$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft File: xvdY7N3EybD3LwZcNa1UaXQycRs.mft (raw, json) Hash identifier: 8PY/LOqz1EM830dZ8JL+Ffr/wLk1Xqv/UG1R4mqgPM4= Subject key identifier: 1A:17:6B:4C:81:F3:85:5A:94:E9:33:5F:64:8C:20:C7:76:C1:03:EB Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft Manifest number: 89 Signing time: Mon 03 Nov 2025 06:43:52 +0000 Manifest this update: Mon 03 Nov 2025 06:43:51 +0000 Manifest next update: Mon 10 Nov 2025 06:43:51 +0000 Files and hashes: 1: xvdY7N3EybD3LwZcNa1UaXQycRs.crl (hash: jIAWGM/bDCZHA6tNoeT3Fh/+Lw4pYsTb6Sp96dgcC/4=) 2: D2E899F86EB511F0A3A63A59C4F9AE02.roa (hash: 0dFbZ0ducL2EHPg1wlqAHlDGhzD129B1kp1qJTYRuTU=) 3: 2C0E544C6EB511F094E66857C4F9AE02.roa (hash: MFMadZ9hIQ4pKDfnggH43mNknioivrdN+SzVsH0zBtQ=) 4: 917D3A184BED11F0A2F7CC21C4F9AE02.roa (hash: IYpTiwoDdKk+DKwv65zZ7BTxOeFfDIMdePJWFd5JpGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Nov 3 06:43:51 2025 GMT Not After : Nov 10 06:43:51 2025 GMT Subject: CN=69084f27-ff4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:62:07:be:87:0f:4f:e3:18:c2:49:b2:22: 79:4f:d1:82:35:c7:5a:5e:24:9c:58:9a:7e:f7:42: 27:b8:37:c6:25:54:40:8c:b7:8d:10:bb:e8:61:e8: ab:f1:ca:2b:7b:9e:d3:a2:ba:b0:db:5c:4e:28:66: 10:26:e0:fb:83:52:fc:a9:0b:a2:e8:4d:b4:65:a5: ed:5d:f7:0c:da:c1:24:6f:59:48:3b:0f:1d:03:79: d4:5e:13:08:93:b9:20:19:c2:37:ef:4f:0a:2d:92: 5d:45:93:10:5f:3b:f4:dc:41:d4:0c:91:aa:9e:c3: ed:69:0e:be:0d:c1:d7:45:b6:a1:70:e1:25:2c:5e: a0:73:76:14:1a:44:bf:7b:7b:c5:af:56:cb:0c:a0: 8a:d4:90:32:58:be:ae:13:af:ff:a0:55:ac:d6:45: 3e:cb:97:5e:bd:38:2e:f6:f2:61:1f:0a:1e:f8:4b: 5c:73:1f:9e:56:80:4e:64:a8:42:98:87:4f:f3:1b: da:09:d5:44:13:36:f2:09:de:ae:a6:c3:d6:35:ea: 33:2a:37:ef:ba:f0:cf:3f:04:57:e5:d3:c3:bc:b8: 46:06:12:73:69:ed:5d:41:78:bc:e6:12:d1:1a:21: 74:89:55:8a:1f:a8:72:cd:78:d4:1e:a9:cb:f8:0a: 92:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:17:6B:4C:81:F3:85:5A:94:E9:33:5F:64:8C:20:C7:76:C1:03:EB X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:7d:e7:4c:c1:1f:b7:1d:11:22:0e:f7:07:9b:fe:8b:e8:fe: de:fb:8f:6d:83:02:55:ae:7f:ff:d5:57:08:6f:a1:6e:23:38: 31:a7:59:ec:06:1b:fb:29:8b:ad:fe:64:0c:7e:03:bf:a9:d0: 29:fa:cb:ee:79:82:35:6e:a7:b5:00:f3:1f:01:62:d4:23:84: 54:70:b8:bc:07:9a:44:25:d8:4c:42:a9:d8:d3:8f:22:3a:0e: 3e:1c:65:c0:95:f3:06:9d:f4:bd:27:39:93:9b:29:13:9b:f6: c7:a2:fd:93:f1:d3:13:03:bb:f8:3e:48:c3:ed:c3:d0:00:2b: a0:51:23:65:30:d2:87:c8:98:7e:06:b9:43:ad:7b:f2:aa:36: d9:99:39:28:14:02:40:b7:0b:1f:1d:a4:c4:52:2b:16:de:90: 7f:47:df:13:98:a1:1c:87:4f:28:93:eb:dd:a9:54:63:c5:6a: 9a:3f:d0:b3:df:02:0d:e2:0d:af:4b:fa:35:8b:fe:ad:70:94: 37:21:dc:f5:05:20:ac:d3:2d:65:bd:25:13:cb:e9:63:02:05: 62:67:0e:61:47:a9:ea:41:6b:17:8f:61:31:d4:14:7e:73:72: e2:66:80:d6:08:be:c2:33:52:d2:3d:bd:4b:60:02:e6:f5:10: 84:b6:a4:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThERjUxMTAvBgNVBAUTKEM2Rjc1OEVDRERDNEM5QjBGNzJGMDY1QzM1QUQ1NDY5 NzQzMjcxMUIwHhcNMjUxMTAzMDY0MzUxWhcNMjUxMTEwMDY0MzUxWjAYMRYwFAYD VQQDEw02OTA4NGYyNy1mZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3stiB76HD0/jGMJJsiJ5T9GCNcdaXiScWJp+90InuDfGJVRAjLeNELvoYeir 8core57Torqw21xOKGYQJuD7g1L8qQui6E20ZaXtXfcM2sEkb1lIOw8dA3nUXhMI k7kgGcI3708KLZJdRZMQXzv03EHUDJGqnsPtaQ6+DcHXRbahcOElLF6gc3YUGkS/ e3vFr1bLDKCK1JAyWL6uE6//oFWs1kU+y5devTgu9vJhHwoe+Etccx+eVoBOZKhC mIdP8xvaCdVEEzbyCd6upsPWNeozKjfvuvDPPwRX5dPDvLhGBhJzae1dQXi85hLR GiF0iVWKH6hyzXjUHqnL+AqSgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoXa0yB 84ValOkzX2SMIMd2wQPrMB8GA1UdIwQYMBaAFMb3WOzdxMmw9y8GXDWtVGl0MnEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOERGNS8zMUUwRjE2QUY5 NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi94dmRZN04zRXliRDNMd1pjTmExVWFYUXlj UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OERGNS8zMUUwRjE2QUY5NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi94dmRZN04zRXli RDNMd1pjTmExVWFYUXljUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChfedMwR+3HREiDvcHm/6L6P7e+49tgwJVrn//1VcIb6FuIzgxp1ns Bhv7KYut/mQMfgO/qdAp+svueYI1bqe1APMfAWLUI4RUcLi8B5pEJdhMQqnY048i Og4+HGXAlfMGnfS9JzmTmykTm/bHov2T8dMTA7v4PkjD7cPQACugUSNlMNKHyJh+ BrlDrXvyqjbZmTkoFAJAtwsfHaTEUisW3pB/R98TmKEch08ok+vdqVRjxWqaP9Cz 3wIN4g2vS/o1i/6tcJQ3Idz1BSCs0y1lvSUTy+ljAgViZw5hR6nqQWsXj2Ex1BR+ c3LiZoDWCL7CM1LSPb1LYALm9RCEtqQY -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:41 2025 by rpki-client