$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: 11n8vtP49bWJWK4xaNyx79tl+9oirxvpfmHmO0/weKY= Subject key identifier: F8:F0:FD:5E:8C:56:29:E5:D9:FD:00:33:D8:94:34:B8:C5:80:2F:92 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 089A Signing time: Thu 30 Oct 2025 21:05:20 +0000 Manifest this update: Thu 30 Oct 2025 21:05:20 +0000 Manifest next update: Thu 06 Nov 2025 21:05:20 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: wH2KAO/f0dhB2xrMbacXjhi/Q1GHXadTLZuDmN5iau4=) 2: CDC4A66EB5D311F097B6F31AC4F9AE02.roa (hash: 0U2UzSeX+8X8p0vtFdtnhJYB/u+V+ECpwF6fLjeJjJM=) 3: 22C5D8D6B5D411F08AD0FB40C4F9AE02.roa (hash: pKtqMGKpIrqHakiwAGLWGm0afCAyap0SV9Av201+Rdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 21:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Oct 30 21:05:20 2025 GMT Not After : Nov 6 21:05:20 2025 GMT Subject: CN=6903d310-5d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:36:aa:e7:64:d1:74:e7:8d:47:5b:61:d6:14: 6b:c9:aa:86:1b:0f:de:ce:aa:73:2c:2b:55:e2:25: 22:1c:f8:00:3c:24:ee:b3:eb:35:30:13:29:92:57: 0c:16:34:d4:78:d6:4f:50:19:e8:45:85:54:0e:f9: 31:10:e4:72:39:f7:cf:08:ce:c9:4a:01:a2:e6:c3: 12:e1:10:8f:27:b5:37:98:d5:1d:89:b3:c0:5f:7c: 12:a9:14:31:de:53:89:ea:91:40:d3:7e:7e:6e:94: 34:f8:ff:db:36:a4:33:2c:52:5f:9b:13:0d:60:12: e1:ac:46:df:06:82:4e:d8:c4:fb:66:0c:aa:e2:74: bf:d8:76:64:92:45:3f:e7:48:24:cc:b9:9c:d6:14: 5c:bd:a6:a0:ec:68:9c:8f:c0:52:e4:46:05:a8:8f: 9b:51:e6:83:c2:09:56:e8:a9:3e:b7:d7:8a:69:41: ea:ee:0a:d3:7c:c5:55:84:48:30:a8:c9:3d:73:da: ef:3b:58:dd:e2:2d:cf:bf:66:cd:11:4e:b5:ea:6c: 03:3e:da:d8:19:6f:9e:c5:cd:e2:16:c6:9e:49:21: 18:a9:a0:b5:ad:dc:a9:0d:2a:0e:6f:b1:cf:90:b9: 42:a8:4d:83:b8:a7:05:64:20:1b:75:01:36:a3:92: eb:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F0:FD:5E:8C:56:29:E5:D9:FD:00:33:D8:94:34:B8:C5:80:2F:92 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:8f:8b:96:69:63:67:97:3b:8b:9b:91:72:0a:fc:8a:7d:79: 09:f1:f2:81:de:b7:15:eb:5f:59:ac:7d:17:37:d8:ca:f8:3c: 41:96:54:2a:a2:06:d6:3c:6e:1a:25:ba:67:d1:a8:25:b6:e3: c7:11:fa:1e:6b:db:77:4e:24:a5:ba:99:94:fa:79:90:9d:d5: be:d8:b1:4b:eb:aa:ce:3c:d1:2f:0a:3e:f1:79:f0:ab:7f:3f: 63:a6:e9:a0:35:bc:e5:d1:af:f8:46:44:a3:0f:e1:36:34:d6: f9:2a:a2:74:f2:ad:1a:f2:6c:f0:a7:cd:ed:47:dc:aa:2c:25: f3:7b:5e:d1:ad:27:fb:40:c2:c6:3f:88:62:82:eb:c5:09:1c: 5d:d0:d8:68:38:1e:e3:72:e7:28:72:6c:05:40:97:04:34:7d: bd:0a:23:27:41:18:79:28:cd:aa:35:53:98:c2:1e:da:f3:36: 17:56:de:91:46:b4:4c:df:14:4c:cb:61:9d:09:44:e6:c3:1f: 40:0e:de:09:cd:d5:73:0e:fd:59:49:9c:75:8b:a8:5b:b1:eb: 37:21:7b:51:97:44:5b:e2:ee:6f:3b:68:49:ab:26:a1:a2:d4: ae:56:41:d9:0a:7b:c2:06:f6:7e:e7:8d:22:1a:0b:62:89:20: 67:cf:69:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUxMDMwMjEwNTIwWhcNMjUxMTA2MjEwNTIwWjAYMRYwFAYD VQQDEw02OTAzZDMxMC01ZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjaq52TRdOeNR1th1hRryaqGGw/ezqpzLCtV4iUiHPgAPCTus+s1MBMpklcM FjTUeNZPUBnoRYVUDvkxEORyOffPCM7JSgGi5sMS4RCPJ7U3mNUdibPAX3wSqRQx 3lOJ6pFA035+bpQ0+P/bNqQzLFJfmxMNYBLhrEbfBoJO2MT7Zgyq4nS/2HZkkkU/ 50gkzLmc1hRcvaag7Gicj8BS5EYFqI+bUeaDwglW6Kk+t9eKaUHq7grTfMVVhEgw qMk9c9rvO1jd4i3Pv2bNEU616mwDPtrYGW+exc3iFsaeSSEYqaC1rdypDSoOb7HP kLlCqE2DuKcFZCAbdQE2o5LrawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjw/V6M Vinl2f0AM9iUNLjFgC+SMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPj4uWaWNnlzuLm5FyCvyKfXkJ8fKB3rcV619ZrH0XN9jK+DxBllQq ogbWPG4aJbpn0agltuPHEfoea9t3TiSlupmU+nmQndW+2LFL66rOPNEvCj7xefCr fz9jpumgNbzl0a/4RkSjD+E2NNb5KqJ08q0a8mzwp83tR9yqLCXze17RrSf7QMLG P4higuvFCRxd0NhoOB7jcucocmwFQJcENH29CiMnQRh5KM2qNVOYwh7a8zYXVt6R RrRM3xRMy2GdCUTmwx9ADt4JzdVzDv1ZSZx1i6hbses3IXtRl0Rb4u5vO2hJqyah otSuVkHZCnvCBvZ+540iGgtiiSBnz2ks -----END CERTIFICATE-----Generated at Fri Oct 31 11:41:51 2025 by rpki-client