$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: dc3Aent4nFYwPbjP4ISbuLdJ6lsLjA++PZpl3RVPPro= Subject key identifier: 19:18:8D:8E:13:13:F0:76:6F:35:31:0A:ED:D6:61:30:81:FB:4A:C0 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: E7 Signing time: Mon 27 Oct 2025 07:36:03 +0000 Manifest this update: Mon 27 Oct 2025 07:36:02 +0000 Manifest next update: Mon 03 Nov 2025 07:36:02 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: i4HtvMN9yT8FRMC/2AXX5mSxt45xqu1lQYDlMO74cMg=) 2: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (hash: ifOEg9W1aB/k/lXnYsmHjMPmR84JfX9/zAJq58rKyJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Oct 27 07:36:02 2025 GMT Not After : Nov 3 07:36:02 2025 GMT Subject: CN=68ff20e2-69c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:75:82:cd:0f:23:dd:8a:0e:a7:fa:e9:f7:71: 9f:4f:1c:c1:a9:62:a9:e7:c7:b7:de:b9:96:a1:48: 69:e4:b4:c8:75:3b:65:c0:ea:36:2a:92:3b:85:21: 39:4f:61:01:29:c1:ef:20:63:b7:d4:04:f2:eb:55: ca:1b:5b:6f:3b:3c:38:3d:03:19:8e:37:92:e3:b7: 0f:b6:e6:31:6d:22:9b:2c:bb:cc:9d:13:bd:48:53: 5c:85:84:24:81:ba:40:75:00:c5:a2:60:57:a2:3e: da:c0:e6:e0:e9:74:27:b7:0d:2a:5c:dc:a3:05:19: 13:d6:5d:ee:bc:7e:99:ea:97:d2:c4:fb:eb:30:1b: a0:9f:3e:df:93:92:81:5e:43:01:60:46:d7:d8:0f: 2a:8f:a3:5e:3e:52:21:45:8b:7d:04:dd:dc:65:4f: 47:11:a0:01:03:00:6b:01:34:bf:29:59:d8:ee:dd: a8:67:82:cf:f0:e6:76:5f:bb:22:70:77:09:b2:b3: a6:b5:80:10:6a:87:e5:a4:89:f0:54:5f:f9:de:ce: 5c:8e:ce:ea:df:20:cc:5f:22:9e:c3:d1:f7:0e:45: 50:b5:35:40:50:0c:72:2a:8b:44:01:c6:10:1f:7f: 40:ba:31:90:11:0e:66:67:69:32:5d:84:fd:0c:67: d4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:18:8D:8E:13:13:F0:76:6F:35:31:0A:ED:D6:61:30:81:FB:4A:C0 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:52:dc:b1:fe:27:50:29:a6:e4:16:c0:3f:f2:c7:96:d6:8e: 97:65:0d:50:c9:fc:03:6e:21:66:8c:c3:e0:ec:69:2e:5a:12: 96:5f:c6:0a:16:93:06:8f:c4:3c:75:f3:26:5e:41:35:8e:38: 03:ec:86:8a:30:ac:db:79:07:da:dd:e0:f1:54:1e:7c:9f:81: f5:17:b8:a7:17:20:84:98:9f:39:5a:8c:4b:4d:da:c7:3c:e5: ba:aa:d8:f2:80:d8:72:e2:9d:41:4a:52:c5:e2:f3:c3:f5:ea: b3:61:d7:b0:e7:e7:03:7f:00:51:74:21:dd:61:a9:c4:09:4c: 40:aa:37:84:d5:8a:78:a4:df:a9:6f:9a:8a:f3:6a:45:3f:f7: d0:a0:b2:c8:0f:3a:d6:0d:ea:e1:3d:f9:14:39:79:4e:31:a7: 5f:cc:61:63:b9:8b:76:82:66:39:68:a5:67:64:0f:30:e8:0f: bc:38:62:15:19:aa:c8:33:ef:66:43:4d:86:fc:0d:3b:95:ac: 3d:b1:ff:72:2b:54:c6:f0:dc:bf:0f:31:7a:a1:67:0e:ba:88: ea:5b:1d:91:45:bd:a2:18:52:f1:a9:66:9a:39:a1:ef:2b:d7: ad:04:35:e9:7a:c9:95:ba:7a:c2:35:87:6b:b9:82:e9:66:3e: fb:1f:ec:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUxMDI3MDczNjAyWhcNMjUxMTAzMDczNjAyWjAYMRYwFAYD VQQDEw02OGZmMjBlMi02OWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3WCzQ8j3YoOp/rp93GfTxzBqWKp58e33rmWoUhp5LTIdTtlwOo2KpI7hSE5 T2EBKcHvIGO31ATy61XKG1tvOzw4PQMZjjeS47cPtuYxbSKbLLvMnRO9SFNchYQk gbpAdQDFomBXoj7awObg6XQntw0qXNyjBRkT1l3uvH6Z6pfSxPvrMBugnz7fk5KB XkMBYEbX2A8qj6NePlIhRYt9BN3cZU9HEaABAwBrATS/KVnY7t2oZ4LP8OZ2X7si cHcJsrOmtYAQaoflpInwVF/53s5cjs7q3yDMXyKew9H3DkVQtTVAUAxyKotEAcYQ H39AujGQEQ5mZ2kyXYT9DGfUBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkYjY4T E/B2bzUxCu3WYTCB+0rAMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaUtyx/idQKabkFsA/8seW1o6XZQ1QyfwDbiFmjMPg7GkuWhKWX8YK FpMGj8Q8dfMmXkE1jjgD7IaKMKzbeQfa3eDxVB58n4H1F7inFyCEmJ85WoxLTdrH POW6qtjygNhy4p1BSlLF4vPD9eqzYdew5+cDfwBRdCHdYanECUxAqjeE1Yp4pN+p b5qK82pFP/fQoLLIDzrWDerhPfkUOXlOMadfzGFjuYt2gmY5aKVnZA8w6A+8OGIV GarIM+9mQ02G/A07law9sf9yK1TG8Ny/DzF6oWcOuojqWx2RRb2iGFLxqWaaOaHv K9etBDXpesmVunrCNYdruYLpZj77H+xc -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:44 2025 by rpki-client