$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: NcX7MBJxSVFYuPpAd0gpzqZuII9OnVW/+t/Lt3ukZp0= Subject key identifier: 73:0B:F1:B3:60:CF:63:D5:C3:C6:D4:A8:28:5C:0C:17:21:73:A1:6F Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 0284 Signing time: Wed 05 Nov 2025 01:42:24 +0000 Manifest this update: Wed 05 Nov 2025 01:42:23 +0000 Manifest next update: Wed 12 Nov 2025 01:42:23 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: JAumILaCJ8fiSohgVW0MH9R7zP3evOX2Nwa4kwfo1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE, serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Nov 5 01:42:23 2025 GMT Not After : Nov 12 01:42:23 2025 GMT Subject: CN=690aab80-ff3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:61:02:e3:d7:9c:42:fe:88:43:e9:6a:86:63: 13:fc:41:fa:9b:e4:3f:a0:27:14:06:e0:08:45:ba: 18:88:1c:2b:74:8f:ab:75:8c:3a:5c:20:09:4d:36: 53:83:ea:47:ab:22:5b:8e:ea:a6:0d:5f:f9:14:22: 97:16:74:48:c5:70:e0:6c:6b:2b:30:4f:5a:e1:87: cf:5c:37:ca:00:f6:78:dd:f3:59:55:6f:d6:ef:3e: 36:96:e0:97:9b:96:56:dd:a2:30:70:90:27:63:86: 78:f1:5d:3d:f9:ad:41:da:c3:05:d9:ca:3e:35:19: 4b:df:d0:8d:0d:74:85:04:b3:b2:99:fa:51:6e:0d: 65:e7:53:a0:ef:72:21:1f:99:f0:3a:a3:42:17:99: c4:94:a8:06:a5:e5:65:47:5b:5d:90:2d:52:63:fb: 38:de:59:53:f2:cb:ed:3b:ee:b4:e0:bc:a1:00:b3: 4f:1a:5d:00:1b:83:41:ef:50:c1:54:1f:e6:4f:48: 73:c0:2d:f3:cc:57:17:bd:a6:43:a3:2d:1f:e2:08: 79:65:67:ee:a9:94:12:0e:fb:7f:a1:dd:f0:35:3c: 9c:d7:04:2d:41:f7:41:9c:dc:0d:73:30:f1:3c:ac: cd:7c:e3:8a:6a:cd:0f:3b:a8:38:aa:99:fc:27:9b: 79:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0B:F1:B3:60:CF:63:D5:C3:C6:D4:A8:28:5C:0C:17:21:73:A1:6F X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:35:01:c0:c6:34:0f:2f:a2:11:4b:05:b1:e1:19:78:05:a0: af:cc:a5:de:62:b9:35:c6:78:ee:69:8a:2e:5b:c6:a8:16:03: d0:e8:b5:05:3d:69:3b:dc:ea:90:b0:7f:8f:3d:42:e6:dd:3b: 6a:2f:91:6c:43:cb:d4:6c:7a:86:09:22:f9:91:ec:95:6d:57: bc:27:9c:2b:49:be:a4:e6:b0:40:bd:42:cd:90:9d:7d:a4:28: e9:0e:b3:9f:78:34:fe:b8:59:1d:37:51:29:03:a4:8e:ac:f4: 50:bb:25:5d:56:6d:49:8d:06:4c:03:be:7c:45:60:76:32:f0: 9d:48:cf:6f:f2:d6:74:7d:7c:04:9f:c5:b7:1d:e7:4a:dc:e1: 45:5b:eb:e2:70:41:17:68:03:93:ec:ed:98:e3:ed:64:d8:cd: 75:46:e1:80:c8:bc:be:6d:df:89:28:4c:5f:ab:b4:b0:6b:c6: 52:19:df:3e:82:2e:5c:3b:15:e5:86:88:be:ef:d7:83:96:95: 6c:0a:9f:8f:42:16:d0:63:16:ed:40:cc:52:74:cf:6e:3f:7c: b3:09:85:78:f1:8e:51:04:48:18:7c:99:a9:0d:76:27:48:3c: 51:47:ad:0d:5c:fe:45:b3:52:42:69:ad:69:ae:2d:d7:2e:a4: 73:73:0b:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjUxMTA1MDE0MjIzWhcNMjUxMTEyMDE0MjIzWjAYMRYwFAYD VQQDEw02OTBhYWI4MC1mZjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGEC49ecQv6IQ+lqhmMT/EH6m+Q/oCcUBuAIRboYiBwrdI+rdYw6XCAJTTZT g+pHqyJbjuqmDV/5FCKXFnRIxXDgbGsrME9a4YfPXDfKAPZ43fNZVW/W7z42luCX m5ZW3aIwcJAnY4Z48V09+a1B2sMF2co+NRlL39CNDXSFBLOymfpRbg1l51Og73Ih H5nwOqNCF5nElKgGpeVlR1tdkC1SY/s43llT8svtO+604LyhALNPGl0AG4NB71DB VB/mT0hzwC3zzFcXvaZDoy0f4gh5ZWfuqZQSDvt/od3wNTyc1wQtQfdBnNwNczDx PKzNfOOKas0PO6g4qpn8J5t5lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHML8bNg z2PVw8bUqChcDBchc6FvMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBNQHAxjQPL6IRSwWx4Rl4BaCvzKXeYrk1xnjuaYouW8aoFgPQ6LUF PWk73OqQsH+PPULm3TtqL5FsQ8vUbHqGCSL5keyVbVe8J5wrSb6k5rBAvULNkJ19 pCjpDrOfeDT+uFkdN1EpA6SOrPRQuyVdVm1JjQZMA758RWB2MvCdSM9v8tZ0fXwE n8W3HedK3OFFW+vicEEXaAOT7O2Y4+1k2M11RuGAyLy+bd+JKExfq7Swa8ZSGd8+ gi5cOxXlhoi+79eDlpVsCp+PQhbQYxbtQMxSdM9uP3yzCYV48Y5RBEgYfJmpDXYn SDxRR60NXP5Fs1JCaa1pri3XLqRzcws3 -----END CERTIFICATE-----Generated at Wed Nov 5 19:33:11 2025 by rpki-client