$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft File: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft (raw, json) Hash identifier: eP3IEnIHsnllPap6xGcZtSLG6bZpEo2yjdhkI6vWq6E= Subject key identifier: 53:CF:25:C2:5F:8F:C1:85:F9:77:72:15:73:DA:D8:0F:6A:63:88:FC Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft Manifest number: 07CB Signing time: Tue 04 Nov 2025 21:19:22 +0000 Manifest this update: Tue 04 Nov 2025 21:19:22 +0000 Manifest next update: Tue 11 Nov 2025 21:19:22 +0000 Files and hashes: 1: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl (hash: yI358XgQ+GhwMmAloUtyMgSG2h/1W6XBH0hsPYQA7dc=) 2: 65D706B213FA11EB92A6FE61C4F9AE02.roa (hash: HDw255HT5Qq+WExObAcGQTxVC/IMJorhiCibpd+wpAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52, serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Nov 4 21:19:22 2025 GMT Not After : Nov 11 21:19:22 2025 GMT Subject: CN=690a6dda-6b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f7:88:a4:98:5d:1e:06:da:c6:ff:06:83:70: ba:c6:5c:9a:90:f9:f0:76:56:ba:03:ee:8c:9c:3f: f1:95:f8:9c:cd:85:12:cb:b6:95:64:4c:9b:0a:28: c9:4e:3a:ea:d9:99:b0:84:8c:f8:9f:b5:12:83:d1: c8:28:2c:b9:ad:ce:0b:d8:e5:6a:8d:b2:6b:71:87: 3d:94:44:29:76:92:ca:b1:ae:dc:16:48:8c:74:34: a7:4e:14:22:9f:ad:6d:04:f8:77:99:a3:2d:4e:e8: 04:a5:70:c1:b1:a0:1b:94:3c:9a:41:d3:ee:f9:4e: 87:92:02:da:4b:56:f3:27:fb:d5:0b:a3:9d:8e:78: 23:46:62:b0:34:1a:3f:4e:11:be:df:d9:90:4b:9d: ab:d8:4b:10:9f:df:ee:b9:c0:45:be:fa:d5:fe:d8: 56:ee:5b:84:3b:81:d4:99:83:72:6f:53:93:c3:ff: 15:78:f6:b3:9d:13:b4:33:12:97:59:7f:40:95:d5: 0e:c5:c0:a9:16:ef:cf:a8:cb:79:dc:ea:a4:0c:a8: 16:56:b1:61:97:92:41:3e:3b:4d:f8:6c:07:4c:61: ec:0c:7d:4d:78:2c:29:eb:49:cc:11:39:1c:cf:c4: 30:d2:88:17:71:db:77:b7:df:c9:3a:15:61:92:7d: 3c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:CF:25:C2:5F:8F:C1:85:F9:77:72:15:73:DA:D8:0F:6A:63:88:FC X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:a3:c1:94:d1:e9:9c:0f:c1:60:34:8c:ce:31:fc:ea:72:4e: 81:83:c4:d6:2f:9f:9d:2f:4a:2c:ad:b2:3d:9d:fc:f3:2a:2c: 9d:61:9a:6c:3e:cc:f9:7a:2f:b3:3f:55:f9:68:6e:39:66:c0: c9:bc:41:8f:c1:5c:ec:7b:b6:b9:21:67:b6:90:e0:58:23:13: ba:36:70:9c:57:df:42:6f:07:ee:1a:51:f4:20:3b:37:4c:dd: a9:db:e7:d2:d5:01:75:b0:e0:1f:72:a8:6b:70:35:67:5c:ab: a6:84:be:49:a5:f1:43:1b:31:94:e4:8d:86:1e:b7:6c:ce:32: 27:47:c5:56:9a:e8:02:60:01:6a:d0:8c:d3:88:63:98:8a:5a: b2:93:7d:7d:b4:b8:3a:25:e0:11:74:ad:a2:ae:eb:f2:c6:e7: bc:f3:14:8c:bb:b4:83:13:e5:ba:2d:95:37:dd:4d:4b:ea:4e: 79:6f:c0:1d:e9:1f:f7:d0:df:a9:78:79:58:cb:28:e9:65:59: 10:0a:c9:1b:bd:8a:7d:88:14:71:56:8e:98:15:3c:d7:d0:bf: af:bb:fe:65:23:fe:e9:ea:9f:10:31:40:8c:7e:34:9b:76:22: e5:9f:0e:3a:cf:d2:d3:e6:dd:0f:ba:fa:fc:57:c1:aa:7a:cb: 2b:f3:20:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjUxMTA0MjExOTIyWhcNMjUxMTExMjExOTIyWjAYMRYwFAYD VQQDEw02OTBhNmRkYS02YjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfeIpJhdHgbaxv8Gg3C6xlyakPnwdla6A+6MnD/xlficzYUSy7aVZEybCijJ Tjrq2ZmwhIz4n7USg9HIKCy5rc4L2OVqjbJrcYc9lEQpdpLKsa7cFkiMdDSnThQi n61tBPh3maMtTugEpXDBsaAblDyaQdPu+U6HkgLaS1bzJ/vVC6OdjngjRmKwNBo/ ThG+39mQS52r2EsQn9/uucBFvvrV/thW7luEO4HUmYNyb1OTw/8VePaznRO0MxKX WX9AldUOxcCpFu/PqMt53OqkDKgWVrFhl5JBPjtN+GwHTGHsDH1NeCwp60nMETkc z8Qw0ogXcdt3t9/JOhVhkn083QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPPJcJf j8GF+XdyFXPa2A9qY4j8MB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0M1Mi82NTI4MzZFODEzOEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19Y UUhhMUNYY0FFeXg2eUc1aUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALo8GU0emcD8FgNIzOMfzqck6Bg8TWL5+dL0osrbI9nfzzKiydYZps Psz5ei+zP1X5aG45ZsDJvEGPwVzse7a5IWe2kOBYIxO6NnCcV99CbwfuGlH0IDs3 TN2p2+fS1QF1sOAfcqhrcDVnXKumhL5JpfFDGzGU5I2GHrdszjInR8VWmugCYAFq 0IzTiGOYilqyk319tLg6JeARdK2iruvyxue88xSMu7SDE+W6LZU33U1L6k55b8Ad 6R/30N+peHlYyyjpZVkQCskbvYp9iBRxVo6YFTzX0L+vu/5lI/7p6p8QMUCMfjSb diLlnw46z9LT5t0Puvr8V8Gqessr8yCj -----END CERTIFICATE-----Generated at Wed Nov 5 19:33:03 2025 by rpki-client