$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: s3uuv7zXkDr7LiFfEtUw+mrtgEhhALc4+IZlAQQpaMA= Subject key identifier: BC:D4:7C:C2:DF:89:E5:5F:46:E7:B2:D9:62:2E:75:2C:7D:44:2C:FE Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 047F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 0453 Signing time: Wed 05 Nov 2025 00:23:02 +0000 Manifest this update: Wed 05 Nov 2025 00:23:02 +0000 Manifest next update: Wed 12 Nov 2025 00:23:02 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: eTQLwXMhnoYtwGVu7FbRV0eOqq0D0y23Pf5V7Zcgm7A=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: JDhvBxRe3WYJ1iKQKnxqCUD2z2C21JJ9nqsXsWXBpYM=) 3: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: QNRRPIEXpBXbzOjvogyb/5EofzlDIH5pOqmalYkDTHw=) 4: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0=) 5: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: QSRbYccf6zSEHa0HsQVgKCVz5nS1O8L5U8Elot2Xz40=) 6: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478=) 7: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU=) 8: 5F14A15442D111EF8424E65BC4F9AE02.roa (hash: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs=) 9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7KI+xGonwsZRICria/4CZwlDNlRIuXU/wVts22Crf9U=) 10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: fPCfFsxMUqOAvLJmkWjc+RPsiCNLjQ233XGNCqOiY/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1151 (0x47f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Nov 5 00:23:02 2025 GMT Not After : Nov 12 00:23:02 2025 GMT Subject: CN=690a98e6-1e56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:28:9c:e0:93:e8:8f:46:24:d7:7a:c4:db:3a: 85:54:76:b4:33:ac:6a:f7:a2:b7:b9:7e:35:5f:bd: 41:59:8d:c4:b6:06:39:3b:b3:40:a4:ef:6a:1a:42: 4c:5d:db:e3:3e:a7:f6:ce:59:b9:f6:e2:cd:60:78: 26:9b:6f:f4:16:93:70:ae:57:2f:6d:5f:bc:98:1b: 2b:cb:9b:5b:18:79:d6:52:a4:3e:8f:5e:e8:91:ce: 72:f4:56:68:08:e6:84:83:bc:60:17:f8:f3:b5:7f: 5c:0d:cc:c4:14:2a:4e:17:e2:a0:13:4b:7a:e5:89: 15:d1:f5:31:9c:3c:5a:cd:60:a4:92:5e:fd:be:b4: 6f:06:c2:82:50:72:c3:f6:3c:f1:c5:5c:a1:54:42: 0b:a5:08:62:c1:b0:c7:fb:ba:98:42:cd:de:41:a2: ee:f4:2d:68:79:9f:ab:49:3c:4e:1d:c6:51:cf:75: c1:3c:a8:92:a2:83:8e:cf:d8:2f:10:c5:df:1c:79: 22:3e:3a:3a:43:03:f3:27:15:8e:3a:8a:cb:61:3a: ef:4d:ff:45:a0:a8:87:01:1f:ae:f0:4d:fd:05:c4: 3d:e8:6c:19:58:cc:e9:92:4c:63:db:65:70:97:fa: 9d:12:1a:ee:5a:d6:0c:ef:02:8f:eb:fb:93:d0:d4: 96:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D4:7C:C2:DF:89:E5:5F:46:E7:B2:D9:62:2E:75:2C:7D:44:2C:FE X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:50:c0:58:b6:18:87:ac:70:79:93:e7:7d:e6:5a:5b:d1:03: a0:1c:c6:e4:cb:85:3d:f2:18:b3:7d:bf:ad:80:9d:fa:9b:34: ef:2d:39:61:ea:85:52:e9:1f:40:e5:0e:a8:23:25:f8:fa:27: cd:a4:87:ce:d1:32:b6:b7:df:a7:59:89:e7:e1:65:4b:22:ae: d8:db:b2:bf:9c:b6:d2:29:c2:a9:4e:f4:9f:eb:6b:29:13:cd: 42:f4:3f:9c:bf:c9:a7:9b:c6:1c:4b:9b:34:13:63:8e:86:c8: 63:c2:dd:f2:a0:f1:6c:92:6c:a7:99:1d:e1:19:4b:9a:c3:f5: 61:3d:75:ed:da:2c:8e:3d:ac:69:4e:05:47:98:f8:b7:0f:3c: d4:8f:8d:96:28:51:d0:c9:9e:0a:f3:61:da:35:79:9f:e6:fb: af:03:34:23:42:70:08:68:5a:68:2c:06:80:33:d5:52:df:bc: ca:65:24:35:41:9e:11:ef:50:37:cc:50:11:a4:3a:ff:5d:95: 58:d0:a2:59:06:72:f8:b1:6c:db:51:83:ec:21:18:4e:df:9a: 4a:25:ac:27:4f:b2:3e:c9:1e:af:77:ad:91:07:12:56:33:63: e7:6a:ec:2f:4b:2a:22:2c:7a:27:19:80:05:0c:3e:15:7b:68: 10:8e:0b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUxMTA1MDAyMzAyWhcNMjUxMTEyMDAyMzAyWjAYMRYwFAYD VQQDEw02OTBhOThlNi0xZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yic4JPoj0Yk13rE2zqFVHa0M6xq96K3uX41X71BWY3EtgY5O7NApO9qGkJM XdvjPqf2zlm59uLNYHgmm2/0FpNwrlcvbV+8mBsry5tbGHnWUqQ+j17okc5y9FZo COaEg7xgF/jztX9cDczEFCpOF+KgE0t65YkV0fUxnDxazWCkkl79vrRvBsKCUHLD 9jzxxVyhVEILpQhiwbDH+7qYQs3eQaLu9C1oeZ+rSTxOHcZRz3XBPKiSooOOz9gv EMXfHHkiPjo6QwPzJxWOOorLYTrvTf9FoKiHAR+u8E39BcQ96GwZWMzpkkxj22Vw l/qdEhruWtYM7wKP6/uT0NSWpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzUfMLf ieVfRuey2WIudSx9RCz+MB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnUMBYthiHrHB5k+d95lpb0QOgHMbky4U98hizfb+tgJ36mzTvLTlh 6oVS6R9A5Q6oIyX4+ifNpIfO0TK2t9+nWYnn4WVLIq7Y27K/nLbSKcKpTvSf62sp E81C9D+cv8mnm8YcS5s0E2OOhshjwt3yoPFskmynmR3hGUuaw/VhPXXt2iyOPaxp TgVHmPi3DzzUj42WKFHQyZ4K82HaNXmf5vuvAzQjQnAIaFpoLAaAM9VS37zKZSQ1 QZ4R71A3zFARpDr/XZVY0KJZBnL4sWzbUYPsIRhO35pKJawnT7I+yR6vd62RBxJW M2PnauwvSyoiLHonGYAFDD4Ve2gQjgtq -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:17 2025 by rpki-client