$ rpki-client -vvf rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft File: toWM6JkRXyxWHHZl74vgaIBoEJw.mft (raw, json) Hash identifier: aGccyGTQJOWdD6+yiWTroF0R7IkKsIlthHI2LsfFHtA= Subject key identifier: 38:8E:1D:A6:6F:8A:A6:C9:FD:CD:C2:BB:40:36:60:38:F8:9F:9A:93 Authority key identifier: B6:85:8C:E8:99:11:5F:2C:56:1C:76:65:EF:8B:E0:68:80:68:10:9C Certificate issuer: /CN=A91D120D/serialNumber=B6858CE899115F2C561C7665EF8BE0688068109C Certificate serial: 0976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft Manifest number: 095E Signing time: Sun 02 Nov 2025 20:06:22 +0000 Manifest this update: Sun 02 Nov 2025 20:06:21 +0000 Manifest next update: Sun 09 Nov 2025 20:06:21 +0000 Files and hashes: 1: toWM6JkRXyxWHHZl74vgaIBoEJw.crl (hash: CB7ZBbIcaPz5pZK8vJHOjtjgp4fEWxbZvTmfHWEaPYY=) 2: 1A4ED0E8A71811EA80A77B1FC4F9AE02.roa (hash: o2ubabJQjRgkyeZ1KZmWpq8Ju1E6mRHeCYVqt6Eg9bc=) 3: 8C79CFC6A6FD11EAA1B00744C4F9AE02.roa (hash: ZhKJiPvJVpmKkzL+YkNpWQyHnorv+gyb0AmGgaJqcWs=) 4: 9C454274FB7711EDA78AAC1DC4F9AE02.roa (hash: ZvBB3zmKVUj3FoNo3LoHC19aHdg/tMgwEIpu4fehNZ4=) 5: 95DC9990D0A211EE9C97373FC4F9AE02.roa (hash: z6k7ctSWW62IFQe+RQT4sXA8JZqwDWiJbhhB0VFDnxM=) 6: 9D83F4E6FB7711EDA78AAC1DC4F9AE02.roa (hash: KelzcdHCtnxA0fy0V8HA1xyHStc3LVcSAxi6LwKWwLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.crl rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2422 (0x976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D120D, serialNumber=B6858CE899115F2C561C7665EF8BE0688068109C Validity Not Before: Nov 2 20:06:21 2025 GMT Not After : Nov 9 20:06:21 2025 GMT Subject: CN=6907b9be-4e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e6:53:74:a0:84:8e:86:78:63:7e:41:3d:57: fe:c7:aa:d2:a4:c5:cb:86:60:8a:51:e8:89:ea:af: 73:b7:5c:d3:aa:e3:d4:09:58:9e:f9:f7:16:96:2e: b2:6a:b6:96:6f:70:37:9b:73:7b:47:15:56:e7:3e: 9c:87:dd:b9:ea:0f:39:0a:66:db:4c:13:42:0d:df: a8:04:de:5b:b0:30:15:88:de:a4:50:7c:aa:8d:02: 36:39:e4:67:6c:a4:d5:b6:8d:31:c4:3b:d5:a3:0a: 8f:5c:04:eb:76:cd:5b:6f:3f:41:bd:4b:18:60:e1: 78:9c:75:a3:f0:1a:df:18:3e:b3:ac:d6:30:99:08: dd:87:bd:88:33:83:a2:08:23:aa:02:c2:89:99:c7: 5a:e9:92:6e:bc:41:0f:c7:bd:ca:33:c8:ca:6a:f8: 5b:72:05:e3:7c:d3:4c:e6:1b:b9:fc:00:c4:fe:2c: 8a:e3:45:e2:95:b7:4f:62:fe:2e:80:f2:d8:f8:51: e3:53:02:98:8b:0e:1b:61:11:06:3f:4e:81:6b:09: 3e:10:75:b3:22:78:9f:03:5f:f9:6d:2d:42:99:f1: 41:f5:de:a5:99:b9:63:dd:3e:e6:b8:36:39:6a:f1: 4f:25:8c:2a:54:f6:eb:ec:6e:ad:c9:32:b4:a2:61: 1e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8E:1D:A6:6F:8A:A6:C9:FD:CD:C2:BB:40:36:60:38:F8:9F:9A:93 X509v3 Authority Key Identifier: keyid:B6:85:8C:E8:99:11:5F:2C:56:1C:76:65:EF:8B:E0:68:80:68:10:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/toWM6JkRXyxWHHZl74vgaIBoEJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D120D/51E80E98A6E111EA8042416AC4F9AE02/toWM6JkRXyxWHHZl74vgaIBoEJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:9b:a6:68:1c:9a:3b:c6:e7:ab:ff:92:4d:d6:15:75:df:8d: 63:a8:75:1a:3f:90:2b:3f:51:0c:18:19:b5:2e:93:17:04:65: 6a:72:d4:28:4d:d6:5c:9f:1e:bb:6f:7c:69:4d:92:93:f9:d6: 0b:d3:19:a9:af:67:ca:1c:e8:88:6d:e2:62:bf:ad:ea:9a:cb: 9f:ff:77:61:d2:32:ed:30:e9:e5:2d:ee:c6:b8:a8:23:28:7e: 0d:21:20:1a:d5:83:c7:73:49:cc:2d:1c:92:41:40:35:d3:ac: f7:33:c8:46:9a:02:ee:f7:73:cb:fb:ab:29:51:d6:9a:69:75: fc:49:fd:b3:e6:59:3a:36:8e:c6:22:92:d5:65:d3:b3:9d:89: 65:f4:91:ce:6b:11:5f:59:39:7b:8a:be:1c:52:ff:ab:39:d3: 67:bd:d8:df:01:a9:04:3d:98:b0:f0:40:c1:0b:73:12:08:95: 1d:a8:f2:1d:a0:7f:a5:54:0e:d2:f3:9c:4f:93:47:81:88:d4: f2:7c:02:73:80:7e:63:78:81:87:f1:be:cf:7e:4f:2a:3d:b1: ce:9a:b1:7f:fd:e0:79:a2:01:d9:0e:43:ea:8e:ae:df:69:85: 65:8e:62:90:87:c8:64:e1:6c:5f:9e:7f:e8:86:53:85:fb:4d: af:49:40:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMEQxMTAvBgNVBAUTKEI2ODU4Q0U4OTkxMTVGMkM1NjFDNzY2NUVGOEJFMDY4 ODA2ODEwOUMwHhcNMjUxMTAyMjAwNjIxWhcNMjUxMTA5MjAwNjIxWjAYMRYwFAYD VQQDEw02OTA3YjliZS00ZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OZTdKCEjoZ4Y35BPVf+x6rSpMXLhmCKUeiJ6q9zt1zTquPUCVie+fcWli6y araWb3A3m3N7RxVW5z6ch9256g85CmbbTBNCDd+oBN5bsDAViN6kUHyqjQI2OeRn bKTVto0xxDvVowqPXATrds1bbz9BvUsYYOF4nHWj8BrfGD6zrNYwmQjdh72IM4Oi CCOqAsKJmcda6ZJuvEEPx73KM8jKavhbcgXjfNNM5hu5/ADE/iyK40XilbdPYv4u gPLY+FHjUwKYiw4bYREGP06Bawk+EHWzInifA1/5bS1CmfFB9d6lmblj3T7muDY5 avFPJYwqVPbr7G6tyTK0omEeIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiOHaZv iqbJ/c3Cu0A2YDj4n5qTMB8GA1UdIwQYMBaAFLaFjOiZEV8sVhx2Ze+L4GiAaBCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIwRC81MUU4MEU5OEE2 RTExMUVBODA0MjQxNkFDNEY5QUUwMi90b1dNNkprUlh5eFdISFpsNzR2Z2FJQm9F SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RvV002SmtSWHl4V0hIWmw3NHZnYUlCb0VKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIwRC81MUU4MEU5OEE2RTExMUVBODA0MjQxNkFDNEY5QUUwMi90b1dNNkprUlh5 eFdISFpsNzR2Z2FJQm9FSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJm6ZoHJo7xuer/5JN1hV1341jqHUaP5ArP1EMGBm1LpMXBGVqctQo TdZcnx67b3xpTZKT+dYL0xmpr2fKHOiIbeJiv63qmsuf/3dh0jLtMOnlLe7GuKgj KH4NISAa1YPHc0nMLRySQUA106z3M8hGmgLu93PL+6spUdaaaXX8Sf2z5lk6No7G IpLVZdOznYll9JHOaxFfWTl7ir4cUv+rOdNnvdjfAakEPZiw8EDBC3MSCJUdqPId oH+lVA7S85xPk0eBiNTyfAJzgH5jeIGH8b7Pfk8qPbHOmrF//eB5ogHZDkPqjq7f aYVljmKQh8hk4Wxfnn/ohlOF+02vSUBM -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:11 2025 by rpki-client