$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft File: _rhjYz3rcT99klaMcXmFhLC61mY.mft (raw, json) Hash identifier: 6n5k9btcL7j0WwosV1jBKHwegRGg34sppIhiekg0+mM= Subject key identifier: BE:A0:89:12:F8:E4:A0:10:9B:E4:C1:8E:18:22:84:C0:C2:D4:30:71 Authority key identifier: FE:B8:63:63:3D:EB:71:3F:7D:92:56:8C:71:79:85:84:B0:BA:D6:66 Certificate issuer: /CN=A91D50A2/serialNumber=FEB863633DEB713F7D92568C71798584B0BAD666 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_rhjYz3rcT99klaMcXmFhLC61mY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft Manifest number: 0141 Signing time: Wed 05 Nov 2025 04:33:44 +0000 Manifest this update: Wed 05 Nov 2025 04:33:44 +0000 Manifest next update: Wed 12 Nov 2025 04:33:44 +0000 Files and hashes: 1: _rhjYz3rcT99klaMcXmFhLC61mY.crl (hash: XgkRM+GkrAaznudnPHVv53+UU08r09VZ37qI4P8atlA=) 2: 249FA95E9D4111EFA3DA7F75C4F9AE02.roa (hash: SAKcVkUSU/ZcJXpgMJhIHN2SX2uP3Z2m9YsmC8MIfhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.crl rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_rhjYz3rcT99klaMcXmFhLC61mY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2, serialNumber=FEB863633DEB713F7D92568C71798584B0BAD666 Validity Not Before: Nov 5 04:33:44 2025 GMT Not After : Nov 12 04:33:44 2025 GMT Subject: CN=690ad3a8-4ddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5b:02:cb:2d:df:d1:c6:7a:95:a9:63:20:d0: c0:c4:94:31:e4:65:8c:d5:78:d7:8e:dd:36:dc:14: 50:0f:c7:ea:64:9e:4a:11:15:9b:85:5c:87:54:ed: 33:30:22:a1:84:71:54:13:13:bc:af:97:5c:0e:7d: 40:60:9d:81:2f:56:7b:8e:a3:6a:c1:ef:0c:5b:ab: 61:52:b7:73:a2:2b:bc:3d:17:7c:5c:57:72:74:b5: ca:f4:98:36:ba:7b:56:bb:98:ce:c8:ac:38:14:ba: 3f:f4:b3:c1:0d:5f:35:a7:4b:64:c2:f5:3d:b3:9b: 5a:e0:92:bb:d5:b5:19:35:f8:75:55:8c:48:9d:58: a7:5e:84:31:79:0a:47:2b:75:2a:42:d0:80:da:ba: 75:7c:b8:02:f6:66:bc:f3:01:43:7f:34:82:79:0a: c6:46:93:fe:04:20:4c:ce:5f:99:9d:27:1d:13:ad: fa:22:62:26:ba:ae:3f:85:b2:49:4c:60:f1:bd:35: 6c:7e:5b:d8:56:fa:de:07:e6:bd:8e:ca:e0:71:5a: aa:0e:7e:cb:54:58:d6:1d:ba:a7:75:13:ef:c3:cf: 6c:64:6e:17:4b:5f:31:60:0c:45:75:31:d6:03:d0: b9:39:be:4c:1e:f7:48:59:67:2a:9a:2e:c8:e6:cc: 93:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A0:89:12:F8:E4:A0:10:9B:E4:C1:8E:18:22:84:C0:C2:D4:30:71 X509v3 Authority Key Identifier: keyid:FE:B8:63:63:3D:EB:71:3F:7D:92:56:8C:71:79:85:84:B0:BA:D6:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_rhjYz3rcT99klaMcXmFhLC61mY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/E4C88512D02711EEBF5B693CC4F9AE02/_rhjYz3rcT99klaMcXmFhLC61mY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:73:38:f6:2f:5a:7f:ca:9d:76:90:67:1c:3f:81:c0:86:97: 6c:b3:7e:a4:80:4a:f6:db:4a:7c:46:93:5a:d8:d4:fd:a5:e6: 4a:df:c2:93:4e:47:c6:03:03:d2:6f:b7:52:ee:c0:d5:5e:76: 18:84:bd:1e:ad:c7:3e:93:85:db:80:42:51:20:1b:01:3a:2d: cb:b3:3d:57:b6:0f:a0:05:34:1c:1b:ab:d6:4c:26:3c:bd:d0: c8:54:ec:6d:27:12:a5:b6:58:20:91:9d:73:29:03:19:86:0c: 10:14:2c:11:f6:d4:71:3a:ea:72:67:a2:ee:d7:f6:a3:7a:42: 4b:94:03:3d:6f:62:78:e8:9e:62:ef:e8:73:07:ba:d1:ef:25: 6f:1c:1e:88:a9:e5:0a:df:7f:01:ed:3f:66:52:11:a7:e2:ab: 78:77:6c:a2:e9:23:9a:84:73:36:cb:5b:55:c7:c0:d9:7f:60: 15:3b:15:78:e5:16:08:7e:4f:c7:98:77:9c:83:13:f7:43:fc: bb:fe:23:c3:55:d8:0a:69:2b:9f:d3:c7:da:03:e1:b7:2e:89: cc:c0:30:3c:bb:b3:21:8f:a8:cd:b8:c8:84:90:f7:11:06:9b: d4:4b:63:44:76:be:54:c5:8e:5f:80:68:02:9b:09:d0:73:97: 3b:21:03:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKEZFQjg2MzYzM0RFQjcxM0Y3RDkyNTY4QzcxNzk4NTg0 QjBCQUQ2NjYwHhcNMjUxMTA1MDQzMzQ0WhcNMjUxMTEyMDQzMzQ0WjAYMRYwFAYD VQQDEw02OTBhZDNhOC00ZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslsCyy3f0cZ6laljINDAxJQx5GWM1XjXjt023BRQD8fqZJ5KERWbhVyHVO0z MCKhhHFUExO8r5dcDn1AYJ2BL1Z7jqNqwe8MW6thUrdzoiu8PRd8XFdydLXK9Jg2 untWu5jOyKw4FLo/9LPBDV81p0tkwvU9s5ta4JK71bUZNfh1VYxInVinXoQxeQpH K3UqQtCA2rp1fLgC9ma88wFDfzSCeQrGRpP+BCBMzl+ZnScdE636ImImuq4/hbJJ TGDxvTVsflvYVvreB+a9jsrgcVqqDn7LVFjWHbqndRPvw89sZG4XS18xYAxFdTHW A9C5Ob5MHvdIWWcqmi7I5syTBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6giRL4 5KAQm+TBjhgihMDC1DBxMB8GA1UdIwQYMBaAFP64Y2M963E/fZJWjHF5hYSwutZm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FNEM4ODUxMkQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9fcmhqWXozcmNUOTlrbGFNY1htRmhMQzYx bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19yaGpZejNyY1Q5OWtsYU1jWG1GaExDNjFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FNEM4ODUxMkQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9fcmhqWXozcmNU OTlrbGFNY1htRmhMQzYxbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAczj2L1p/yp12kGccP4HAhpdss36kgEr220p8RpNa2NT9peZK38KT TkfGAwPSb7dS7sDVXnYYhL0ercc+k4XbgEJRIBsBOi3Lsz1Xtg+gBTQcG6vWTCY8 vdDIVOxtJxKltlggkZ1zKQMZhgwQFCwR9tRxOupyZ6Lu1/ajekJLlAM9b2J46J5i 7+hzB7rR7yVvHB6IqeUK338B7T9mUhGn4qt4d2yi6SOahHM2y1tVx8DZf2AVOxV4 5RYIfk/HmHecgxP3Q/y7/iPDVdgKaSuf08faA+G3LonMwDA8u7Mhj6jNuMiEkPcR BpvUS2NEdr5UxY5fgGgCmwnQc5c7IQMo -----END CERTIFICATE-----Generated at Wed Nov 5 20:59:14 2025 by rpki-client