$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: sncPJm+YhlzgtDwdS2cW+mQwdnGtw7Bnz5QYE3e+SGo= Subject key identifier: 00:B5:48:48:01:65:38:99:F0:F6:20:1E:F3:4D:AF:E7:33:15:8B:76 Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 075A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 074F Signing time: Tue 04 Nov 2025 21:48:55 +0000 Manifest this update: Tue 04 Nov 2025 21:48:54 +0000 Manifest next update: Tue 11 Nov 2025 21:48:54 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: fmbWKpU5+yTOeWGFNci7XvZ79GJ2Ups0CElODvknyIc=) 2: FD9457225B1011F0A31EF763C4F9AE02.roa (hash: f2u+VQYSLCUV6iKDxcf/7BZ46ThgcrDUrUJ8DXZ7tUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Nov 4 21:48:54 2025 GMT Not After : Nov 11 21:48:54 2025 GMT Subject: CN=690a74c7-2082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:09:25:59:62:e7:cc:99:b5:ee:ff:5a:fc: 3b:e8:10:55:35:5b:0d:78:88:0f:35:2b:9d:16:f8: 4f:40:ee:3e:1b:85:12:22:cb:0f:4d:8c:b6:a0:e4: 38:f1:28:0b:19:69:25:6b:d9:09:a9:61:83:ad:ee: 03:33:e0:e1:b8:64:52:c4:d9:88:79:30:f2:fc:6a: 80:ed:e8:ec:23:dd:4c:88:64:67:d4:76:2b:29:84: 94:f8:eb:01:82:fd:fd:75:cf:b8:be:a2:b4:a4:a9: 3c:04:18:a7:6f:b0:44:14:cb:e9:db:42:a0:7e:34: 18:e4:b7:98:78:92:f4:2c:91:ea:28:b0:65:8e:e3: dd:e4:5a:d8:3d:10:6d:dc:46:09:00:d1:c6:44:99: ec:33:b8:13:9e:55:c6:23:47:84:12:1e:a8:de:98: ff:7b:c0:4c:84:06:bb:8f:fa:49:7f:5b:95:41:b1: 91:31:1c:53:53:1d:fa:49:00:6b:f0:4c:c4:2b:59: 09:b4:ad:60:d3:f8:25:b5:76:f5:0f:93:eb:12:28: 32:16:78:fb:06:74:12:5f:97:ad:8e:38:8e:3d:e1: 09:c7:a5:fa:dc:21:78:3b:a8:81:2e:f2:e8:f2:ce: 92:66:ae:7d:ce:ba:43:57:93:c6:12:60:ce:ef:5d: df:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B5:48:48:01:65:38:99:F0:F6:20:1E:F3:4D:AF:E7:33:15:8B:76 X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:4b:34:4d:61:76:23:0a:97:98:9c:32:f0:83:d6:9f:88:49: 0c:b9:7c:26:87:25:29:ef:80:4b:d7:c4:a4:60:df:66:ae:07: 04:6c:49:80:d7:70:a2:0a:af:a1:85:d2:43:a9:cf:36:83:4d: fe:db:d3:47:ee:7b:c1:0e:77:4a:19:2e:3a:dd:87:42:73:f9: b8:14:fa:c1:06:c0:43:75:f9:eb:63:fa:0a:16:81:32:cc:4f: 19:69:9e:1d:8e:32:08:10:7e:00:73:db:cd:cc:26:6a:de:d0: ad:1a:0b:16:41:7c:99:2c:b8:05:3c:3e:46:ea:9e:9b:14:a9: 7f:19:a3:7b:b9:30:86:42:d0:7f:29:57:21:4c:02:b9:96:12: 7c:9a:b0:55:09:5e:f4:e5:d5:5c:17:5a:b5:e9:db:41:12:2a: eb:ea:1e:62:45:a1:83:f6:89:27:6b:63:8f:83:30:35:66:70: f0:8d:b4:1e:ff:e8:b5:58:e9:40:1b:ab:63:84:1a:44:cc:fe: be:d8:25:11:4a:a1:12:dd:33:dc:bd:66:c4:e2:16:87:2f:61: 42:ab:be:fd:68:09:1b:2d:e0:4d:ce:9c:b6:b6:8b:c5:b2:d3: 14:54:1b:01:e3:c4:0d:b7:34:b6:e4:e9:d8:ce:4c:95:7b:7b: 18:6e:20:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUxMTA0MjE0ODU0WhcNMjUxMTExMjE0ODU0WjAYMRYwFAYD VQQDEw02OTBhNzRjNy0yMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IkJJVli58yZte7/Wvw76BBVNVsNeIgPNSudFvhPQO4+G4USIssPTYy2oOQ4 8SgLGWkla9kJqWGDre4DM+DhuGRSxNmIeTDy/GqA7ejsI91MiGRn1HYrKYSU+OsB gv39dc+4vqK0pKk8BBinb7BEFMvp20KgfjQY5LeYeJL0LJHqKLBljuPd5FrYPRBt 3EYJANHGRJnsM7gTnlXGI0eEEh6o3pj/e8BMhAa7j/pJf1uVQbGRMRxTUx36SQBr 8EzEK1kJtK1g0/gltXb1D5PrEigyFnj7BnQSX5etjjiOPeEJx6X63CF4O6iBLvLo 8s6SZq59zrpDV5PGEmDO713fOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAC1SEgB ZTiZ8PYgHvNNr+czFYt2MB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBySzRNYXYjCpeYnDLwg9afiEkMuXwmhyUp74BL18SkYN9mrgcEbEmA 13CiCq+hhdJDqc82g03+29NH7nvBDndKGS463YdCc/m4FPrBBsBDdfnrY/oKFoEy zE8ZaZ4djjIIEH4Ac9vNzCZq3tCtGgsWQXyZLLgFPD5G6p6bFKl/GaN7uTCGQtB/ KVchTAK5lhJ8mrBVCV705dVcF1q16dtBEirr6h5iRaGD9okna2OPgzA1ZnDwjbQe /+i1WOlAG6tjhBpEzP6+2CURSqES3TPcvWbE4haHL2FCq779aAkbLeBNzpy2tovF stMUVBsB48QNtzS25OnYzkyVe3sYbiA+ -----END CERTIFICATE-----Generated at Wed Nov 5 12:20:44 2025 by rpki-client