$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft File: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft (raw, json) Hash identifier: hstZ+EOcmz2A8Xu6QdF/W9XC5w7Zfjy6+0NYMNsnE6U= Subject key identifier: 11:A6:EE:06:E7:C3:52:71:BE:E5:C0:17:F7:7F:84:EA:CD:B6:F3:BC Authority key identifier: 71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F Certificate issuer: /CN=A91FF84F/serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft Manifest number: 067C Signing time: Tue 04 Nov 2025 22:34:42 +0000 Manifest this update: Tue 04 Nov 2025 22:34:41 +0000 Manifest next update: Tue 11 Nov 2025 22:34:41 +0000 Files and hashes: 1: cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl (hash: tFtQGYQrRyIRa5ChC7GE26BE/QQyXxTX3UG9r4xWSak=) 2: 2F320256981611EB904AF150C4F9AE02.roa (hash: E4TUFKJ6pvq2MnnX/Fp4K5QwjuZ8zkimayyU0Jn+DJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF84F, serialNumber=7141C319BB44BFBCDE3382B3BB691265F95D309F Validity Not Before: Nov 4 22:34:41 2025 GMT Not After : Nov 11 22:34:41 2025 GMT Subject: CN=690a7f81-ff9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:78:03:f9:dd:37:fc:66:cb:1a:2d:e6:54:a1: b6:b5:4f:a2:89:cb:a8:5c:02:05:12:0d:22:e9:c0: 3b:3a:19:7a:fb:f7:b9:97:6d:03:ee:51:fb:7e:b8: 92:61:a8:60:b5:56:9c:30:91:98:fb:23:9b:8b:49: 06:02:bc:a2:48:db:e4:15:d7:f3:64:60:ab:9e:6c: dc:96:b6:b8:02:fd:83:8d:74:07:3f:48:f9:57:b4: 07:59:7f:d2:d9:19:73:0e:d0:65:63:32:f3:4e:b1: a5:34:96:f3:c0:ee:78:d9:e2:bc:4c:f8:7a:0e:19: 02:0c:62:f5:87:fc:88:ee:a2:57:29:db:05:83:91: 81:aa:2e:92:e7:0b:3c:97:2f:d9:bb:6a:67:48:ac: 90:26:0c:78:56:33:6f:0c:4a:88:62:26:e9:25:43: 8b:59:72:74:87:9e:9b:37:6b:93:3c:9a:e6:3d:0d: 7e:2d:1a:09:5e:71:3d:bb:40:4f:b6:20:03:dc:9c: 03:cf:2c:a3:42:37:2d:e3:16:30:29:ee:47:fc:8e: c6:0f:4b:69:e3:14:ef:ff:8b:5f:7e:aa:20:45:97: 27:f1:54:a2:ca:9a:e9:f3:26:0d:c5:5e:9e:4f:56: 9b:6c:5d:d6:ea:0c:75:70:78:aa:04:fe:db:0c:bb: de:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A6:EE:06:E7:C3:52:71:BE:E5:C0:17:F7:7F:84:EA:CD:B6:F3:BC X509v3 Authority Key Identifier: keyid:71:41:C3:19:BB:44:BF:BC:DE:33:82:B3:BB:69:12:65:F9:5D:30:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF84F/DD487A5C981411EBA4B32150C4F9AE02/cUHDGbtEv7zeM4Kzu2kSZfldMJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:71:40:46:4e:f2:d2:0f:7d:ef:c4:59:2c:17:5a:30:c7:7b: 48:49:2e:08:48:ab:e7:6f:33:d3:38:7b:ab:f1:39:90:63:10: 6b:e2:a0:25:46:39:75:e5:d4:74:df:a5:a4:ad:63:c3:7b:d9: 37:b0:12:87:40:f5:07:9d:f5:e9:31:ea:3e:0e:53:84:18:7a: ef:18:f8:de:e7:af:1a:5f:32:ec:91:ef:de:61:f6:93:2a:46: 04:9e:46:f1:df:5f:57:56:f6:ed:38:df:7c:41:10:57:bb:dc: 99:5e:18:61:be:77:5b:aa:1c:a0:77:c1:a9:87:39:70:cf:53: 51:36:96:5d:90:e3:a2:98:04:a9:1c:92:89:2b:d7:34:b2:96: f0:2c:84:0d:a5:9d:16:97:e1:43:c1:fc:77:c1:0d:54:fd:c3: a3:03:b4:f7:a4:9d:c6:82:28:9f:a6:32:a1:b8:30:72:fd:c9: bc:aa:e2:85:08:7e:02:24:d0:bc:7a:8c:eb:9f:39:15:d5:85: b3:39:66:64:85:bb:6c:d7:48:b6:69:25:b3:43:45:b8:08:51: 99:65:22:ba:a2:1a:fd:9e:11:a0:2a:ad:5c:4a:7f:ab:10:28: db:e3:fd:0d:80:df:fa:ca:92:d2:15:dc:33:3a:51:06:10:fc: 4a:c5:cf:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4NEYxMTAvBgNVBAUTKDcxNDFDMzE5QkI0NEJGQkNERTMzODJCM0JCNjkxMjY1 Rjk1RDMwOUYwHhcNMjUxMTA0MjIzNDQxWhcNMjUxMTExMjIzNDQxWjAYMRYwFAYD VQQDEw02OTBhN2Y4MS1mZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3gD+d03/GbLGi3mVKG2tU+iicuoXAIFEg0i6cA7Ohl6+/e5l20D7lH7friS YahgtVacMJGY+yObi0kGAryiSNvkFdfzZGCrnmzclra4Av2DjXQHP0j5V7QHWX/S 2RlzDtBlYzLzTrGlNJbzwO542eK8TPh6DhkCDGL1h/yI7qJXKdsFg5GBqi6S5ws8 ly/Zu2pnSKyQJgx4VjNvDEqIYibpJUOLWXJ0h56bN2uTPJrmPQ1+LRoJXnE9u0BP tiAD3JwDzyyjQjct4xYwKe5H/I7GD0tp4xTv/4tffqogRZcn8VSiyprp8yYNxV6e T1abbF3W6gx1cHiqBP7bDLvexwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGm7gbn w1JxvuXAF/d/hOrNtvO8MB8GA1UdIwQYMBaAFHFBwxm7RL+83jOCs7tpEmX5XTCf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg0Ri9ERDQ4N0E1Qzk4 MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3emVNNEt6dTJrU1pmbGRN SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVSERHYnRFdjd6ZU00S3p1MmtTWmZsZE1KOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg0Ri9ERDQ4N0E1Qzk4MTQxMUVCQTRCMzIxNTBDNEY5QUUwMi9jVUhER2J0RXY3 emVNNEt6dTJrU1pmbGRNSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlcUBGTvLSD33vxFksF1owx3tISS4ISKvnbzPTOHur8TmQYxBr4qAl Rjl15dR036WkrWPDe9k3sBKHQPUHnfXpMeo+DlOEGHrvGPje568aXzLske/eYfaT KkYEnkbx319XVvbtON98QRBXu9yZXhhhvndbqhygd8Gphzlwz1NRNpZdkOOimASp HJKJK9c0spbwLIQNpZ0Wl+FDwfx3wQ1U/cOjA7T3pJ3GgiifpjKhuDBy/cm8quKF CH4CJNC8eozrnzkV1YWzOWZkhbts10i2aSWzQ0W4CFGZZSK6ohr9nhGgKq1cSn+r ECjb4/0NgN/6ypLSFdwzOlEGEPxKxc9U -----END CERTIFICATE-----Generated at Wed Nov 5 02:18:25 2025 by rpki-client