$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft File: 4190GdVyqG920uv3gpq22dA0CQU.mft (raw, json) Hash identifier: 2NReXhY3wnKYkbVm9f44CbrKJNRmM8RR0m3iBZxzNTs= Subject key identifier: B0:2A:0F:DD:1E:85:17:F5:A0:96:41:22:F4:20:BC:B5:C3:49:EC:B7 Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft Manifest number: 01AA Signing time: Wed 05 Nov 2025 03:19:47 +0000 Manifest this update: Wed 05 Nov 2025 03:19:46 +0000 Manifest next update: Wed 12 Nov 2025 03:19:46 +0000 Files and hashes: 1: 4190GdVyqG920uv3gpq22dA0CQU.crl (hash: 2cBuE9oJ3NeGplngj+MSFJ7XZYLDZasI8NKOR9Ph4bY=) 2: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (hash: gPmbtMjtLenMFEAnNmFzzGl8ckVYYI4uHTkTnXpU64U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Nov 5 03:19:46 2025 GMT Not After : Nov 12 03:19:46 2025 GMT Subject: CN=690ac252-bcb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:67:ef:9e:78:a7:41:cb:2f:c1:68:ef:e1: 51:40:af:b1:75:3f:f6:c4:b7:05:8c:ce:c6:ad:11: 3d:0e:f8:35:d1:6e:f7:40:f8:6c:40:25:6c:a3:b3: 6a:73:4a:b9:83:f7:d2:2b:b8:35:a2:8f:29:bb:28: bc:9d:a3:2c:56:4b:15:20:e9:74:66:c9:4c:2c:f8: b0:5d:83:41:75:16:78:18:ba:82:5f:3d:7a:f1:de: 90:d2:dc:26:22:9a:45:07:b4:d5:8f:f2:e2:10:f3: 80:b3:cd:86:60:b5:d6:69:6d:42:db:9f:10:0a:6c: 85:9d:f3:04:f4:cb:92:3e:30:cd:81:87:01:23:35: 92:c7:0f:70:15:47:7e:97:6a:49:fe:5f:b5:c9:2f: ad:e5:65:c8:36:0c:d0:4a:1f:5d:c4:4f:db:c9:35: bf:12:eb:ca:9f:c9:8b:65:93:f2:cc:82:dc:16:0f: 62:bd:8d:d2:f6:d7:48:05:e5:50:e7:4a:44:ca:ae: cd:d5:cd:15:9e:30:2a:b1:10:7e:a3:e9:21:27:fe: b1:13:b2:80:46:68:e7:94:2c:61:02:2d:e7:25:0e: fe:60:0c:b3:54:f2:7b:a9:c5:63:a7:d8:8a:94:09: bc:79:60:4f:50:89:3f:0b:fe:b4:db:be:02:6d:19: 15:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2A:0F:DD:1E:85:17:F5:A0:96:41:22:F4:20:BC:B5:C3:49:EC:B7 X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:98:42:45:d2:44:75:47:4f:10:b3:0e:31:83:bd:7c:55:60: a7:5f:58:a3:61:62:c7:6a:2e:31:75:fd:b2:62:05:42:a0:a9: f0:b3:fd:c8:a5:e0:86:b4:cb:53:5c:f7:71:23:9e:f6:8b:b1: 38:cb:d5:12:36:e1:82:17:0a:8f:c3:4d:a2:67:91:11:9b:80: 39:9b:e5:6b:73:a8:bf:0b:38:56:19:4d:81:d2:9c:04:07:bd: 49:37:c3:35:9a:9e:ff:e9:43:e9:a1:0d:ce:ab:4f:a5:ec:44: 0b:a5:5a:f7:a6:27:63:bc:00:11:a7:47:47:dc:56:11:15:f2: 30:91:f2:7e:ef:e4:c9:e6:98:d9:7a:57:59:cd:e8:05:ba:54: 1a:70:a1:2f:20:b8:b6:e8:16:fd:8f:be:c3:8f:ec:89:0a:81: c2:49:7a:a6:c8:97:39:d8:9c:e9:14:50:b0:8f:db:ec:1b:3e: df:26:ad:1d:e4:46:2e:cb:d6:da:46:7d:36:44:e6:4e:70:c3: af:7a:4c:71:28:59:47:32:60:28:5f:7f:fd:cb:9f:50:c8:9c: 25:60:1c:d8:3e:91:fa:34:a5:62:1b:dd:f7:a0:bf:18:92:b2: d0:0f:92:a4:15:90:9d:73:f0:c8:60:4e:3a:bf:ac:e4:a6:0c: b3:d1:54:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUxMTA1MDMxOTQ2WhcNMjUxMTEyMDMxOTQ2WjAYMRYwFAYD VQQDEw02OTBhYzI1Mi1iY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX1n7554p0HLL8Fo7+FRQK+xdT/2xLcFjM7GrRE9Dvg10W73QPhsQCVso7Nq c0q5g/fSK7g1oo8puyi8naMsVksVIOl0ZslMLPiwXYNBdRZ4GLqCXz168d6Q0twm IppFB7TVj/LiEPOAs82GYLXWaW1C258QCmyFnfME9MuSPjDNgYcBIzWSxw9wFUd+ l2pJ/l+1yS+t5WXINgzQSh9dxE/byTW/EuvKn8mLZZPyzILcFg9ivY3S9tdIBeVQ 50pEyq7N1c0VnjAqsRB+o+khJ/6xE7KARmjnlCxhAi3nJQ7+YAyzVPJ7qcVjp9iK lAm8eWBPUIk/C/60274CbRkVeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAqD90e hRf1oJZBIvQgvLXDSey3MB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGNS8zM0Y3MjU4NjJEMTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFH OTIwdXYzZ3BxMjJkQTBDUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXmEJF0kR1R08Qsw4xg718VWCnX1ijYWLHai4xdf2yYgVCoKnws/3I peCGtMtTXPdxI572i7E4y9USNuGCFwqPw02iZ5ERm4A5m+Vrc6i/CzhWGU2B0pwE B71JN8M1mp7/6UPpoQ3Oq0+l7EQLpVr3pidjvAARp0dH3FYRFfIwkfJ+7+TJ5pjZ eldZzegFulQacKEvILi26Bb9j77Dj+yJCoHCSXqmyJc52JzpFFCwj9vsGz7fJq0d 5EYuy9baRn02ROZOcMOvekxxKFlHMmAoX3/9y59QyJwlYBzYPpH6NKViG933oL8Y krLQD5KkFZCdc/DIYE46v6zkpgyz0VSU -----END CERTIFICATE-----Generated at Wed Nov 5 10:02:00 2025 by rpki-client