$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: kkeOXSCC7P/aneYrFHZ4WOA1zv0iCdWkZAMxWTXsG7Q= Subject key identifier: 62:5F:6F:1D:75:E4:B2:34:6C:1B:F8:6A:C8:65:16:91:6E:90:C3:2F Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 228A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 2248 Signing time: Tue 04 Nov 2025 15:58:31 +0000 Manifest this update: Tue 04 Nov 2025 15:58:30 +0000 Manifest next update: Tue 11 Nov 2025 15:58:30 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: 00C0CshopS1FCV+L9QRLLjfn/FrfbudzGWWuwZEgkyA=) 2: BC5760CCA5D111F0920A5141C4F9AE02.roa (hash: da8zKUbyUZGwb5HABb37fYfHKzfSnIUJ7+JC+mjU6yY=) 3: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: yWabycL0fNoBRknav9eJgJDTlAAj5pKSPiafY7/LIVs=) 4: B6193EAEA9C511F09E184A44C4F9AE02.roa (hash: dxODIUi2Hl5PKyoAHvL00XDmUpx53ZlUVr8zHJ83HOY=) 5: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: ufRP0kK3djHrA/ocR3A1nqvMa2k06cLGhMe2wbwduh4=) 6: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: KNbruYSf1caR+avFgp2kJOhFS2xDq+YQHk8sfsca8TA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8842 (0x228a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Nov 4 15:58:30 2025 GMT Not After : Nov 11 15:58:30 2025 GMT Subject: CN=690a22a6-9a1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:af:f6:b0:09:86:a9:7e:ea:e0:03:8e:ae:db: a4:92:77:b5:ba:7a:bf:04:dc:57:af:47:98:ee:53: 7c:93:01:3a:f6:bd:29:36:e8:d3:fc:52:63:f5:f9: 97:b0:4f:3c:bf:90:3e:ed:41:32:2a:ab:35:e1:92: 46:1b:29:61:0e:71:22:dc:8b:e6:0c:7b:76:ec:c6: e5:dd:cc:17:e1:07:67:a1:1a:a3:e8:ea:a5:8d:51: 68:b2:b4:a3:90:56:cb:23:2e:1b:6c:4b:ff:d2:8c: 8a:b6:67:e0:e3:2f:2a:54:21:ed:93:0c:04:b5:16: 6e:aa:04:bd:cb:69:b0:9b:5e:bb:6c:d2:55:22:49: 01:63:ee:39:f6:31:9b:b2:b7:54:ae:2e:57:89:1b: fd:b3:38:c6:f9:95:7f:30:48:86:45:fa:60:6a:df: 0b:a0:b3:dc:eb:c1:65:e9:1c:be:2d:6c:47:bb:b8: 3c:37:5e:f8:ee:7b:7d:51:83:06:71:0c:a7:f6:68: 39:5b:8e:9f:8d:ce:fe:ef:04:68:e7:1d:ed:45:5d: 49:33:f6:82:e2:e2:3d:84:78:63:6d:db:13:d6:b1: 0a:b8:b4:d8:aa:e0:cb:b1:af:89:08:5b:f8:79:0a: 85:4e:5c:72:6b:62:11:80:4f:03:48:5b:80:0e:22: c3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5F:6F:1D:75:E4:B2:34:6C:1B:F8:6A:C8:65:16:91:6E:90:C3:2F X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:b4:eb:63:7d:c3:cc:03:71:9f:c2:c5:fb:a3:a4:16:0d:c4: c0:40:b9:1f:d0:ff:22:ac:0e:5b:29:bb:0e:77:45:3f:94:d7: ad:a7:af:22:1f:95:97:9f:ef:4a:37:37:01:1f:f7:8f:2a:a3: d9:5e:f6:b3:f6:9c:f0:e7:41:33:21:4c:01:fd:4b:f5:31:79: 18:cd:79:e6:fb:0d:b9:51:fc:77:47:2f:07:21:5b:1d:60:18: 9e:d1:48:aa:bc:10:78:dc:7e:7e:9c:16:d2:b5:ae:23:2a:42: 71:e9:11:af:c1:c3:15:a3:b2:71:22:59:b8:1d:45:26:c2:e8: e0:16:83:ce:00:73:9c:d4:bc:52:42:87:59:b6:de:d7:08:dd: b9:cd:0e:e2:44:7e:49:1e:04:c6:28:c2:c3:21:58:9b:0f:1a: ee:78:75:68:0a:f2:76:64:3e:0e:f3:3c:ac:b6:d4:58:90:63: 86:30:32:fa:18:31:2e:42:48:fa:88:ec:13:61:06:6a:94:29: c6:ab:79:49:c7:05:01:15:1d:7e:55:68:78:e3:4a:9b:4a:73: b2:ff:ff:9a:68:74:9e:48:d8:53:ad:43:8f:64:e5:e0:63:35: c6:39:68:84:6a:af:eb:46:e5:f1:2c:2c:2f:2b:ca:f3:bb:c2: 42:a5:37:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUxMTA0MTU1ODMwWhcNMjUxMTExMTU1ODMwWjAYMRYwFAYD VQQDEw02OTBhMjJhNi05YTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArq/2sAmGqX7q4AOOrtukkne1unq/BNxXr0eY7lN8kwE69r0pNujT/FJj9fmX sE88v5A+7UEyKqs14ZJGGylhDnEi3IvmDHt27Mbl3cwX4QdnoRqj6OqljVFosrSj kFbLIy4bbEv/0oyKtmfg4y8qVCHtkwwEtRZuqgS9y2mwm167bNJVIkkBY+459jGb srdUri5XiRv9szjG+ZV/MEiGRfpgat8LoLPc68Fl6Ry+LWxHu7g8N1747nt9UYMG cQyn9mg5W46fjc7+7wRo5x3tRV1JM/aC4uI9hHhjbdsT1rEKuLTYquDLsa+JCFv4 eQqFTlxya2IRgE8DSFuADiLDaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJfbx11 5LI0bBv4ashlFpFukMMvMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6tOtjfcPMA3GfwsX7o6QWDcTAQLkf0P8irA5bKbsOd0U/lNetp68i H5WXn+9KNzcBH/ePKqPZXvaz9pzw50EzIUwB/Uv1MXkYzXnm+w25Ufx3Ry8HIVsd YBie0UiqvBB43H5+nBbSta4jKkJx6RGvwcMVo7JxIlm4HUUmwujgFoPOAHOc1LxS QodZtt7XCN25zQ7iRH5JHgTGKMLDIVibDxrueHVoCvJ2ZD4O8zysttRYkGOGMDL6 GDEuQkj6iOwTYQZqlCnGq3lJxwUBFR1+VWh440qbSnOy//+aaHSeSNhTrUOPZOXg YzXGOWiEaq/rRuXxLCwvK8rzu8JCpTcX -----END CERTIFICATE-----Generated at Wed Nov 5 00:23:52 2025 by rpki-client