$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: rJxEJJ5VXRPasG3bhkYsJRoc6LQ/3wZq/Cp5/HBaFe8= Subject key identifier: 4D:1A:3D:D5:0D:FA:18:4C:12:D0:CA:2B:BE:BC:48:E6:E4:B7:FF:86 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 34E1 Signing time: Sun 02 Nov 2025 15:30:59 +0000 Manifest this update: Sun 02 Nov 2025 15:30:59 +0000 Manifest next update: Sun 09 Nov 2025 15:30:59 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: OIPDdei3V71gwJPmkXX5aIgpcWKDj4GB3ROLFPHD9wU=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: M6Pt8WXLhq//MKcmuNDOr2BuMndgWlnu7AwCPG6iTjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Nov 2 15:30:59 2025 GMT Not After : Nov 9 15:30:59 2025 GMT Subject: CN=69077933-e111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:11:39:51:f8:7c:96:14:c3:41:0d:8c:31:57: 9a:34:64:81:64:e7:09:78:ec:a4:29:ab:55:e2:77: 4e:d4:a6:53:e6:c8:09:a0:4e:17:f8:d9:89:54:26: c9:18:eb:a0:52:d8:7d:8a:ba:4a:62:19:83:f3:b0: 98:ae:20:15:e1:4e:4e:34:c4:64:f8:af:c8:84:3c: 4f:db:4c:3d:6d:4a:b1:f5:30:65:e2:eb:12:9f:f2: d1:d6:54:2b:c9:54:1f:fd:a1:de:5d:31:d0:f2:dc: 80:71:73:64:f7:6e:29:8b:eb:85:0f:d5:36:0d:e1: 18:46:e1:04:76:c6:33:83:62:c5:af:c3:d1:ac:23: 42:c2:f3:e0:6b:06:0a:ea:22:d4:88:fa:d6:df:28: 56:49:d3:cd:10:10:28:d3:ad:2d:95:2d:9d:6a:8d: f8:dd:0c:d7:c0:e7:cb:cc:89:1e:18:df:14:3e:8b: fc:d8:47:fb:c4:9c:39:85:91:04:28:4a:9b:a4:55: c0:49:97:84:48:a2:eb:f0:cf:95:3d:27:62:c6:54: 5c:c9:17:0d:92:e9:3e:e2:04:06:1b:bc:2b:d3:66: 5a:8f:f3:0c:06:5d:37:eb:d1:a5:26:13:cb:bc:45: 38:97:0c:20:c5:a9:1c:80:09:10:69:ab:73:72:68: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1A:3D:D5:0D:FA:18:4C:12:D0:CA:2B:BE:BC:48:E6:E4:B7:FF:86 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:54:a8:2e:d1:93:f3:a1:3b:f4:df:a2:a4:73:1a:c3:07:9b: 88:d2:e8:d1:e5:81:fb:8d:08:0e:d8:f6:26:ff:a4:e9:b6:70: 60:78:58:86:83:3d:89:18:c4:09:dc:92:b6:3f:b5:8b:1c:71: 3b:80:6d:ce:64:5c:93:23:ff:18:d0:25:35:be:77:62:34:93: 10:ea:91:86:1a:4c:be:75:60:9b:16:bf:9f:da:22:1c:f8:55: 2b:b9:08:7f:fb:0a:f3:c0:cf:5c:d7:e9:aa:26:d4:3c:b2:63: 63:ac:79:a9:d0:1b:7c:52:60:db:4e:e3:11:cb:49:12:f1:0d: 75:a7:7a:d7:9a:93:e0:dc:b0:8d:fb:64:8e:7c:44:cf:da:52: d5:c9:ba:0a:55:10:04:4e:a7:60:b8:10:f7:cd:1e:e4:b6:b0: 1c:3c:ac:fe:d0:57:87:5b:a7:93:ad:63:c3:96:79:84:b2:ae: 89:70:18:ba:39:32:9f:22:5c:5f:28:0e:8a:f5:44:73:55:e7: 36:3a:17:4a:8b:0d:87:61:2b:0c:56:89:f7:63:ec:de:6e:24: 00:c6:0a:7b:e1:b8:f3:06:f5:74:4c:9f:ca:b2:ac:91:22:6e: d6:3e:79:d1:d1:29:05:e3:d0:16:b0:dd:b2:17:62:3a:9a:2c: 5a:ba:c7:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUxMTAyMTUzMDU5WhcNMjUxMTA5MTUzMDU5WjAYMRYwFAYD VQQDEw02OTA3NzkzMy1lMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhE5Ufh8lhTDQQ2MMVeaNGSBZOcJeOykKatV4ndO1KZT5sgJoE4X+NmJVCbJ GOugUth9irpKYhmD87CYriAV4U5ONMRk+K/IhDxP20w9bUqx9TBl4usSn/LR1lQr yVQf/aHeXTHQ8tyAcXNk924pi+uFD9U2DeEYRuEEdsYzg2LFr8PRrCNCwvPgawYK 6iLUiPrW3yhWSdPNEBAo060tlS2dao343QzXwOfLzIkeGN8UPov82Ef7xJw5hZEE KEqbpFXASZeESKLr8M+VPSdixlRcyRcNkuk+4gQGG7wr02Zaj/MMBl0369GlJhPL vEU4lwwgxakcgAkQaatzcmjHBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0aPdUN +hhMEtDKK768SObkt/+GMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoVKgu0ZPzoTv036KkcxrDB5uI0ujR5YH7jQgO2PYm/6TptnBgeFiG gz2JGMQJ3JK2P7WLHHE7gG3OZFyTI/8Y0CU1vndiNJMQ6pGGGky+dWCbFr+f2iIc +FUruQh/+wrzwM9c1+mqJtQ8smNjrHmp0Bt8UmDbTuMRy0kS8Q11p3rXmpPg3LCN +2SOfETP2lLVyboKVRAETqdguBD3zR7ktrAcPKz+0FeHW6eTrWPDlnmEsq6JcBi6 OTKfIlxfKA6K9URzVec2OhdKiw2HYSsMVon3Y+zebiQAxgp74bjzBvV0TJ/KsqyR Im7WPnnR0SkF49AWsN2yF2I6mixausd3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:01 2025 by rpki-client