$ rpki-client -vvf rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft File: 23LIuvHa9pOYGFLuAyIwMF7ICRA.mft (raw, json) Hash identifier: 0HCF1encWOAavfh+tyt0JWUVXvmLLbzVdSDf9XpDJ2A= Subject key identifier: 30:43:D8:AE:BE:84:0F:56:65:A3:9D:D4:C9:C4:10:CB:35:64:9F:05 Authority key identifier: DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 Certificate issuer: /CN=A91B289C/serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Certificate serial: 08EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft Manifest number: 08E6 Signing time: Tue 04 Nov 2025 20:28:21 +0000 Manifest this update: Tue 04 Nov 2025 20:28:20 +0000 Manifest next update: Tue 11 Nov 2025 20:28:20 +0000 Files and hashes: 1: 23LIuvHa9pOYGFLuAyIwMF7ICRA.crl (hash: hA2wWuvk8EyuqEt1ExIEQWoW38Iv64k3KBhU2ZwBNHg=) 2: E6F3687CBCE711EAACD6466CC4F9AE02.roa (hash: f4udCcisFsQWGXJxlj4yAW3MNSfW4g1HYUDDKGCbXqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2286 (0x8ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B289C, serialNumber=DB72C8BAF1DAF693981852EE032230305EC80910 Validity Not Before: Nov 4 20:28:20 2025 GMT Not After : Nov 11 20:28:20 2025 GMT Subject: CN=690a61e5-01be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c6:c5:a2:b0:1a:1a:05:f3:0f:e4:e3:12:31: ed:d1:46:c7:f0:26:e4:d0:88:db:f5:e7:39:b0:9a: 8b:4b:08:ff:cd:e1:f6:b9:f3:d1:80:4d:a9:4e:f7: 64:46:e6:09:65:75:cb:ae:38:87:23:bb:54:e8:b9: b7:a7:8b:55:ce:56:b9:2f:ac:ef:03:58:bb:78:b5: ef:fa:f9:3f:ef:f6:18:ee:71:f9:ec:30:37:7d:72: 2f:cd:f6:74:a2:93:ad:0f:8e:af:ce:f8:f4:63:71: f4:cc:45:a6:c2:02:e3:11:31:1f:78:e8:b4:a0:62: 4e:a4:6e:1c:a0:a7:87:48:12:f1:91:d9:c8:04:58: be:ee:c0:9c:f5:3d:00:a8:80:62:0a:bd:1f:a5:35: b8:88:0e:0e:7d:18:fb:3f:78:b2:6f:6b:ed:75:60: 62:93:bc:11:36:7a:dc:68:67:4c:2b:b9:46:64:6d: 9e:97:f4:12:58:6c:e9:30:9a:4d:3c:93:40:5f:81: b3:e0:97:8e:79:f1:97:90:e3:b8:5e:d8:2b:95:94: 5c:09:fc:ad:72:f6:4f:22:e3:8c:8e:2c:8b:fd:31: f2:a3:a4:ba:97:2c:13:19:b8:82:9b:f4:3e:c8:42: 9f:f4:2c:55:9e:98:e7:0e:9c:5a:b9:1a:03:2e:1c: b7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:43:D8:AE:BE:84:0F:56:65:A3:9D:D4:C9:C4:10:CB:35:64:9F:05 X509v3 Authority Key Identifier: keyid:DB:72:C8:BA:F1:DA:F6:93:98:18:52:EE:03:22:30:30:5E:C8:09:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23LIuvHa9pOYGFLuAyIwMF7ICRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B289C/3AB1E2DCBCE711EABE972C6CC4F9AE02/23LIuvHa9pOYGFLuAyIwMF7ICRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:66:8f:11:3f:92:01:c7:a9:57:6a:19:10:41:8e:56:81:0c: 3d:99:80:92:bb:ec:14:24:58:11:6e:c7:16:59:12:b0:0b:84: c1:0d:b7:12:e6:9c:3d:fc:cf:2d:84:27:e6:e6:52:63:82:ff: 4d:a3:36:1b:fc:ac:10:ee:81:56:90:a5:af:e7:cd:b7:82:af: f0:98:1d:fa:37:2b:a4:9a:68:b3:5a:41:f9:10:0b:c1:1f:af: 88:e5:29:a5:7c:b6:8c:86:de:20:a4:d3:1a:e8:96:73:b6:25: 1c:a4:50:58:d6:fe:22:34:97:25:aa:16:45:46:b1:75:ff:3a: a7:e4:b1:f0:92:14:1b:9b:b8:b5:a3:83:01:26:67:81:82:7e: 07:ee:50:78:80:18:ab:0c:7d:15:0a:d2:80:ea:df:a7:1e:a4: f2:08:42:d8:f8:d6:c4:a1:fc:ce:2b:06:16:79:b1:62:d0:10: 2d:cf:57:64:7a:2c:5b:63:3d:8e:f8:2a:5e:be:da:f7:b6:53: a6:d8:dc:3f:d7:08:c5:9c:28:91:43:89:67:4b:35:35:09:58: 9b:b8:ef:dd:d1:fd:42:99:a2:61:cc:ff:bb:f3:ab:b8:11:3d: aa:f1:e4:2f:8b:eb:07:f8:5c:30:9b:7d:fd:b5:92:2f:d4:f9: 01:68:df:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI4OUMxMTAvBgNVBAUTKERCNzJDOEJBRjFEQUY2OTM5ODE4NTJFRTAzMjIzMDMw NUVDODA5MTAwHhcNMjUxMTA0MjAyODIwWhcNMjUxMTExMjAyODIwWjAYMRYwFAYD VQQDEw02OTBhNjFlNS0wMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscbForAaGgXzD+TjEjHt0UbH8Cbk0Ijb9ec5sJqLSwj/zeH2ufPRgE2pTvdk RuYJZXXLrjiHI7tU6Lm3p4tVzla5L6zvA1i7eLXv+vk/7/YY7nH57DA3fXIvzfZ0 opOtD46vzvj0Y3H0zEWmwgLjETEfeOi0oGJOpG4coKeHSBLxkdnIBFi+7sCc9T0A qIBiCr0fpTW4iA4OfRj7P3iyb2vtdWBik7wRNnrcaGdMK7lGZG2el/QSWGzpMJpN PJNAX4Gz4JeOefGXkOO4XtgrlZRcCfytcvZPIuOMjiyL/THyo6S6lywTGbiCm/Q+ yEKf9CxVnpjnDpxauRoDLhy3+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBD2K6+ hA9WZaOd1MnEEMs1ZJ8FMB8GA1UdIwQYMBaAFNtyyLrx2vaTmBhS7gMiMDBeyAkQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjg5Qy8zQUIxRTJEQ0JD RTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlwT1lHRkx1QXlJd01GN0lD UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzTEl1dkhhOXBPWUdGTHVBeUl3TUY3SUNSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mjg5Qy8zQUIxRTJEQ0JDRTcxMUVBQkU5NzJDNkNDNEY5QUUwMi8yM0xJdXZIYTlw T1lHRkx1QXlJd01GN0lDUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBZo8RP5IBx6lXahkQQY5WgQw9mYCSu+wUJFgRbscWWRKwC4TBDbcS 5pw9/M8thCfm5lJjgv9NozYb/KwQ7oFWkKWv5823gq/wmB36NyukmmizWkH5EAvB H6+I5SmlfLaMht4gpNMa6JZztiUcpFBY1v4iNJclqhZFRrF1/zqn5LHwkhQbm7i1 o4MBJmeBgn4H7lB4gBirDH0VCtKA6t+nHqTyCELY+NbEofzOKwYWebFi0BAtz1dk eixbYz2O+Cpevtr3tlOm2Nw/1wjFnCiRQ4lnSzU1CVibuO/d0f1CmaJhzP+786u4 ET2q8eQvi+sH+Fwwm339tZIv1PkBaN9W -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:41 2025 by rpki-client