$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: 9NdJciXKofNK2ogskJuRppOiV7E60eEOwVV2twxDhl4= Subject key identifier: 27:A2:91:0C:98:C7:ED:76:34:63:7C:03:0E:1D:02:D3:92:6D:B2:F1 Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 0790 Signing time: Sat 18 Oct 2025 22:48:13 +0000 Manifest this update: Sat 18 Oct 2025 22:48:13 +0000 Manifest next update: Sat 25 Oct 2025 22:48:13 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: 5HDO2p+O1FqMK8NcebWdfMMuYYsELq6pCeVt0tck5CE=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: CNZBv4FK9ZWvTtzm+cWIR1zfUXJg63OkryMkTZVFNpg=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: BlNMvykSVEqNeWKjQSI6MISWgcMVQUYKsr+oWp8+db0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Oct 18 22:48:13 2025 GMT Not After : Oct 25 22:48:13 2025 GMT Subject: CN=68f4192d-5f84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:fa:93:3d:d5:b2:13:ef:6b:a9:2f:df:f5: a8:cb:f0:36:0e:7d:fb:fe:8f:8a:a2:ec:22:e6:23: 4b:f8:0d:16:41:17:25:a6:dc:b1:f4:67:0d:31:a2: f6:a2:41:38:d2:31:56:c3:44:49:6a:82:ab:f2:23: 0a:a8:43:a8:d4:a5:a0:97:5f:be:7a:41:be:16:59: 16:7f:a8:22:76:e8:6b:e0:92:f8:97:c3:aa:66:65: a4:65:fa:50:dd:f6:3c:12:63:6e:f8:0f:36:88:00: 3e:0a:40:11:db:6a:0f:a0:17:dc:64:20:1f:ed:ff: 7c:a5:49:0b:c6:2d:6f:4e:05:3f:ce:af:5f:69:a3: ba:b5:a4:4a:d3:46:5c:4f:10:2c:0d:04:84:6d:c8: 07:ad:22:69:9f:47:95:71:55:25:4a:bc:64:c5:ff: e9:b2:7e:8a:5c:b8:82:0d:74:a3:3b:cd:98:d7:13: 4e:0b:51:5f:20:54:e7:a2:b2:9f:ca:ee:db:b9:fc: 33:11:b7:c7:f0:53:18:b1:4f:26:d2:01:cf:e2:21: 65:ef:bc:ca:28:49:cf:78:70:6a:53:af:f0:cc:a7: 54:6e:b6:91:2a:bf:50:00:01:0a:f4:db:bb:be:6e: 77:3e:53:9d:b0:75:9b:d0:b5:a5:1f:d2:87:69:d8: 51:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A2:91:0C:98:C7:ED:76:34:63:7C:03:0E:1D:02:D3:92:6D:B2:F1 X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:17:3f:2f:d5:77:ab:c6:68:55:67:1e:a9:06:b8:7e:a4:a7: 07:c1:89:ba:ec:13:eb:60:7b:cc:ea:8c:ee:6f:26:fc:b1:53: 93:29:bc:e0:15:d7:2e:b0:1a:75:7f:36:53:00:1c:29:43:aa: a5:89:a0:1c:8c:82:6a:2c:9e:4c:74:71:d4:34:cd:ca:a2:64: 1b:15:67:b3:2d:89:7c:98:0e:ab:a7:86:f1:22:3e:4d:bd:a5: 7f:41:88:66:6c:2d:b2:3b:fc:bd:92:d6:fc:c8:c9:2d:ea:c4: 00:c1:60:a4:ed:ef:fc:4b:1a:5e:a3:14:e8:bc:c1:93:93:f4: 4a:9c:76:15:b1:5c:2b:23:38:39:77:9d:59:b6:f2:68:85:e7: b3:5e:8d:3e:50:9a:46:2c:a1:2f:c9:5f:ad:5a:53:d2:1d:b1: 21:75:4a:48:b6:d2:76:9d:6b:51:e3:7e:3e:84:7e:f1:54:10: 68:3a:5f:d4:19:70:40:c5:01:b8:4c:ba:bd:54:58:d5:0f:6e: 50:a2:0d:d6:40:48:67:54:4f:05:a9:04:ef:8f:30:cf:09:d9: ee:40:26:13:37:cd:cf:af:e3:37:bb:41:7b:31:26:11:d1:60: e7:c8:e7:6e:02:5f:4a:81:1e:13:8b:20:d2:7e:19:b6:5e:43: 97:92:df:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjUxMDE4MjI0ODEzWhcNMjUxMDI1MjI0ODEzWjAYMRYwFAYD VQQDEw02OGY0MTkyZC01Zjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZD6kz3VshPva6kv3/Woy/A2Dn37/o+Kouwi5iNL+A0WQRclptyx9GcNMaL2 okE40jFWw0RJaoKr8iMKqEOo1KWgl1++ekG+FlkWf6giduhr4JL4l8OqZmWkZfpQ 3fY8EmNu+A82iAA+CkAR22oPoBfcZCAf7f98pUkLxi1vTgU/zq9faaO6taRK00Zc TxAsDQSEbcgHrSJpn0eVcVUlSrxkxf/psn6KXLiCDXSjO82Y1xNOC1FfIFTnorKf yu7bufwzEbfH8FMYsU8m0gHP4iFl77zKKEnPeHBqU6/wzKdUbraRKr9QAAEK9Nu7 vm53PlOdsHWb0LWlH9KHadhReQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeikQyY x+12NGN8Aw4dAtOSbbLxMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHFz8v1XerxmhVZx6pBrh+pKcHwYm67BPrYHvM6ozubyb8sVOTKbzg FdcusBp1fzZTABwpQ6qliaAcjIJqLJ5MdHHUNM3KomQbFWezLYl8mA6rp4bxIj5N vaV/QYhmbC2yO/y9ktb8yMkt6sQAwWCk7e/8SxpeoxTovMGTk/RKnHYVsVwrIzg5 d51ZtvJoheezXo0+UJpGLKEvyV+tWlPSHbEhdUpIttJ2nWtR434+hH7xVBBoOl/U GXBAxQG4TLq9VFjVD25Qog3WQEhnVE8FqQTvjzDPCdnuQCYTN83Pr+M3u0F7MSYR 0WDnyOduAl9KgR4TiyDSfhm2XkOXkt+q -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:33 2025 by rpki-client