$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: z1FcXn9Vg4eePl1d8IqhQeJTeZtcign73c2Jd7VvG5o= Subject key identifier: 53:4F:61:0E:7D:AE:76:16:10:56:AA:4E:00:85:5F:68:38:FF:1E:9D Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0FB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F77 Signing time: Tue 04 Nov 2025 17:41:04 +0000 Manifest this update: Tue 04 Nov 2025 17:41:04 +0000 Manifest next update: Tue 11 Nov 2025 17:41:04 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: gOg+EIXwrcmL6dtICy++fkRVFlXXqHqa5kISZn40QeU=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:41:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4018 (0xfb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Nov 4 17:41:04 2025 GMT Not After : Nov 11 17:41:04 2025 GMT Subject: CN=690a3ab0-d687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9b:f1:1a:a0:9e:5a:75:d9:99:b3:45:10:bd: 81:a9:1a:34:f0:a5:42:0d:c5:24:1a:7d:4b:06:45: 51:df:40:40:e4:f5:a8:09:14:61:3b:27:15:a8:e8: a0:a6:4d:cf:93:a6:25:04:39:e6:20:d8:54:6c:5b: c1:a9:7b:5c:a9:81:20:4f:4b:ab:18:2b:83:4d:1c: 2e:0a:36:2e:01:52:98:ef:f4:6c:71:e8:25:b6:0f: 69:81:42:11:8e:41:4d:ed:73:8d:00:b1:03:61:87: dc:cc:fd:24:85:64:b6:88:4f:f2:1e:b9:43:94:cf: 57:27:e6:cd:13:b3:9c:a8:17:dc:74:78:d5:26:cc: 55:2e:81:d7:16:43:2a:6e:b0:47:27:e8:c2:61:94: 84:ed:9b:ec:ca:f9:9f:08:b1:ea:e0:45:05:0e:d3: 07:12:be:d6:61:a6:f8:0f:23:b4:e6:d5:6b:ce:0f: d6:85:58:c1:f9:07:b5:bb:3a:78:c9:8a:63:d5:3d: 11:11:e5:4f:d6:47:0b:84:64:ea:fc:6a:cc:45:79: 87:3d:1f:13:d1:6a:01:82:23:12:dd:06:c2:3c:67: e5:e3:ac:89:7a:ab:5e:34:1b:fc:10:82:80:e6:c8: 4a:d0:68:bb:8b:dc:30:6f:f4:28:cf:81:60:04:da: 86:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4F:61:0E:7D:AE:76:16:10:56:AA:4E:00:85:5F:68:38:FF:1E:9D X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:65:41:c7:5d:3d:4a:0e:9a:19:94:f1:bd:b3:d6:6f:7b:47: 3f:cc:49:b5:ca:28:fd:e3:d6:7a:21:e1:37:be:d6:1d:fe:56: d7:62:54:e6:2a:ce:1c:fb:13:76:40:16:c6:f0:7c:48:3e:83: 9f:54:f3:ab:76:9e:98:a7:31:ce:bd:cf:58:7c:d9:36:5e:43: fa:83:57:f8:0f:f6:04:35:76:49:25:f7:ae:80:26:89:69:9a: 06:92:97:b3:2c:6e:8b:37:d7:f4:3c:f2:e1:69:8d:c3:c0:c8: 08:0f:a7:c7:75:aa:d6:f7:74:d0:fc:3d:9e:87:ff:67:6d:4c: a3:1b:f4:81:5e:34:a8:46:cb:71:44:34:af:a0:0b:c0:6b:56: 70:e3:c6:12:c8:cb:77:2c:7e:68:73:29:79:22:73:91:44:bf: 3d:be:c6:5b:e7:fb:4a:66:14:d9:e3:dd:de:dd:07:48:1a:dd: ff:cb:92:05:84:69:1b:ce:30:29:74:2a:4c:a1:3b:15:46:f9: dd:ca:1e:bf:45:3a:eb:23:48:67:08:9c:7b:92:a3:05:74:a9: cb:7f:48:0b:3e:70:4c:6a:00:31:18:aa:de:46:6e:5f:98:1d: a3:49:01:99:fc:46:64:8c:7a:f8:09:c0:33:e1:88:03:85:14: dc:aa:34:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUxMTA0MTc0MTA0WhcNMjUxMTExMTc0MTA0WjAYMRYwFAYD VQQDEw02OTBhM2FiMC1kNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm5vxGqCeWnXZmbNFEL2BqRo08KVCDcUkGn1LBkVR30BA5PWoCRRhOycVqOig pk3Pk6YlBDnmINhUbFvBqXtcqYEgT0urGCuDTRwuCjYuAVKY7/Rscegltg9pgUIR jkFN7XONALEDYYfczP0khWS2iE/yHrlDlM9XJ+bNE7OcqBfcdHjVJsxVLoHXFkMq brBHJ+jCYZSE7ZvsyvmfCLHq4EUFDtMHEr7WYab4DyO05tVrzg/WhVjB+Qe1uzp4 yYpj1T0REeVP1kcLhGTq/GrMRXmHPR8T0WoBgiMS3QbCPGfl46yJeqteNBv8EIKA 5shK0Gi7i9wwb/Qoz4FgBNqGMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNPYQ59 rnYWEFaqTgCFX2g4/x6dMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvZUHHXT1KDpoZlPG9s9Zve0c/zEm1yij949Z6IeE3vtYd/lbXYlTm Ks4c+xN2QBbG8HxIPoOfVPOrdp6YpzHOvc9YfNk2XkP6g1f4D/YENXZJJfeugCaJ aZoGkpezLG6LN9f0PPLhaY3DwMgID6fHdarW93TQ/D2eh/9nbUyjG/SBXjSoRstx RDSvoAvAa1Zw48YSyMt3LH5ocyl5InORRL89vsZb5/tKZhTZ493e3QdIGt3/y5IF hGkbzjApdCpMoTsVRvndyh6/RTrrI0hnCJx7kqMFdKnLf0gLPnBMagAxGKreRm5f mB2jSQGZ/EZkjHr4CcAz4YgDhRTcqjRg -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:35 2025 by rpki-client