$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft File: FDeI0jX9adsvJbd3Il96t2naNQs.mft (raw, json) Hash identifier: /G/+veU2Sr8bzXU43YA1bPeXc1n+u/CIArn+p0eEZnA= Subject key identifier: 4B:1C:66:F3:97:3A:42:FF:AD:A9:F7:5B:DA:8E:0A:82:46:82:05:45 Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 05C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft Manifest number: 05BE Signing time: Tue 04 Nov 2025 23:12:33 +0000 Manifest this update: Tue 04 Nov 2025 23:12:32 +0000 Manifest next update: Tue 11 Nov 2025 23:12:32 +0000 Files and hashes: 1: FDeI0jX9adsvJbd3Il96t2naNQs.crl (hash: 7eXNd8/OkvlxysPEbWEgAqgdh+y41FzVyxLrGEn2Mgs=) 2: 2A52AB54138811F0BA2C056DC4F9AE02.roa (hash: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1479 (0x5c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Nov 4 23:12:32 2025 GMT Not After : Nov 11 23:12:32 2025 GMT Subject: CN=690a8860-2174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f3:c2:e2:1f:13:b2:c4:0b:71:3c:80:99:89: be:74:d5:c2:09:91:04:44:e7:f9:6e:ec:94:27:bd: 5c:56:21:64:17:79:24:7f:1c:6c:f3:4d:6b:17:c0: 76:31:68:ac:bd:46:37:4e:c7:77:32:d7:b4:b8:e8: e6:c5:81:f0:fb:e6:d9:aa:85:28:34:35:a0:0f:83: 9f:c5:cb:35:f2:04:87:fd:22:2d:bf:9f:f5:f1:ee: d5:71:23:4f:72:12:ef:f3:01:96:94:d8:9a:e2:90: be:af:ca:a4:5a:2a:6a:5c:f0:5c:72:5e:2c:28:6b: 93:59:cc:42:61:92:b4:d5:a6:73:bf:b3:8d:37:84: 54:d1:28:67:b9:7f:17:f5:7d:9b:6f:c5:83:c3:0f: ec:2e:bf:f2:49:15:61:74:e8:e7:a6:c8:31:2f:6b: 43:b6:1c:e6:ec:96:98:94:f4:f8:62:96:cd:07:85: e2:9d:ae:31:84:79:1f:df:5d:2c:be:3c:83:09:67: 95:3a:da:ea:96:6d:71:6b:42:89:71:6c:96:2f:39: 9c:15:78:48:1f:f2:b6:85:8d:42:0e:51:a8:8e:8d: 68:a8:96:f2:29:54:27:fd:a3:17:72:8d:a4:85:b8: a7:f2:a2:22:59:8a:97:a0:9b:a1:a2:41:00:24:37: d7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1C:66:F3:97:3A:42:FF:AD:A9:F7:5B:DA:8E:0A:82:46:82:05:45 X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e0:9a:c1:77:c0:9f:1f:1c:59:b9:de:39:5a:d8:77:25:bb: 54:7d:ce:c6:74:61:25:ba:e1:9c:3c:4d:3e:9d:01:d3:e5:b4: de:00:37:36:11:24:4d:e6:48:0e:83:d0:1f:c1:42:77:e1:07: 48:50:89:f5:c8:6f:a7:1a:b8:11:a1:6b:1c:df:78:9d:38:dc: f6:96:45:1d:25:5a:6c:b9:22:e6:9c:a6:8d:9b:b5:ee:55:bd: e7:5f:4c:4d:73:4e:5e:ac:f4:f9:c0:fd:b9:1b:89:c1:37:cf: 1e:0e:6a:11:e3:e8:96:16:ea:f2:05:99:f7:57:e2:71:19:22: 4b:e0:a8:14:6b:c2:34:c9:04:a0:60:a3:f4:84:7a:81:91:c3: 49:5f:ba:a9:9d:52:ee:43:f2:4b:1d:bf:e6:9e:5c:5e:7f:b9: 4b:86:58:ec:32:bc:9c:d2:73:8f:dd:b2:35:7f:78:c6:7f:99: b8:e5:d0:0c:e6:1f:7c:fd:27:28:ca:70:a5:b5:74:38:a6:f5: 71:23:f2:d9:22:69:16:6b:29:51:35:76:a3:1d:32:0b:49:a3: 40:a2:bc:71:09:52:28:89:8f:7d:aa:17:76:29:e9:5e:94:eb: b1:58:ce:2f:7e:5c:9a:b4:6e:95:45:02:59:94:3a:32:0c:61: e2:74:61:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUxMTA0MjMxMjMyWhcNMjUxMTExMjMxMjMyWjAYMRYwFAYD VQQDEw02OTBhODg2MC0yMTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofPC4h8TssQLcTyAmYm+dNXCCZEEROf5buyUJ71cViFkF3kkfxxs801rF8B2 MWisvUY3Tsd3Mte0uOjmxYHw++bZqoUoNDWgD4Ofxcs18gSH/SItv5/18e7VcSNP chLv8wGWlNia4pC+r8qkWipqXPBccl4sKGuTWcxCYZK01aZzv7ONN4RU0ShnuX8X 9X2bb8WDww/sLr/ySRVhdOjnpsgxL2tDthzm7JaYlPT4YpbNB4Xina4xhHkf310s vjyDCWeVOtrqlm1xa0KJcWyWLzmcFXhIH/K2hY1CDlGojo1oqJbyKVQn/aMXco2k hbin8qIiWYqXoJuhokEAJDfX7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEscZvOX OkL/ran3W9qOCoJGggVFMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTMyMy9ERjY2REUyNEU1NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFk c3ZKYmQzSWw5NnQybmFOUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB24JrBd8CfHxxZud45Wth3JbtUfc7GdGEluuGcPE0+nQHT5bTeADc2 ESRN5kgOg9AfwUJ34QdIUIn1yG+nGrgRoWsc33idONz2lkUdJVpsuSLmnKaNm7Xu Vb3nX0xNc05erPT5wP25G4nBN88eDmoR4+iWFuryBZn3V+JxGSJL4KgUa8I0yQSg YKP0hHqBkcNJX7qpnVLuQ/JLHb/mnlxef7lLhljsMryc0nOP3bI1f3jGf5m45dAM 5h98/ScoynCltXQ4pvVxI/LZImkWaylRNXajHTILSaNAorxxCVIoiY99qhd2Kele lOuxWM4vflyatG6VRQJZlDoyDGHidGHT -----END CERTIFICATE-----Generated at Thu Nov 6 00:08:58 2025 by rpki-client