$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft File: 379fgwtQs7_B5TULnGBbt1YSLhE.mft (raw, json) Hash identifier: 4FwwQD5f9quhXZY+63Tth0fIoirCC42934s4lCXUuTw= Subject key identifier: 27:74:2C:2F:3F:E5:9F:7E:F1:FC:09:00:7B:89:7A:AC:24:04:12:70 Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 0519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft Manifest number: 0511 Signing time: Sun 02 Nov 2025 23:35:34 +0000 Manifest this update: Sun 02 Nov 2025 23:35:33 +0000 Manifest next update: Sun 09 Nov 2025 23:35:33 +0000 Files and hashes: 1: 379fgwtQs7_B5TULnGBbt1YSLhE.crl (hash: jJBbLCVrhnYY7ogw2yqGmG1wyUQiss81nnemCK5KnFs=) 2: D5C4A54A617B11EC82058668C4F9AE02.roa (hash: cTO7dHRgQ10X2+wIM0WDWEXY+Ht/milaq+pShcIOrgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1305 (0x519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Nov 2 23:35:33 2025 GMT Not After : Nov 9 23:35:33 2025 GMT Subject: CN=6907eac6-491c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:79:4b:01:e2:31:13:28:0d:21:fb:29:47: 41:0d:d4:ca:ab:0d:0e:9f:93:9c:da:48:90:3b:1f: dd:4d:eb:6b:c9:7a:eb:35:5d:8b:24:10:32:41:c0: c5:32:fa:6e:ff:66:ad:38:a6:76:cc:a4:72:5b:a2: bc:89:94:be:fc:27:a4:80:c3:98:5f:b8:79:cb:ec: 6d:82:5b:bc:94:f8:99:ee:db:fc:a2:b3:c5:41:fe: 37:75:9f:73:44:cd:4d:85:3b:34:e1:fe:26:76:76: 01:ce:21:f9:ee:d0:12:af:ff:21:a5:2b:a8:32:5e: 8e:7f:4d:b8:81:41:dd:bb:ec:da:ec:40:b8:71:fb: bb:db:07:d9:fd:31:9d:cc:c7:91:95:3c:a7:6d:0f: ac:62:08:c1:94:81:fc:48:45:81:1c:cf:6b:ad:9c: 9d:2a:7a:2f:95:51:42:94:03:d6:f7:98:2b:5e:33: b6:5a:0b:36:51:b9:d7:cc:37:6e:c2:dc:b9:df:63: 9c:99:64:6d:a1:15:6b:12:76:5c:b8:e1:26:c0:5f: 27:2a:93:44:82:85:80:bb:3c:0c:f7:2a:8e:61:50: ce:8e:a0:b8:16:57:ac:b7:24:68:29:c7:6d:6f:1e: c9:dd:9b:33:67:7f:28:65:59:0d:12:3b:e1:8c:aa: d6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:74:2C:2F:3F:E5:9F:7E:F1:FC:09:00:7B:89:7A:AC:24:04:12:70 X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:5b:72:d1:4c:b4:5b:72:8e:e6:83:03:d6:90:f6:31:82:fd: 52:fe:95:92:7d:77:77:3d:38:35:52:53:9a:c9:00:6a:bf:3f: b8:a0:c4:a7:c2:37:57:78:e5:64:68:d3:22:90:a3:26:35:ac: d4:24:a6:1f:40:f3:60:12:90:d5:ec:9f:43:f3:1e:49:9a:8f: 34:9c:94:53:6d:6a:6c:8f:3d:b8:d4:08:9a:9b:cf:33:16:53: 44:8a:48:c5:cf:45:61:9e:1c:53:24:0b:70:01:3c:b8:f4:98: 10:3a:e4:e8:6f:99:1b:0d:ba:44:57:d3:65:06:55:fc:b7:c9: b6:05:61:2f:5b:5b:5c:05:4b:fa:6d:66:da:99:ef:f0:06:8c: 6a:99:e7:84:13:0c:06:d7:fa:4a:3b:11:e9:87:66:fb:b8:99: dc:cc:49:2e:c9:fc:6a:28:1f:fb:b2:08:52:08:df:a1:8a:34: 90:82:99:db:e7:1a:f1:ae:ee:d0:0b:a0:19:e8:67:71:c8:a0: b3:25:2a:ee:3d:61:2f:cb:cb:e1:75:f5:98:b0:d1:f2:4c:61: 24:00:e7:7b:32:a7:47:9d:5c:37:22:bf:ae:87:a3:7c:3a:30: c0:a9:2d:2c:6a:2d:2c:a1:14:a1:59:a8:51:5a:ef:f4:a1:6d: fc:21:2e:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUxMTAyMjMzNTMzWhcNMjUxMTA5MjMzNTMzWjAYMRYwFAYD VQQDEw02OTA3ZWFjNi00OTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycR5SwHiMRMoDSH7KUdBDdTKqw0On5Oc2kiQOx/dTetryXrrNV2LJBAyQcDF Mvpu/2atOKZ2zKRyW6K8iZS+/CekgMOYX7h5y+xtglu8lPiZ7tv8orPFQf43dZ9z RM1NhTs04f4mdnYBziH57tASr/8hpSuoMl6Of024gUHdu+za7EC4cfu72wfZ/TGd zMeRlTynbQ+sYgjBlIH8SEWBHM9rrZydKnovlVFClAPW95grXjO2Wgs2UbnXzDdu wty532OcmWRtoRVrEnZcuOEmwF8nKpNEgoWAuzwM9yqOYVDOjqC4FlestyRoKcdt bx7J3ZszZ38oZVkNEjvhjKrWtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCd0LC8/ 5Z9+8fwJAHuJeqwkBBJwMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI3RC8zMDE3MDk2RTJCQjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3 X0I1VFVMbkdCYnQxWVNMaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQW3LRTLRbco7mgwPWkPYxgv1S/pWSfXd3PTg1UlOayQBqvz+4oMSn wjdXeOVkaNMikKMmNazUJKYfQPNgEpDV7J9D8x5Jmo80nJRTbWpsjz241Aiam88z FlNEikjFz0VhnhxTJAtwATy49JgQOuTob5kbDbpEV9NlBlX8t8m2BWEvW1tcBUv6 bWbame/wBoxqmeeEEwwG1/pKOxHph2b7uJnczEkuyfxqKB/7sghSCN+hijSQgpnb 5xrxru7QC6AZ6GdxyKCzJSruPWEvy8vhdfWYsNHyTGEkAOd7MqdHnVw3Ir+uh6N8 OjDAqS0sai0soRShWahRWu/0oW38IS4v -----END CERTIFICATE-----Generated at Tue Nov 4 02:19:16 2025 by rpki-client