$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: j2yPto7QlWNCQlg7UWqjBHtHZpmej06ci5V9d+Up3iA= Subject key identifier: 37:41:F8:AF:BA:E9:18:78:C6:1C:79:3E:2B:B0:08:48:F0:74:17:84 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 056D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 055E Signing time: Tue 04 Nov 2025 23:29:28 +0000 Manifest this update: Tue 04 Nov 2025 23:29:28 +0000 Manifest next update: Tue 11 Nov 2025 23:29:28 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: /APkwnIQY/SsgSgYGyx3RWwE37MwlzF8E2FSJOwFd4I=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: +Mi7BZoKW+xr25lpsKkabZrOyuilHhAO129Cyy+dlGI=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: wWURC3RR4weDeL/+js4Lxv4EiqiaY71sbi8A+8GXIJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Nov 4 23:29:28 2025 GMT Not After : Nov 11 23:29:28 2025 GMT Subject: CN=690a8c58-ac88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:ea:17:c5:57:22:8e:aa:4c:a3:12:e5:08: 03:6b:80:c9:d5:03:61:fa:a1:9d:b1:57:28:bb:98: 2a:32:4f:eb:18:08:2e:87:ae:e6:fd:05:c6:fd:b9: ed:f4:1b:38:5a:55:37:e3:e0:f2:11:c6:4d:02:9d: 2c:48:90:fa:90:44:23:e6:8c:76:44:4b:f8:bd:2a: eb:c4:1c:67:1a:b6:a3:f3:9c:d2:e2:7f:02:5c:df: 44:3c:2f:68:a6:91:12:eb:7f:86:cf:f2:36:fd:bb: 22:80:84:b2:21:c5:02:ee:8e:65:2c:79:8e:ee:52: b2:8e:68:45:af:49:7c:03:e5:5e:cc:fc:01:1f:cf: 8b:bb:6a:50:e5:28:d2:bc:ff:02:91:2a:b3:03:a3: 9e:8d:34:e5:58:c6:2a:6a:2f:0e:35:f9:60:ef:b7: b6:b8:6c:80:84:48:cc:dd:db:1a:68:c3:d0:4d:c4: a8:38:34:1d:60:0b:68:28:aa:e8:ea:c8:e8:6c:28: 2d:9a:10:14:61:fc:f2:80:b9:65:8d:20:5a:a7:b8: 32:52:db:66:c1:fa:de:bc:71:e3:3e:99:08:68:f7: 60:dd:ab:71:a3:00:3e:42:95:fb:f7:0a:95:34:72: 2e:68:ce:be:74:76:13:1f:43:23:fd:9a:0b:5b:da: 52:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:41:F8:AF:BA:E9:18:78:C6:1C:79:3E:2B:B0:08:48:F0:74:17:84 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:31:b0:a9:a1:73:34:07:cf:83:a4:ad:55:1e:7f:de:6b:c3: da:79:51:ce:6d:54:f1:58:67:c4:50:9e:09:52:64:fe:6c:ce: 16:45:d7:b9:cc:3e:fe:db:84:0e:c4:9c:3b:29:e3:7b:82:e6: e3:51:4a:f5:26:9b:7d:11:43:85:6e:4d:6d:c4:6c:39:34:94: 48:f4:f0:71:bc:aa:3b:30:98:59:44:d1:10:92:5e:44:78:0d: 27:14:f5:3a:96:6d:13:3e:7d:bd:82:e7:a8:a2:c3:d3:4f:db: cb:2f:91:ff:5f:d0:34:08:a0:bb:6a:93:42:b0:8e:d8:6a:71: 8b:02:6c:4d:56:f6:7a:29:d4:5f:3a:e4:5f:77:1e:18:42:95: 1b:be:91:ed:7f:b2:aa:aa:08:40:33:1d:ba:5d:a0:11:22:d4: 4a:a6:89:7e:da:16:b7:d0:72:77:e9:99:8a:61:5b:2a:97:2c: 30:d7:15:f2:34:cb:e1:6a:93:3b:49:5b:5c:15:d9:8c:61:93: 72:3c:a5:98:34:d3:fa:85:70:be:19:5b:14:6d:70:61:e1:90: c0:9c:ab:6a:a7:a8:d2:26:23:ef:1d:b0:6c:f5:6a:50:bd:f2: bc:b0:e8:c3:f8:53:ee:43:c1:27:7b:fc:21:ef:a1:86:d4:95: 12:53:8c:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUxMTA0MjMyOTI4WhcNMjUxMTExMjMyOTI4WjAYMRYwFAYD VQQDEw02OTBhOGM1OC1hYzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMnqF8VXIo6qTKMS5QgDa4DJ1QNh+qGdsVcou5gqMk/rGAguh67m/QXG/bnt 9Bs4WlU34+DyEcZNAp0sSJD6kEQj5ox2REv4vSrrxBxnGraj85zS4n8CXN9EPC9o ppES63+Gz/I2/bsigISyIcUC7o5lLHmO7lKyjmhFr0l8A+VezPwBH8+Lu2pQ5SjS vP8CkSqzA6OejTTlWMYqai8ONflg77e2uGyAhEjM3dsaaMPQTcSoODQdYAtoKKro 6sjobCgtmhAUYfzygLlljSBap7gyUttmwfrevHHjPpkIaPdg3atxowA+QpX79wqV NHIuaM6+dHYTH0Mj/ZoLW9pSyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdB+K+6 6Rh4xhx5PiuwCEjwdBeEMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeMbCpoXM0B8+DpK1VHn/ea8PaeVHObVTxWGfEUJ4JUmT+bM4WRde5 zD7+24QOxJw7KeN7gubjUUr1Jpt9EUOFbk1txGw5NJRI9PBxvKo7MJhZRNEQkl5E eA0nFPU6lm0TPn29gueoosPTT9vLL5H/X9A0CKC7apNCsI7YanGLAmxNVvZ6KdRf OuRfdx4YQpUbvpHtf7KqqghAMx26XaARItRKpol+2ha30HJ36ZmKYVsqlyww1xXy NMvhapM7SVtcFdmMYZNyPKWYNNP6hXC+GVsUbXBh4ZDAnKtqp6jSJiPvHbBs9WpQ vfK8sOjD+FPuQ8Ene/wh76GG1JUSU4xr -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:43 2025 by rpki-client