$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: JN3KKUF+JCYs7/8xGQnspBgTVm5+RQgM6Mxd48f7FUQ= Subject key identifier: E4:AF:5A:97:EE:56:FB:5D:03:6D:67:17:48:52:F3:C3:29:96:F5:8F Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01A6 Signing time: Mon 03 Nov 2025 03:15:33 +0000 Manifest this update: Mon 03 Nov 2025 03:15:33 +0000 Manifest next update: Mon 10 Nov 2025 03:15:33 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: c/5SyIGhYu+tVSI0ZB2guTxMADKqhKmHRgQLhMDVdM4=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Nov 3 03:15:33 2025 GMT Not After : Nov 10 03:15:33 2025 GMT Subject: CN=69081e55-94fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e4:9a:91:44:f9:c0:78:90:eb:01:32:cd:6f: 19:12:9d:85:96:a2:83:27:9d:6d:1a:8b:02:be:95: 10:d1:62:71:ff:25:de:e7:4a:fa:ab:30:14:2e:8a: 04:29:b1:43:cf:88:0d:2b:96:e6:77:70:bc:f7:ae: 23:f4:1a:12:13:01:50:ba:fc:76:17:ea:35:1c:fa: 96:f1:1b:03:59:fc:8e:1a:53:5e:f4:79:d2:02:54: c6:9b:2c:9c:a2:57:16:e7:0e:51:35:57:19:12:6b: fe:fc:0c:04:af:01:f0:9c:9c:bc:9c:32:b2:ad:ab: 41:e2:81:3e:48:b4:a3:15:85:03:a5:7a:df:65:34: 30:06:46:c9:1b:46:64:d1:ef:6a:90:84:d5:e4:1c: 00:f7:3f:61:f0:98:f9:79:eb:31:56:e4:94:34:30: 9a:5d:e1:23:0c:17:6f:54:4f:81:7e:cf:72:4d:49: bf:03:a6:13:1e:4a:13:02:6b:bf:6e:fd:d4:25:ab: 02:69:ba:99:13:56:a5:03:d7:8a:38:67:7c:a5:e8: 81:38:62:f4:07:e1:d4:1a:eb:2b:08:6c:8f:2b:b9: a2:7e:95:ae:6c:f2:42:8d:d4:eb:50:71:c4:50:c0: 82:d1:c9:9a:c1:8b:8a:40:0b:2c:db:54:c4:79:e9: 7e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:AF:5A:97:EE:56:FB:5D:03:6D:67:17:48:52:F3:C3:29:96:F5:8F X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:16:ad:2d:96:10:3f:27:cb:4d:af:ea:7b:9b:f0:e0:a7:71: b4:c7:c9:5b:d2:81:31:94:60:86:ba:53:1f:c0:bd:25:11:38: cb:7f:17:62:5d:73:e9:1b:da:22:d3:e3:4f:72:1d:d0:65:b3: 08:f4:39:76:d8:43:94:de:12:e6:e6:b2:81:b9:92:ef:ce:31: 2f:a1:2c:fd:58:6f:41:ea:78:c9:7b:05:cb:a5:c2:4e:19:34: 24:e6:7a:91:c6:59:06:be:1e:16:c9:12:da:9e:8f:2d:2e:0f: 76:b5:5d:ba:2e:d8:4b:e9:63:e6:0e:ae:61:97:d9:ae:11:39: 0f:bd:68:65:83:0a:c5:9e:26:41:0d:51:4f:5d:3e:19:7e:bc: 47:da:e6:8b:d2:fa:a5:32:42:f2:a6:13:86:f0:e3:6e:5e:66: 92:d3:96:c9:da:32:78:a8:15:59:55:cf:c1:3f:9a:2a:58:f0: dd:4a:c8:fd:b3:32:ec:b8:f2:9c:67:bf:8f:38:c7:4c:95:a8: f9:2a:66:69:a2:78:4b:4c:ac:c1:d9:df:45:ff:98:84:bf:e7: c5:d3:67:a7:31:87:a2:e8:62:de:b4:18:91:b5:ff:12:15:4c: 4c:b4:dc:14:57:e8:3c:97:f3:dd:bd:e0:32:17:e5:5a:ed:8a: e0:33:57:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUxMTAzMDMxNTMzWhcNMjUxMTEwMDMxNTMzWjAYMRYwFAYD VQQDEw02OTA4MWU1NS05NGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OSakUT5wHiQ6wEyzW8ZEp2FlqKDJ51tGosCvpUQ0WJx/yXe50r6qzAULooE KbFDz4gNK5bmd3C8964j9BoSEwFQuvx2F+o1HPqW8RsDWfyOGlNe9HnSAlTGmyyc olcW5w5RNVcZEmv+/AwErwHwnJy8nDKyratB4oE+SLSjFYUDpXrfZTQwBkbJG0Zk 0e9qkITV5BwA9z9h8Jj5eesxVuSUNDCaXeEjDBdvVE+Bfs9yTUm/A6YTHkoTAmu/ bv3UJasCabqZE1alA9eKOGd8peiBOGL0B+HUGusrCGyPK7mifpWubPJCjdTrUHHE UMCC0cmawYuKQAss21TEeel+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSvWpfu VvtdA21nF0hS88MplvWPMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZFq0tlhA/J8tNr+p7m/Dgp3G0x8lb0oExlGCGulMfwL0lETjLfxdi XXPpG9oi0+NPch3QZbMI9Dl22EOU3hLm5rKBuZLvzjEvoSz9WG9B6njJewXLpcJO GTQk5nqRxlkGvh4WyRLano8tLg92tV26LthL6WPmDq5hl9muETkPvWhlgwrFniZB DVFPXT4ZfrxH2uaL0vqlMkLyphOG8ONuXmaS05bJ2jJ4qBVZVc/BP5oqWPDdSsj9 szLsuPKcZ7+POMdMlaj5KmZponhLTKzB2d9F/5iEv+fF02enMYei6GLetBiRtf8S FUxMtNwUV+g8l/PdveAyF+Va7YrgM1eR -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:05 2025 by rpki-client