$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft File: cFWB1AyVgaJlHlMlI42zvcs6fQU.mft (raw, json) Hash identifier: a0dkZT8Cu1cdVICT8DX13X11w6IAyu1sFFaPHd6VHJU= Subject key identifier: BD:28:50:11:A8:82:47:05:3D:04:66:6D:FB:B9:5E:00:51:F3:24:B2 Authority key identifier: 70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 Certificate issuer: /CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft Manifest number: 03E3 Signing time: Wed 05 Nov 2025 00:40:53 +0000 Manifest this update: Wed 05 Nov 2025 00:40:53 +0000 Manifest next update: Wed 12 Nov 2025 00:40:53 +0000 Files and hashes: 1: cFWB1AyVgaJlHlMlI42zvcs6fQU.crl (hash: 5v58kNNAvq7yosj/uA+5WTKs42VX/Wh3keacRZYUYME=) 2: 6CDC639EA04411EC8A7E5E2CC4F9AE02.roa (hash: WktAZLAHSw7QkU+hNH84sEG4OXo+/tq5XSlAqKGLv18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D91, serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Validity Not Before: Nov 5 00:40:53 2025 GMT Not After : Nov 12 00:40:53 2025 GMT Subject: CN=690a9d15-ee20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:e6:3a:65:1c:75:ef:12:4a:5e:d9:77:fa: 31:a9:5e:97:8d:6c:28:40:68:07:93:39:09:fd:e9: 83:aa:72:f3:81:ce:08:63:40:48:d1:61:d7:2a:55: 57:04:fb:b9:f8:28:94:43:98:4e:4c:3c:bf:37:9f: c5:2c:bd:88:3e:d6:59:2f:1b:10:35:a5:19:d9:1f: 97:07:ed:6d:6e:99:af:f4:93:55:a2:0f:f2:bd:08: f3:08:40:32:d4:76:3e:cb:6f:c9:82:e1:b3:a3:1f: fb:9b:35:7f:59:81:42:c2:fc:0e:07:00:47:5e:6e: f8:b5:08:22:f7:19:25:14:4c:10:91:e9:b8:f3:69: c0:3c:20:6f:9e:0c:9a:7b:71:1a:42:1d:01:a3:31: 6d:84:14:a1:e4:7b:a2:db:fe:92:c1:ce:b1:29:18: 84:02:51:b9:31:a2:8c:d5:fb:05:1c:f8:1d:f8:34: aa:47:10:0d:08:54:99:e3:1e:0c:62:b8:58:d8:2c: 1a:88:bb:fb:44:77:80:83:27:f1:db:fd:84:53:40: 33:9c:aa:39:de:4a:b0:b3:39:2f:2d:00:2a:d0:31: c2:b8:0e:03:88:3e:cb:8d:0e:72:ff:39:9c:7e:dc: e2:e2:f5:e0:45:83:c2:0e:bb:6f:d4:b4:91:1b:20: db:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:28:50:11:A8:82:47:05:3D:04:66:6D:FB:B9:5E:00:51:F3:24:B2 X509v3 Authority Key Identifier: keyid:70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:17:84:7e:26:3b:ba:2d:be:34:89:f8:50:41:72:91:4a:ec: 28:b7:fe:ae:ee:3e:d0:13:78:37:c3:81:9f:0a:5b:6f:92:00: 83:f8:eb:02:d1:c1:5f:2b:10:89:43:93:30:0a:6a:73:0f:ea: 3f:05:4e:8f:2d:0b:b8:03:1d:d3:ee:60:5f:e9:91:6c:8f:a8: 2c:df:65:9d:7e:bb:42:6d:c7:bd:28:b6:21:78:06:41:6d:2f: 98:46:f2:2e:34:9f:42:9b:f0:76:06:b5:6e:b7:53:e8:ee:a4: ad:cd:09:ed:1a:23:d1:e8:07:c5:af:35:50:ff:b8:49:60:93: cb:2c:88:c6:32:e3:9c:ea:a2:0f:dd:d7:9f:12:fe:4c:23:41: 5e:76:78:b0:54:7f:86:cb:6c:ac:00:5e:b9:2c:cd:43:f8:0b: ea:68:76:97:57:09:a9:c3:63:71:8b:1e:91:aa:b2:ed:db:19: 50:68:d5:9e:cd:ae:1e:de:a9:e1:51:27:f0:e0:5e:0a:a5:22: 76:b6:8f:cc:ae:0d:cc:21:12:a0:a8:b8:78:28:87:35:ef:90: b2:11:a3:c0:e2:18:bd:dc:2a:d3:18:93:8d:94:21:50:fc:68: 86:3a:1b:28:d6:fe:7b:4c:47:c7:d6:b0:22:2d:cd:85:dd:dd: 0a:0a:d6:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFEOTExMTAvBgNVBAUTKDcwNTU4MUQ0MEM5NTgxQTI2NTFFNTMyNTIzOERCM0JE Q0IzQTdEMDUwHhcNMjUxMTA1MDA0MDUzWhcNMjUxMTEyMDA0MDUzWjAYMRYwFAYD VQQDEw02OTBhOWQxNS1lZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDHmOmUcde8SSl7Zd/oxqV6XjWwoQGgHkzkJ/emDqnLzgc4IY0BI0WHXKlVX BPu5+CiUQ5hOTDy/N5/FLL2IPtZZLxsQNaUZ2R+XB+1tbpmv9JNVog/yvQjzCEAy 1HY+y2/JguGzox/7mzV/WYFCwvwOBwBHXm74tQgi9xklFEwQkem482nAPCBvngya e3EaQh0BozFthBSh5Hui2/6Swc6xKRiEAlG5MaKM1fsFHPgd+DSqRxANCFSZ4x4M YrhY2CwaiLv7RHeAgyfx2/2EU0AznKo53kqwszkvLQAq0DHCuA4DiD7LjQ5y/zmc ftzi4vXgRYPCDrtv1LSRGyDb6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0oUBGo gkcFPQRmbfu5XgBR8ySyMB8GA1UdIwQYMBaAFHBVgdQMlYGiZR5TJSONs73LOn0F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ5MS81RDhDMTcxMkEw NDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5VmdhSmxIbE1sSTQyenZjczZm UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGV0IxQXlWZ2FKbEhsTWxJNDJ6dmNzNmZRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ5MS81RDhDMTcxMkEwNDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5Vmdh SmxIbE1sSTQyenZjczZmUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArF4R+Jju6Lb40ifhQQXKRSuwot/6u7j7QE3g3w4GfCltvkgCD+OsC 0cFfKxCJQ5MwCmpzD+o/BU6PLQu4Ax3T7mBf6ZFsj6gs32WdfrtCbce9KLYheAZB bS+YRvIuNJ9Cm/B2BrVut1Po7qStzQntGiPR6AfFrzVQ/7hJYJPLLIjGMuOc6qIP 3defEv5MI0FedniwVH+Gy2ysAF65LM1D+AvqaHaXVwmpw2Nxix6RqrLt2xlQaNWe za4e3qnhUSfw4F4KpSJ2to/Mrg3MIRKgqLh4KIc175CyEaPA4hi93CrTGJONlCFQ /GiGOhso1v57TEfH1rAiLc2F3d0KCtbY -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:53 2025 by rpki-client