$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft File: wsO6iC7D3Pwn8TzociVgfaqheE0.mft (raw, json) Hash identifier: lnAc/ZQgBud7uc66HCOzyPk39huOHeUS2bnk/Ffb7Hw= Subject key identifier: 8B:6E:F8:52:A8:F8:DB:04:0C:C9:16:F7:AD:CA:DA:C2:8B:3F:40:B6 Authority key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D Certificate issuer: /CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft Manifest number: 05A4 Signing time: Tue 04 Nov 2025 23:14:45 +0000 Manifest this update: Tue 04 Nov 2025 23:14:45 +0000 Manifest next update: Tue 11 Nov 2025 23:14:45 +0000 Files and hashes: 1: wsO6iC7D3Pwn8TzociVgfaqheE0.crl (hash: 2dhAvwja1JAVeblx2RIbKZkr/AjYYlQs2YLo2SSCMjA=) 2: B84B847AEF3911EBACC9E938C4F9AE02.roa (hash: z4OD50JJqcb5eLqgxPYFpu+0WPLJOBG84/py9BkQ1lE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3ED4, serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Validity Not Before: Nov 4 23:14:45 2025 GMT Not After : Nov 11 23:14:45 2025 GMT Subject: CN=690a88e5-b611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1f:7b:82:71:05:3a:25:b1:ce:3a:4d:90:f3: fe:51:8f:95:77:15:00:bd:ef:6d:b7:bb:12:b3:67: f1:55:ef:07:36:e3:c7:38:6b:db:ff:2d:23:23:b6: d0:6b:7e:7d:48:87:99:34:27:d6:ce:4e:a1:5e:d2: 70:c5:6a:ee:7a:01:13:33:f6:1b:81:f6:a1:9b:45: 5d:a4:53:13:bd:86:55:35:03:14:44:b1:7a:46:31: 15:d5:f7:3a:92:47:91:e8:43:fe:9c:ee:43:7f:d7: 89:a4:1a:d8:e5:b9:98:54:83:5d:ff:1c:dd:5f:66: a2:a5:be:a6:16:3c:47:e0:5d:34:f2:33:55:46:fe: 3c:6c:b0:84:2c:be:37:a5:6d:69:c4:87:47:7b:4d: 29:3e:ea:6d:a1:99:5f:b3:34:c1:02:22:4e:f0:17: 45:b0:9d:21:bd:a4:8e:47:3f:64:df:e3:03:6b:3a: 28:10:99:57:8d:0d:c2:c1:1b:83:67:dc:ee:f6:85: ef:80:d8:59:be:ae:ee:03:29:b4:8d:b7:d9:e3:58: 0f:07:26:95:58:ff:bb:aa:27:70:ec:1d:53:fe:71: 3d:8a:38:b3:5e:5b:ad:52:10:ba:c9:a1:b6:55:54: bf:0a:2f:7c:95:f3:ce:03:c7:68:16:61:96:2f:40: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6E:F8:52:A8:F8:DB:04:0C:C9:16:F7:AD:CA:DA:C2:8B:3F:40:B6 X509v3 Authority Key Identifier: keyid:C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:86:87:a0:b3:54:af:a2:21:fe:35:9d:e7:7d:4d:ec:cb:bd: b2:85:02:ea:7a:df:10:f2:2c:3f:b3:19:35:6c:5e:fb:c7:4e: 3d:01:6b:dc:3d:e8:04:d9:0f:6e:a1:bc:9e:8b:0d:2d:bb:59: 09:7a:0d:fe:4f:92:80:fe:d1:39:59:29:5c:da:8f:99:cc:fe: 12:6a:c3:2d:7e:31:43:99:05:00:95:67:0d:fe:cb:9d:d6:68: 7d:eb:c5:71:bc:2e:d4:36:6b:77:12:71:e0:05:70:76:d7:a6: 4b:ea:94:5c:1c:02:e0:d7:ea:a5:f7:69:02:29:b5:d8:d1:a7: 83:00:4e:41:29:8f:d2:27:3f:74:03:31:3b:50:9b:1f:f0:99: 92:e4:fd:ba:24:d0:82:71:b8:32:bf:27:ba:9a:34:cb:49:f8: 29:a1:31:c0:ad:b4:cf:54:26:f7:b9:a0:a6:50:8b:5e:cd:e4: 67:4f:91:2e:9b:e3:3a:ef:7d:e3:93:c2:d9:e2:78:06:ad:58: ba:4a:6e:b2:c3:6f:ae:06:30:87:af:6d:9c:f0:f7:40:b1:1f: 07:eb:47:11:b7:30:09:3e:3d:c7:8c:ec:9e:88:30:14:70:ff: c1:7f:3d:ef:a0:86:87:20:8d:ef:3b:76:b6:ac:13:ee:1e:ef: 6e:aa:b7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNFRDQxMTAvBgNVBAUTKEMyQzNCQTg4MkVDM0RDRkMyN0YxM0NFODcyMjU2MDdE QUFBMTc4NEQwHhcNMjUxMTA0MjMxNDQ1WhcNMjUxMTExMjMxNDQ1WjAYMRYwFAYD VQQDEw02OTBhODhlNS1iNjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwh97gnEFOiWxzjpNkPP+UY+VdxUAve9tt7sSs2fxVe8HNuPHOGvb/y0jI7bQ a359SIeZNCfWzk6hXtJwxWruegETM/Ybgfahm0VdpFMTvYZVNQMURLF6RjEV1fc6 kkeR6EP+nO5Df9eJpBrY5bmYVINd/xzdX2aipb6mFjxH4F008jNVRv48bLCELL43 pW1pxIdHe00pPuptoZlfszTBAiJO8BdFsJ0hvaSORz9k3+MDazooEJlXjQ3CwRuD Z9zu9oXvgNhZvq7uAym0jbfZ41gPByaVWP+7qidw7B1T/nE9ijizXlutUhC6yaG2 VVS/Ci98lfPOA8doFmGWL0DkBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItu+FKo +NsEDMkW963K2sKLP0C2MB8GA1UdIwQYMBaAFMLDuoguw9z8J/E86HIlYH2qoXhN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0VENC8yOTA3OEE3MkVG MzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQd244VHpvY2lWZ2ZhcWhl RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dzTzZpQzdEM1B3bjhUem9jaVZnZmFxaGVFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0VENC8yOTA3OEE3MkVGMzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQ d244VHpvY2lWZ2ZhcWhlRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIhoegs1SvoiH+NZ3nfU3sy72yhQLqet8Q8iw/sxk1bF77x049AWvc PegE2Q9uobyeiw0tu1kJeg3+T5KA/tE5WSlc2o+ZzP4SasMtfjFDmQUAlWcN/sud 1mh968VxvC7UNmt3EnHgBXB216ZL6pRcHALg1+ql92kCKbXY0aeDAE5BKY/SJz90 AzE7UJsf8JmS5P26JNCCcbgyvye6mjTLSfgpoTHArbTPVCb3uaCmUItezeRnT5Eu m+M6733jk8LZ4ngGrVi6Sm6yw2+uBjCHr22c8PdAsR8H60cRtzAJPj3HjOyeiDAU cP/Bfz3voIaHII3vO3a2rBPuHu9uqrcl -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:06 2025 by rpki-client