$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: vz2I0M8ugGMu0nJKTWmGNLXFGXS2wJrc4aIdnfhr/Ec= Subject key identifier: 90:91:A1:53:73:3C:48:DC:5A:BA:D4:24:2E:32:AB:FE:7A:DB:E7:18 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0186 Signing time: Mon 03 Nov 2025 03:35:17 +0000 Manifest this update: Mon 03 Nov 2025 03:35:17 +0000 Manifest next update: Mon 10 Nov 2025 03:35:17 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: NExyqteG/L7bxMT0U2VE/nPeNmBeG+S1VRjVYC6ybvs=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Nov 3 03:35:17 2025 GMT Not After : Nov 10 03:35:17 2025 GMT Subject: CN=690822f5-3505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3c:b2:6f:7d:91:6d:0c:a6:3f:09:19:e3:0e: 2f:a8:59:22:ae:6a:3c:f4:36:a3:f1:4b:83:5f:26: 5d:a0:f5:88:25:16:92:51:aa:ea:34:6f:0a:39:c8: 95:f1:f2:e3:f6:0a:7e:26:d2:2e:5e:77:e2:ce:a6: d4:86:7d:9f:43:d5:1f:95:6c:aa:e3:d4:5e:e6:3a: 82:da:59:04:b8:59:bf:14:24:cb:9e:9b:9d:62:ae: 20:1d:46:4b:58:94:c7:3e:d3:19:a0:42:b7:85:b1: 99:99:ec:ad:3d:51:90:de:09:10:67:b6:e9:07:a4: cb:3f:2b:41:fb:6d:55:20:21:75:34:de:0d:39:21: b7:a7:38:f4:19:d2:aa:23:b3:87:49:05:56:7c:6f: 43:93:19:8e:08:19:dc:52:94:cd:1d:df:59:84:75: da:c0:88:f5:d0:44:e7:71:ed:e0:2d:ec:ca:1d:b2: bb:2a:fe:6a:5b:47:e3:02:f2:83:61:03:ba:75:95: 7d:7e:b4:85:71:b1:85:df:ab:cd:dc:7c:40:f8:51: c4:8a:3a:1a:6d:30:dd:c1:78:c0:51:11:12:24:59: a8:71:f2:99:9e:60:81:c8:f3:88:08:a9:62:c2:eb: 9c:0b:83:d2:b3:14:dd:df:ce:3c:71:be:9c:ec:0b: 60:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:91:A1:53:73:3C:48:DC:5A:BA:D4:24:2E:32:AB:FE:7A:DB:E7:18 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:55:4f:4b:c7:6b:d5:9f:d0:e0:82:67:b7:4d:ec:79:2c:9b: e0:b9:10:2e:b5:29:18:16:d2:f3:23:4d:25:2d:4b:af:e0:64: 95:a4:b9:8a:80:3d:b8:85:e9:65:4d:6d:6a:31:6a:1d:02:11: 00:3d:a4:16:48:ea:5a:a5:5f:1e:a5:67:5b:19:fa:55:9c:0d: da:fb:72:47:88:16:25:b3:60:62:66:08:35:fc:d0:87:30:08: 6c:8b:db:58:2e:a4:16:6b:8e:b4:01:95:04:fe:0c:30:50:b6: 33:5e:57:5f:14:72:ae:6e:86:56:c0:a8:c2:0a:ea:36:bc:f1: ec:e0:5f:6c:12:53:22:f8:7b:1c:08:d4:0a:7c:3d:75:90:5b: e6:09:28:3c:34:9d:a0:3e:23:4f:4a:4a:c4:21:ee:ad:cb:ac: 48:a5:25:5d:9f:67:a2:f7:ec:e4:dd:55:2b:e4:bc:84:37:0f: 5e:df:fd:26:ff:ca:f5:9f:45:70:81:8e:59:7c:b8:d4:02:a4: a3:b8:03:3e:3a:2e:2f:52:c9:65:c1:6d:c6:52:51:ba:b8:c4: a8:bd:4d:b4:21:6e:73:6e:1f:14:ea:6e:3b:08:ad:9c:98:e0: 79:ef:cc:04:b5:2c:eb:43:19:63:90:f3:d0:b3:99:a2:b1:fc: 5b:ad:eb:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUxMTAzMDMzNTE3WhcNMjUxMTEwMDMzNTE3WjAYMRYwFAYD VQQDEw02OTA4MjJmNS0zNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDyyb32RbQymPwkZ4w4vqFkirmo89Daj8UuDXyZdoPWIJRaSUarqNG8KOciV 8fLj9gp+JtIuXnfizqbUhn2fQ9UflWyq49Re5jqC2lkEuFm/FCTLnpudYq4gHUZL WJTHPtMZoEK3hbGZmeytPVGQ3gkQZ7bpB6TLPytB+21VICF1NN4NOSG3pzj0GdKq I7OHSQVWfG9DkxmOCBncUpTNHd9ZhHXawIj10ETnce3gLezKHbK7Kv5qW0fjAvKD YQO6dZV9frSFcbGF36vN3HxA+FHEijoabTDdwXjAURESJFmocfKZnmCByPOICKli wuucC4PSsxTd3848cb6c7AtgAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCRoVNz PEjcWrrUJC4yq/562+cYMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbVU9Lx2vVn9Dggme3Tex5LJvguRAutSkYFtLzI00lLUuv4GSVpLmK gD24hellTW1qMWodAhEAPaQWSOpapV8epWdbGfpVnA3a+3JHiBYls2BiZgg1/NCH MAhsi9tYLqQWa460AZUE/gwwULYzXldfFHKuboZWwKjCCuo2vPHs4F9sElMi+Hsc CNQKfD11kFvmCSg8NJ2gPiNPSkrEIe6ty6xIpSVdn2ei9+zk3VUr5LyENw9e3/0m /8r1n0VwgY5ZfLjUAqSjuAM+Oi4vUsllwW3GUlG6uMSovU20IW5zbh8U6m47CK2c mOB578wEtSzrQxljkPPQs5misfxbresc -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:21 2025 by rpki-client