$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: OI+dbY3Y7kIAQkctwLq23oYZiq/Uel2qNHuamZb5vW4= Subject key identifier: 81:FC:83:55:92:99:36:34:4E:1A:EC:9D:63:7E:B7:54:AE:17:18:4E Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1760 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 20EA Signing time: Sun 02 Nov 2025 16:36:01 +0000 Manifest this update: Sun 02 Nov 2025 16:36:00 +0000 Manifest next update: Sun 09 Nov 2025 16:36:00 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: Kbp2/VihPlh7VDuw2v0KlRmplVpNNwglFZpNJRZPvVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5984 (0x1760) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Nov 2 16:36:00 2025 GMT Not After : Nov 9 16:36:00 2025 GMT Subject: CN=69078871-ebf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:58:77:0e:63:e8:39:f3:d4:fe:b3:e8:7f:04: d3:12:20:f9:d9:e6:77:28:e7:e3:15:23:08:34:65: 9f:19:ae:92:e8:91:2f:5b:32:78:ad:2d:83:18:db: a4:f1:94:56:c3:a3:5d:54:56:50:31:c8:3b:43:7a: 95:fa:0e:df:89:40:81:87:2d:3c:78:b5:8b:d8:7f: 07:4a:ed:6f:97:8f:29:22:91:a2:30:ce:71:93:09: f5:9c:f1:18:c1:b0:b1:db:89:c1:e4:7d:4b:8b:ff: 66:9f:cd:fc:ca:38:15:a6:00:1d:03:8e:ed:f0:7b: 2f:e5:a1:bf:9a:16:f2:33:d4:80:fa:b8:7e:26:49: 93:69:67:fb:b8:2e:08:9c:c1:7d:de:26:57:1b:46: bd:8e:ce:56:d0:db:db:6f:35:a3:f5:35:8d:e6:85: 64:53:de:53:46:e6:bc:c7:fe:5c:69:3e:f2:3d:1f: e1:2a:26:51:83:f6:59:1e:27:e6:4a:06:39:fa:ec: b1:b4:f0:43:47:5a:7e:cd:2d:28:31:03:ce:d2:8b: 5f:46:a4:96:a5:9f:d5:b7:8e:ce:fa:6b:ab:20:6e: ff:ac:4b:12:42:d2:f1:5a:f9:73:5b:09:89:3f:74: 9b:65:dd:48:bd:af:18:05:ee:f6:fa:55:f8:d1:f1: 6e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FC:83:55:92:99:36:34:4E:1A:EC:9D:63:7E:B7:54:AE:17:18:4E X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:f3:a0:27:de:a9:a0:f7:e5:fb:e4:b6:3d:67:43:59:d2:de: 4f:c0:49:1c:10:f6:9e:d5:c6:3e:57:94:0d:c8:84:af:d4:fc: 32:c9:38:0c:04:f3:d5:70:0b:f4:e6:ed:c2:10:6c:57:77:c0: 8d:6c:26:d2:1c:64:f0:dd:9c:d7:cb:c0:44:95:16:5c:30:98: a8:83:6f:2e:89:8e:8b:1b:f3:3a:1e:c9:7e:b7:30:a4:d4:bd: 06:6a:ea:f4:71:fd:e2:5f:dc:e4:71:42:a7:d6:ef:3a:f1:d2: 9a:87:1e:4f:79:17:e9:83:a2:46:40:1b:cc:11:f4:fe:e6:ee: 27:3a:a3:84:95:70:e7:41:cb:61:9a:a1:2e:3a:4d:ff:8c:08: 35:f0:c3:4a:93:a4:d4:a4:e8:c0:a4:16:fe:2d:8a:29:e2:37: c8:3e:93:4a:9e:d8:0d:44:79:0e:96:1e:7c:c8:be:fe:9c:a9: 9c:a6:a8:a5:9d:6f:36:5d:f1:be:6c:5a:34:6b:3d:42:97:3a: c1:ed:c0:06:9f:11:15:d8:07:8c:15:c8:45:cd:87:d6:53:84: 85:58:df:82:44:62:37:6b:31:e8:c7:79:ee:c9:26:44:7c:d5: bc:b4:45:10:5c:5b:fa:ea:6b:22:14:f9:07:90:10:2c:bd:6a: ee:ec:c8:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUxMTAyMTYzNjAwWhcNMjUxMTA5MTYzNjAwWjAYMRYwFAYD VQQDEw02OTA3ODg3MS1lYmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVh3DmPoOfPU/rPofwTTEiD52eZ3KOfjFSMINGWfGa6S6JEvWzJ4rS2DGNuk 8ZRWw6NdVFZQMcg7Q3qV+g7fiUCBhy08eLWL2H8HSu1vl48pIpGiMM5xkwn1nPEY wbCx24nB5H1Li/9mn838yjgVpgAdA47t8Hsv5aG/mhbyM9SA+rh+JkmTaWf7uC4I nMF93iZXG0a9js5W0NvbbzWj9TWN5oVkU95TRua8x/5caT7yPR/hKiZRg/ZZHifm SgY5+uyxtPBDR1p+zS0oMQPO0otfRqSWpZ/Vt47O+murIG7/rEsSQtLxWvlzWwmJ P3SbZd1Iva8YBe72+lX40fFuQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIH8g1WS mTY0ThrsnWN+t1SuFxhOMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj86An3qmg9+X75LY9Z0NZ0t5PwEkcEPae1cY+V5QNyISv1PwyyTgM BPPVcAv05u3CEGxXd8CNbCbSHGTw3ZzXy8BElRZcMJiog28uiY6LG/M6Hsl+tzCk 1L0Gaur0cf3iX9zkcUKn1u868dKahx5PeRfpg6JGQBvMEfT+5u4nOqOElXDnQcth mqEuOk3/jAg18MNKk6TUpOjApBb+LYop4jfIPpNKntgNRHkOlh58yL7+nKmcpqil nW82XfG+bFo0az1ClzrB7cAGnxEV2AeMFchFzYfWU4SFWN+CRGI3azHox3nuySZE fNW8tEUQXFv66msiFPkHkBAsvWru7Mjk -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:42 2025 by rpki-client