$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: 686Sg2HYUWtJCe66Rv/7H+uCKcm2/8clqoG73Q/R2gk= Subject key identifier: E2:D6:FC:58:AD:E2:1A:70:D4:D6:A6:B4:3D:2D:43:8B:C3:E8:91:90 Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: 8B Signing time: Wed 05 Nov 2025 06:51:04 +0000 Manifest this update: Wed 05 Nov 2025 06:51:03 +0000 Manifest next update: Wed 12 Nov 2025 06:51:03 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: gXc6+NEN6DF+3kuXLJ4gtJCqtvRMDFC78MjqlQRNhhI=) 2: 1ED36EFC590C11F0913BCB35C4F9AE02.roa (hash: WTYmLvNpyq/A5Kbra5mtKRBFCjY1e4fS3rGmshvrNGY=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Nov 5 06:51:03 2025 GMT Not After : Nov 12 06:51:03 2025 GMT Subject: CN=690af3d8-4d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6e:ff:e8:cf:84:6e:0b:6f:8d:b5:fb:48:9f: 95:8c:fe:99:72:ef:d3:f9:b7:31:c3:c3:b0:f6:e6: 23:0b:c0:ae:57:b4:1d:3a:23:aa:5d:5f:72:34:b0: 50:9f:af:8e:7b:46:ab:58:02:17:bd:eb:db:aa:31: f9:d3:a9:05:72:37:5e:fa:87:bb:74:3c:d9:d0:b8: 73:e1:53:3e:4c:29:d9:3e:5d:48:3b:69:ec:25:eb: 6a:9e:73:c8:48:d9:99:58:98:91:b5:ed:b7:4b:82: f9:ad:c4:11:13:e9:47:c0:b2:9e:f7:8f:33:28:ce: 09:8c:05:35:f0:01:4a:a7:b1:74:da:9c:03:54:b4: 8a:6b:73:10:b0:d0:be:90:34:0a:a6:1f:67:47:d1: 66:92:da:5e:0f:61:3a:84:9e:10:ac:09:3b:28:01: fc:78:27:68:d9:f1:4c:b3:01:1e:89:18:ed:6a:4d: ea:4d:9c:59:f0:9f:17:04:21:6e:e8:d5:a4:f1:e3: f7:41:af:80:b2:26:4e:29:0c:74:c1:ea:49:bb:61: 12:c0:86:4c:52:0a:e1:e0:c6:c7:6b:5a:1f:ef:4b: 50:3a:ab:1e:5f:11:24:c4:41:f8:38:1b:62:58:3b: 19:9a:2d:34:33:07:2b:ea:2a:83:22:29:0e:0b:14: 15:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D6:FC:58:AD:E2:1A:70:D4:D6:A6:B4:3D:2D:43:8B:C3:E8:91:90 X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:59:8a:ea:68:5c:6a:01:d8:a4:ba:81:81:36:c4:3a:e0:17: 7e:56:98:1f:52:29:ca:0d:37:a2:24:d4:14:8a:5e:2c:b5:d8: 1a:6d:5d:8e:14:5c:57:32:73:94:f9:3b:dc:a6:ea:0f:e7:e1: da:37:cc:12:9d:77:2e:f3:73:48:13:79:38:4a:39:6f:27:f3: 4a:74:88:fc:09:e6:aa:2b:84:d7:08:2e:6c:ea:ef:63:6b:0d: 63:cf:31:4a:55:44:1c:2a:5d:bf:b4:bb:ed:83:0a:b1:4b:da: 33:8c:1b:ce:73:ec:36:94:3d:bf:f4:95:1f:9f:10:84:19:71: d6:a4:19:9a:f4:c5:e1:6b:df:97:4b:9f:74:5d:95:04:90:24: 1f:88:78:65:6a:db:d6:61:a4:eb:42:58:36:be:14:7a:15:01: eb:15:2c:ea:40:fa:60:08:3f:3d:8a:87:1f:0b:d0:4a:7f:fd: b5:94:98:52:f7:b4:9e:7c:55:55:f2:e8:8c:16:ca:1e:f8:c3: 09:31:29:9e:bd:3c:2c:11:86:30:ce:d7:6a:4e:fa:90:5c:fb: a4:7d:b9:a7:54:f1:de:8a:65:4c:1d:16:71:c1:dd:2e:3f:dc: fe:da:07:cf:99:28:a6:2e:5c:44:16:c7:df:78:40:c8:d1:49: dc:8a:ab:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxQ0MxMTAvBgNVBAUTKDQ0NkZBRjkyM0JFQkFGOTYzNTcyODdGRTI1MDk5MUM3 NTQ5MTQ1NEQwHhcNMjUxMTA1MDY1MTAzWhcNMjUxMTEyMDY1MTAzWjAYMRYwFAYD VQQDEw02OTBhZjNkOC00ZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzG7/6M+EbgtvjbX7SJ+VjP6Zcu/T+bcxw8Ow9uYjC8CuV7QdOiOqXV9yNLBQ n6+Oe0arWAIXvevbqjH506kFcjde+oe7dDzZ0Lhz4VM+TCnZPl1IO2nsJetqnnPI SNmZWJiRte23S4L5rcQRE+lHwLKe948zKM4JjAU18AFKp7F02pwDVLSKa3MQsNC+ kDQKph9nR9FmktpeD2E6hJ4QrAk7KAH8eCdo2fFMswEeiRjtak3qTZxZ8J8XBCFu 6NWk8eP3Qa+AsiZOKQx0wepJu2ESwIZMUgrh4MbHa1of70tQOqseXxEkxEH4OBti WDsZmi00Mwcr6iqDIikOCxQVsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLW/Fit 4hpw1NamtD0tQ4vD6JGQMB8GA1UdIwQYMBaAFERvr5I766+WNXKH/iUJkcdUkUVN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjFDQy8zQUZDMzNFMkVG NjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1WTFjb2YtSlFtUngxU1JS VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjFDQy8zQUZDMzNFMkVGNjMxMUVGQkY2NEFCNkFDNEY5QUUwMi9SRy12a2p2cnI1 WTFjb2YtSlFtUngxU1JSVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVWYrqaFxqAdikuoGBNsQ64Bd+VpgfUinKDTeiJNQUil4stdgabV2O FFxXMnOU+TvcpuoP5+HaN8wSnXcu83NIE3k4SjlvJ/NKdIj8CeaqK4TXCC5s6u9j aw1jzzFKVUQcKl2/tLvtgwqxS9ozjBvOc+w2lD2/9JUfnxCEGXHWpBma9MXha9+X S590XZUEkCQfiHhlatvWYaTrQlg2vhR6FQHrFSzqQPpgCD89iocfC9BKf/21lJhS 97SefFVV8uiMFsoe+MMJMSmevTwsEYYwztdqTvqQXPukfbmnVPHeimVMHRZxwd0u P9z+2gfPmSimLlxEFsffeEDI0UnciqsS -----END CERTIFICATE-----Generated at Wed Nov 5 13:06:26 2025 by rpki-client