$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft File: i1fdFr2X-1v8IdnMqeK4bVUC4og.mft (raw, json) Hash identifier: d6tPIkfwJJ4g1rLz+Vs13vla6JfDVbw2JN0Y13xUYe8= Subject key identifier: 9B:10:46:3B:F8:C2:45:EB:EA:76:48:1B:3D:BA:7E:D2:86:D1:5C:C1 Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 05DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft Manifest number: 05D5 Signing time: Thu 23 Oct 2025 00:02:52 +0000 Manifest this update: Thu 23 Oct 2025 00:02:51 +0000 Manifest next update: Thu 30 Oct 2025 00:02:51 +0000 Files and hashes: 1: i1fdFr2X-1v8IdnMqeK4bVUC4og.crl (hash: rYWzCHMeq7E4q4eqJHpe/bftFb4qfUsy/JDm3k5HsrA=) 2: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (hash: 6nBsIW1FtTa2lY5be/el75WgarvUxw35P+urmn+K7Hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 00:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1498 (0x5da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F, serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Oct 23 00:02:51 2025 GMT Not After : Oct 30 00:02:51 2025 GMT Subject: CN=68f970ac-ac75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e8:c6:79:ae:f5:35:de:1f:58:14:c0:9c:e3: 43:f0:5d:fc:b6:e2:89:a1:cb:db:ae:39:f7:84:a2: 4c:3f:62:ec:ba:da:f8:80:74:f3:3d:d9:fa:de:a8: 6d:9d:e2:3a:79:0b:52:ac:a9:71:13:6b:27:51:a2: 53:a3:91:9f:b0:13:22:74:11:17:1b:34:d5:a5:b1: f4:af:17:86:6a:49:9d:79:82:94:c9:c5:81:4c:15: 7b:8c:10:1b:3a:1f:a0:85:46:a1:8e:0a:ec:76:20: 6e:c0:47:fd:b2:38:45:80:ff:f7:90:13:dd:d0:72: 88:11:c2:f8:c7:6b:57:dc:7a:36:bb:8e:61:73:0e: 7d:10:f3:8f:b4:05:dc:65:97:bb:8b:a5:6b:e5:85: 36:ca:d1:34:74:c8:27:fa:7a:ae:09:68:67:34:8a: d1:0e:59:a9:46:3b:fa:65:a1:04:a1:ce:d3:2d:33: 5b:9f:77:ab:c2:6d:4d:45:95:8c:19:cb:02:db:8c: 4d:a4:64:b2:78:0f:a5:fe:b7:e1:38:fa:b8:95:37: 65:ee:9e:a4:ac:54:a0:50:e8:1b:5e:97:be:8d:00: a5:ad:f9:a5:24:b5:f6:75:89:45:a0:2e:bf:5c:bf: c6:7e:be:32:5e:93:fa:d0:ab:2e:1f:0a:3d:07:c4: ed:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:10:46:3B:F8:C2:45:EB:EA:76:48:1B:3D:BA:7E:D2:86:D1:5C:C1 X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:19:84:2a:02:b6:0b:7c:c5:34:a1:0e:ad:dd:fe:00:42:54: 15:7e:86:de:42:15:fa:ee:96:48:64:52:6c:21:03:92:19:79: 88:00:50:74:11:84:1f:d2:dc:9b:4a:76:52:b9:cd:59:3f:34: 35:ad:a5:f0:27:db:7a:d2:26:82:3f:28:d5:f4:76:88:19:62: 1f:6c:8e:47:5f:ff:ec:de:d8:22:d8:a7:27:5e:52:98:25:f0: 3f:9c:4d:de:f6:ca:1c:91:e1:22:8f:61:f6:63:3e:73:40:40: b0:28:c3:0b:74:f0:da:76:8b:cb:69:4a:5d:12:fc:bc:27:1c: f3:3b:4d:df:ea:be:8f:fa:95:4f:ad:54:28:27:01:d6:c7:c6: c1:e9:08:8f:ff:34:72:b5:5c:2f:94:49:20:ac:73:48:52:6e: 0f:1c:cb:b2:ab:fa:4e:3f:fe:94:70:5b:84:a3:d0:28:51:eb: c0:b5:ae:e2:11:71:47:ad:1a:a4:59:8b:3c:f0:97:8a:03:c4: 67:0a:8a:10:bd:8a:c5:c2:ec:20:d9:a0:d8:88:ab:6e:df:d9: b7:d3:0a:de:37:78:fb:23:a1:da:7a:16:21:79:90:37:af:13: d0:3d:36:8f:d8:07:86:60:76:0f:3a:8f:e1:f7:97:ef:39:2f: c7:26:da:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjUxMDIzMDAwMjUxWhcNMjUxMDMwMDAwMjUxWjAYMRYwFAYD VQQDEw02OGY5NzBhYy1hYzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ujGea71Nd4fWBTAnOND8F38tuKJocvbrjn3hKJMP2Lsutr4gHTzPdn63qht neI6eQtSrKlxE2snUaJTo5GfsBMidBEXGzTVpbH0rxeGakmdeYKUycWBTBV7jBAb Oh+ghUahjgrsdiBuwEf9sjhFgP/3kBPd0HKIEcL4x2tX3Ho2u45hcw59EPOPtAXc ZZe7i6Vr5YU2ytE0dMgn+nquCWhnNIrRDlmpRjv6ZaEEoc7TLTNbn3erwm1NRZWM GcsC24xNpGSyeA+l/rfhOPq4lTdl7p6krFSgUOgbXpe+jQClrfmlJLX2dYlFoC6/ XL/Gfr4yXpP60KsuHwo9B8TtXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsQRjv4 wkXr6nZIGz26ftKG0VzBMB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI5Ri8zQkU1NDlDRUQ2NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0x djhJZG5NcWVLNGJWVUM0b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeGYQqArYLfMU0oQ6t3f4AQlQVfobeQhX67pZIZFJsIQOSGXmIAFB0 EYQf0tybSnZSuc1ZPzQ1raXwJ9t60iaCPyjV9HaIGWIfbI5HX//s3tgi2KcnXlKY JfA/nE3e9sockeEij2H2Yz5zQECwKMMLdPDadovLaUpdEvy8JxzzO03f6r6P+pVP rVQoJwHWx8bB6QiP/zRytVwvlEkgrHNIUm4PHMuyq/pOP/6UcFuEo9AoUevAta7i EXFHrRqkWYs88JeKA8RnCooQvYrFwuwg2aDYiKtu39m30wreN3j7I6HaehYheZA3 rxPQPTaP2AeGYHYPOo/h95fvOS/HJtqS -----END CERTIFICATE-----Generated at Fri Oct 24 06:06:20 2025 by rpki-client