$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft File: ItyTZY3G6XAwereu8eJV3j1D9bc.mft (raw, json) Hash identifier: r1xom2IdkzsfGs3u9xg9GrvlJTZQJKjYwhi8jFznLSo= Subject key identifier: BE:DF:FA:9C:F5:23:F9:4B:03:DD:6B:88:AC:44:8B:B3:30:04:53:0C Authority key identifier: 22:DC:93:65:8D:C6:E9:70:30:7A:B7:AE:F1:E2:55:DE:3D:43:F5:B7 Certificate issuer: /CN=A91F0C45/serialNumber=22DC93658DC6E970307AB7AEF1E255DE3D43F5B7 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft Manifest number: 21 Signing time: Mon 03 Nov 2025 07:45:50 +0000 Manifest this update: Mon 03 Nov 2025 07:45:49 +0000 Manifest next update: Mon 10 Nov 2025 07:45:49 +0000 Files and hashes: 1: ItyTZY3G6XAwereu8eJV3j1D9bc.crl (hash: BZof+v2l1i3i8Kka/RKvYzFOs272FXSFEUehS4TIctI=) 2: 96AF1D609A0F11F09F475111C4F9AE02.roa (hash: tFfEWYriExxsv1Kbj1C8BLmYz3OJt9i3cLz0eyOnVkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.crl rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C45, serialNumber=22DC93658DC6E970307AB7AEF1E255DE3D43F5B7 Validity Not Before: Nov 3 07:45:49 2025 GMT Not After : Nov 10 07:45:49 2025 GMT Subject: CN=69085dae-7dfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f1:99:8e:f5:ce:7c:fa:58:45:99:bd:f1:84: 87:c8:cf:10:d8:4b:b1:f1:71:6f:e6:e1:78:59:ef: c7:30:94:22:87:99:bf:f2:d3:24:9e:41:77:c3:bd: 61:db:d0:97:c6:9b:1c:70:46:1d:f4:d2:7f:7d:0c: 5d:d6:df:46:01:d8:06:b9:ab:67:fe:34:03:fb:bd: 64:b7:dd:70:5d:03:06:f5:4a:be:70:8b:87:a4:18: bb:71:c6:ad:b3:15:37:ca:eb:ea:2a:61:fd:91:a4: 9a:4e:65:5e:41:d6:12:c2:c8:a9:d5:4f:85:70:0c: 96:0a:3a:ae:95:3f:5e:20:bc:e0:96:8d:64:b9:c4: 25:4a:01:69:37:3f:b6:5c:89:d5:25:b6:25:e2:19: 80:c2:57:9e:e5:83:b0:09:1e:ad:cd:b8:f2:0f:19: 42:d6:ec:38:9b:c7:a5:51:06:1c:a4:83:73:9c:20: ab:aa:b4:06:bc:13:29:01:f0:4c:6c:33:96:d0:c0: 9e:6a:e0:fe:26:e7:8c:36:e5:86:4d:bd:ac:05:2e: 53:6f:bf:ff:1f:a5:2f:53:9c:bb:c4:d1:28:0b:cf: cf:d1:5b:cc:21:58:28:1b:c1:69:27:40:9b:ed:b2: 07:32:e8:41:af:4d:e6:bc:b5:5c:45:c0:47:94:6c: 0b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DF:FA:9C:F5:23:F9:4B:03:DD:6B:88:AC:44:8B:B3:30:04:53:0C X509v3 Authority Key Identifier: keyid:22:DC:93:65:8D:C6:E9:70:30:7A:B7:AE:F1:E2:55:DE:3D:43:F5:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:e1:ac:04:77:8c:e0:80:fc:d5:5c:a5:92:da:ee:59:ea:12: 5d:f2:0b:cd:cf:49:c7:68:50:74:45:a3:ca:82:de:b1:48:bf: a2:d7:36:43:ea:09:ef:b2:b7:c5:68:da:02:54:00:49:d9:ce: a3:2e:93:76:3f:aa:b3:d7:43:63:e9:fb:0d:f3:a9:5c:26:90: 07:e3:da:30:c7:3d:19:95:5d:b6:15:3e:d6:dc:b9:bf:ef:c9: 81:11:26:8f:dc:1b:23:d6:da:2c:b3:c0:21:23:d6:55:ee:7f: 00:6a:5c:a5:9a:89:3a:34:3d:dd:dd:12:3d:81:e4:47:7e:30: 10:2a:54:30:18:7d:98:7c:57:fe:3d:b6:6c:4e:53:73:7e:fc: 2e:d8:59:53:e9:e4:1f:82:60:99:23:43:b0:18:52:91:23:15: ed:26:ef:1d:63:9c:55:80:db:bf:67:40:63:b9:7f:53:e2:01: fd:61:7c:be:de:38:c0:71:72:93:3b:56:31:4d:0a:71:6d:3f: d5:97:ae:48:c8:ea:a7:22:31:a7:fb:73:67:b5:1f:cc:f9:5c: dd:55:1c:15:39:35:dc:43:71:12:f9:23:2e:28:d7:29:f0:d3: 0a:f9:2b:48:f7:d0:3a:4c:b3:4a:78:0b:2d:f8:3b:a3:4c:2b: ba:b0:ed:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEM0NTExMC8GA1UEBRMoMjJEQzkzNjU4REM2RTk3MDMwN0FCN0FFRjFFMjU1REUz RDQzRjVCNzAeFw0yNTExMDMwNzQ1NDlaFw0yNTExMTAwNzQ1NDlaMBgxFjAUBgNV BAMTDTY5MDg1ZGFlLTdkZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp8ZmO9c58+lhFmb3xhIfIzxDYS7HxcW/m4XhZ78cwlCKHmb/y0ySeQXfDvWHb 0JfGmxxwRh300n99DF3W30YB2Aa5q2f+NAP7vWS33XBdAwb1Sr5wi4ekGLtxxq2z FTfK6+oqYf2RpJpOZV5B1hLCyKnVT4VwDJYKOq6VP14gvOCWjWS5xCVKAWk3P7Zc idUltiXiGYDCV57lg7AJHq3NuPIPGULW7Dibx6VRBhykg3OcIKuqtAa8EykB8Exs M5bQwJ5q4P4m54w25YZNvawFLlNvv/8fpS9TnLvE0SgLz8/RW8whWCgbwWknQJvt sgcy6EGvTea8tVxFwEeUbAs9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvt/6nPUj +UsD3WuIrESLszAEUwwwHwYDVR0jBBgwFoAUItyTZY3G6XAwereu8eJV3j1D9bcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwQzQ1LzkxQTE4OTlFODky RTExRjA5N0FDNjYyRkM0RjlBRTAyL0l0eVRaWTNHNlhBd2VyZXU4ZUpWM2oxRDli Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXR5VFpZM0c2WEF3ZXJldThlSlYzajFEOWJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw QzQ1LzkxQTE4OTlFODkyRTExRjA5N0FDNjYyRkM0RjlBRTAyL0l0eVRaWTNHNlhB d2VyZXU4ZUpWM2oxRDliYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGDhrAR3jOCA/NVcpZLa7lnqEl3yC83PScdoUHRFo8qC3rFIv6LXNkPq Ce+yt8Vo2gJUAEnZzqMuk3Y/qrPXQ2Pp+w3zqVwmkAfj2jDHPRmVXbYVPtbcub/v yYERJo/cGyPW2iyzwCEj1lXufwBqXKWaiTo0Pd3dEj2B5Ed+MBAqVDAYfZh8V/49 tmxOU3N+/C7YWVPp5B+CYJkjQ7AYUpEjFe0m7x1jnFWA279nQGO5f1PiAf1hfL7e OMBxcpM7VjFNCnFtP9WXrkjI6qciMaf7c2e1H8z5XN1VHBU5NdxDcRL5Iy4o1ynw 0wr5K0j30DpMs0p4Cy34O6NMK7qw7ck= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:17 2025 by rpki-client