$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: +g0lLVdYSJFcPb6JLZ97hFbXTbthaSiH8AEYZxWveuM= Subject key identifier: F8:2B:EF:85:6A:6A:5A:D4:13:E2:2E:AC:0A:11:71:63:67:CB:04:3E Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 7F Signing time: Sun 19 Oct 2025 09:59:38 +0000 Manifest this update: Sun 19 Oct 2025 09:59:38 +0000 Manifest next update: Sun 26 Oct 2025 09:59:38 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: ZGk0pqdwrRMr7XQ0xJ9tw9QuYfPS0R6GBUD6YfYGXPE=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Oct 19 09:59:38 2025 GMT Not After : Oct 26 09:59:38 2025 GMT Subject: CN=68f4b68a-de19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:92:3a:66:68:92:b7:1a:da:0b:0d:49:09:6c: aa:a6:82:39:59:80:8f:c3:15:43:fe:72:90:d7:16: 8a:37:dc:bd:ea:89:3f:aa:ab:8a:43:79:c9:e9:5b: f2:93:cd:ac:8d:4f:b9:00:af:9c:25:cc:7a:13:ba: cb:74:57:e1:75:ec:56:ac:74:17:10:03:ad:c8:ad: f0:b7:1f:45:99:fc:cf:1c:29:e0:94:9f:4e:47:38: d0:ae:3b:27:7a:4c:0a:eb:29:ee:72:d3:5f:a0:77: 1c:95:5b:7a:66:7f:7d:0b:ff:d7:0a:72:0e:93:50: 50:ae:d5:bc:b6:97:ad:ce:6a:75:0e:ae:5b:81:35: 77:71:57:49:23:2c:2b:9e:fc:61:ff:55:51:3d:4d: ec:0d:0c:74:4e:be:e5:89:04:f7:9c:6a:a0:57:aa: 07:e4:03:7e:7a:94:dd:53:e1:de:81:a1:a0:ee:fc: 7b:88:21:26:dd:33:2a:fd:e4:21:bd:d7:30:5c:c5: 41:1c:c1:96:47:ff:3b:5c:03:e3:50:20:a1:29:34: bb:bc:83:70:d5:cf:6d:2c:2e:7a:df:26:3e:36:6b: 0d:d1:05:34:c0:dc:f0:16:fc:95:06:03:7c:d3:89: 0a:92:98:54:6c:fe:01:25:00:df:91:4b:9b:c5:44: 53:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2B:EF:85:6A:6A:5A:D4:13:E2:2E:AC:0A:11:71:63:67:CB:04:3E X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:b5:68:e1:44:d3:2f:96:e7:3f:38:e2:f9:c1:de:47:ac:1a: 6f:91:95:d5:b3:10:5c:8a:44:65:8d:58:12:69:b7:6e:52:d5: fb:b5:b8:d4:2e:d0:bc:8f:4b:78:4c:bf:d0:48:f3:12:12:33: 45:6e:e1:9d:e3:ec:c7:bd:34:d8:76:ad:d9:60:ef:8c:65:ea: c2:f3:2c:80:1b:4a:4a:d5:af:65:72:e8:dd:13:9b:54:8b:9e: fb:3e:d7:a1:8a:1d:87:eb:11:81:29:ad:c7:e3:46:45:ae:cd: 7d:9f:15:8f:dc:cd:26:a6:69:8c:e3:76:fd:c1:0f:cc:ad:d0: dd:aa:3b:98:46:49:ef:8f:b4:0e:3b:3b:12:e6:cb:ff:17:55: 17:6e:5f:ff:5f:af:6f:ed:93:d9:e7:15:6b:4a:97:46:8c:24: 24:22:31:be:bf:79:f9:7f:48:35:5b:b7:b8:a6:da:04:d7:05: 64:c0:a9:ce:2f:59:fa:6c:03:b2:a3:34:4e:2d:3e:8c:c9:eb: 68:57:77:44:99:54:54:6a:61:ba:70:75:9d:3c:b0:99:e8:1f: d7:33:0c:01:12:36:f8:30:70:e4:4e:9c:21:7b:31:04:36:c8: 05:a6:2e:7e:24:14:39:01:39:0e:08:60:3c:5c:9e:2d:19:e1: 3c:5b:72:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjUxMDE5MDk1OTM4WhcNMjUxMDI2MDk1OTM4WjAYMRYwFAYD VQQDEw02OGY0YjY4YS1kZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZI6ZmiStxraCw1JCWyqpoI5WYCPwxVD/nKQ1xaKN9y96ok/qquKQ3nJ6Vvy k82sjU+5AK+cJcx6E7rLdFfhdexWrHQXEAOtyK3wtx9FmfzPHCnglJ9ORzjQrjsn ekwK6ynuctNfoHcclVt6Zn99C//XCnIOk1BQrtW8tpetzmp1Dq5bgTV3cVdJIywr nvxh/1VRPU3sDQx0Tr7liQT3nGqgV6oH5AN+epTdU+HegaGg7vx7iCEm3TMq/eQh vdcwXMVBHMGWR/87XAPjUCChKTS7vINw1c9tLC563yY+NmsN0QU0wNzwFvyVBgN8 04kKkphUbP4BJQDfkUubxURTvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgr74Vq alrUE+IurAoRcWNnywQ+MB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDItWjhRNMvluc/OOL5wd5HrBpvkZXVsxBcikRljVgSabduUtX7tbjU LtC8j0t4TL/QSPMSEjNFbuGd4+zHvTTYdq3ZYO+MZerC8yyAG0pK1a9lcujdE5tU i577Ptehih2H6xGBKa3H40ZFrs19nxWP3M0mpmmM43b9wQ/MrdDdqjuYRknvj7QO OzsS5sv/F1UXbl//X69v7ZPZ5xVrSpdGjCQkIjG+v3n5f0g1W7e4ptoE1wVkwKnO L1n6bAOyozROLT6MyetoV3dEmVRUamG6cHWdPLCZ6B/XMwwBEjb4MHDkTpwhezEE NsgFpi5+JBQ5ATkOCGA8XJ4tGeE8W3LX -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:35 2025 by rpki-client