$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: 5QCEnzrvcX5IJ4j2d8Omx0HmfIQZ+d7nEAupkiXbI1M= Subject key identifier: 91:A0:08:95:37:EB:52:17:27:63:D1:55:F4:49:FF:74:0F:20:6D:49 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01A4 Signing time: Mon 03 Nov 2025 03:35:50 +0000 Manifest this update: Mon 03 Nov 2025 03:35:50 +0000 Manifest next update: Mon 10 Nov 2025 03:35:50 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: cSPiti/40QE2rCPGaH+OIFyoXKo7+x5jZIh43o5G23w=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: NzwtW94OGR5LBUfhUFwuihytDl5251IuikJ6D/DeFPA=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Nov 3 03:35:50 2025 GMT Not After : Nov 10 03:35:50 2025 GMT Subject: CN=69082316-f7d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:75:23:49:f5:ed:32:91:5e:7c:82:1a:bc:90: 25:ba:d9:ab:d1:93:15:8b:e6:8a:a0:a1:1f:fc:15: ec:b0:33:9a:f7:7f:d0:94:2f:7c:e8:1d:04:55:42: f1:6e:6c:d0:04:98:e2:c1:e2:48:46:21:65:03:44: 3f:9c:de:a2:8b:0f:1b:4d:13:bc:65:68:cd:ff:77: 41:4b:84:99:03:69:a5:a6:66:43:0f:62:b2:c6:a6: a7:0a:9e:31:81:ea:f1:7b:9b:e4:bf:c4:55:e5:10: 9d:16:a0:40:72:f6:bf:d3:76:c5:07:83:78:e3:a5: 72:b1:5b:8d:a6:22:10:21:2c:0e:fa:85:d8:f8:f7: 53:dc:c4:d8:f5:5a:80:47:61:4f:f8:7c:92:9b:e9: 2d:44:24:63:bf:99:fe:0c:cb:5c:21:91:d4:21:a9: cc:a4:1f:bf:80:29:86:80:ff:81:50:1c:fe:97:45: 28:61:f5:a8:c1:4c:ad:c6:ac:cf:63:c1:a5:46:23: 4d:c8:09:d3:3b:16:2e:a2:29:a8:a0:8d:f0:3c:66: 8a:97:34:cd:4b:03:71:89:84:ab:a7:85:a4:d6:ce: 6a:b6:a5:1c:a4:94:5b:5e:48:85:60:47:3f:67:b7: 3d:56:72:41:ee:6b:80:d3:f2:79:01:96:d4:95:7e: 72:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A0:08:95:37:EB:52:17:27:63:D1:55:F4:49:FF:74:0F:20:6D:49 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:df:6f:f4:d1:c6:a4:83:2f:03:62:68:e0:f2:57:ee:5b:f8: 05:67:ca:09:fe:1d:4f:c2:84:d0:f5:df:00:d7:89:03:50:85: 8e:81:19:21:8c:6a:c1:27:e9:80:7b:eb:cf:d6:51:cb:3b:99: 2f:2f:f9:d3:9f:f6:07:f6:fe:d5:41:2c:7d:ce:80:e8:6d:3f: 84:9f:09:57:f5:35:3a:01:bc:d2:a5:69:b6:6c:23:4f:52:39: ce:0e:83:b2:d5:57:11:9b:1e:ae:1f:54:1b:94:9a:bc:af:c3: ee:35:6f:92:75:34:71:db:10:c6:8d:99:2d:ef:09:6a:9d:ba: 1b:4b:96:49:ed:aa:2f:28:69:df:20:e2:a9:de:0b:c4:d4:65: c7:ae:30:8d:39:55:ac:a0:c7:30:a9:41:2c:01:80:1e:0c:1f: a8:bc:13:77:e4:bd:3d:98:26:cb:49:09:59:74:69:09:19:2c: ab:2c:5f:df:c5:09:ac:3a:e2:b0:a1:1b:d3:51:12:20:42:e6: 96:6e:e2:5e:7e:3c:06:27:91:2a:63:4c:d2:65:41:63:20:1b: ff:79:eb:77:d9:bb:82:f0:31:e9:c0:6e:a2:2d:2c:d4:ab:39: 2e:2a:ff:cd:83:bf:0b:56:74:4e:28:75:22:ed:d6:33:0e:39: 06:a9:1f:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUxMTAzMDMzNTUwWhcNMjUxMTEwMDMzNTUwWjAYMRYwFAYD VQQDEw02OTA4MjMxNi1mN2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43UjSfXtMpFefIIavJAlutmr0ZMVi+aKoKEf/BXssDOa93/QlC986B0EVULx bmzQBJjiweJIRiFlA0Q/nN6iiw8bTRO8ZWjN/3dBS4SZA2mlpmZDD2KyxqanCp4x gerxe5vkv8RV5RCdFqBAcva/03bFB4N446VysVuNpiIQISwO+oXY+PdT3MTY9VqA R2FP+HySm+ktRCRjv5n+DMtcIZHUIanMpB+/gCmGgP+BUBz+l0UoYfWowUytxqzP Y8GlRiNNyAnTOxYuoimooI3wPGaKlzTNSwNxiYSrp4Wk1s5qtqUcpJRbXkiFYEc/ Z7c9VnJB7muA0/J5AZbUlX5yyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGgCJU3 61IXJ2PRVfRJ/3QPIG1JMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO32/00cakgy8DYmjg8lfuW/gFZ8oJ/h1PwoTQ9d8A14kDUIWOgRkh jGrBJ+mAe+vP1lHLO5kvL/nTn/YH9v7VQSx9zoDobT+EnwlX9TU6AbzSpWm2bCNP UjnODoOy1VcRmx6uH1QblJq8r8PuNW+SdTRx2xDGjZkt7wlqnbobS5ZJ7aovKGnf IOKp3gvE1GXHrjCNOVWsoMcwqUEsAYAeDB+ovBN35L09mCbLSQlZdGkJGSyrLF/f xQmsOuKwoRvTURIgQuaWbuJefjwGJ5EqY0zSZUFjIBv/eet32buC8DHpwG6iLSzU qzkuKv/Ng78LVnROKHUi7dYzDjkGqR/f -----END CERTIFICATE-----Generated at Tue Nov 4 20:05:24 2025 by rpki-client