$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft File: 5Ihhomij6U17foS6dO6vR3KJZwk.mft (raw, json) Hash identifier: rbJBTqS4Z2trZJtuHdCOH8UUejnvHR9c/TQpTLVc29Q= Subject key identifier: BB:A8:B9:C8:9B:97:58:DC:A1:39:C5:A9:CF:B0:32:42:40:51:A2:61 Authority key identifier: E4:88:61:A2:68:A3:E9:4D:7B:7E:84:BA:74:EE:AF:47:72:89:67:09 Certificate issuer: /CN=A91D3060/serialNumber=E48861A268A3E94D7B7E84BA74EEAF4772896709 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft Manifest number: 13 Signing time: Mon 03 Nov 2025 07:54:05 +0000 Manifest this update: Mon 03 Nov 2025 07:54:05 +0000 Manifest next update: Mon 10 Nov 2025 07:54:05 +0000 Files and hashes: 1: 5Ihhomij6U17foS6dO6vR3KJZwk.crl (hash: oRUjX41qA6bWdKd6XkrVQkwrK3X6W31bUKPLAyPoEk4=) 2: 0FCEAD129CF111F0A76B5F3AC4F9AE02.roa (hash: JHl7T/hUKLaY1UFwRDqsjEcFvOE7EYojRZktIev0/Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.crl rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3060, serialNumber=E48861A268A3E94D7B7E84BA74EEAF4772896709 Validity Not Before: Nov 3 07:54:05 2025 GMT Not After : Nov 10 07:54:05 2025 GMT Subject: CN=69085f9d-df07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:74:10:da:6d:2c:a9:7b:11:2e:e0:5d:c1:d9: ce:c9:75:1a:23:f7:20:20:0f:86:7e:b7:64:55:c2: cf:8c:88:75:fc:62:f0:78:2a:be:81:fd:f4:92:3f: 22:c6:8c:a6:17:b7:11:3c:4d:4a:00:3d:5d:7c:6d: 65:2c:1c:ef:28:30:c1:61:5d:f9:e7:66:8e:68:73: 78:56:63:dd:8c:c6:0a:54:3b:83:7f:ef:99:0d:15: 18:29:0a:13:87:d8:08:43:97:be:6d:48:b4:dd:6b: 1d:29:62:81:f9:96:5a:eb:13:33:ca:04:76:7d:e6: 84:e9:af:17:64:0e:3d:df:c7:fb:03:ff:99:9e:02: 3a:76:b1:e6:2d:ad:01:6f:5e:f8:da:41:ae:0a:a5: b8:2c:ef:ce:9c:f0:50:73:dd:da:92:06:81:1c:08: 62:62:5e:75:bd:ab:0b:c1:aa:89:01:59:25:2c:82: 56:65:64:c9:71:c2:b7:69:cd:3a:f1:1c:50:7c:e0: e6:0a:10:05:ce:5e:ae:cf:c0:f8:1a:9f:89:29:b3: ea:af:71:7d:64:c2:83:83:5f:33:89:8f:1e:fb:f8: de:fc:a3:8c:6f:5d:f2:05:51:21:64:67:47:78:5c: 2e:72:5d:35:53:5a:9a:75:d9:38:e8:0c:40:d6:51: a8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A8:B9:C8:9B:97:58:DC:A1:39:C5:A9:CF:B0:32:42:40:51:A2:61 X509v3 Authority Key Identifier: keyid:E4:88:61:A2:68:A3:E9:4D:7B:7E:84:BA:74:EE:AF:47:72:89:67:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:69:55:f9:11:d5:81:f1:c5:83:d9:19:9e:94:9e:d0:ac:fe: 21:47:27:33:ec:66:48:96:d0:eb:02:1a:14:61:43:44:35:ad: 89:eb:2f:16:58:c0:3c:5b:21:b5:91:2c:a3:3f:1f:99:30:69: 93:cc:bd:12:bb:1b:c7:c1:81:7c:67:18:97:74:01:d9:2e:0a: 56:53:a8:5a:d3:93:13:97:5e:f0:01:44:42:b3:8d:e8:71:9e: 89:07:72:3b:d7:33:fc:a7:ef:37:1e:21:91:29:60:8b:79:43: 07:85:26:63:f0:7d:a8:34:27:1f:de:0e:67:00:48:84:02:a2: b3:75:a5:da:fa:6c:99:fc:91:8c:05:19:37:8e:86:c1:d0:e5: 35:db:f5:06:90:54:52:2c:b9:db:36:4c:a9:aa:f2:4e:26:bf: 5f:14:c9:2d:50:81:ec:f7:0f:91:7c:95:1a:be:3a:3c:02:81: c4:45:db:5b:49:43:1b:2a:6f:9c:ed:68:ab:36:45:46:e0:b9: c3:80:ee:70:15:40:89:e4:9b:29:9f:88:0f:00:af:e0:57:17: 28:91:8d:e6:2c:40:f6:68:be:29:d0:22:1b:01:5f:ed:c4:a6: 86:21:81:ab:cd:e7:70:98:b5:33:db:f3:d9:38:89:f5:91:93: 1f:22:4c:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzA2MDExMC8GA1UEBRMoRTQ4ODYxQTI2OEEzRTk0RDdCN0U4NEJBNzRFRUFGNDc3 Mjg5NjcwOTAeFw0yNTExMDMwNzU0MDVaFw0yNTExMTAwNzU0MDVaMBgxFjAUBgNV BAMTDTY5MDg1ZjlkLWRmMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbdBDabSypexEu4F3B2c7JdRoj9yAgD4Z+t2RVws+MiHX8YvB4Kr6B/fSSPyLG jKYXtxE8TUoAPV18bWUsHO8oMMFhXfnnZo5oc3hWY92MxgpUO4N/75kNFRgpChOH 2AhDl75tSLTdax0pYoH5llrrEzPKBHZ95oTprxdkDj3fx/sD/5meAjp2seYtrQFv XvjaQa4Kpbgs786c8FBz3dqSBoEcCGJiXnW9qwvBqokBWSUsglZlZMlxwrdpzTrx HFB84OYKEAXOXq7PwPgan4kps+qvcX1kwoODXzOJjx77+N78o4xvXfIFUSFkZ0d4 XC5yXTVTWpp12TjoDEDWUagXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu6i5yJuX WNyhOcWpz7AyQkBRomEwHwYDVR0jBBgwFoAU5Ihhomij6U17foS6dO6vR3KJZwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDYwL0VGOTQxQTEwOUNF RjExRjA5NjQ5N0MzN0M0RjlBRTAyLzVJaGhvbWlqNlUxN2ZvUzZkTzZ2UjNLSlp3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUloaG9taWo2VTE3Zm9TNmRPNnZSM0tKWndrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQz MDYwL0VGOTQxQTEwOUNFRjExRjA5NjQ5N0MzN0M0RjlBRTAyLzVJaGhvbWlqNlUx N2ZvUzZkTzZ2UjNLSlp3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALNpVfkR1YHxxYPZGZ6UntCs/iFHJzPsZkiW0OsCGhRhQ0Q1rYnrLxZY wDxbIbWRLKM/H5kwaZPMvRK7G8fBgXxnGJd0AdkuClZTqFrTkxOXXvABREKzjehx nokHcjvXM/yn7zceIZEpYIt5QweFJmPwfag0Jx/eDmcASIQCorN1pdr6bJn8kYwF GTeOhsHQ5TXb9QaQVFIsuds2TKmq8k4mv18UyS1Qgez3D5F8lRq+OjwCgcRF21tJ Qxsqb5ztaKs2RUbgucOA7nAVQInkmymfiA8Ar+BXFyiRjeYsQPZovinQIhsBX+3E poYhgavN53CYtTPb89k4ifWRkx8iTMM= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:52 2025 by rpki-client