$ rpki-client -vvf rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft File: dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft (raw, json) Hash identifier: HEuXtvnSp1MHsVKcy3kct0ewuRo514d/2DMQ5I4VpDI= Subject key identifier: 0B:0D:F7:AC:0D:D3:8E:D8:92:14:3E:F7:7C:85:DA:63:F4:CB:FB:0C Authority key identifier: 75:BA:91:3D:BA:BF:E9:4A:34:C7:04:0D:AB:47:5C:35:A2:58:A1:52 Certificate issuer: /CN=A91C654A/serialNumber=75BA913DBABFE94A34C7040DAB475C35A258A152 Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft Manifest number: 094B Signing time: Tue 04 Nov 2025 21:40:05 +0000 Manifest this update: Tue 04 Nov 2025 21:40:05 +0000 Manifest next update: Tue 11 Nov 2025 21:40:05 +0000 Files and hashes: 1: dbqRPbq_6Uo0xwQNq0dcNaJYoVI.crl (hash: 96X082KefyCdKGgQBZWX6gwEOH4qOaqIgGm63kQLFkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.crl rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C654A, serialNumber=75BA913DBABFE94A34C7040DAB475C35A258A152 Validity Not Before: Nov 4 21:40:05 2025 GMT Not After : Nov 11 21:40:05 2025 GMT Subject: CN=690a72b5-15f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:04:92:9a:b3:87:b2:6e:4e:51:bd:a2:7f:a2: c0:c9:fc:b4:df:58:ef:0f:97:10:02:63:3a:dc:69: 21:aa:60:49:41:ff:cc:35:6d:bc:69:2b:30:92:3a: 84:f5:ee:5d:20:92:98:86:85:a7:0d:66:55:a8:13: 5b:12:66:88:d7:fb:ab:b4:2e:8e:35:a4:d4:ab:48: 4e:67:79:f6:84:c8:f7:14:39:d3:a5:df:dc:8a:30: e5:19:82:75:98:ae:4a:0c:73:dc:22:b0:32:f6:b1: 14:dd:73:d1:0d:fb:d6:42:cd:75:b9:32:96:e5:c7: 0b:b6:ce:29:9b:e0:3f:08:aa:b0:5b:00:c7:6f:a2: c4:e9:34:b3:ff:f6:41:8d:61:92:fc:5b:44:6e:18: 66:e9:6f:8f:2e:c1:b5:b6:03:15:11:07:6b:59:2b: 0e:bf:ee:a5:c7:00:04:a3:26:9a:67:3e:eb:c4:9c: 41:b1:90:05:e5:58:08:93:eb:80:c2:dd:16:5d:8f: 42:11:10:5d:df:dd:05:1e:fb:ce:70:46:c2:f5:46: dd:e6:7b:bf:bf:0d:4f:d1:bc:f1:54:68:88:c9:f4: 44:87:a2:bf:c2:0a:b8:9e:e5:cf:dc:88:2d:2c:6f: 95:c4:19:fa:c0:be:9c:cc:75:63:aa:de:65:fc:2c: 49:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:0D:F7:AC:0D:D3:8E:D8:92:14:3E:F7:7C:85:DA:63:F4:CB:FB:0C X509v3 Authority Key Identifier: keyid:75:BA:91:3D:BA:BF:E9:4A:34:C7:04:0D:AB:47:5C:35:A2:58:A1:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C654A/71FAB0D8352911EBB80F1349C4F9AE02/dbqRPbq_6Uo0xwQNq0dcNaJYoVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:00:00:fd:49:91:1b:8e:53:42:e7:8c:e2:ca:58:df:be:0c: 9d:7c:0b:21:7e:04:ef:83:4e:c8:e9:bd:84:6e:ef:97:e4:74: b9:3b:eb:80:2d:43:cd:80:5e:a6:23:8a:3d:87:08:db:32:a4: 38:6c:44:9f:20:e6:81:dc:1f:61:a0:5f:25:47:50:45:91:61: 30:39:56:be:0c:7b:7f:d5:76:7a:f2:7b:2d:0f:5f:18:cf:12: e0:91:5d:1d:ed:11:87:ac:80:37:09:a8:1e:8d:45:ae:2f:ad: 75:e2:4e:2a:ad:29:56:e5:87:d9:4b:13:4f:64:19:65:47:2a: 1f:a6:a6:e8:7e:4d:ea:2f:f6:82:d4:db:fb:66:49:3e:34:2b: 45:7b:bf:e3:d5:5f:15:c6:a0:3e:0e:af:c2:46:83:cb:cc:dd: ac:a2:e4:08:e7:19:2d:7a:39:74:9b:8a:0f:97:c7:03:c0:e4: 88:27:d8:f2:9d:6e:d0:b0:9d:6c:b6:5c:b9:07:90:68:d1:92: fb:ad:26:be:76:c5:f6:ec:bd:30:73:58:4d:8b:ab:a9:ac:8f: be:33:8c:a5:1b:77:02:57:cc:70:04:ab:3b:1c:8e:3b:96:ab: 20:41:a1:e5:8b:41:f8:d0:b6:ca:9d:d7:5c:1a:70:c9:57:7d: 06:cd:f1:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NEExMTAvBgNVBAUTKDc1QkE5MTNEQkFCRkU5NEEzNEM3MDQwREFCNDc1QzM1 QTI1OEExNTIwHhcNMjUxMTA0MjE0MDA1WhcNMjUxMTExMjE0MDA1WjAYMRYwFAYD VQQDEw02OTBhNzJiNS0xNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuASSmrOHsm5OUb2if6LAyfy031jvD5cQAmM63GkhqmBJQf/MNW28aSswkjqE 9e5dIJKYhoWnDWZVqBNbEmaI1/urtC6ONaTUq0hOZ3n2hMj3FDnTpd/cijDlGYJ1 mK5KDHPcIrAy9rEU3XPRDfvWQs11uTKW5ccLts4pm+A/CKqwWwDHb6LE6TSz//ZB jWGS/FtEbhhm6W+PLsG1tgMVEQdrWSsOv+6lxwAEoyaaZz7rxJxBsZAF5VgIk+uA wt0WXY9CERBd390FHvvOcEbC9Ubd5nu/vw1P0bzxVGiIyfREh6K/wgq4nuXP3Igt LG+VxBn6wL6czHVjqt5l/CxJSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsN96wN 047YkhQ+93yF2mP0y/sMMB8GA1UdIwQYMBaAFHW6kT26v+lKNMcEDatHXDWiWKFS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU0QS83MUZBQjBEODM1 MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9kYnFSUGJxXzZVbzB4d1FOcTBkY05hSllv VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RicVJQYnFfNlVvMHh3UU5xMGRjTmFKWW9WSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjU0QS83MUZBQjBEODM1MjkxMUVCQjgwRjEzNDlDNEY5QUUwMi9kYnFSUGJxXzZV bzB4d1FOcTBkY05hSllvVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQAAD9SZEbjlNC54ziyljfvgydfAshfgTvg07I6b2Ebu+X5HS5O+uA LUPNgF6mI4o9hwjbMqQ4bESfIOaB3B9hoF8lR1BFkWEwOVa+DHt/1XZ68nstD18Y zxLgkV0d7RGHrIA3CagejUWuL6114k4qrSlW5YfZSxNPZBllRyofpqbofk3qL/aC 1Nv7Zkk+NCtFe7/j1V8VxqA+Dq/CRoPLzN2souQI5xktejl0m4oPl8cDwOSIJ9jy nW7QsJ1stly5B5Bo0ZL7rSa+dsX27L0wc1hNi6uprI++M4ylG3cCV8xwBKs7HI47 lqsgQaHli0H40LbKnddcGnDJV30GzfGO -----END CERTIFICATE-----Generated at Wed Nov 5 19:24:12 2025 by rpki-client