$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: UxYKbj/yIwGZK1DcIhqSBM6bf6jmV9pIupqxA+MfhA8= Subject key identifier: FE:DD:39:91:98:8B:F9:86:11:13:8F:0D:20:A4:BA:9F:C8:8E:E3:86 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: E5 Signing time: Mon 03 Nov 2025 05:22:58 +0000 Manifest this update: Mon 03 Nov 2025 05:22:58 +0000 Manifest next update: Mon 10 Nov 2025 05:22:58 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: rztflC2SnQGBN4Bc32+XiITyUUpJhaROtIIhyNFfc9A=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Nov 3 05:22:58 2025 GMT Not After : Nov 10 05:22:58 2025 GMT Subject: CN=69083c32-7b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4a:6b:2b:a5:7d:d1:53:0a:d9:0c:76:a6:c5: 8f:b0:8a:c5:a1:2c:36:24:d5:c5:36:76:8c:db:c5: 04:d8:d3:ba:04:94:e6:b6:ae:52:ea:42:98:47:5d: 93:9a:d8:20:ee:d0:e8:ab:61:7e:3a:b4:c7:3d:66: b3:dd:76:90:f7:b9:ee:9f:c5:fb:e6:17:60:a2:80: df:ca:fb:61:9a:93:36:00:83:a6:dd:1b:41:7e:ba: f3:f6:66:37:33:6a:dc:4c:c4:bd:29:e8:91:79:ca: 9d:30:99:0f:59:93:74:6c:dc:fd:5c:e6:d6:3d:05: fc:0b:1b:05:14:20:af:72:2e:a0:a7:65:c9:89:d0: 99:71:99:be:b9:05:bb:b9:ee:ed:e9:3d:23:51:71: 11:6d:1b:d5:a3:82:a4:da:5b:a9:df:fc:f0:68:25: e8:84:3f:a3:19:e2:46:a4:09:11:68:b4:7b:70:61: b5:bb:eb:b4:cc:23:9f:c9:14:6a:63:55:21:a1:48: 3f:97:80:a4:d6:ee:3f:2e:e2:36:fa:d7:db:25:e4: f4:b0:e9:f2:d8:5e:f2:4d:b6:7c:09:f7:83:b2:26: d9:1c:46:13:85:9e:16:d2:ad:39:14:e0:1f:b1:c7: fe:ac:95:d6:b3:d4:50:c9:03:c8:c0:16:31:e8:82: ff:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DD:39:91:98:8B:F9:86:11:13:8F:0D:20:A4:BA:9F:C8:8E:E3:86 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:4f:8c:3b:2a:16:88:08:d3:71:1f:31:e3:d5:9b:ae:68:26: 44:de:f9:8a:ba:a6:56:c8:e0:c2:e3:28:4c:70:d7:87:7e:ae: 76:90:98:9f:6e:79:62:35:3f:47:05:00:e0:b6:11:a3:24:f8: 7d:3e:b9:34:b4:e2:b3:a4:ba:51:81:22:f1:21:1b:36:6d:e7: 39:7e:50:6d:33:40:e4:c4:b2:99:87:3f:be:26:86:5d:33:c5: b6:ac:8c:34:db:70:27:aa:e1:b9:72:d4:e4:d6:3b:e2:5f:9d: 31:74:74:57:cf:d8:95:2b:50:ec:10:93:62:30:a2:c1:53:ce: 6a:3d:2d:68:36:e3:7b:25:0b:44:7a:58:73:d7:87:f6:c7:85: f0:2f:45:a8:59:67:61:00:c4:bd:f3:d6:0c:8f:f6:24:f8:91: c7:a6:3c:52:4e:77:8c:81:22:df:a0:3a:46:f7:6c:86:39:bd: 77:a2:3e:39:9a:cf:f0:b8:81:da:a3:5d:4e:f2:1a:1d:fd:fc: 10:ca:04:1a:33:90:60:dd:3d:d0:dc:a4:69:14:a3:7e:2a:70: 19:28:01:29:48:04:b0:f2:6e:33:ef:a4:d8:e5:a7:5c:40:65: 78:1d:9f:81:e8:29:6e:78:ec:42:a6:f1:15:24:fb:d0:28:bc: f4:e3:94:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUxMTAzMDUyMjU4WhcNMjUxMTEwMDUyMjU4WjAYMRYwFAYD VQQDEw02OTA4M2MzMi03Yjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0prK6V90VMK2Qx2psWPsIrFoSw2JNXFNnaM28UE2NO6BJTmtq5S6kKYR12T mtgg7tDoq2F+OrTHPWaz3XaQ97nun8X75hdgooDfyvthmpM2AIOm3RtBfrrz9mY3 M2rcTMS9KeiRecqdMJkPWZN0bNz9XObWPQX8CxsFFCCvci6gp2XJidCZcZm+uQW7 ue7t6T0jUXERbRvVo4Kk2lup3/zwaCXohD+jGeJGpAkRaLR7cGG1u+u0zCOfyRRq Y1UhoUg/l4Ck1u4/LuI2+tfbJeT0sOny2F7yTbZ8CfeDsibZHEYThZ4W0q05FOAf scf+rJXWs9RQyQPIwBYx6IL/QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7dOZGY i/mGEROPDSCkup/IjuOGMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZT4w7KhaICNNxHzHj1ZuuaCZE3vmKuqZWyODC4yhMcNeHfq52kJif bnliNT9HBQDgthGjJPh9Prk0tOKzpLpRgSLxIRs2bec5flBtM0DkxLKZhz++JoZd M8W2rIw023AnquG5ctTk1jviX50xdHRXz9iVK1DsEJNiMKLBU85qPS1oNuN7JQtE elhz14f2x4XwL0WoWWdhAMS989YMj/Yk+JHHpjxSTneMgSLfoDpG92yGOb13oj45 ms/wuIHao11O8hod/fwQygQaM5Bg3T3Q3KRpFKN+KnAZKAEpSASw8m4z76TY5adc QGV4HZ+B6ClueOxCpvEVJPvQKLz045RR -----END CERTIFICATE-----Generated at Wed Nov 5 00:07:27 2025 by rpki-client