$ rpki-client -vvf rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft File: imIbx3o91BcMuRA_-HiLyQkAgtE.mft (raw, json) Hash identifier: S/ZHxXtOFyJn6lBXSnZxuHVZL2WpYlV1pkwDBCCK93A= Subject key identifier: 0C:D4:49:27:0B:E7:C2:DF:63:6E:5E:6C:23:34:6D:4B:C4:95:48:46 Authority key identifier: 8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 Certificate issuer: /CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft Manifest number: 0171 Signing time: Wed 05 Nov 2025 03:58:38 +0000 Manifest this update: Wed 05 Nov 2025 03:58:37 +0000 Manifest next update: Wed 12 Nov 2025 03:58:37 +0000 Files and hashes: 1: imIbx3o91BcMuRA_-HiLyQkAgtE.crl (hash: RrZ7AE5NH37MBqUpUP7G4iCD4Z+rej1LB+RvQ7pZwwY=) 2: 872F5E22835A11EE9FFEC146C4F9AE02.roa (hash: MIl/OMgyucN0EutmGHMH29cPoxdMejUcwQsKGNX20nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C24C5, serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Validity Not Before: Nov 5 03:58:37 2025 GMT Not After : Nov 12 03:58:37 2025 GMT Subject: CN=690acb6d-49a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:52:71:f4:fd:dd:63:61:e1:ec:de:36:aa:86: a4:25:b7:3d:46:9e:78:60:a3:c0:74:c1:84:43:1b: bd:de:cb:54:c5:66:8a:4e:25:a3:7e:3e:db:1f:7c: d4:92:21:cb:51:68:43:99:58:4e:94:84:52:09:80: c2:ca:df:08:d5:69:0a:15:f0:17:19:24:90:13:42: 70:09:14:16:cd:80:1b:89:9c:36:6c:01:fb:49:b1: fd:03:4f:17:31:74:70:3d:47:7d:49:9a:75:97:4e: b2:4f:99:86:36:72:f2:81:79:38:94:db:4e:da:a5: be:65:55:cb:87:80:80:82:b0:fe:b7:16:46:2b:01: 05:c0:37:5b:cb:ba:b8:8c:74:f4:ff:fa:fe:14:e4: 6a:31:49:c2:ad:2c:0d:44:34:5c:9c:8a:70:3c:a3: 30:60:4f:5d:55:4b:13:6b:b2:9e:19:22:67:46:d9: 2c:e0:b8:68:4b:3a:6d:0f:bf:f4:d7:8b:33:17:c6: dd:ae:d0:25:e4:67:38:d2:57:32:4c:e0:3a:44:81: 63:24:cd:74:62:35:08:a9:fd:a8:b8:f5:2b:37:41: c3:ae:22:a5:29:e1:49:3e:3e:86:3d:ac:4d:38:6d: b0:22:77:f4:e3:57:fe:bb:60:87:2c:11:4d:20:07: 1d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D4:49:27:0B:E7:C2:DF:63:6E:5E:6C:23:34:6D:4B:C4:95:48:46 X509v3 Authority Key Identifier: keyid:8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:a4:49:e1:3a:ea:7c:eb:7a:5c:a2:ca:7c:15:a8:68:a3:31: c5:88:4a:7e:2f:87:83:8a:b0:ba:3c:fa:a9:dc:1d:38:a1:29: ac:10:71:d0:62:67:e6:fc:1f:17:35:9c:e2:72:5a:b8:20:43: b7:26:33:ef:a5:96:71:7a:9c:50:ea:00:c6:24:85:2e:19:d0: 38:49:6e:f5:a6:3a:bb:90:ff:5a:f4:14:3c:5e:7b:61:63:4a: b9:4b:24:55:4d:6d:f5:50:37:54:5a:ba:a8:45:fb:28:84:5e: 26:c7:f3:9c:5e:72:12:62:42:c5:b8:60:48:fc:68:3f:69:f7: de:7b:ae:de:c6:12:02:8a:ae:9b:c6:f2:57:e1:52:60:27:0c: bb:7c:fb:fc:73:2f:60:5e:4b:02:a2:39:14:9d:bb:8b:1d:78: 8d:9e:95:3f:2c:e0:ff:23:b0:dc:0d:a6:8a:47:7f:5e:d3:2f: 2a:08:cb:91:b5:76:ae:54:35:97:77:6c:79:58:c6:82:87:9d: 9b:4a:66:fd:ff:32:a6:53:c7:2c:b3:d2:4d:f9:4e:08:99:92: eb:20:7e:fd:39:c9:6c:2b:e4:f4:24:56:ee:98:32:18:4d:eb: 23:f9:72:2c:2d:e0:17:fd:c5:ea:51:91:cc:82:8a:62:a8:54: f6:2a:5d:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI0QzUxMTAvBgNVBAUTKDhBNjIxQkM3N0EzREQ0MTcwQ0I5MTAzRkY4Nzg4QkM5 MDkwMDgyRDEwHhcNMjUxMTA1MDM1ODM3WhcNMjUxMTEyMDM1ODM3WjAYMRYwFAYD VQQDEw02OTBhY2I2ZC00OWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlVJx9P3dY2Hh7N42qoakJbc9Rp54YKPAdMGEQxu93stUxWaKTiWjfj7bH3zU kiHLUWhDmVhOlIRSCYDCyt8I1WkKFfAXGSSQE0JwCRQWzYAbiZw2bAH7SbH9A08X MXRwPUd9SZp1l06yT5mGNnLygXk4lNtO2qW+ZVXLh4CAgrD+txZGKwEFwDdby7q4 jHT0//r+FORqMUnCrSwNRDRcnIpwPKMwYE9dVUsTa7KeGSJnRtks4LhoSzptD7/0 14szF8bdrtAl5Gc40lcyTOA6RIFjJM10YjUIqf2ouPUrN0HDriKlKeFJPj6GPaxN OG2wInf041f+u2CHLBFNIAcdSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzUSScL 58LfY25ebCM0bUvElUhGMB8GA1UdIwQYMBaAFIpiG8d6PdQXDLkQP/h4i8kJAILR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjRDNS9EMUUyRDk2ODgz NTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFCY011UkFfLUhpTHlRa0Fn dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltSWJ4M285MUJjTXVSQV8tSGlMeVFrQWd0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjRDNS9EMUUyRDk2ODgzNTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFC Y011UkFfLUhpTHlRa0FndEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOpEnhOup863pcosp8FahoozHFiEp+L4eDirC6PPqp3B04oSmsEHHQ Ymfm/B8XNZziclq4IEO3JjPvpZZxepxQ6gDGJIUuGdA4SW71pjq7kP9a9BQ8Xnth Y0q5SyRVTW31UDdUWrqoRfsohF4mx/OcXnISYkLFuGBI/Gg/affee67exhICiq6b xvJX4VJgJwy7fPv8cy9gXksCojkUnbuLHXiNnpU/LOD/I7DcDaaKR39e0y8qCMuR tXauVDWXd2x5WMaCh52bSmb9/zKmU8css9JN+U4ImZLrIH79OclsK+T0JFbumDIY Tesj+XIsLeAX/cXqUZHMgopiqFT2Kl1o -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:42 2025 by rpki-client