$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: 6cK/UfN3gnEp9iDEjFFNP7feWtIK6DVCmyMM312SZRQ= Subject key identifier: 87:DF:8B:D1:35:7D:72:59:BE:93:F9:68:74:D6:2D:CF:21:86:79:7F Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 3533 Signing time: Tue 04 Nov 2025 14:56:11 +0000 Manifest this update: Tue 04 Nov 2025 14:56:10 +0000 Manifest next update: Tue 11 Nov 2025 14:56:10 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: Jr+s//2m2W8SotWghjAUi9m/h7PD374qQvZly+KU7HA=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13720 (0x3598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Nov 4 14:56:10 2025 GMT Not After : Nov 11 14:56:10 2025 GMT Subject: CN=690a140b-5ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ae:ad:e8:56:af:a0:83:ea:49:ca:ed:a2:f0: d1:ca:44:a1:ae:4f:fe:3c:d6:95:a1:dc:dc:8b:bf: 4f:bd:2f:9f:c4:c4:56:44:94:c8:f2:49:9f:ee:8c: 0a:19:81:ff:af:29:c5:00:07:6f:18:ab:15:07:17: f3:8e:cc:ad:29:1b:c8:59:fc:ae:69:86:43:6c:6b: 30:a3:a2:9c:d6:e1:c9:9b:27:b1:71:6c:11:07:af: 6a:f8:b2:4a:e1:ef:af:d5:f7:87:c1:fd:37:41:6b: cd:f8:da:8f:fd:0d:6d:1a:d2:20:95:60:e6:52:a9: 38:9e:44:10:e4:ab:6f:b6:41:c0:48:06:c0:eb:9c: 1f:6a:07:26:37:ce:c2:ea:1e:c1:5a:83:a2:a2:43: 9b:43:9e:38:86:a2:7e:b2:e1:b0:f1:98:d1:13:b8: d3:9a:a2:29:11:86:c5:5d:6d:ab:3e:4f:eb:ae:bb: 5b:c3:44:e5:9b:ed:00:03:41:1c:e0:c1:5f:49:42: 23:d5:20:21:ca:f6:37:5a:1f:98:af:c1:4d:01:93: 87:29:4b:47:f3:f9:4d:d6:21:5d:cf:8a:45:82:00: 1f:31:72:b6:1a:7a:68:ad:7d:1f:5f:56:0a:9d:9e: c8:3d:0b:f4:22:a3:af:b0:11:e5:12:36:57:30:14: 00:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DF:8B:D1:35:7D:72:59:BE:93:F9:68:74:D6:2D:CF:21:86:79:7F X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:fd:96:1d:77:3d:91:6f:9c:0f:7b:ec:d0:6f:e6:80:9d:d0: 01:13:b3:58:b5:ee:ef:8c:3f:6c:78:01:bc:f3:45:e6:88:89: d2:fe:de:f2:63:08:cc:4b:ca:bc:38:e0:fa:80:e8:d3:f8:52: e7:bc:d1:e4:ce:8e:fe:be:a9:8a:d3:3d:5d:93:a2:af:3e:cf: 3d:1d:45:dd:f0:d8:59:fa:7a:dc:9b:63:38:6f:80:74:98:c6: ba:c3:30:c2:cc:11:6f:69:09:f1:b2:da:82:2a:3e:74:7a:d1: be:67:2c:19:57:9c:1b:b4:4c:dc:38:84:70:4f:ef:53:16:c8: 0f:e8:99:5c:e8:56:2e:da:18:c0:5e:10:cd:6e:25:3e:9a:e8: db:93:45:f6:51:4b:d3:91:ad:eb:98:f1:06:4c:59:74:33:8b: 74:af:0e:0d:23:d8:83:e1:15:90:61:57:5f:1d:04:c1:8e:9d: 66:2d:13:94:5e:a7:60:10:3d:5a:ed:67:c2:d8:74:c1:3b:3d: c3:80:4f:82:03:a1:97:80:14:58:83:a9:e5:39:e0:4b:2f:50: f5:93:db:14:07:65:9d:7f:43:8f:8a:01:fe:e5:13:53:56:bd: 1f:77:f5:47:4b:ac:a5:2d:c2:b7:57:c0:db:cc:dd:7b:63:e3: ab:c1:e6:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUxMTA0MTQ1NjEwWhcNMjUxMTExMTQ1NjEwWjAYMRYwFAYD VQQDEw02OTBhMTQwYi01ZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1a6t6FavoIPqScrtovDRykShrk/+PNaVodzci79PvS+fxMRWRJTI8kmf7owK GYH/rynFAAdvGKsVBxfzjsytKRvIWfyuaYZDbGswo6Kc1uHJmyexcWwRB69q+LJK 4e+v1feHwf03QWvN+NqP/Q1tGtIglWDmUqk4nkQQ5KtvtkHASAbA65wfagcmN87C 6h7BWoOiokObQ544hqJ+suGw8ZjRE7jTmqIpEYbFXW2rPk/rrrtbw0Tlm+0AA0Ec 4MFfSUIj1SAhyvY3Wh+Yr8FNAZOHKUtH8/lN1iFdz4pFggAfMXK2GnporX0fX1YK nZ7IPQv0IqOvsBHlEjZXMBQAcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIffi9E1 fXJZvpP5aHTWLc8hhnl/MB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK/ZYddz2Rb5wPe+zQb+aAndABE7NYte7vjD9seAG880XmiInS/t7y YwjMS8q8OOD6gOjT+FLnvNHkzo7+vqmK0z1dk6KvPs89HUXd8NhZ+nrcm2M4b4B0 mMa6wzDCzBFvaQnxstqCKj50etG+ZywZV5wbtEzcOIRwT+9TFsgP6Jlc6FYu2hjA XhDNbiU+mujbk0X2UUvTka3rmPEGTFl0M4t0rw4NI9iD4RWQYVdfHQTBjp1mLROU XqdgED1a7WfC2HTBOz3DgE+CA6GXgBRYg6nlOeBLL1D1k9sUB2Wdf0OPigH+5RNT Vr0fd/VHS6ylLcK3V8DbzN17Y+Orwea/ -----END CERTIFICATE-----Generated at Wed Nov 5 00:07:35 2025 by rpki-client