$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: wyF//x+GplL2br631ML4tWjzK6Rb4KBQjHG35d5H9q8= Subject key identifier: D6:E6:57:7E:4F:E2:0E:48:86:1C:FA:9D:30:84:51:37:9E:97:34:72 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: B1 Signing time: Mon 03 Nov 2025 06:07:44 +0000 Manifest this update: Mon 03 Nov 2025 06:07:43 +0000 Manifest next update: Mon 10 Nov 2025 06:07:43 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: nPEZhfyh03n+8JvKrzVDyYogv0J50kGPVjwYmXWoQZI=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Nov 3 06:07:43 2025 GMT Not After : Nov 10 06:07:43 2025 GMT Subject: CN=690846b0-7b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a7:1d:8d:ea:10:56:8a:fe:d3:1d:e2:01:db: 5f:0f:b3:95:7f:0a:ed:94:cf:88:f5:c8:c6:ac:c4: 2e:c8:f2:34:db:3d:0e:6c:0a:e1:96:15:82:2f:af: 52:79:4d:2d:53:d8:91:71:6c:d2:29:3c:4b:77:d0: 51:c8:df:f8:49:8d:84:3c:ab:4c:17:24:bc:62:cc: 4d:9a:11:e7:a4:74:84:ad:2b:c5:5f:f8:57:70:01: 84:9f:d6:59:d9:45:64:03:28:4d:ab:1b:77:65:44: 4f:74:bc:e3:ba:93:a5:7b:25:79:43:f1:98:f9:e2: 47:1e:31:1c:70:4d:f4:a9:e2:db:2e:95:b7:60:7e: 26:d2:95:73:b0:19:6f:21:d3:24:c8:99:fb:3a:3a: ff:23:fa:13:12:5a:bb:37:cf:cc:88:5d:2e:da:43: a3:dd:4e:14:d2:ee:4d:24:6a:a6:a9:df:52:71:c0: 10:67:66:4b:08:36:65:65:32:a6:2f:c5:af:bd:52: d5:b7:8f:9c:12:c4:dd:74:98:f4:2c:fb:5c:19:df: c1:60:2d:c0:f2:76:a7:5b:b5:77:b0:69:98:f7:25: 96:96:f4:07:a2:d2:07:4f:ef:a4:0c:90:9f:84:c0: f0:5a:a8:ff:f9:4f:18:35:21:cf:1b:53:8c:76:2f: e9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E6:57:7E:4F:E2:0E:48:86:1C:FA:9D:30:84:51:37:9E:97:34:72 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:4b:62:9c:6b:da:ac:3c:21:ee:75:6f:8c:9a:43:a5:80:56: 66:67:6a:65:9d:c2:dd:6a:5f:71:50:07:2c:ba:1d:f2:94:b3: 6a:56:93:57:00:29:76:55:c7:5c:39:a6:4d:55:e8:3d:71:9a: fa:af:b2:69:19:50:57:9b:5b:c9:62:ec:49:a0:f8:10:4c:bc: b9:fa:f6:78:c8:c2:6b:c9:7d:16:92:4e:59:61:e4:ce:c9:57: b8:66:fe:35:90:85:c6:c2:e1:78:c3:4f:4a:4b:34:9f:f3:5f: 34:6e:06:c5:d6:ce:b2:e8:54:74:4f:66:2a:d2:8a:8d:e6:98: 5e:8e:6c:f6:f2:68:6c:71:96:07:f8:e8:3a:da:40:42:2d:77: dd:cb:4a:5f:94:b2:6a:50:fd:5c:f0:f9:33:84:16:68:76:07: ed:3a:7c:1a:e2:56:0f:74:65:5d:74:40:76:b2:94:7a:c8:21: d1:a4:5b:41:f6:5a:d9:88:ad:5a:3b:57:bb:81:bc:7b:14:3c: ec:c4:7d:b9:64:89:ce:69:53:ad:f5:54:b7:47:a5:2a:7d:83: e5:14:fb:19:a4:ce:f7:ae:e4:2d:49:6f:9a:5c:67:9b:31:d5: 4e:e3:82:c2:90:29:e3:c2:a1:42:eb:2d:74:55:80:d0:c6:6e: 95:ff:3f:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjUxMTAzMDYwNzQzWhcNMjUxMTEwMDYwNzQzWjAYMRYwFAYD VQQDEw02OTA4NDZiMC03YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqcdjeoQVor+0x3iAdtfD7OVfwrtlM+I9cjGrMQuyPI02z0ObArhlhWCL69S eU0tU9iRcWzSKTxLd9BRyN/4SY2EPKtMFyS8YsxNmhHnpHSErSvFX/hXcAGEn9ZZ 2UVkAyhNqxt3ZURPdLzjupOleyV5Q/GY+eJHHjEccE30qeLbLpW3YH4m0pVzsBlv IdMkyJn7Ojr/I/oTElq7N8/MiF0u2kOj3U4U0u5NJGqmqd9SccAQZ2ZLCDZlZTKm L8WvvVLVt4+cEsTddJj0LPtcGd/BYC3A8nanW7V3sGmY9yWWlvQHotIHT++kDJCf hMDwWqj/+U8YNSHPG1OMdi/pawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbmV35P 4g5Ihhz6nTCEUTeelzRyMB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMS2Kca9qsPCHudW+MmkOlgFZmZ2plncLdal9xUAcsuh3ylLNqVpNX ACl2VcdcOaZNVeg9cZr6r7JpGVBXm1vJYuxJoPgQTLy5+vZ4yMJryX0Wkk5ZYeTO yVe4Zv41kIXGwuF4w09KSzSf8180bgbF1s6y6FR0T2Yq0oqN5phejmz28mhscZYH +Og62kBCLXfdy0pflLJqUP1c8PkzhBZodgftOnwa4lYPdGVddEB2spR6yCHRpFtB 9lrZiK1aO1e7gbx7FDzsxH25ZInOaVOt9VS3R6UqfYPlFPsZpM73ruQtSW+aXGeb MdVO44LCkCnjwqFC6y10VYDQxm6V/z+/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:06 2025 by rpki-client