$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft File: IrN0ThSJpKURK82Mvxepj_HbZnU.mft (raw, json) Hash identifier: bSi10OfppE2o+VCtvs/SAVqyZDx9Blr+gEJABqymDj8= Subject key identifier: 69:44:69:D6:EC:45:73:3F:F7:6F:B4:6D:3C:E6:8D:E7:E8:D0:F6:A3 Authority key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 Certificate issuer: /CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Certificate serial: 0362 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft Manifest number: 035B Signing time: Wed 05 Nov 2025 01:02:57 +0000 Manifest this update: Wed 05 Nov 2025 01:02:57 +0000 Manifest next update: Wed 12 Nov 2025 01:02:57 +0000 Files and hashes: 1: IrN0ThSJpKURK82Mvxepj_HbZnU.crl (hash: /ylbYrAta/GH9NZQTnCc7U9cczIRNEEYUm+wvTAGcuA=) 2: F2C91F5678BE11EFBB3FC76DC4F9AE02.roa (hash: du3inK9qkjwR/A2n6vO6SMQjDynHJ0y0PAziJifzAng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B54, serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Validity Not Before: Nov 5 01:02:57 2025 GMT Not After : Nov 12 01:02:57 2025 GMT Subject: CN=690aa241-198c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b8:74:60:c5:75:76:ee:7a:0d:48:62:87:03: 4e:ce:f9:e5:4c:60:76:cc:90:61:47:24:f8:84:91: e8:76:9c:61:d2:f3:47:eb:38:d2:74:41:03:ec:68: f3:ab:4b:d8:0b:04:db:b4:38:b4:42:0c:24:3b:91: 2e:56:5d:e1:22:55:67:8a:6b:2a:a9:87:95:d6:5c: 3c:36:b1:f0:bb:64:57:e4:69:49:44:06:e2:be:aa: da:3c:1e:65:2f:9b:fa:38:a5:6b:45:0e:a0:e9:d9: 97:e5:12:a4:de:cc:77:8c:14:54:cc:2b:37:a7:cb: 2e:20:96:aa:c8:6e:02:f0:52:49:6a:69:94:9a:78: e2:a9:af:fe:a3:72:d6:e2:eb:cc:ad:e6:cc:26:9d: 48:c3:42:78:19:9a:3b:9a:74:c1:d7:82:d4:87:61: fc:af:20:8f:02:f9:ca:44:ee:c2:12:ec:5b:ba:e4: b8:cb:6b:6e:7d:81:b2:4a:56:0e:ca:a7:ca:ec:cb: 19:17:8f:6c:1d:6e:e2:52:fb:23:5e:b9:a2:78:20: 01:61:4c:3b:c1:3d:1a:23:55:4b:5a:8e:82:92:ce: c9:07:6c:62:04:ae:77:28:72:e6:aa:14:7c:aa:c9: 52:8e:69:98:5b:ad:eb:46:83:df:a8:ef:72:6e:f1: f4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:44:69:D6:EC:45:73:3F:F7:6F:B4:6D:3C:E6:8D:E7:E8:D0:F6:A3 X509v3 Authority Key Identifier: keyid:22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:87:ba:d5:bb:53:11:50:f4:b2:9f:c8:68:71:78:f4:c5:24: 23:a4:27:61:f1:d9:76:2a:32:ca:e9:e0:85:93:2d:bb:e2:8b: 8b:50:0e:9a:7b:3a:4e:01:89:5c:09:ab:a9:1b:38:07:f7:6d: 30:92:c3:bd:a8:5d:88:1d:f5:0c:b5:bc:f2:42:ea:e0:40:25: f8:ec:c4:0f:99:e6:ec:db:76:70:f4:e6:78:86:63:f0:21:31: 0c:d0:eb:6d:47:62:ea:30:99:f0:72:e6:66:54:c2:55:d6:88: f8:30:04:8e:14:6d:65:98:93:ce:e5:b8:b3:34:b7:0a:cd:20: d9:4c:21:99:cb:1b:92:65:90:95:0b:44:71:42:76:3b:a1:7f: 3d:f9:7e:5d:49:99:30:cc:1d:2f:f8:d1:a2:06:a4:a9:69:3b: 86:e0:dc:c6:85:c7:47:71:87:38:e8:76:e4:aa:b0:3d:76:f9: ae:8a:ea:c8:21:fe:ea:59:8f:d2:f9:6d:b3:0a:ca:f2:c4:ca: 3d:b3:3c:59:4f:3e:28:3b:36:7a:25:fe:fb:3c:21:b9:b6:8e: 9b:e4:3a:a6:ab:45:fa:91:88:1b:70:6e:ea:f0:28:c6:c3:3f: 21:86:2b:6c:55:0d:58:ca:f4:0f:9a:31:8f:50:b2:da:f9:09: 2c:f7:e1:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNTQxMTAvBgNVBAUTKDIyQjM3NDRFMTQ4OUE0QTUxMTJCQ0Q4Q0JGMTdBOThG RjFEQjY2NzUwHhcNMjUxMTA1MDEwMjU3WhcNMjUxMTEyMDEwMjU3WjAYMRYwFAYD VQQDEw02OTBhYTI0MS0xOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7h0YMV1du56DUhihwNOzvnlTGB2zJBhRyT4hJHodpxh0vNH6zjSdEED7Gjz q0vYCwTbtDi0QgwkO5EuVl3hIlVnimsqqYeV1lw8NrHwu2RX5GlJRAbivqraPB5l L5v6OKVrRQ6g6dmX5RKk3sx3jBRUzCs3p8suIJaqyG4C8FJJammUmnjiqa/+o3LW 4uvMrebMJp1Iw0J4GZo7mnTB14LUh2H8ryCPAvnKRO7CEuxbuuS4y2tufYGySlYO yqfK7MsZF49sHW7iUvsjXrmieCABYUw7wT0aI1VLWo6Cks7JB2xiBK53KHLmqhR8 qslSjmmYW63rRoPfqO9ybvH0xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlEadbs RXM/92+0bTzmjefo0PajMB8GA1UdIwQYMBaAFCKzdE4UiaSlESvNjL8XqY/x22Z1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI1NC83MjczNzVCNEQ0 RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBLVVJLODJNdnhlcGpfSGJa blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyTjBUaFNKcEtVUks4Mk12eGVwal9IYlpuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI1NC83MjczNzVCNEQ0RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBL VVJLODJNdnhlcGpfSGJablUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeh7rVu1MRUPSyn8hocXj0xSQjpCdh8dl2KjLK6eCFky274ouLUA6a ezpOAYlcCaupGzgH920wksO9qF2IHfUMtbzyQurgQCX47MQPmebs23Zw9OZ4hmPw ITEM0OttR2LqMJnwcuZmVMJV1oj4MASOFG1lmJPO5bizNLcKzSDZTCGZyxuSZZCV C0RxQnY7oX89+X5dSZkwzB0v+NGiBqSpaTuG4NzGhcdHcYc46HbkqrA9dvmuiurI If7qWY/S+W2zCsryxMo9szxZTz4oOzZ6Jf77PCG5to6b5Dqmq0X6kYgbcG7q8CjG wz8hhitsVQ1YyvQPmjGPULLa+Qks9+HE -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:15 2025 by rpki-client