$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: I8DdGSBIH48687QelmWRmtPa5RAq1ASZaqcQdbIsF9A= Subject key identifier: 93:CC:3B:67:56:9A:E4:1F:2A:11:AD:6F:3F:FE:A2:1D:45:1D:48:14 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0549 Signing time: Tue 04 Nov 2025 23:32:13 +0000 Manifest this update: Tue 04 Nov 2025 23:32:12 +0000 Manifest next update: Tue 11 Nov 2025 23:32:12 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: wcy1UbQ1yPtc2nR3ruWCZ/T8X9gHBjM8gTZ1AoDo+3M=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: 4gKis+++tXEeHG38EwpejzSM+kE6A6gIMsrjZpkNJeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1364 (0x554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Nov 4 23:32:12 2025 GMT Not After : Nov 11 23:32:12 2025 GMT Subject: CN=690a8cfd-f50b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:82:d0:5e:0e:ae:6b:e3:11:94:bd:c6:dd:20: 1d:03:94:4e:f7:e2:74:1d:31:04:48:99:97:fa:2d: 63:b0:11:41:66:01:3b:14:fd:4b:ea:6a:23:9f:01: 7e:2d:e0:86:89:2c:c4:29:74:5e:f5:db:1b:72:4e: 86:24:9b:fa:3a:b3:11:02:8d:52:d7:51:89:ac:50: 4f:ff:e1:75:a3:16:94:fc:56:5e:b3:ac:9f:c5:d8: b4:86:fc:92:44:a0:5a:c4:61:dd:b1:39:87:10:9c: d1:d1:91:17:14:3c:cb:22:1e:8a:31:6c:87:ba:55: 04:4e:2a:42:aa:96:d1:4b:2b:4d:89:6b:24:4b:af: bb:cc:70:c4:31:da:75:03:dc:9a:3c:4f:cc:61:c7: 0e:c2:72:be:c7:ee:e6:a9:f6:6a:c0:58:31:01:b6: c4:03:e3:b3:30:98:67:2c:aa:d4:e5:d2:91:5c:c5: 76:80:36:63:f2:cc:af:e4:2f:97:b6:38:3e:bc:06: c6:3e:47:59:e9:d4:0f:75:fe:62:7a:4e:d5:79:c4: 2d:79:3c:88:fb:25:af:b8:92:26:72:73:36:b2:cf: 9c:0e:31:eb:ae:b2:39:bb:58:38:7b:f5:d8:72:ad: 04:cd:e1:f7:8e:f6:dd:a2:65:f3:93:72:22:3f:20: d1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CC:3B:67:56:9A:E4:1F:2A:11:AD:6F:3F:FE:A2:1D:45:1D:48:14 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:44:13:ed:2c:5a:85:f8:33:9b:54:08:84:3d:4d:9e:9b:be: 42:72:dd:a5:51:dd:6e:93:97:3c:a2:0f:42:8b:f6:d4:a3:2b: 03:b9:49:f4:7e:00:22:27:9b:93:26:7e:cd:5a:1d:46:ac:9b: 83:fe:71:1f:45:ff:09:de:d2:a4:39:dc:e7:a6:1e:80:2f:c7: 99:83:f3:f1:99:a3:6c:cc:46:9f:6c:37:9f:95:36:f1:e3:8f: 7a:a1:a8:cc:70:2b:02:c8:12:80:f7:80:34:a4:53:a1:36:0d: 91:74:94:26:47:e6:71:7a:ff:d3:ec:82:24:b7:8f:ce:88:af: 69:da:90:11:08:8f:82:ee:8f:8c:12:89:b9:ce:51:3e:64:a0: 65:e4:9e:3c:53:be:67:12:3b:68:59:22:b7:d0:81:5f:ac:43: 91:51:da:7c:c0:bb:cf:a1:f1:25:75:3e:ab:16:49:a7:18:31: d2:cc:5d:76:26:43:01:35:0f:44:52:c1:41:c4:c1:ff:58:fc: c4:f0:95:70:be:e4:a9:5d:75:e1:89:9d:ed:f7:f7:0c:52:30: 0b:7f:8d:e2:5f:cc:c5:a7:ad:c7:be:83:3b:50:b3:09:b6:19: f0:e9:91:23:d6:c5:59:a5:34:ce:ed:c2:76:4f:4a:c2:8c:0e: 97:8c:c0:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUxMTA0MjMzMjEyWhcNMjUxMTExMjMzMjEyWjAYMRYwFAYD VQQDEw02OTBhOGNmZC1mNTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ILQXg6ua+MRlL3G3SAdA5RO9+J0HTEESJmX+i1jsBFBZgE7FP1L6mojnwF+ LeCGiSzEKXRe9dsbck6GJJv6OrMRAo1S11GJrFBP/+F1oxaU/FZes6yfxdi0hvyS RKBaxGHdsTmHEJzR0ZEXFDzLIh6KMWyHulUETipCqpbRSytNiWskS6+7zHDEMdp1 A9yaPE/MYccOwnK+x+7mqfZqwFgxAbbEA+OzMJhnLKrU5dKRXMV2gDZj8syv5C+X tjg+vAbGPkdZ6dQPdf5iek7VecQteTyI+yWvuJImcnM2ss+cDjHrrrI5u1g4e/XY cq0EzeH3jvbdomXzk3IiPyDRiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPMO2dW muQfKhGtbz/+oh1FHUgUMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClRBPtLFqF+DObVAiEPU2em75Cct2lUd1uk5c8og9Ci/bUoysDuUn0 fgAiJ5uTJn7NWh1GrJuD/nEfRf8J3tKkOdznph6AL8eZg/PxmaNszEafbDeflTbx 4496oajMcCsCyBKA94A0pFOhNg2RdJQmR+Zxev/T7IIkt4/OiK9p2pARCI+C7o+M Eom5zlE+ZKBl5J48U75nEjtoWSK30IFfrEORUdp8wLvPofEldT6rFkmnGDHSzF12 JkMBNQ9EUsFBxMH/WPzE8JVwvuSpXXXhiZ3t9/cMUjALf43iX8zFp63HvoM7ULMJ thnw6ZEj1sVZpTTO7cJ2T0rCjA6XjMDF -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:16 2025 by rpki-client