$ rpki-client -vvf rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft File: iiZW272QAzaEH_UDU2_5kY_rJcY.mft (raw, json) Hash identifier: Y03BWwfSbaUztDJdjSwCyBxOnwwjSGExCOv6GDYDQwY= Subject key identifier: 2E:35:7D:7B:08:05:72:FC:4C:E1:2D:D8:63:6B:21:DE:2E:95:07:A3 Authority key identifier: 8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 Certificate issuer: /CN=A91A267C/serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Certificate serial: 0A36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft Manifest number: 0A2A Signing time: Sat 18 Oct 2025 20:45:11 +0000 Manifest this update: Sat 18 Oct 2025 20:45:10 +0000 Manifest next update: Sat 25 Oct 2025 20:45:10 +0000 Files and hashes: 1: iiZW272QAzaEH_UDU2_5kY_rJcY.crl (hash: QwKbW0/4TiuflolYT2kseILjjzl4E3WcWwqOojSiYzo=) 2: 9244682C7BD711EAA889485EC4F9AE02.roa (hash: ZCM+V6Y56yepaeegUajjp4xOF8Q6SeyZY2EvL4X5a+Y=) 3: 8B802D485F2211EC88AA0F84C4F9AE02.roa (hash: qSGZ+j4RvXroFxByBDcPf9/bS2chAaWe7JM19f3ZPpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2614 (0xa36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A267C, serialNumber=8A2656DBBD900336841FF503536FF9918FEB25C6 Validity Not Before: Oct 18 20:45:10 2025 GMT Not After : Oct 25 20:45:10 2025 GMT Subject: CN=68f3fc56-1cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:52:f2:9a:9f:de:d5:85:53:49:40:84:50:d1: c6:0c:64:48:2a:10:bc:40:c6:fb:ef:18:25:e6:39: ae:36:8f:3f:0a:be:a8:46:fc:ae:fd:df:00:55:67: b7:39:a6:92:09:77:c6:f0:18:25:cc:a4:e8:e3:d4: 47:e8:a7:2d:7c:e2:a5:5d:d0:38:eb:a0:66:5c:86: 24:95:68:db:85:d0:ce:9a:e8:c0:6c:89:52:33:95: 4c:58:97:ff:a7:f4:e1:19:ba:08:b4:ea:e4:1f:8e: 4b:fe:d2:b9:62:00:41:df:af:70:28:78:0e:6f:c4: ef:38:98:cb:75:0e:8e:7c:cf:da:c1:e4:09:2f:92: ea:84:b0:ad:06:19:b0:4e:a2:30:1c:27:ca:6c:09: df:1d:d9:f4:77:3f:62:4b:58:a1:53:25:dc:82:c5: d3:13:22:ca:fc:01:f4:a2:bd:1b:c5:fe:b5:cd:e5: bd:83:8a:d1:49:20:08:bd:f6:c0:f4:41:83:a9:2b: dc:5e:d6:2c:52:ec:1a:d0:60:e3:8c:93:a0:d9:8f: 22:3f:a1:bf:5b:4f:0f:d6:53:ae:89:f3:61:b3:11: c1:01:53:3a:a5:60:c7:eb:08:73:14:e0:7c:e1:1a: 87:97:cc:05:e9:f7:1f:dc:e9:8b:ae:a3:c0:85:1e: 40:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:35:7D:7B:08:05:72:FC:4C:E1:2D:D8:63:6B:21:DE:2E:95:07:A3 X509v3 Authority Key Identifier: keyid:8A:26:56:DB:BD:90:03:36:84:1F:F5:03:53:6F:F9:91:8F:EB:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iiZW272QAzaEH_UDU2_5kY_rJcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A267C/5B5389667BD611EA803F9B5CC4F9AE02/iiZW272QAzaEH_UDU2_5kY_rJcY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:49:fb:57:f6:d4:ce:2e:93:20:8e:42:eb:7f:8c:ff:da:b3: 21:27:9f:e6:85:70:1b:6e:4f:82:33:4b:04:13:94:49:be:25: de:c1:92:f7:b7:38:2c:f4:81:42:18:02:2f:52:bf:59:c4:7c: a7:29:8e:46:d2:0f:d0:b7:01:d2:4a:26:7a:4f:f5:7b:d3:2f: 81:b3:63:fa:21:ac:bd:c8:bc:bd:b0:c7:9a:5a:d8:b4:26:5d: 87:47:37:8c:1a:a8:aa:11:a5:2e:6d:e1:1a:42:bb:68:4d:4c: 28:a7:bd:91:b9:3c:8c:a4:72:95:94:37:9a:e1:ac:d4:39:3e: ae:f0:f8:43:62:90:54:82:68:2e:a4:c5:ad:00:5e:3f:6e:e0: 3e:5e:93:a6:ff:a9:9a:08:c2:3f:dc:2d:b2:3d:bc:48:1a:61: 8e:30:9e:29:d3:6f:7d:76:fa:ed:48:62:11:cb:55:e0:00:6a: 74:c7:ca:af:01:ea:bf:8d:bf:bf:fc:e5:b1:6f:0b:5f:5f:3f: d2:d5:17:6a:91:2d:a3:9c:0d:be:df:15:48:f2:3a:44:63:3f: 64:12:cd:ba:2c:00:f8:12:b6:97:9d:da:8d:d6:d2:1f:13:c4: 11:c6:5f:3a:f1:43:6c:8c:c8:82:b3:03:bd:b9:22:c1:b2:ac: b3:1c:c3:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI2N0MxMTAvBgNVBAUTKDhBMjY1NkRCQkQ5MDAzMzY4NDFGRjUwMzUzNkZGOTkx OEZFQjI1QzYwHhcNMjUxMDE4MjA0NTEwWhcNMjUxMDI1MjA0NTEwWjAYMRYwFAYD VQQDEw02OGYzZmM1Ni0xY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA81Lymp/e1YVTSUCEUNHGDGRIKhC8QMb77xgl5jmuNo8/Cr6oRvyu/d8AVWe3 OaaSCXfG8BglzKTo49RH6KctfOKlXdA466BmXIYklWjbhdDOmujAbIlSM5VMWJf/ p/ThGboItOrkH45L/tK5YgBB369wKHgOb8TvOJjLdQ6OfM/aweQJL5LqhLCtBhmw TqIwHCfKbAnfHdn0dz9iS1ihUyXcgsXTEyLK/AH0or0bxf61zeW9g4rRSSAIvfbA 9EGDqSvcXtYsUuwa0GDjjJOg2Y8iP6G/W08P1lOuifNhsxHBAVM6pWDH6whzFOB8 4RqHl8wF6fcf3OmLrqPAhR5A1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC41fXsI BXL8TOEt2GNrId4ulQejMB8GA1UdIwQYMBaAFIomVtu9kAM2hB/1A1Nv+ZGP6yXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjY3Qy81QjUzODk2NjdC RDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6YUVIX1VEVTJfNWtZX3JK Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpWlcyNzJRQXphRUhfVURVMl81a1lfckpjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjY3Qy81QjUzODk2NjdCRDYxMUVBODAzRjlCNUNDNEY5QUUwMi9paVpXMjcyUUF6 YUVIX1VEVTJfNWtZX3JKY1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1SftX9tTOLpMgjkLrf4z/2rMhJ5/mhXAbbk+CM0sEE5RJviXewZL3 tzgs9IFCGAIvUr9ZxHynKY5G0g/QtwHSSiZ6T/V70y+Bs2P6Iay9yLy9sMeaWti0 Jl2HRzeMGqiqEaUubeEaQrtoTUwop72RuTyMpHKVlDea4azUOT6u8PhDYpBUgmgu pMWtAF4/buA+XpOm/6maCMI/3C2yPbxIGmGOMJ4p0299dvrtSGIRy1XgAGp0x8qv Aeq/jb+//OWxbwtfXz/S1RdqkS2jnA2+3xVI8jpEYz9kEs26LAD4EraXndqN1tIf E8QRxl868UNsjMiCswO9uSLBsqyzHMMZ -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:00 2025 by rpki-client