$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft File: mFpmWpz7T1ygDsqL_rgGML9PSBY.mft (raw, json) Hash identifier: fOhkF0VEzosD0VJ71ftuzcJYQ1UfgHRnwB2CceTrxJM= Subject key identifier: BC:C5:D0:82:DB:2A:3B:EE:C1:C7:9E:C0:93:99:A9:44:CB:F6:A0:0E Authority key identifier: 98:5A:66:5A:9C:FB:4F:5C:A0:0E:CA:8B:FE:B8:06:30:BF:4F:48:16 Certificate issuer: /CN=A91E6D5D/serialNumber=985A665A9CFB4F5CA00ECA8BFEB80630BF4F4816 Certificate serial: 258A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft Manifest number: A085 Signing time: Tue 04 Nov 2025 14:32:49 +0000 Manifest this update: Tue 04 Nov 2025 14:32:48 +0000 Manifest next update: Tue 11 Nov 2025 14:32:48 +0000 Files and hashes: 1: mFpmWpz7T1ygDsqL_rgGML9PSBY.crl (hash: 8dw3xP373ughi/RdY95SEDyRyBOCf9QAfuhEI4T8axE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9610 (0x258a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=985A665A9CFB4F5CA00ECA8BFEB80630BF4F4816 Validity Not Before: Nov 4 14:32:48 2025 GMT Not After : Nov 11 14:32:48 2025 GMT Subject: CN=690a0e90-4573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:78:a2:23:2e:94:20:dc:5e:60:3e:71:0c:b0: 08:0e:cc:b7:cc:46:13:98:48:1d:a5:6e:4b:f9:7b: 19:96:37:13:15:1c:fd:30:37:8d:3c:aa:58:01:0f: d3:2a:24:eb:e7:23:98:6a:d2:ca:a7:62:cf:ed:d7: b5:2d:33:38:64:e2:d9:06:dc:a0:b2:fa:c0:22:23: 7c:4e:bd:de:7e:25:79:37:8a:9f:52:84:c0:9b:e7: 26:5f:e9:2b:fb:8f:93:dd:4a:ad:47:11:cc:0b:cd: 77:5c:72:61:3e:20:ef:d4:95:e4:90:59:33:1c:be: ca:4c:8b:7c:4e:b3:15:29:00:d5:e4:9a:80:67:9c: 6b:82:4e:7c:9d:aa:f7:b2:23:5d:7e:01:fc:d6:84: db:85:3f:ab:f4:9a:b1:33:2c:e2:3d:21:d8:55:d8: 7a:06:f2:4b:45:9c:7e:e3:cf:69:07:91:2b:b4:81: b1:53:63:1d:fc:52:49:04:b0:b2:41:4d:5f:c3:63: cb:12:b4:f8:26:77:f9:9c:0a:5d:e1:94:b7:4b:e2: 3a:fa:06:8e:a0:5e:2d:6d:11:d8:47:95:1c:56:a7: 63:b0:a3:fc:3a:55:17:bc:d7:a6:1c:2a:1d:7c:b6: db:1e:aa:61:e4:78:06:3b:83:c0:28:04:a8:4a:9c: 14:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C5:D0:82:DB:2A:3B:EE:C1:C7:9E:C0:93:99:A9:44:CB:F6:A0:0E X509v3 Authority Key Identifier: keyid:98:5A:66:5A:9C:FB:4F:5C:A0:0E:CA:8B:FE:B8:06:30:BF:4F:48:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:cf:30:50:f4:ef:8a:52:13:2e:05:d7:fa:fe:26:ad:58:ef: 01:e4:a6:01:df:95:e5:e7:9a:e9:c4:e4:e8:eb:38:b0:99:89: 57:91:45:ad:91:d5:8a:26:b0:ee:6f:50:fe:e8:d0:91:f2:f0: 81:cc:1d:95:c2:a1:aa:10:da:91:f1:cf:dc:b8:89:39:9d:0e: 31:c7:61:eb:3f:39:27:88:1c:da:55:6b:b2:84:7b:3f:c6:c7: 05:68:f0:4d:f2:ce:79:aa:f3:fd:be:60:cf:bc:0b:56:01:6f: 10:82:b7:b5:e2:e0:12:bc:84:ea:db:00:42:20:fb:ca:50:16: 83:3c:e1:dd:f9:13:d3:8a:57:42:81:2e:83:5f:bf:7f:17:1b: ed:7a:a7:45:37:c7:0f:31:f6:99:be:da:10:54:cb:d5:45:aa: 4e:7b:ed:b4:d4:41:2a:20:08:7e:96:5b:a6:a7:21:ce:f0:f8: ba:9e:64:f5:18:af:6d:f5:e0:9e:91:c8:4b:3c:d6:ce:d9:0c: 3f:00:44:6a:c9:fc:bc:ca:d8:5d:60:28:17:87:2e:91:ca:15: 83:b7:0e:70:73:7c:74:de:7d:93:40:fe:10:a4:51:c8:eb:0f: 60:67:0e:80:4c:55:57:ab:fb:64:e5:2b:3e:8a:b7:75:e0:b7: 18:e8:23:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDk4NUE2NjVBOUNGQjRGNUNBMDBFQ0E4QkZFQjgwNjMw QkY0RjQ4MTYwHhcNMjUxMTA0MTQzMjQ4WhcNMjUxMTExMTQzMjQ4WjAYMRYwFAYD VQQDEw02OTBhMGU5MC00NTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0niiIy6UINxeYD5xDLAIDsy3zEYTmEgdpW5L+XsZljcTFRz9MDeNPKpYAQ/T KiTr5yOYatLKp2LP7de1LTM4ZOLZBtygsvrAIiN8Tr3efiV5N4qfUoTAm+cmX+kr +4+T3UqtRxHMC813XHJhPiDv1JXkkFkzHL7KTIt8TrMVKQDV5JqAZ5xrgk58nar3 siNdfgH81oTbhT+r9JqxMyziPSHYVdh6BvJLRZx+489pB5ErtIGxU2Md/FJJBLCy QU1fw2PLErT4Jnf5nApd4ZS3S+I6+gaOoF4tbRHYR5UcVqdjsKP8OlUXvNemHCod fLbbHqph5HgGO4PAKASoSpwUvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzF0ILb KjvuwceewJOZqUTL9qAOMB8GA1UdIwQYMBaAFJhaZlqc+09coA7Ki/64BjC/T0gW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9tRnBtV3B6N1QxeWdEc3FMX3JnR01MOVBT QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21GcG1XcHo3VDF5Z0RzcUxfcmdHTUw5UFNCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9tRnBtV3B6N1Qx eWdEc3FMX3JnR01MOVBTQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+zzBQ9O+KUhMuBdf6/iatWO8B5KYB35Xl55rpxOTo6ziwmYlXkUWt kdWKJrDub1D+6NCR8vCBzB2VwqGqENqR8c/cuIk5nQ4xx2HrPzkniBzaVWuyhHs/ xscFaPBN8s55qvP9vmDPvAtWAW8Qgre14uASvITq2wBCIPvKUBaDPOHd+RPTildC gS6DX79/FxvteqdFN8cPMfaZvtoQVMvVRapOe+201EEqIAh+llumpyHO8Pi6nmT1 GK9t9eCekchLPNbO2Qw/AERqyfy8ythdYCgXhy6RyhWDtw5wc3x03n2TQP4QpFHI 6w9gZw6ATFVXq/tk5Ss+ird14LcY6CO+ -----END CERTIFICATE-----Generated at Wed Nov 5 13:28:54 2025 by rpki-client