$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: QKfaBnetBAUZDizO5A8eIApEILxG9B6oWdvEJsFPzOs= Subject key identifier: EB:5E:6A:D9:17:DA:37:09:CA:9F:BB:7B:32:20:7F:2E:CA:3B:2C:21 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 06E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 06D3 Signing time: Sun 02 Nov 2025 22:11:58 +0000 Manifest this update: Sun 02 Nov 2025 22:11:58 +0000 Manifest next update: Sun 09 Nov 2025 22:11:58 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: +eXbtGsSoWYPycZc+jCCvoYZUfMpzPTg5fchaK7O06Q=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: 0UszszQSlIl4E2WZV6BiPk26HX6TF60w5QFwSAW1SPk=) 3: A0A96F80AD8511F08B0A1857C4F9AE02.roa (hash: IAiqZ7+h+k8237T4xv3w1ZM4/F+z2G79r7OGY4bCxVs=) 4: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: wKKFIbG6rZYzWOquPQsQVLcMaVWXvSfOn3rpMeiquU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1767 (0x6e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Nov 2 22:11:58 2025 GMT Not After : Nov 9 22:11:58 2025 GMT Subject: CN=6907d72e-a3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:eb:ca:6c:1f:d0:df:5d:26:cf:a2:93:30: e2:22:18:96:62:9d:1e:29:a0:92:2a:36:34:80:ea: 82:ea:fc:78:6a:42:6c:07:21:b9:e6:9e:d4:c8:73: d4:bb:dc:a7:5a:4d:8f:d4:70:a0:09:76:9a:02:20: e0:4b:7e:3c:70:bb:10:d3:64:f4:5c:8b:d6:0b:4c: f9:74:67:42:f0:52:fd:78:2b:e2:8c:c3:44:f8:08: 83:94:b4:0c:83:be:61:73:0e:55:47:d5:cc:00:53: b6:57:62:3b:c4:22:06:b3:5c:6a:1e:8a:96:a8:86: 07:40:5e:d6:24:1b:7e:a7:0e:e9:ef:53:3d:5b:ce: fb:42:21:cc:fd:07:17:00:6d:1d:5b:42:86:33:63: 5f:bc:71:07:a0:eb:1d:02:4b:55:8f:52:c1:de:b7: 0c:ca:14:be:c5:56:79:af:92:5a:bc:63:17:df:ce: bb:d9:9e:a1:35:41:33:93:f4:8c:bc:fe:7e:f9:89: 93:bd:6c:dd:00:15:b6:72:16:c2:d1:70:64:3f:f9: d5:9b:ac:ee:93:ee:d4:bb:4c:8e:55:06:31:f1:a3: db:4c:75:f2:7a:90:46:e3:69:04:da:1a:3c:04:51: 89:27:00:d1:5c:4d:9c:c4:28:46:a1:7b:c6:c4:71: 61:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5E:6A:D9:17:DA:37:09:CA:9F:BB:7B:32:20:7F:2E:CA:3B:2C:21 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4c:1f:32:f4:3a:81:ec:c7:f8:a2:95:51:e8:7f:f2:96:4d: 00:28:d9:45:b3:f4:bc:9b:6a:c0:bc:ac:70:70:a1:4a:f0:88: 97:3a:13:ac:79:51:e7:29:23:23:98:eb:07:74:7a:ad:0d:ff: 78:56:58:c9:dc:f3:98:bd:1e:9e:36:31:92:28:e0:50:4d:ca: e8:38:e1:d1:5a:b0:e7:71:07:5b:40:8d:a6:1c:d7:6d:fc:ec: 73:29:1c:fd:3d:98:80:a6:3a:ca:49:c4:86:f9:63:e6:3f:34: c6:eb:ce:99:03:6e:82:a4:7a:75:f9:82:e3:a7:0d:3e:50:7a: 60:3e:93:59:65:c8:0e:5f:dd:ad:4a:f5:48:d3:2a:93:3f:6c: 31:54:4b:41:a0:ac:f0:6b:48:a2:53:97:5b:c0:73:c5:c1:7c: 82:79:27:db:e0:7b:2e:97:6f:b2:c8:e2:65:d9:94:96:0d:f0: a9:80:dd:41:ce:55:74:33:ce:63:79:c7:57:0c:4d:06:2a:2b: b6:68:5d:4f:85:65:07:18:7a:4c:d1:a5:c0:73:35:21:bd:26: fc:27:16:68:51:22:4b:46:db:3e:da:0e:5b:91:be:3a:71:8b: 38:86:75:a5:51:92:be:1b:65:36:4c:fe:41:f1:a6:d0:28:d1: e2:1e:59:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUxMTAyMjIxMTU4WhcNMjUxMTA5MjIxMTU4WjAYMRYwFAYD VQQDEw02OTA3ZDcyZS1hM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzszrymwf0N9dJs+ikzDiIhiWYp0eKaCSKjY0gOqC6vx4akJsByG55p7UyHPU u9ynWk2P1HCgCXaaAiDgS348cLsQ02T0XIvWC0z5dGdC8FL9eCvijMNE+AiDlLQM g75hcw5VR9XMAFO2V2I7xCIGs1xqHoqWqIYHQF7WJBt+pw7p71M9W877QiHM/QcX AG0dW0KGM2NfvHEHoOsdAktVj1LB3rcMyhS+xVZ5r5JavGMX38672Z6hNUEzk/SM vP5++YmTvWzdABW2chbC0XBkP/nVm6zuk+7Uu0yOVQYx8aPbTHXyepBG42kE2ho8 BFGJJwDRXE2cxChGoXvGxHFhlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOteatkX 2jcJyp+7ezIgfy7KOywhMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+TB8y9DqB7Mf4opVR6H/ylk0AKNlFs/S8m2rAvKxwcKFK8IiXOhOs eVHnKSMjmOsHdHqtDf94VljJ3POYvR6eNjGSKOBQTcroOOHRWrDncQdbQI2mHNdt /OxzKRz9PZiApjrKScSG+WPmPzTG686ZA26CpHp1+YLjpw0+UHpgPpNZZcgOX92t SvVI0yqTP2wxVEtBoKzwa0iiU5dbwHPFwXyCeSfb4Hsul2+yyOJl2ZSWDfCpgN1B zlV0M85jecdXDE0GKiu2aF1PhWUHGHpM0aXAczUhvSb8JxZoUSJLRts+2g5bkb46 cYs4hnWlUZK+G2U2TP5B8abQKNHiHlk1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:07 2025 by rpki-client