$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: nTzfM0qtUQIXUwMvLEHuS7SO9DFc2TVGqiUtOLY3Zms= Subject key identifier: A4:26:93:AF:82:3D:EF:6A:EF:D3:EC:27:6E:89:AB:FF:F2:1B:59:03 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 0149 Signing time: Mon 03 Nov 2025 04:18:24 +0000 Manifest this update: Mon 03 Nov 2025 04:18:23 +0000 Manifest next update: Mon 10 Nov 2025 04:18:23 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: fHizUr66Ga8ultrCUv2LdQOuNX79gaFTOG1NuYgUAfw=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: Dm164N8IoyQt1jp0TcwYgwG4HOUHThII1pGgU4Frf9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Nov 3 04:18:23 2025 GMT Not After : Nov 10 04:18:23 2025 GMT Subject: CN=69082d10-e52a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:18:5e:9f:59:13:69:9a:1c:83:27:4e:de:42: 5c:28:0e:89:61:4a:7f:62:87:15:17:73:a3:50:06: ee:5b:bb:df:16:b9:3f:66:6a:8c:d3:3c:c6:89:26: bc:9f:16:29:92:2f:74:c8:d9:81:f6:0e:c1:0f:cd: 98:28:87:e3:77:db:ab:83:a7:4e:4e:40:35:0e:f1: 05:57:83:54:e6:62:a8:39:18:73:48:47:85:4c:dc: d1:c5:09:31:1c:af:b8:03:d8:53:f1:b2:97:0d:a1: 55:08:72:6c:5d:79:56:09:22:0b:3d:5e:6c:c1:c7: 31:cd:e4:66:49:9d:d7:d6:43:3a:e6:7c:c3:43:82: fb:20:4e:84:bc:f0:37:d9:eb:62:d2:10:da:f5:fc: 7e:2f:41:6c:80:f8:2e:6d:4a:99:01:f9:05:4c:10: 6f:bd:b0:93:d5:1b:0e:22:27:61:67:dc:dd:e7:aa: 66:e4:24:f2:16:ce:1d:8b:ee:6e:15:74:9a:ea:3e: 89:15:46:90:e7:eb:f9:5e:02:ea:43:74:89:d8:69: a5:52:aa:97:5a:1a:f3:ad:ca:4f:a7:76:65:84:05: fd:56:cf:5f:a2:62:0e:af:14:0c:b0:ab:cf:b7:52: c2:e2:cf:e3:d1:a3:dc:92:91:06:41:27:59:54:b8: b6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:26:93:AF:82:3D:EF:6A:EF:D3:EC:27:6E:89:AB:FF:F2:1B:59:03 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c0:45:b3:20:b3:95:1b:d7:e3:06:3d:11:56:91:12:9b:18: ce:53:a4:b3:62:c1:e4:5c:f9:49:a2:33:5b:53:44:07:e2:53: 53:6a:2f:ea:8a:de:73:cd:e0:08:6f:14:10:ea:23:4a:bd:02: 65:76:9b:48:7c:8f:bb:49:07:ba:f3:2b:b6:03:3f:e9:67:7d: 1b:eb:6d:40:66:0c:11:d0:40:e3:e8:64:98:89:36:f9:d9:76: 62:c7:62:fa:bc:7e:9d:37:ff:c8:49:33:cf:cb:86:7b:4c:2c: 9f:57:fb:7e:e9:31:61:3e:2a:c3:78:2d:4b:5e:51:53:68:af: 0a:ef:94:7c:6f:e7:1f:50:22:0f:31:9f:3d:3f:5c:a4:72:7b: 63:32:7f:bb:f1:85:be:ca:8f:7f:24:22:36:55:e8:1a:92:ce: 02:82:d7:48:44:4d:cd:5b:5f:df:36:2e:cd:44:a5:ea:31:ce: 8d:ab:53:a0:c6:21:7b:eb:89:75:de:e8:3e:b7:65:f6:dc:96: a6:0b:09:ca:6c:87:b7:54:37:57:64:25:e9:cf:08:4f:99:d8: 71:ed:1f:2e:14:d1:4b:ef:71:44:56:ec:37:0a:37:71:40:8e: d0:76:63:6b:28:bc:59:20:ec:8f:3e:77:c9:14:93:1e:44:8e: 35:95:d5:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUxMTAzMDQxODIzWhcNMjUxMTEwMDQxODIzWjAYMRYwFAYD VQQDEw02OTA4MmQxMC1lNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRhen1kTaZocgydO3kJcKA6JYUp/YocVF3OjUAbuW7vfFrk/ZmqM0zzGiSa8 nxYpki90yNmB9g7BD82YKIfjd9urg6dOTkA1DvEFV4NU5mKoORhzSEeFTNzRxQkx HK+4A9hT8bKXDaFVCHJsXXlWCSILPV5swccxzeRmSZ3X1kM65nzDQ4L7IE6EvPA3 2eti0hDa9fx+L0FsgPgubUqZAfkFTBBvvbCT1RsOIidhZ9zd56pm5CTyFs4di+5u FXSa6j6JFUaQ5+v5XgLqQ3SJ2GmlUqqXWhrzrcpPp3ZlhAX9Vs9fomIOrxQMsKvP t1LC4s/j0aPckpEGQSdZVLi2GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQmk6+C Pe9q79PsJ26Jq//yG1kDMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXwEWzILOVG9fjBj0RVpESmxjOU6SzYsHkXPlJojNbU0QH4lNTai/q it5zzeAIbxQQ6iNKvQJldptIfI+7SQe68yu2Az/pZ30b621AZgwR0EDj6GSYiTb5 2XZix2L6vH6dN//ISTPPy4Z7TCyfV/t+6TFhPirDeC1LXlFTaK8K75R8b+cfUCIP MZ89P1ykcntjMn+78YW+yo9/JCI2Vegaks4CgtdIRE3NW1/fNi7NRKXqMc6Nq1Og xiF764l13ug+t2X23JamCwnKbIe3VDdXZCXpzwhPmdhx7R8uFNFL73FEVuw3Cjdx QI7QdmNrKLxZIOyPPnfJFJMeRI41ldUh -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:24 2025 by rpki-client