$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: b60ZNp9X1GAL09V0wNTFhChZI1nSjdiWxcDNZpv2RYQ= Subject key identifier: C4:0A:17:6D:1C:75:04:C0:80:73:D6:E9:78:A8:6F:3B:FF:96:CF:6A Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B3C Signing time: Sun 02 Nov 2025 19:14:05 +0000 Manifest this update: Sun 02 Nov 2025 19:14:05 +0000 Manifest next update: Sun 09 Nov 2025 19:14:05 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: K8UId3etD6mVVPCubi+B1lYwLMGkvH70DkP54NWspTw=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:14:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2890 (0xb4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Nov 2 19:14:05 2025 GMT Not After : Nov 9 19:14:05 2025 GMT Subject: CN=6907ad7d-08c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:8a:6e:63:72:f7:6d:47:26:fd:f4:7f:fd:89: e7:55:b6:f5:a2:c0:f4:af:94:94:82:c6:a5:ef:b7: 43:6c:3c:d1:a3:06:d3:d5:52:0d:15:3a:28:5a:9a: c1:dd:e1:d4:28:bc:97:85:cd:c4:58:a8:5d:1a:fc: 0c:54:85:14:14:99:41:3c:be:14:2b:b9:11:a7:bb: 0e:35:45:4e:5d:42:68:9b:6e:a5:57:30:5f:8b:e1: 7f:77:33:51:bc:ea:ba:79:0a:e2:e2:f0:3d:84:49: e2:3a:38:82:e5:8e:92:9c:37:b3:f1:d2:40:1c:8c: e8:50:23:ae:cc:f4:07:a1:eb:21:c0:67:14:6b:43: ac:c3:61:f5:2c:24:29:da:d9:72:17:33:38:5c:40: 2c:84:83:ff:36:e4:b9:11:06:26:d0:50:82:1c:26: 1d:f9:ed:cb:24:f0:de:d0:d7:c9:ed:6b:40:e2:e6: dc:5b:c2:52:61:cd:bf:f1:16:2b:a3:48:6e:6f:4c: 42:47:f0:1b:bd:7e:be:9e:cb:d4:2a:f0:83:43:4b: 90:e9:2a:68:75:4f:87:69:8a:b3:99:87:fd:66:22: d7:dd:92:fa:d4:be:b8:3e:8d:25:1e:a4:cf:fa:8b: 70:20:cc:a4:40:fd:63:ca:28:56:56:6c:74:b7:d1: f0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:0A:17:6D:1C:75:04:C0:80:73:D6:E9:78:A8:6F:3B:FF:96:CF:6A X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:14:d3:a1:41:19:b1:a3:75:cf:1c:98:af:af:cf:02:ea:e3: 96:20:ed:ac:d9:1e:9a:fa:39:1d:c8:47:12:0e:8b:ff:23:55: 2e:70:b2:15:7a:0a:63:7b:59:52:99:60:f0:7e:de:2e:27:76: c9:eb:4b:9a:7d:d8:d3:f4:b0:61:03:3d:1f:11:3b:e8:7d:18: 68:4a:b5:d3:73:39:c3:50:b3:b9:63:5e:26:04:de:86:81:cd: 89:ef:93:89:79:35:c2:0d:99:52:f2:d6:a3:c5:46:34:51:9e: 46:02:39:13:ed:c4:03:cd:d5:94:4c:8f:20:0b:15:23:41:e3: d5:e8:87:2e:ad:e4:50:b8:5c:c7:af:05:9a:50:3a:be:07:cc: f5:44:70:5b:7b:af:c6:f8:0e:9b:d9:7a:f4:36:7b:ed:8c:58: 16:4b:f6:26:bc:98:94:8c:40:8a:34:8b:96:9c:23:b6:22:6a: 7e:55:67:26:d9:6f:7e:c2:5c:37:a1:25:6b:92:09:ae:b7:15: 58:02:b6:9d:3f:07:60:31:99:8c:61:da:ba:47:5d:64:63:ff: 21:e8:59:df:29:6f:b9:49:50:e2:34:2f:f6:60:34:4a:ef:4d: 0f:0f:db:38:f6:07:bc:71:69:db:ae:51:f9:aa:b9:21:a1:3c: 7b:f9:2c:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUxMTAyMTkxNDA1WhcNMjUxMTA5MTkxNDA1WjAYMRYwFAYD VQQDEw02OTA3YWQ3ZC0wOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA84puY3L3bUcm/fR//YnnVbb1osD0r5SUgsal77dDbDzRowbT1VINFTooWprB 3eHUKLyXhc3EWKhdGvwMVIUUFJlBPL4UK7kRp7sONUVOXUJom26lVzBfi+F/dzNR vOq6eQri4vA9hEniOjiC5Y6SnDez8dJAHIzoUCOuzPQHoeshwGcUa0Osw2H1LCQp 2tlyFzM4XEAshIP/NuS5EQYm0FCCHCYd+e3LJPDe0NfJ7WtA4ubcW8JSYc2/8RYr o0hub0xCR/AbvX6+nsvUKvCDQ0uQ6SpodU+HaYqzmYf9ZiLX3ZL61L64Po0lHqTP +otwIMykQP1jyihWVmx0t9HwzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQKF20c dQTAgHPW6Xiobzv/ls9qMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlFNOhQRmxo3XPHJivr88C6uOWIO2s2R6a+jkdyEcSDov/I1UucLIV egpje1lSmWDwft4uJ3bJ60uafdjT9LBhAz0fETvofRhoSrXTcznDULO5Y14mBN6G gc2J75OJeTXCDZlS8tajxUY0UZ5GAjkT7cQDzdWUTI8gCxUjQePV6IcureRQuFzH rwWaUDq+B8z1RHBbe6/G+A6b2Xr0NnvtjFgWS/YmvJiUjECKNIuWnCO2Imp+VWcm 2W9+wlw3oSVrkgmutxVYAradPwdgMZmMYdq6R11kY/8h6FnfKW+5SVDiNC/2YDRK 700PD9s49ge8cWnbrlH5qrkhoTx7+Sx/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:55 2025 by rpki-client