$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: lWCioPK/ljHdUXvX2si/EcAzvjy4+YjKJrIJktV17Y0= Subject key identifier: 22:B6:67:90:0E:38:08:EF:33:0B:82:69:61:DE:A7:8E:04:C6:B3:07 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0BD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0BCE Signing time: Sun 02 Nov 2025 18:53:19 +0000 Manifest this update: Sun 02 Nov 2025 18:53:18 +0000 Manifest next update: Sun 09 Nov 2025 18:53:18 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: eCQ5KM3GKm36+Um5PgPsaCE8AKd7pCTcURe69Xskr74=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Nov 2 18:53:18 2025 GMT Not After : Nov 9 18:53:18 2025 GMT Subject: CN=6907a89e-ffa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1e:1f:ab:b9:38:ac:32:62:dd:69:e0:b6:73: 3d:fb:ec:13:f7:09:29:c8:72:69:d4:4e:79:38:4c: 30:39:cb:f4:8a:77:3d:4d:6b:36:07:55:5f:95:ee: 7e:e4:38:8a:00:27:14:22:3e:94:da:df:01:1d:16: c1:7e:df:a1:3e:f8:c1:b3:23:0e:e5:24:93:be:03: 89:70:91:5a:38:a6:36:18:a5:b5:e6:7a:c9:f2:bb: 7d:1d:28:e8:9f:ed:2b:7b:cf:53:fa:ac:cb:36:16: a5:1e:97:e4:c6:38:b4:93:27:b0:e5:da:dd:03:4e: 92:4b:e4:fb:5e:ef:ec:98:95:92:20:e3:da:30:91: 99:ec:10:99:de:a1:71:d1:c1:49:28:d9:14:7e:23: f1:5e:58:aa:eb:d6:85:72:c4:ad:17:77:58:87:e8: ab:f4:95:84:30:6c:84:5a:d5:38:01:89:3d:3c:54: 95:37:22:f3:76:e7:5a:a2:85:0d:97:92:7a:6e:87: e2:90:be:16:2a:0c:b9:e9:a5:74:a8:bf:a1:0e:ec: 49:00:83:e2:4d:33:02:0d:88:32:13:0d:55:38:a7: 09:da:98:00:04:b8:fc:aa:2a:fc:43:58:84:68:a4: 8f:d6:67:fc:67:5e:03:16:b9:70:72:02:67:95:50: e0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B6:67:90:0E:38:08:EF:33:0B:82:69:61:DE:A7:8E:04:C6:B3:07 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:47:09:10:49:c5:68:37:00:b4:2e:1d:f7:d2:8e:55:2d:5d: dd:ae:fa:ef:39:5d:d7:0b:58:7c:0e:31:64:88:92:7c:a2:ce: 07:c5:ca:e5:87:77:e7:9c:ba:88:1b:3a:31:11:21:8b:c5:6c: 2b:05:ed:45:5c:f3:29:a2:99:9f:35:cb:1e:0f:ee:ab:c0:3d: da:d6:fb:88:87:db:42:50:ad:05:e2:c1:8b:d4:1d:70:9e:3e: 83:14:cb:54:f2:68:5d:77:00:68:65:38:16:aa:a7:09:ea:38: 1e:82:f1:24:6d:29:21:c6:85:a4:10:60:ae:d7:fd:8a:fb:0b: 99:8d:b8:50:40:ae:d1:c8:75:53:03:fb:03:18:76:20:a0:0d: 87:0a:e3:18:a0:43:99:e2:a5:2c:b1:bb:0b:79:9c:a6:0d:3f: ea:08:34:01:48:e4:af:78:50:a3:13:a3:83:98:76:bd:9c:dc: c9:9f:df:c4:df:4d:51:1e:5b:14:72:05:af:bb:ba:39:c2:17: 94:ea:4d:f1:71:cc:83:d0:c0:20:6c:4e:f5:b5:20:fe:6d:ae: d4:cd:3e:a0:b8:ea:62:74:56:98:84:38:f0:45:1e:c4:dc:69: 90:8e:5e:1d:48:1e:ab:b1:96:58:09:be:e0:45:9f:d0:5d:9c: 2a:c6:a3:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUxMTAyMTg1MzE4WhcNMjUxMTA5MTg1MzE4WjAYMRYwFAYD VQQDEw02OTA3YTg5ZS1mZmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4B4fq7k4rDJi3WngtnM9++wT9wkpyHJp1E55OEwwOcv0inc9TWs2B1Vfle5+ 5DiKACcUIj6U2t8BHRbBft+hPvjBsyMO5SSTvgOJcJFaOKY2GKW15nrJ8rt9HSjo n+0re89T+qzLNhalHpfkxji0kyew5drdA06SS+T7Xu/smJWSIOPaMJGZ7BCZ3qFx 0cFJKNkUfiPxXliq69aFcsStF3dYh+ir9JWEMGyEWtU4AYk9PFSVNyLzdudaooUN l5J6bofikL4WKgy56aV0qL+hDuxJAIPiTTMCDYgyEw1VOKcJ2pgABLj8qir8Q1iE aKSP1mf8Z14DFrlwcgJnlVDgRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCK2Z5AO OAjvMwuCaWHep44ExrMHMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgRwkQScVoNwC0Lh330o5VLV3drvrvOV3XC1h8DjFkiJJ8os4Hxcrl h3fnnLqIGzoxESGLxWwrBe1FXPMpopmfNcseD+6rwD3a1vuIh9tCUK0F4sGL1B1w nj6DFMtU8mhddwBoZTgWqqcJ6jgegvEkbSkhxoWkEGCu1/2K+wuZjbhQQK7RyHVT A/sDGHYgoA2HCuMYoEOZ4qUssbsLeZymDT/qCDQBSOSveFCjE6ODmHa9nNzJn9/E 301RHlsUcgWvu7o5wheU6k3xccyD0MAgbE71tSD+ba7UzT6guOpidFaYhDjwRR7E 3GmQjl4dSB6rsZZYCb7gRZ/QXZwqxqM7 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:09 2025 by rpki-client