:87:e5:8a:68:7d:fc:fc:0d:1a:5e:7f:4d:c1:f6:5c: a6:31:ce:47:40:e6:3c:27:1d:57:0c:f4:fc:e1:0c:1e:2c:30: b5:46:d6:53:c6:6d:b6:50:55:46:4b:0e:62:7c:08:18:15:c5: 86:af:86:a9:e4:9c:0d:82:e1:8b:33:89:d6:11:01:4a:a7:14: 78:cc:c1:0d:9b:b7:8c:1d:27:25:aa:a6:ae:0a:8d:02:8d:bb: 17:91:8a:64:ff:6a:90:f8:ac:24:7c:94:75:fd:25:1e:a6:4e: 7b:99:7b:1f:7f:91:af:b6:98:a9:b2:7d:23:87:7b:b0:77:de: b9:60:65:54:f9:62:6f:3a:bc:da:c4:5b:e6:7c:92:95:cb:3c: 3c:6d:8d:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUxMTA1MDI0ODI2WhcNMjUxMTEyMDI0ODI2WjAYMRYwFAYD VQQDEw02OTBhYmFmYS0wMzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufsnfgTWAjlPd01NWw/sxd9Ml5YRuLRD898KGTqYQqNvgtA5GdujlYT2hg3l m2dnhk0atNvL8p2JSdXZPyqQLVI/2j9uCDMN7xHIKvLR8qGBLPbhGOlV/AzlHQmv WKUJznl97DoM4WOL9gTa7V/Dac8VOquvSfxGWCb9OwhMivGxXgOC6T2Q7wxbb58/ gA1K+cClLL4I8z2GSQV8qJQ6Z1m07OECIHIN0E4eqhcFlc0vl+32/BBuCOz/0VN5 UyoV8uy4w7kk6saLlRrjEQUri+jcG1htwTqtdkSxM9cU6R+w4nF2MY24U4Ldr8oS KOghvhPfb77FLTB5F4N70SZH7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgedcvL CPR6DLY9d9Tz6gzMB31QMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9RYE6Xi0iyntwEnFDeI3LhDcgLs3Yl2N6RZ/gLvufGX6m6dTIVhXT FLspvWSIvP92RaVODQL3tZgfYA8WDbIW+roVuukn72Xu9jveZa3uExDBMZATxEl6 osPtiSZHwPdI/KQt/GkGeQhq498kPteH5Ypoffz8DRpef03B9lymMc5HQOY8Jx1X DPT84QweLDC1RtZTxm22UFVGSw5ifAgYFcWGr4ap5JwNguGLM4nWEQFKpxR4zMEN m7eMHSclqqauCo0CjbsXkYpk/2qQ+KwkfJR1/SUepk57mXsff5Gvtpipsn0jh3uw d965YGVU+WJvOrzaxFvmfJKVyzw8bY09 -----END CERTIFICATE-----Generated at Wed Nov 5 23:06:06 2025 by rpki-client