$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: 7w2pRPGF8B5+2l0jyh6HJ2huOmwf683i2DdjScXVSRs= Subject key identifier: 5F:5D:96:6E:DA:63:CD:43:D7:CA:A4:D0:F9:13:E0:80:65:2C:0E:E7 Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 0611 Signing time: Sun 02 Nov 2025 22:50:44 +0000 Manifest this update: Sun 02 Nov 2025 22:50:44 +0000 Manifest next update: Sun 09 Nov 2025 22:50:44 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: 4rygmI3xt85xKzPSUeJJHVqcPCERKzPqonjpeZTdoRY=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Nov 2 22:50:44 2025 GMT Not After : Nov 9 22:50:44 2025 GMT Subject: CN=6907e044-6746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ed:cd:63:78:80:aa:f5:36:92:87:5f:d3:a1: cf:c4:39:47:25:03:6c:9e:31:ac:d3:25:8b:e0:7f: 43:aa:ec:3c:96:6e:8b:12:03:4f:83:da:a6:38:51: 57:fe:ad:75:04:3a:7e:14:9d:ea:31:e9:f5:b7:c0: 6e:e4:ea:3a:52:e7:df:7c:ca:61:9a:fc:00:86:ff: ab:d8:3a:42:33:45:0a:14:67:78:e7:1c:34:23:74: 46:71:1a:2d:54:82:3c:d8:bd:85:0a:d2:db:d1:5b: 50:0f:2b:44:a5:ee:b5:ac:2b:4c:cc:83:f3:5f:87: 7c:84:9a:92:ef:1d:a6:6d:ee:9d:5b:29:f3:ad:17: b6:cb:1b:d0:fa:77:96:9b:30:cb:dc:c2:e5:21:97: 64:0d:4b:6a:c6:d1:85:c9:2f:bf:c1:c4:71:7a:d6: 08:91:95:5f:f6:ce:4d:09:21:7c:80:07:74:84:ab: d1:6b:15:47:ad:cb:fd:2b:b5:8a:fd:b7:2c:08:41: 03:58:39:24:0f:11:0e:09:af:87:e2:d3:90:13:04: 5b:52:ed:3a:fc:85:0f:70:c9:a5:25:50:70:8d:c9: 68:d5:40:e8:0a:bc:c1:07:02:ee:c7:c4:42:14:2b: 7f:82:fc:e0:5f:4f:49:2e:b0:2c:cd:fa:ff:06:55: b1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5D:96:6E:DA:63:CD:43:D7:CA:A4:D0:F9:13:E0:80:65:2C:0E:E7 X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ab:4a:70:7f:8a:f5:8f:e9:05:e7:6b:72:5e:b3:2e:1f:7f: 9d:b6:d4:7d:4d:6e:35:58:e8:9f:37:d5:67:73:80:3d:63:c8: 16:7e:90:71:cd:86:44:fe:2a:42:ec:6d:af:32:cd:49:19:25: 09:8d:65:52:4d:87:18:74:b6:0e:7c:87:c0:30:9f:da:8a:48: 52:39:c5:c8:3c:79:81:16:fe:51:33:2e:4a:0c:e7:87:a6:29: 45:e4:f8:3b:08:c9:ff:3c:13:9c:ec:62:97:b0:af:c7:95:68: c9:b5:e9:eb:23:8a:05:c3:c1:f5:60:87:a6:9a:6e:d4:5a:33: 1f:37:e1:cc:a9:c5:b6:d7:b3:e8:05:df:b7:18:fc:ec:df:98: eb:c6:e1:ba:58:43:c8:61:6e:d9:f0:a8:08:b2:86:ac:4b:77: cd:c7:68:d0:6b:cd:0f:6b:7f:f0:ae:33:08:12:ab:fe:23:dd: 17:6d:8b:1d:7d:07:eb:75:a2:27:08:17:cc:4b:51:31:70:81: 81:dd:80:3d:a4:71:db:c9:85:59:6e:6f:35:c2:8d:e8:be:fd: 05:a6:29:b2:bd:c3:2f:7e:fd:e4:e3:17:e3:7b:1c:95:15:62: 3d:77:e4:bd:36:e9:99:cb:3e:01:ff:7d:57:f3:8f:3d:ab:8a: 98:7e:99:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUxMTAyMjI1MDQ0WhcNMjUxMTA5MjI1MDQ0WjAYMRYwFAYD VQQDEw02OTA3ZTA0NC02NzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzu3NY3iAqvU2kodf06HPxDlHJQNsnjGs0yWL4H9Dquw8lm6LEgNPg9qmOFFX /q11BDp+FJ3qMen1t8Bu5Oo6UufffMphmvwAhv+r2DpCM0UKFGd45xw0I3RGcRot VII82L2FCtLb0VtQDytEpe61rCtMzIPzX4d8hJqS7x2mbe6dWynzrRe2yxvQ+neW mzDL3MLlIZdkDUtqxtGFyS+/wcRxetYIkZVf9s5NCSF8gAd0hKvRaxVHrcv9K7WK /bcsCEEDWDkkDxEOCa+H4tOQEwRbUu06/IUPcMmlJVBwjclo1UDoCrzBBwLux8RC FCt/gvzgX09JLrAszfr/BlWxkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9dlm7a Y81D18qk0PkT4IBlLA7nMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpq0pwf4r1j+kF52tyXrMuH3+dttR9TW41WOifN9Vnc4A9Y8gWfpBx zYZE/ipC7G2vMs1JGSUJjWVSTYcYdLYOfIfAMJ/aikhSOcXIPHmBFv5RMy5KDOeH pilF5Pg7CMn/PBOc7GKXsK/HlWjJtenrI4oFw8H1YIemmm7UWjMfN+HMqcW217Po Bd+3GPzs35jrxuG6WEPIYW7Z8KgIsoasS3fNx2jQa80Pa3/wrjMIEqv+I90XbYsd fQfrdaInCBfMS1ExcIGB3YA9pHHbyYVZbm81wo3ovv0FpimyvcMvfv3k4xfjexyV FWI9d+S9NumZyz4B/31X8489q4qYfpkJ -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:02 2025 by rpki-client