$ rpki-client -vvf rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft File: wngM_VepmGmT2_bA1r3u92tFGXI.mft (raw, json) Hash identifier: 8pcFk/usTGFXPhnjbPLrj6SUggvSCBYUB+RXvl5BGp8= Subject key identifier: 89:2A:C7:AD:39:0A:03:50:51:64:C8:88:E9:B1:26:A9:1E:D9:F5:FC Authority key identifier: C2:78:0C:FD:57:A9:98:69:93:DB:F6:C0:D6:BD:EE:F7:6B:45:19:72 Certificate issuer: /CN=A91E007B/serialNumber=C2780CFD57A9986993DBF6C0D6BDEEF76B451972 Certificate serial: 0AAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wngM_VepmGmT2_bA1r3u92tFGXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft Manifest number: 0AA3 Signing time: Tue 04 Nov 2025 19:37:54 +0000 Manifest this update: Tue 04 Nov 2025 19:37:53 +0000 Manifest next update: Tue 11 Nov 2025 19:37:53 +0000 Files and hashes: 1: wngM_VepmGmT2_bA1r3u92tFGXI.crl (hash: cuUSFEDtZXW4QZCn5sMZbijI+PJOhEQk4qIIyZzUODc=) 2: 828FBA521E3511EB800DB148C4F9AE02.roa (hash: oGaPAiCIGxwvx1m0yhdtvzk/Yk0mtLu3eaCey59T6YI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.crl rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wngM_VepmGmT2_bA1r3u92tFGXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2733 (0xaad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E007B, serialNumber=C2780CFD57A9986993DBF6C0D6BDEEF76B451972 Validity Not Before: Nov 4 19:37:53 2025 GMT Not After : Nov 11 19:37:53 2025 GMT Subject: CN=690a5612-32fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cf:ad:2f:02:19:57:1b:46:2e:1d:37:7c:4d: 2f:c9:fe:2e:fb:79:49:a3:76:d6:19:d9:a4:93:f1: 8b:e5:a6:63:95:a0:59:d6:e6:67:b1:cc:e8:9c:33: c8:5d:b8:c1:24:2c:c2:90:a0:0c:9a:43:11:88:7c: 79:f6:71:a7:1c:2f:14:04:8a:65:5e:82:fe:46:31: 98:86:ff:85:8c:6b:fb:b3:f5:41:af:d6:bc:9c:a4: 87:68:44:00:d1:2d:22:0f:47:24:45:73:d4:1d:d2: 3f:06:cc:d2:aa:36:20:90:02:c7:9a:48:ce:c8:b7: 84:8a:e1:2d:9b:5d:e4:44:99:95:f0:ec:e3:60:d3: e2:e0:a0:da:86:5b:08:37:48:03:54:d9:d7:fd:b0: 6d:b3:a9:02:10:c2:04:61:31:4f:ac:7b:fc:4a:77: b3:92:2d:5e:94:f2:37:d6:70:bb:24:c7:89:b5:22: af:c3:52:9c:bb:43:00:71:59:59:82:09:13:fe:2e: 84:bf:50:2e:d9:8e:fd:0e:30:14:d8:16:6b:89:ec: a0:95:21:fb:24:9b:74:10:83:1f:86:66:d7:a2:25: 68:27:59:1a:44:39:54:87:02:da:0d:bf:43:71:b9: 97:f0:67:0a:0f:f2:0f:71:59:fa:77:45:45:6e:1e: 21:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2A:C7:AD:39:0A:03:50:51:64:C8:88:E9:B1:26:A9:1E:D9:F5:FC X509v3 Authority Key Identifier: keyid:C2:78:0C:FD:57:A9:98:69:93:DB:F6:C0:D6:BD:EE:F7:6B:45:19:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wngM_VepmGmT2_bA1r3u92tFGXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E007B/09DE3482671311EAA4D26753C4F9AE02/wngM_VepmGmT2_bA1r3u92tFGXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a7:4e:ee:ae:00:2d:9b:86:30:11:a4:a9:88:71:21:62:28: 2f:3b:d0:51:c5:b1:30:17:71:6d:a2:a1:30:59:f0:66:64:a4: 7d:f0:ca:0e:09:75:ae:d5:ed:2c:30:e4:a8:19:88:d5:d4:95: 16:79:2f:cb:62:f3:81:f7:f6:ba:ae:e3:4c:c8:95:20:11:97: 93:b2:49:7f:b3:bc:77:a7:2f:25:e7:22:8d:7c:22:8a:62:b2: 91:63:34:82:ec:e0:8d:de:eb:38:9e:1f:d2:96:fb:59:ce:9d: e7:40:07:7f:38:e5:83:0a:70:d9:30:1c:26:d4:09:19:c3:0d: b2:2d:b9:c7:ad:83:76:ae:2d:56:16:6f:25:07:a8:59:6a:ad: 00:f6:a8:d3:c2:19:59:4e:40:c5:0c:7b:6d:ba:88:8a:5c:f6: d1:4d:7c:aa:c6:74:b0:3e:8b:43:4d:3d:4d:b4:32:fc:65:fc: 84:11:95:8c:09:54:57:c7:a3:f7:bb:a4:b3:a0:b0:11:51:7d: 64:e7:90:bb:b5:b0:c7:e0:6f:5e:68:ad:95:f9:7c:94:9d:f6: ea:eb:35:08:b0:00:3a:26:94:3c:d7:fb:88:a1:ba:67:b5:5b: 05:de:38:53:31:89:ff:80:74:4f:12:61:b5:d9:3a:c9:36:4d: 20:4b:a7:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAwN0IxMTAvBgNVBAUTKEMyNzgwQ0ZENTdBOTk4Njk5M0RCRjZDMEQ2QkRFRUY3 NkI0NTE5NzIwHhcNMjUxMTA0MTkzNzUzWhcNMjUxMTExMTkzNzUzWjAYMRYwFAYD VQQDEw02OTBhNTYxMi0zMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8+tLwIZVxtGLh03fE0vyf4u+3lJo3bWGdmkk/GL5aZjlaBZ1uZnsczonDPI XbjBJCzCkKAMmkMRiHx59nGnHC8UBIplXoL+RjGYhv+FjGv7s/VBr9a8nKSHaEQA 0S0iD0ckRXPUHdI/BszSqjYgkALHmkjOyLeEiuEtm13kRJmV8OzjYNPi4KDahlsI N0gDVNnX/bBts6kCEMIEYTFPrHv8Snezki1elPI31nC7JMeJtSKvw1Kcu0MAcVlZ ggkT/i6Ev1Au2Y79DjAU2BZrieyglSH7JJt0EIMfhmbXoiVoJ1kaRDlUhwLaDb9D cbmX8GcKD/IPcVn6d0VFbh4hlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkqx605 CgNQUWTIiOmxJqke2fX8MB8GA1UdIwQYMBaAFMJ4DP1XqZhpk9v2wNa97vdrRRly MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDA3Qi8wOURFMzQ4MjY3 MTMxMUVBQTREMjY3NTNDNEY5QUUwMi93bmdNX1ZlcG1HbVQyX2JBMXIzdTkydEZH WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3duZ01fVmVwbUdtVDJfYkExcjN1OTJ0RkdYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDA3Qi8wOURFMzQ4MjY3MTMxMUVBQTREMjY3NTNDNEY5QUUwMi93bmdNX1ZlcG1H bVQyX2JBMXIzdTkydEZHWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByp07urgAtm4YwEaSpiHEhYigvO9BRxbEwF3FtoqEwWfBmZKR98MoO CXWu1e0sMOSoGYjV1JUWeS/LYvOB9/a6ruNMyJUgEZeTskl/s7x3py8l5yKNfCKK YrKRYzSC7OCN3us4nh/SlvtZzp3nQAd/OOWDCnDZMBwm1AkZww2yLbnHrYN2ri1W Fm8lB6hZaq0A9qjTwhlZTkDFDHttuoiKXPbRTXyqxnSwPotDTT1NtDL8ZfyEEZWM CVRXx6P3u6SzoLARUX1k55C7tbDH4G9eaK2V+XyUnfbq6zUIsAA6JpQ81/uIobpn tVsF3jhTMYn/gHRPEmG12TrJNk0gS6fR -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:15 2025 by rpki-client