$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft File: cL0eSV4lCyLieYKWlpeFotd9c38.mft (raw, json) Hash identifier: tHfl428eFCNKTETWesTWURC5LVrYfI3nEU9FACKFI5M= Subject key identifier: C2:AF:4C:61:57:54:8D:25:FA:BB:AC:73:39:FE:78:E3:3B:BB:56:7A Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 0799 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft Manifest number: 0787 Signing time: Tue 04 Nov 2025 21:37:34 +0000 Manifest this update: Tue 04 Nov 2025 21:37:34 +0000 Manifest next update: Tue 11 Nov 2025 21:37:34 +0000 Files and hashes: 1: cL0eSV4lCyLieYKWlpeFotd9c38.crl (hash: lY6pktvyQITM9nQqqGXlg3K7j/7VirGiYi6GqkCiLfg=) 2: AEFB1B262FB111EB89A04D37C4F9AE02.roa (hash: C9YBNy3SJzx+k9ZBQHZtbIXi++eZ8FDncm2ByZsrMrw=) 3: D992CDCE2FBC11EB8E017F5CC4F9AE02.roa (hash: ms/taZmD2/o24c1Khq9ZB9VElH0aqAVMPoZoMLJ7l7o=) 4: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (hash: QcINMhPugXakfHhYWsf4t0lmoNzm+ZXfVIXhNA2VxIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1945 (0x799) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: Nov 4 21:37:34 2025 GMT Not After : Nov 11 21:37:34 2025 GMT Subject: CN=690a721e-9b83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:74:bb:a1:54:01:06:c7:79:8b:da:3d:6a: c5:90:6d:0f:58:d9:bb:ed:47:d7:83:82:ca:41:95: 5a:b2:e0:1b:96:33:0b:ef:3f:1e:f0:e9:1c:80:ec: f6:ae:43:47:b6:fd:d3:0f:bb:ff:12:a1:3a:6a:58: f5:a7:e9:eb:4e:07:e4:ee:b7:c5:85:9c:a3:fb:26: e8:fe:8e:40:54:f2:98:6b:7a:3a:1d:06:89:79:8f: af:a5:c0:4d:4a:9c:1d:06:91:dd:17:89:0c:ce:12: 87:09:85:47:15:25:c3:60:6a:75:aa:c1:eb:4e:0d: 51:e9:9b:32:f0:3c:e6:6a:26:88:ed:02:21:8f:52: 33:3c:ff:7c:a7:da:47:5f:cc:1a:f0:cd:8c:82:43: 00:0c:29:1a:bc:d9:f9:55:6f:53:73:45:27:ff:c1: c4:e2:5e:e5:42:87:52:2b:d0:b4:cc:4b:be:94:bd: 3c:e0:d6:8d:37:3e:d3:84:b7:70:c4:dc:e7:db:35: d1:03:05:1f:86:6a:46:b1:e5:a3:6f:0f:7d:df:39: f5:d0:6d:77:32:33:32:b7:d5:fa:66:20:b7:67:1c: 51:d8:61:bc:95:04:22:88:12:c5:29:bb:49:f7:9a: f7:b4:44:97:e1:cf:6f:c6:97:bc:b1:b5:46:13:99: 62:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AF:4C:61:57:54:8D:25:FA:BB:AC:73:39:FE:78:E3:3B:BB:56:7A X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:ed:08:bc:b6:b0:1a:5f:a2:38:e8:3c:bd:8f:26:d8:3b:76: 98:99:e4:28:ff:26:54:ff:3c:af:55:a6:ec:e4:03:7d:be:fc: 94:71:c6:97:2d:da:d3:71:b2:41:cf:3c:42:b2:78:fa:db:1c: 21:01:a5:80:a2:de:9d:ac:e3:96:b5:8d:fb:f5:58:39:c7:39: 2a:33:f6:55:63:a2:58:9a:d3:03:cf:6d:4c:d1:13:4a:58:aa: 0e:92:3a:8d:3b:5b:b1:20:4c:0c:72:88:b8:b3:60:4c:d8:29: fe:df:55:2f:dc:35:41:4e:4d:65:c7:1e:56:fe:37:a6:65:33: 11:f9:43:b1:5e:3f:40:ca:73:0e:1c:ed:44:2f:4e:a6:2a:c2: 4d:2d:6a:2a:c3:bb:fc:0e:28:c9:53:a7:3b:ff:3c:ce:98:4a: fb:85:54:e8:c8:17:7b:24:cc:c3:02:85:b5:03:13:4c:bc:29: 86:e7:e4:53:7c:36:58:2a:07:05:10:92:b3:1d:c6:49:a3:bf: 35:84:21:89:7f:fe:60:66:b2:eb:f0:ba:77:be:15:35:23:a5: fa:97:a3:a1:65:b9:61:5b:c6:63:12:2a:86:fa:37:49:c5:65: 1a:8b:ad:ef:f9:65:43:0c:fb:37:aa:a6:d0:72:0b:46:20:f2: e7:f7:30:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUxMTA0MjEzNzM0WhcNMjUxMTExMjEzNzM0WjAYMRYwFAYD VQQDEw02OTBhNzIxZS05YjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq750u6FUAQbHeYvaPWrFkG0PWNm77UfXg4LKQZVasuAbljML7z8e8OkcgOz2 rkNHtv3TD7v/EqE6alj1p+nrTgfk7rfFhZyj+ybo/o5AVPKYa3o6HQaJeY+vpcBN SpwdBpHdF4kMzhKHCYVHFSXDYGp1qsHrTg1R6Zsy8DzmaiaI7QIhj1IzPP98p9pH X8wa8M2MgkMADCkavNn5VW9Tc0Un/8HE4l7lQodSK9C0zEu+lL084NaNNz7ThLdw xNzn2zXRAwUfhmpGseWjbw993zn10G13MjMyt9X6ZiC3ZxxR2GG8lQQiiBLFKbtJ 95r3tESX4c9vxpe8sbVGE5liNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKvTGFX VI0l+rusczn+eOM7u1Z6MB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFDNC9GQzY3MkI3MjJGQUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5 TGllWUtXbHBlRm90ZDljMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB37Qi8trAaX6I46Dy9jybYO3aYmeQo/yZU/zyvVabs5AN9vvyUccaX LdrTcbJBzzxCsnj62xwhAaWAot6drOOWtY379Vg5xzkqM/ZVY6JYmtMDz21M0RNK WKoOkjqNO1uxIEwMcoi4s2BM2Cn+31Uv3DVBTk1lxx5W/jemZTMR+UOxXj9AynMO HO1EL06mKsJNLWoqw7v8DijJU6c7/zzOmEr7hVToyBd7JMzDAoW1AxNMvCmG5+RT fDZYKgcFEJKzHcZJo781hCGJf/5gZrLr8Lp3vhU1I6X6l6OhZblhW8ZjEiqG+jdJ xWUai63v+WVDDPs3qqbQcgtGIPLn9zC2 -----END CERTIFICATE-----Generated at Wed Nov 5 22:12:50 2025 by rpki-client