$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: lV+FsXjpxVzfo/ko9lNVbzkLKGAN4xH4TfbwXQ8orAM= Subject key identifier: BE:DD:04:24:78:6E:F5:51:E5:C6:E5:9A:F7:1A:17:84:82:10:5F:48 Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2BE6 Signing time: Sun 02 Nov 2025 15:57:09 +0000 Manifest this update: Sun 02 Nov 2025 15:57:09 +0000 Manifest next update: Sun 09 Nov 2025 15:57:09 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: g6SRwTAouDGEuVjUuNrg0lWZRQ77uZy85+94GhWb+EM=) 2: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (hash: iuR0hKy1te9ReiQAcpbPM6UF6bcHMIJQ871N78hvW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Nov 2 15:57:09 2025 GMT Not After : Nov 9 15:57:09 2025 GMT Subject: CN=69077f55-cad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b5:2c:7d:c5:d6:fe:1f:47:e6:e8:2f:66:97: 9a:38:d6:9c:03:14:19:9c:53:97:f8:93:6d:5b:0d: 04:2d:a0:34:08:a5:14:29:fd:43:92:ed:23:cc:26: 28:e9:53:50:65:1b:3a:05:ed:5e:19:5b:e7:5d:41: bf:08:4b:a6:4d:30:93:a5:60:bd:c2:8c:76:49:f8: c2:23:81:d9:df:58:ea:70:12:16:d5:b6:8c:7d:6f: 9e:24:8a:24:bc:be:b0:c2:ad:09:62:e0:b5:3c:be: 18:2d:27:a5:f7:fd:05:bb:e3:73:c6:24:fb:3e:7b: 15:6a:2a:2c:1c:e4:ae:2e:b4:79:16:96:94:15:03: 79:ac:5f:9e:19:51:35:2c:d2:ef:77:d8:13:1e:f0: f0:95:86:9e:f1:37:5b:ec:3d:93:82:92:ca:35:61: bf:c1:ec:de:ac:8e:48:b9:b8:cb:1b:2e:32:06:75: 9b:90:6b:6d:40:fc:27:a4:63:bf:ac:9c:e9:ed:74: 77:8a:c5:86:e8:42:15:05:35:73:65:c2:2a:89:74: 04:cc:ae:15:db:39:8e:09:02:80:92:d0:38:73:8c: b7:64:42:4d:28:9c:82:0a:56:3a:74:bc:36:d9:e0: 8c:29:4b:92:bb:37:1b:54:0f:89:b2:31:5d:f7:25: 54:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DD:04:24:78:6E:F5:51:E5:C6:E5:9A:F7:1A:17:84:82:10:5F:48 X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ab:f4:e1:9f:b3:f9:a7:56:da:b6:fe:77:12:b1:71:6c:91: 3e:90:1e:e2:d9:c6:23:c8:2f:dc:c8:fa:0b:43:14:5f:45:8d: 3f:57:4e:a7:7d:32:2d:0d:60:b1:f5:06:26:63:fb:00:2c:fe: 83:a3:73:aa:de:2f:52:4a:86:77:d7:9a:f5:f2:7b:97:58:6c: a7:4e:40:c7:28:18:39:e6:f4:ae:f0:43:c2:14:ee:93:f0:9b: 38:3c:00:76:6f:ba:6c:d6:cb:58:84:10:10:e4:9d:30:fb:f9: 18:0f:f5:af:5b:c0:e8:f7:82:8e:71:bd:47:84:85:80:64:4c: f5:e3:c6:0a:31:d9:0d:c5:0e:b0:43:98:46:5e:b3:1e:00:a9: a9:65:c8:91:4c:13:7a:3c:57:bd:35:58:77:de:65:2c:e7:1c: 61:11:36:b0:34:a0:84:77:8b:cb:7d:29:c8:57:24:6b:b1:7c: 59:a6:be:2e:16:7f:8d:0b:24:8b:94:8e:62:7b:51:9c:ee:a3: 3e:cb:87:bf:4f:62:b1:08:73:2e:6f:25:b1:3d:01:f5:fc:85: 0f:42:bb:f9:5d:63:ef:69:f6:db:8a:d3:29:51:73:77:3b:49: f6:ab:b0:02:ff:06:9f:9f:ad:38:5b:14:76:c4:a3:fe:27:5a: 6d:ed:d5:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjUxMTAyMTU1NzA5WhcNMjUxMTA5MTU1NzA5WjAYMRYwFAYD VQQDEw02OTA3N2Y1NS1jYWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bUsfcXW/h9H5ugvZpeaONacAxQZnFOX+JNtWw0ELaA0CKUUKf1Dku0jzCYo 6VNQZRs6Be1eGVvnXUG/CEumTTCTpWC9wox2SfjCI4HZ31jqcBIW1baMfW+eJIok vL6wwq0JYuC1PL4YLSel9/0Fu+NzxiT7PnsVaiosHOSuLrR5FpaUFQN5rF+eGVE1 LNLvd9gTHvDwlYae8Tdb7D2TgpLKNWG/wezerI5IubjLGy4yBnWbkGttQPwnpGO/ rJzp7XR3isWG6EIVBTVzZcIqiXQEzK4V2zmOCQKAktA4c4y3ZEJNKJyCClY6dLw2 2eCMKUuSuzcbVA+JsjFd9yVUOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7dBCR4 bvVR5cblmvcaF4SCEF9IMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbq/Thn7P5p1batv53ErFxbJE+kB7i2cYjyC/cyPoLQxRfRY0/V06n fTItDWCx9QYmY/sALP6Do3Oq3i9SSoZ315r18nuXWGynTkDHKBg55vSu8EPCFO6T 8Js4PAB2b7ps1stYhBAQ5J0w+/kYD/WvW8Do94KOcb1HhIWAZEz148YKMdkNxQ6w Q5hGXrMeAKmpZciRTBN6PFe9NVh33mUs5xxhETawNKCEd4vLfSnIVyRrsXxZpr4u Fn+NCySLlI5ie1Gc7qM+y4e/T2KxCHMubyWxPQH1/IUPQrv5XWPvafbbitMpUXN3 O0n2q7AC/wafn604WxR2xKP+J1pt7dVw -----END CERTIFICATE-----Generated at Tue Nov 4 07:19:25 2025 by rpki-client