$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: QMac5V4zilu3i+rbja9XlDfu6vRK3GhVRdd1Vms7WTU= Subject key identifier: BA:80:42:99:ED:42:11:12:31:C3:35:88:C5:99:D6:BF:60:FC:65:6F Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 155C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2C7B Signing time: Tue 04 Nov 2025 16:52:49 +0000 Manifest this update: Tue 04 Nov 2025 16:52:49 +0000 Manifest next update: Tue 11 Nov 2025 16:52:49 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: hSh6rQ+NOrlDGsrfo/HKaPnXk/MeIGYtqJI5l/RICDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5468 (0x155c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Nov 4 16:52:49 2025 GMT Not After : Nov 11 16:52:49 2025 GMT Subject: CN=690a2f61-95cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:b1:41:dd:a1:76:e8:44:b4:d8:59:f0:4b: 66:a5:62:12:f1:ac:f1:9f:30:c9:67:2b:a8:1b:65: 28:8e:25:43:8e:aa:5d:d7:16:61:f9:20:3c:1a:98: 65:b4:69:6c:f0:8d:02:86:4f:ae:ea:50:1d:0f:66: ff:79:c6:b8:4c:cd:ab:a2:96:a5:07:a9:9d:55:9f: 6b:f3:bc:11:77:82:db:84:8d:7c:e1:0b:94:9c:a9: 4d:f6:52:69:b5:05:c6:fb:e3:ef:4c:a2:c9:e8:7c: b1:5b:d3:65:46:2f:f8:32:13:14:67:bf:0a:b3:71: 89:e0:b8:fc:12:4e:a0:94:ec:c1:e7:6c:df:9f:a7: 08:86:5d:75:e0:87:8f:53:42:0f:9e:6a:bb:4e:36: fe:98:be:10:03:9b:f6:ed:bb:57:f5:ed:31:5b:cf: 73:bb:e2:01:ce:19:c4:1e:ee:d7:2e:55:5c:c4:e5: db:35:70:a2:06:e8:29:9d:14:96:9d:68:8a:be:4c: 31:00:0d:82:01:32:51:52:13:19:52:b1:fd:43:90: af:92:bc:ab:ea:0f:86:d9:09:78:83:f5:f7:82:8c: 24:01:a2:15:60:40:30:a0:5e:e0:a0:c5:35:aa:ec: 0e:98:e0:4e:7f:49:e1:77:32:0e:d5:7a:0b:07:a5: 86:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:80:42:99:ED:42:11:12:31:C3:35:88:C5:99:D6:BF:60:FC:65:6F X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:8c:f8:54:7d:ce:56:1e:70:97:99:73:62:d0:77:cb:b1:b8: 77:f5:f2:0a:52:c7:9a:9b:5e:0d:73:d1:59:e3:e3:01:a0:f2: 2c:eb:5b:a3:6a:57:81:aa:8e:de:b4:f2:81:9d:21:28:7f:5a: d9:34:69:dc:fb:fb:81:c1:78:cb:74:92:77:b6:8a:45:12:92: 6c:75:bb:2b:f0:7b:22:42:ae:ac:23:95:f8:23:41:37:cd:3c: 93:be:e6:95:2c:28:06:f8:c8:37:90:0c:6c:82:46:f1:b9:ff: f1:e5:3d:fe:df:93:c3:5e:d6:23:34:bb:9d:15:a1:5e:a6:72: 3d:53:fb:61:7f:a0:b4:cd:f4:f8:33:d7:91:00:a3:21:20:15: be:ad:6c:01:07:e2:68:66:5d:c1:5e:35:f8:a0:39:86:2a:30: 1a:7d:5a:a7:b4:0a:94:49:fc:f0:f6:20:44:f0:94:20:38:68: 8f:bb:32:92:fe:02:e7:f8:c6:14:14:bd:b0:1b:3c:db:c5:9c: 2f:50:c9:6f:31:79:8c:53:81:55:99:54:5d:00:64:4c:14:f8: 14:4a:2c:dc:d1:f1:13:01:ea:64:7d:12:e3:53:d2:d6:cc:ee: 83:2e:d8:d0:a6:66:83:99:59:4c:5b:04:e6:e7:fb:ba:d8:a6: fb:3b:10:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjUxMTA0MTY1MjQ5WhcNMjUxMTExMTY1MjQ5WjAYMRYwFAYD VQQDEw02OTBhMmY2MS05NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF2xQd2hduhEtNhZ8EtmpWIS8azxnzDJZyuoG2UojiVDjqpd1xZh+SA8Gphl tGls8I0Chk+u6lAdD2b/eca4TM2ropalB6mdVZ9r87wRd4LbhI184QuUnKlN9lJp tQXG++PvTKLJ6HyxW9NlRi/4MhMUZ78Ks3GJ4Lj8Ek6glOzB52zfn6cIhl114IeP U0IPnmq7Tjb+mL4QA5v27btX9e0xW89zu+IBzhnEHu7XLlVcxOXbNXCiBugpnRSW nWiKvkwxAA2CATJRUhMZUrH9Q5Cvkryr6g+G2Ql4g/X3gowkAaIVYEAwoF7goMU1 quwOmOBOf0nhdzIO1XoLB6WG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqAQpnt QhESMcM1iMWZ1r9g/GVvMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOjPhUfc5WHnCXmXNi0HfLsbh39fIKUseam14Nc9FZ4+MBoPIs61uj aleBqo7etPKBnSEof1rZNGnc+/uBwXjLdJJ3topFEpJsdbsr8HsiQq6sI5X4I0E3 zTyTvuaVLCgG+Mg3kAxsgkbxuf/x5T3+35PDXtYjNLudFaFepnI9U/thf6C0zfT4 M9eRAKMhIBW+rWwBB+JoZl3BXjX4oDmGKjAafVqntAqUSfzw9iBE8JQgOGiPuzKS /gLn+MYUFL2wGzzbxZwvUMlvMXmMU4FVmVRdAGRMFPgUSizc0fETAepkfRLjU9LW zO6DLtjQpmaDmVlMWwTm5/u62Kb7OxBk -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:36 2025 by rpki-client