$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: Kul+7oeg5xVHVpuUYhy9ewgpNnBj0UhjjWVEYS0FtYg= Subject key identifier: C8:FB:FA:C7:A8:42:1D:4E:B6:8F:4E:FE:61:A6:6F:0E:0E:ED:1D:FB Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 3512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 34F9 Signing time: Tue 04 Nov 2025 14:50:50 +0000 Manifest this update: Tue 04 Nov 2025 14:50:50 +0000 Manifest next update: Tue 11 Nov 2025 14:50:50 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: gbl++yV1bxpLsl+9rNrnAOnxYNweH5vPLiPR/Cj5yAM=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: Ia/j0/zm2+DZmW6lBQa66nn1YakkPhVuWJjGJSOQHIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Nov 4 14:50:50 2025 GMT Not After : Nov 11 14:50:50 2025 GMT Subject: CN=690a12ca-de69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:67:36:ab:fd:3b:0f:1f:6e:28:6c:62:e5: 14:73:63:38:26:b2:35:b1:00:6f:1e:0b:d7:6c:85: ab:37:47:2f:8f:6e:d6:99:86:d4:d1:a1:e7:07:f3: 32:55:ad:c0:ad:b0:73:1a:33:98:d6:6e:6c:a9:02: 1a:53:6a:d2:0a:2c:11:2d:20:43:fb:06:e3:72:f9: 7c:bb:6e:ef:7b:5e:c9:f7:7c:7b:ce:40:ac:ec:38: da:3b:16:87:d0:c5:86:9c:31:1d:af:6a:74:0c:33: ec:ba:b3:96:25:b6:bf:ee:c2:73:72:33:1c:7e:4e: a4:55:e0:6e:a9:66:86:37:36:90:b2:9b:d8:22:d4: d3:57:94:c6:3f:46:fa:49:93:0a:f1:9c:45:28:b9: ee:b8:fc:a9:c4:8f:7b:1c:6f:3c:e1:0e:63:15:b6: de:a5:6c:61:58:e9:09:e1:9c:02:e9:29:70:f5:5a: 23:e3:4d:09:91:bd:43:4c:ec:f7:08:34:59:61:21: 16:3c:78:c5:d1:93:56:e1:b7:d7:2a:af:ba:cd:08: 43:31:c3:2b:06:1b:1b:46:8b:4c:9c:43:6c:c2:10: 07:92:cd:3b:6e:01:a7:78:a1:e9:de:46:88:06:01: c0:8e:1e:3c:9c:08:4d:a7:e6:b5:32:23:8f:35:20: 12:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:FB:FA:C7:A8:42:1D:4E:B6:8F:4E:FE:61:A6:6F:0E:0E:ED:1D:FB X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3f:d5:93:73:6d:f2:de:b4:d5:6e:14:e9:d1:65:db:ef:43: 1b:b9:51:25:a3:dd:23:3b:65:69:b8:d2:02:f8:e1:bb:cd:20: ed:43:b5:46:42:4e:fb:83:69:00:f9:62:f5:17:b5:fc:9c:0e: 14:61:24:d0:ca:45:d4:e1:f5:f7:6a:50:cb:5c:a9:71:4b:27: 69:39:36:bf:af:3f:f1:3f:c8:f0:d7:0d:aa:9a:32:77:04:96: 60:2e:f4:c2:9b:7f:c0:9f:83:9e:3a:44:b6:f5:63:f1:4b:c4: 51:97:0b:f4:bc:ee:5d:cb:2d:79:7b:ea:92:c4:5f:42:91:c5: 58:be:9e:3e:d3:a0:71:28:87:af:51:6e:eb:da:c1:f0:c7:c2: 62:52:2a:c8:0d:fd:4b:b9:63:09:2c:1f:c3:06:14:1e:a1:d2: f2:d9:04:d1:df:5d:93:9a:31:ae:18:17:ff:a8:67:62:4d:9d: 28:d1:c1:fa:70:65:f0:24:28:ca:89:d7:f2:6d:24:8d:c1:11: 06:0b:32:79:6b:17:9e:89:b5:53:ae:a8:2f:6a:e4:06:29:8c: f0:13:bf:f4:a4:30:23:00:4a:10:13:19:40:4f:81:2f:79:5d: 92:16:f3:1d:2e:41:5b:61:96:f1:d7:f9:da:38:22:8a:9e:17: a0:3a:ad:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUxMTA0MTQ1MDUwWhcNMjUxMTExMTQ1MDUwWjAYMRYwFAYD VQQDEw02OTBhMTJjYS1kZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukNnNqv9Ow8fbihsYuUUc2M4JrI1sQBvHgvXbIWrN0cvj27WmYbU0aHnB/My Va3ArbBzGjOY1m5sqQIaU2rSCiwRLSBD+wbjcvl8u27ve17J93x7zkCs7DjaOxaH 0MWGnDEdr2p0DDPsurOWJba/7sJzcjMcfk6kVeBuqWaGNzaQspvYItTTV5TGP0b6 SZMK8ZxFKLnuuPypxI97HG884Q5jFbbepWxhWOkJ4ZwC6Slw9Voj400Jkb1DTOz3 CDRZYSEWPHjF0ZNW4bfXKq+6zQhDMcMrBhsbRotMnENswhAHks07bgGneKHp3kaI BgHAjh48nAhNp+a1MiOPNSASWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMj7+seo Qh1Oto9O/mGmbw4O7R37MB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGP9WTc23y3rTVbhTp0WXb70MbuVElo90jO2VpuNIC+OG7zSDtQ7VG Qk77g2kA+WL1F7X8nA4UYSTQykXU4fX3alDLXKlxSydpOTa/rz/xP8jw1w2qmjJ3 BJZgLvTCm3/An4OeOkS29WPxS8RRlwv0vO5dyy15e+qSxF9CkcVYvp4+06BxKIev UW7r2sHwx8JiUirIDf1LuWMJLB/DBhQeodLy2QTR312TmjGuGBf/qGdiTZ0o0cH6 cGXwJCjKidfybSSNwREGCzJ5axeeibVTrqgvauQGKYzwE7/0pDAjAEoQExlAT4Ev eV2SFvMdLkFbYZbx1/naOCKKnhegOq1Z -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:28 2025 by rpki-client