$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft File: EdT02sf7qLXBIiQwBTm9xhVEXeU.mft (raw, json) Hash identifier: 4xwqThTgH92YQx2ahkMuoibF+KRExKQnl4GjoCWYCyU= Subject key identifier: 80:14:7F:58:C5:25:40:F4:87:80:EC:4A:9F:AF:78:36:81:E5:1F:00 Authority key identifier: 11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 Certificate issuer: /CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft Manifest number: 010E Signing time: Wed 05 Nov 2025 05:09:10 +0000 Manifest this update: Wed 05 Nov 2025 05:09:10 +0000 Manifest next update: Wed 12 Nov 2025 05:09:10 +0000 Files and hashes: 1: EdT02sf7qLXBIiQwBTm9xhVEXeU.crl (hash: fscu0RxF8KDN9rDAQKnN3un5tC7R+hmig+XMmXhQHjw=) 2: 6B10AF52379A11F0B3AC7740C4F9AE02.roa (hash: rykf5EiwJxMbaGGZx16BKp2POKraZb9uuOUjLdA5j+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Validity Not Before: Nov 5 05:09:10 2025 GMT Not After : Nov 12 05:09:10 2025 GMT Subject: CN=690adbf6-9dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:c0:8f:4f:4c:b4:ea:cc:db:df:a8:cc:84:2c: 51:24:d6:72:69:36:74:0d:18:66:b4:6c:98:b3:fd: a6:0e:e9:47:db:bc:91:e1:d1:58:cc:c2:fb:0d:c5: e6:d0:3a:6c:21:b7:d2:1f:56:27:f1:80:f6:01:ae: f8:45:86:4d:da:64:15:1f:05:5d:09:47:ed:9b:09: 90:e4:ba:1d:67:02:c2:09:dc:76:ee:ce:e7:a0:27: d6:92:f4:a2:be:07:f4:cf:46:67:40:87:e2:1c:2e: af:31:9b:0d:ff:83:e6:46:c2:bb:1c:55:64:92:47: 74:41:d6:d9:f8:c0:e6:7c:d6:18:66:4b:63:4b:09: f6:39:b3:cc:c8:fa:bc:a9:04:64:94:c2:3f:33:ec: b9:4c:38:6d:af:4c:a8:93:05:f4:c2:31:63:39:3e: ff:d0:fa:89:da:b8:f6:49:89:9c:47:f4:2c:7a:ca: 69:4f:9c:4b:7f:71:9f:6c:3f:0a:a4:07:8c:2b:76: 5c:18:fa:3a:2e:d2:33:51:89:9e:7f:12:36:cf:bd: f4:87:37:37:4e:ac:93:90:5e:a9:8f:b2:d7:55:8d: 16:5c:d8:5e:de:d3:eb:19:d3:23:80:51:53:5f:a4: 77:ed:d2:f1:9d:ba:27:34:d8:d5:be:0a:9f:08:86: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:14:7F:58:C5:25:40:F4:87:80:EC:4A:9F:AF:78:36:81:E5:1F:00 X509v3 Authority Key Identifier: keyid:11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:a7:1f:8e:aa:fd:c0:14:2f:1b:91:bf:b2:f5:e2:1d:2c:be: 08:0f:34:df:e1:43:75:c3:cc:b3:5f:58:5b:3c:6a:a2:55:51: ee:f8:9a:24:7f:7f:b5:84:09:6a:f7:2a:57:8f:70:8c:05:6e: 64:85:bd:57:a5:c6:80:8a:50:28:2b:33:04:b1:cd:f7:6f:19: 0a:c2:09:97:1d:d7:8e:ce:9b:ee:ae:4a:24:b6:3d:0c:9e:58: 87:9c:6c:f3:d6:e5:63:30:ca:71:ea:36:85:48:1b:02:dc:db: ae:1e:8c:0c:ad:ca:25:26:b1:ca:ac:ff:2a:ac:12:6b:ab:82: 98:2f:8c:cd:53:0c:2c:e0:57:77:a1:3a:55:c6:75:26:d5:2c: 88:df:d2:a5:8e:19:74:84:8a:fe:d3:7f:bd:83:fc:99:ec:8a: c5:fe:8d:e5:05:78:99:c7:bb:d6:4a:7c:01:ee:2c:b8:fe:2f: 52:ac:10:ba:b4:3c:07:37:54:af:af:a3:e4:e1:d4:9b:28:94: 5d:ba:5e:b3:aa:9a:9d:06:06:8d:df:50:06:dd:15:12:ca:18: 2f:11:c4:a6:6e:a1:14:65:74:ed:94:95:3b:6a:56:a8:b5:22: 7d:cd:70:88:cd:d6:71:7d:6e:48:a4:09:06:49:e5:94:5a:2b: 89:c0:89:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDExRDRGNERBQzdGQkE4QjVDMTIyMjQzMDA1MzlCREM2 MTU0NDVERTUwHhcNMjUxMTA1MDUwOTEwWhcNMjUxMTEyMDUwOTEwWjAYMRYwFAYD VQQDEw02OTBhZGJmNi05ZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA88CPT0y06szb36jMhCxRJNZyaTZ0DRhmtGyYs/2mDulH27yR4dFYzML7DcXm 0DpsIbfSH1Yn8YD2Aa74RYZN2mQVHwVdCUftmwmQ5LodZwLCCdx27s7noCfWkvSi vgf0z0ZnQIfiHC6vMZsN/4PmRsK7HFVkkkd0QdbZ+MDmfNYYZktjSwn2ObPMyPq8 qQRklMI/M+y5TDhtr0yokwX0wjFjOT7/0PqJ2rj2SYmcR/QsesppT5xLf3GfbD8K pAeMK3ZcGPo6LtIzUYmefxI2z730hzc3TqyTkF6pj7LXVY0WXNhe3tPrGdMjgFFT X6R37dLxnbonNNjVvgqfCIap5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAUf1jF JUD0h4DsSp+veDaB5R8AMB8GA1UdIwQYMBaAFBHU9NrH+6i1wSIkMAU5vcYVRF3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi9COEMwQjBBMDI2 QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FMWEJJaVF3QlRtOXhoVkVY ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VkVDAyc2Y3cUxYQklpUXdCVG05eGhWRVhlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi9COEMwQjBBMDI2QTAxMUVGQjlBMzdFMzlDNEY5QUUwMi9FZFQwMnNmN3FM WEJJaVF3QlRtOXhoVkVYZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIpx+Oqv3AFC8bkb+y9eIdLL4IDzTf4UN1w8yzX1hbPGqiVVHu+Jok f3+1hAlq9ypXj3CMBW5khb1XpcaAilAoKzMEsc33bxkKwgmXHdeOzpvurkoktj0M nliHnGzz1uVjMMpx6jaFSBsC3NuuHowMrcolJrHKrP8qrBJrq4KYL4zNUwws4Fd3 oTpVxnUm1SyI39Kljhl0hIr+03+9g/yZ7IrF/o3lBXiZx7vWSnwB7iy4/i9SrBC6 tDwHN1Svr6Pk4dSbKJRdul6zqpqdBgaN31AG3RUSyhgvEcSmbqEUZXTtlJU7alao tSJ9zXCIzdZxfW5IpAkGSeWUWiuJwIkv -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:21 2025 by rpki-client