$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: UAfmTmoV81H+XzqGN+2yoyRiYyOl/KhZa9dxwe0ZBI0= Subject key identifier: 51:73:96:C1:5D:D1:CC:41:DB:C5:5C:01:54:7D:57:E9:2C:0D:69:B9 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 0A22 Signing time: Tue 04 Nov 2025 19:53:22 +0000 Manifest this update: Tue 04 Nov 2025 19:53:21 +0000 Manifest next update: Tue 11 Nov 2025 19:53:21 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: vMOFdRM/+D+jdVS1Q8DY7ZovyjmhOJxcnSnaSdycsnY=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: fE6v1X9dI3K/+qxRJDUFWVWwmGPbKxLQXrNQBGm5pPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Nov 4 19:53:21 2025 GMT Not After : Nov 11 19:53:21 2025 GMT Subject: CN=690a59b1-72bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:89:f1:28:62:e9:7c:00:65:5d:fc:b5:a0:75: eb:be:67:a0:bc:aa:c4:ad:de:ab:c9:6c:12:ac:70: 8b:08:4c:f8:0d:ff:8d:66:29:f0:6e:bb:11:ef:fc: 48:66:21:90:fd:79:7d:09:b8:12:57:a1:82:dd:8b: c3:df:16:85:34:28:df:f3:fe:6f:24:c7:03:f6:8c: d6:02:64:ef:6b:ce:4c:83:c9:e6:d9:8e:6e:60:48: 95:26:e4:d6:f6:cf:ed:c3:a1:e1:11:26:ff:c7:bb: a7:2b:58:cf:0e:90:6a:bf:0c:bc:ca:bb:4d:bc:fd: 03:d8:48:d8:7d:97:17:32:f6:55:11:2c:c6:d1:da: 81:05:2f:3d:9a:6a:ea:56:c9:d1:a5:a0:cf:87:13: 5a:88:1f:11:9b:2d:51:05:f1:3e:a1:86:c8:cc:48: 73:51:68:93:c3:6a:0a:47:70:d4:52:4b:4a:3b:e6: 5c:81:ab:45:b2:6a:dc:9d:9c:95:f7:b2:46:0f:62: 41:80:21:e4:41:22:8b:c1:b0:65:dd:6b:76:de:76: a4:27:c9:85:99:04:74:30:e0:7b:87:ca:07:d1:9b: f5:b9:c9:d5:d4:8a:62:f7:c1:9e:1c:8c:04:d4:5d: d4:39:26:66:72:3b:0d:61:a0:72:f9:fb:c0:6a:22: 7e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:73:96:C1:5D:D1:CC:41:DB:C5:5C:01:54:7D:57:E9:2C:0D:69:B9 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:f1:63:11:81:8d:8f:63:2e:c3:ea:65:15:00:39:fd:d1:06: d8:c2:ba:b1:74:91:3f:f1:ef:45:20:ed:56:14:6a:76:1c:6c: 19:1d:4e:c1:45:23:22:25:70:c7:1f:5a:9b:2a:ee:de:72:91: 8a:35:4b:51:98:e6:c9:b8:eb:c6:f3:90:b6:0c:44:99:43:30: 0a:2e:e2:f0:b5:f1:14:73:63:ba:6d:86:75:4e:7f:a9:96:b6: ce:ba:cf:3f:63:fc:03:52:90:06:01:9d:0e:0c:01:0e:00:91: af:9c:5b:07:dc:a4:b1:d4:f1:53:bf:31:b9:7d:ee:09:f1:8f: 89:56:cb:a3:d0:4d:dc:9e:6a:06:55:3a:a8:9d:8b:00:46:81: ae:be:57:8b:c2:3a:a0:d7:62:e0:af:0a:3d:9e:4b:48:fe:8e: 09:f2:ae:53:f4:cf:f3:5b:87:e5:ab:d7:3a:f6:36:62:bc:6f: 97:40:58:f9:56:46:ae:ff:94:c8:5f:0b:e1:c2:c7:aa:31:8d: 91:f7:8a:5b:6c:00:73:45:7f:0a:db:37:04:18:c8:eb:30:86: a8:c5:ea:c8:c0:14:99:0b:27:a3:19:ca:03:59:ea:38:0b:09: bd:84:c7:52:32:b9:ae:ba:a5:96:80:ea:0a:94:84:79:76:d0: 6d:64:b7:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUxMTA0MTk1MzIxWhcNMjUxMTExMTk1MzIxWjAYMRYwFAYD VQQDEw02OTBhNTliMS03MmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA94nxKGLpfABlXfy1oHXrvmegvKrErd6ryWwSrHCLCEz4Df+NZinwbrsR7/xI ZiGQ/Xl9CbgSV6GC3YvD3xaFNCjf8/5vJMcD9ozWAmTva85Mg8nm2Y5uYEiVJuTW 9s/tw6HhESb/x7unK1jPDpBqvwy8yrtNvP0D2EjYfZcXMvZVESzG0dqBBS89mmrq VsnRpaDPhxNaiB8Rmy1RBfE+oYbIzEhzUWiTw2oKR3DUUktKO+ZcgatFsmrcnZyV 97JGD2JBgCHkQSKLwbBl3Wt23nakJ8mFmQR0MOB7h8oH0Zv1ucnV1Ipi98GeHIwE 1F3UOSZmcjsNYaBy+fvAaiJ+zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFzlsFd 0cxB28VcAVR9V+ksDWm5MB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl8WMRgY2PYy7D6mUVADn90QbYwrqxdJE/8e9FIO1WFGp2HGwZHU7B RSMiJXDHH1qbKu7ecpGKNUtRmObJuOvG85C2DESZQzAKLuLwtfEUc2O6bYZ1Tn+p lrbOus8/Y/wDUpAGAZ0ODAEOAJGvnFsH3KSx1PFTvzG5fe4J8Y+JVsuj0E3cnmoG VTqonYsARoGuvleLwjqg12Lgrwo9nktI/o4J8q5T9M/zW4flq9c69jZivG+XQFj5 Vkau/5TIXwvhwseqMY2R94pbbABzRX8K2zcEGMjrMIaoxerIwBSZCyejGcoDWeo4 Cwm9hMdSMrmuuqWWgOoKlIR5dtBtZLf+ -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:13 2025 by rpki-client