$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: rsEkibPqMla/Xa6AvRuOmODIZtZzHVZxS3+TK8Vm6Bo= Subject key identifier: 42:38:88:77:57:8D:72:DF:D9:06:BF:97:13:4C:F9:BC:FF:00:65:D0 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 02FF Signing time: Mon 03 Nov 2025 01:08:11 +0000 Manifest this update: Mon 03 Nov 2025 01:08:10 +0000 Manifest next update: Mon 10 Nov 2025 01:08:10 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: WHzHut/KxwMrM4zBP3jGrQGRMJqN/H7zt3eMQ2798Ww=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Nov 3 01:08:10 2025 GMT Not After : Nov 10 01:08:10 2025 GMT Subject: CN=6908007a-2979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f9:2b:bd:9d:8d:67:88:2e:45:b5:91:24:75: d1:d7:60:55:92:40:7a:78:6c:dc:9d:51:9c:4c:66: ce:6d:e2:69:22:4e:48:b7:35:74:11:d5:d5:d9:ac: 2f:22:55:9c:89:0d:0e:6d:9d:48:ee:30:c0:7e:b5: a5:4f:de:e5:2a:a1:57:bb:49:c4:d3:9d:b3:19:fb: 09:58:20:fd:34:83:37:6d:10:39:db:54:42:9c:93: 76:ba:d6:d2:d7:d9:17:dd:10:57:3b:43:e2:24:4f: b6:f8:95:fa:42:22:45:a4:4d:9e:0e:b8:5a:69:ea: 2d:0c:74:81:e9:bc:be:3a:8e:aa:39:72:18:7d:3d: 76:9c:70:cc:ca:48:3c:c9:4a:84:46:cd:8c:5c:46: 57:72:10:80:d0:14:d3:f7:83:2d:52:67:74:2c:51: b4:2b:2a:26:dd:e8:8c:b5:02:56:3a:0a:c6:4f:c6: eb:a8:51:c7:37:fa:3c:c5:82:28:30:ca:92:85:3b: 8b:ed:7c:45:f3:96:37:bc:c1:1d:19:e6:86:d7:1e: a4:ed:3e:02:e6:62:27:4a:2a:7d:5d:c6:d4:6d:f4: 60:e9:51:76:11:07:9f:8c:76:67:c6:00:ab:ea:a9: bb:d3:c5:d2:31:09:77:94:7b:50:aa:6a:5e:03:81: 13:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:38:88:77:57:8D:72:DF:D9:06:BF:97:13:4C:F9:BC:FF:00:65:D0 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:13:a5:7d:17:b3:0d:83:69:e9:ec:b5:18:64:a5:99:b3:81: 25:a6:bc:8a:c6:29:05:3c:e5:31:a2:c4:2b:ba:2d:ce:c6:d2: 6e:ce:21:da:5c:35:c5:aa:2e:c8:01:50:e9:b4:ac:0c:3a:e4: 84:f7:77:7d:90:a1:8f:96:28:d6:4b:12:87:60:c4:20:cf:35: c8:b6:82:f0:a8:03:a7:25:73:ef:02:24:b9:86:f5:b8:d8:7c: e9:3b:7b:12:73:38:1a:fa:67:66:8f:c2:d5:eb:25:f3:12:3c: 53:28:0d:b0:45:55:dd:c1:98:70:d8:a3:2e:0b:66:a2:0a:f0: 02:76:d7:75:6f:6b:7a:93:8f:95:51:8c:3d:9a:64:ec:17:37: fd:70:3a:a7:52:4c:c7:12:fe:a8:56:ab:35:ad:79:72:aa:d4: c3:58:76:f5:f8:65:14:05:fb:17:fd:4c:99:f4:14:f7:e9:da: 72:87:db:d6:d1:50:4f:3e:cd:88:ce:6a:ce:99:6e:17:50:fe: 37:33:0f:50:4c:3f:a9:d1:8a:cd:ea:87:18:d0:1c:6e:e6:00: 4b:94:8b:8a:bc:ce:3d:25:92:b2:f1:0b:81:d5:ea:f2:f5:be: 24:f6:e5:ae:26:f0:40:73:01:1a:cc:96:bf:ac:b2:3e:f8:cb: c5:41:79:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUxMTAzMDEwODEwWhcNMjUxMTEwMDEwODEwWjAYMRYwFAYD VQQDEw02OTA4MDA3YS0yOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fkrvZ2NZ4guRbWRJHXR12BVkkB6eGzcnVGcTGbObeJpIk5ItzV0EdXV2awv IlWciQ0ObZ1I7jDAfrWlT97lKqFXu0nE052zGfsJWCD9NIM3bRA521RCnJN2utbS 19kX3RBXO0PiJE+2+JX6QiJFpE2eDrhaaeotDHSB6by+Oo6qOXIYfT12nHDMykg8 yUqERs2MXEZXchCA0BTT94MtUmd0LFG0Kyom3eiMtQJWOgrGT8brqFHHN/o8xYIo MMqShTuL7XxF85Y3vMEdGeaG1x6k7T4C5mInSip9XcbUbfRg6VF2EQefjHZnxgCr 6qm708XSMQl3lHtQqmpeA4ETZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI4iHdX jXLf2Qa/lxNM+bz/AGXQMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaE6V9F7MNg2np7LUYZKWZs4ElpryKxikFPOUxosQrui3OxtJuziHa XDXFqi7IAVDptKwMOuSE93d9kKGPlijWSxKHYMQgzzXItoLwqAOnJXPvAiS5hvW4 2HzpO3sSczga+mdmj8LV6yXzEjxTKA2wRVXdwZhw2KMuC2aiCvACdtd1b2t6k4+V UYw9mmTsFzf9cDqnUkzHEv6oVqs1rXlyqtTDWHb1+GUUBfsX/UyZ9BT36dpyh9vW 0VBPPs2IzmrOmW4XUP43Mw9QTD+p0YrN6ocY0Bxu5gBLlIuKvM49JZKy8QuB1ery 9b4k9uWuJvBAcwEazJa/rLI++MvFQXkQ -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:58 2025 by rpki-client