$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: uMbAwJe+0XozblAsXOtJ1VCXIGHBlH/P2AGu4ttGQho= Subject key identifier: 30:96:D4:01:A2:E3:40:54:1F:07:39:45:36:80:EB:20:75:48:6E:90 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C41 Signing time: Sun 02 Nov 2025 18:37:18 +0000 Manifest this update: Sun 02 Nov 2025 18:37:17 +0000 Manifest next update: Sun 09 Nov 2025 18:37:17 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: 4rwGnqpXs7lRLvcC89iPcfp4UmX37csKIfRCXb9/SOw=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:37:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Nov 2 18:37:17 2025 GMT Not After : Nov 9 18:37:17 2025 GMT Subject: CN=6907a4dd-bdc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:0c:44:12:c6:f2:e7:44:91:03:78:f5:2f: b4:5e:69:2c:a1:70:06:2d:1d:0b:63:f6:a8:75:8c: a2:f0:07:18:7d:23:22:25:dd:d8:30:61:76:65:1b: d9:45:1e:00:5c:04:8d:a7:3c:70:7d:b9:15:f9:1e: 7c:b4:c7:bd:8b:b3:d9:27:11:25:b2:df:fc:ef:1b: cb:20:93:83:55:21:4a:ba:cb:15:2c:ea:1f:cd:6b: 47:01:8d:33:d6:4f:94:d3:ba:23:2c:4c:8b:9a:36: b7:f3:b7:99:08:e3:e5:f4:23:23:3a:31:b5:40:24: 2b:47:6b:18:ed:53:d1:f9:fb:2c:23:7f:11:d9:1c: 85:97:15:a6:6a:91:d6:51:fc:53:46:72:0d:aa:33: 4b:79:d7:9e:9d:f7:4e:3d:4e:8a:87:14:e4:f1:f6: 1f:74:03:df:97:a0:07:f6:01:b2:99:dc:9f:bd:85: 2d:6c:e0:8d:69:ca:b0:99:b4:70:04:21:07:bc:da: 09:7d:ad:8b:33:ad:e6:5f:4e:b1:bc:21:27:d5:97: e6:65:98:e5:a8:8b:a1:a5:13:a9:5f:03:c7:3a:f5: 32:03:69:d7:ce:ca:9b:1b:86:9b:cf:e6:d0:63:1b: f9:42:a6:c9:f2:f5:1b:86:9a:83:79:3d:00:30:1c: fb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:96:D4:01:A2:E3:40:54:1F:07:39:45:36:80:EB:20:75:48:6E:90 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:f2:f2:40:a6:37:b3:00:93:4b:9d:d5:6a:5b:08:25:4d:60: 3b:be:70:1d:cf:e8:4d:8d:e6:78:31:85:00:db:2b:5f:25:0c: a1:9e:0e:bb:b9:8c:31:04:15:ad:5e:2b:14:c4:c7:03:74:91: 91:0b:d8:f8:22:09:a4:da:7d:fc:ab:40:a5:8d:46:d9:16:13: 08:7d:03:1e:0d:3e:f7:86:4e:d7:f0:63:6a:7a:d1:19:c6:b0: 9b:fa:33:9d:cc:d8:86:c6:f9:ef:06:b2:c0:d1:c1:26:3c:20: d3:9d:0c:2d:f7:94:9e:50:bb:50:84:ff:34:d8:d4:e8:4d:71: 30:44:91:5c:51:aa:a7:3a:6a:61:cf:bf:3c:59:7d:b9:0b:59: 2a:ab:0a:69:02:0a:09:e8:82:a9:ce:72:d7:a0:06:52:08:71: 3d:f0:3d:9a:65:b0:67:7d:9b:58:87:b9:5d:62:5c:b1:00:e4: b7:c6:2d:d2:d1:b4:5c:f0:04:8d:63:28:fa:ce:d7:2a:01:e1: fc:45:87:26:80:5d:00:3f:9c:14:e0:48:ad:2a:82:1f:d4:78: 07:07:87:dd:e2:66:28:99:3c:fa:72:f8:b1:b2:c9:fc:7e:c5: fe:42:35:39:6f:28:a7:11:ab:69:c5:fc:fd:dd:ea:8b:52:2c: 97:eb:e4:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUxMTAyMTgzNzE3WhcNMjUxMTA5MTgzNzE3WjAYMRYwFAYD VQQDEw02OTA3YTRkZC1iZGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmUMRBLG8udEkQN49S+0XmksoXAGLR0LY/aodYyi8AcYfSMiJd3YMGF2ZRvZ RR4AXASNpzxwfbkV+R58tMe9i7PZJxElst/87xvLIJODVSFKussVLOofzWtHAY0z 1k+U07ojLEyLmja387eZCOPl9CMjOjG1QCQrR2sY7VPR+fssI38R2RyFlxWmapHW UfxTRnINqjNLedeenfdOPU6KhxTk8fYfdAPfl6AH9gGymdyfvYUtbOCNacqwmbRw BCEHvNoJfa2LM63mX06xvCEn1ZfmZZjlqIuhpROpXwPHOvUyA2nXzsqbG4abz+bQ Yxv5QqbJ8vUbhpqDeT0AMBz7dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCW1AGi 40BUHwc5RTaA6yB1SG6QMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF8vJApjezAJNLndVqWwglTWA7vnAdz+hNjeZ4MYUA2ytfJQyhng67 uYwxBBWtXisUxMcDdJGRC9j4Igmk2n38q0CljUbZFhMIfQMeDT73hk7X8GNqetEZ xrCb+jOdzNiGxvnvBrLA0cEmPCDTnQwt95SeULtQhP802NToTXEwRJFcUaqnOmph z788WX25C1kqqwppAgoJ6IKpznLXoAZSCHE98D2aZbBnfZtYh7ldYlyxAOS3xi3S 0bRc8ASNYyj6ztcqAeH8RYcmgF0AP5wU4EitKoIf1HgHB4fd4mYomTz6cvixssn8 fsX+QjU5byinEatpxfz93eqLUiyX6+R+ -----END CERTIFICATE-----Generated at Tue Nov 4 08:32:01 2025 by rpki-client