$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: iLHmUgxPtly91CZqLqxgatInlWh66r/IzlMO4vGgN1M= Subject key identifier: FA:C9:79:8A:4D:11:BE:32:CA:4E:A9:E4:85:9E:FF:57:E2:23:C9:6C Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0FA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F6E Signing time: Sat 18 Oct 2025 18:12:43 +0000 Manifest this update: Sat 18 Oct 2025 18:12:42 +0000 Manifest next update: Sat 25 Oct 2025 18:12:42 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: 3XqoawLVbz/KkKiz2E1vSIkdfqLWvPtiRxKISWnYGWA=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4009 (0xfa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Oct 18 18:12:42 2025 GMT Not After : Oct 25 18:12:42 2025 GMT Subject: CN=68f3d89b-4625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c9:47:f8:ed:05:b1:01:b3:a1:a8:e0:69:a6: 8f:42:6b:92:c3:0d:39:6d:74:00:16:dd:8b:69:0d: 2b:68:65:13:13:15:df:7f:e7:48:0e:c0:a6:3d:93: 0f:a6:32:cd:72:d8:47:f8:bc:ad:94:f7:84:9a:73: 01:66:a9:f5:72:f1:73:dc:cc:72:9a:20:23:b9:03: 8f:b8:7a:54:9e:01:69:2c:33:23:1a:61:66:e5:0b: 07:49:47:46:df:e5:09:f3:cb:be:82:f7:db:e4:1e: 5c:4d:58:3c:55:de:b3:00:4f:9d:a4:ca:fb:bd:7f: e5:10:92:67:66:2d:28:a5:d4:0c:19:75:dd:3c:e1: 3e:e5:73:fe:72:89:64:f5:14:84:6e:34:c4:18:aa: 61:a9:d1:a9:3a:5f:1c:5f:61:99:ba:69:7d:29:1c: 7a:4b:31:35:5a:0a:b7:f9:3d:34:99:6d:e4:f6:c4: ac:b7:28:a9:2e:52:3c:c0:81:96:7a:26:b8:e2:08: e8:b1:57:9c:17:19:85:fe:69:6d:80:f5:56:c4:81: df:5e:6b:bf:ec:13:4f:a4:30:86:fd:c6:55:90:3d: bf:16:c2:39:f6:86:4b:c5:95:99:a0:8f:e5:c7:57: 67:d6:99:19:88:33:60:70:e2:cb:db:aa:e5:da:38: be:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C9:79:8A:4D:11:BE:32:CA:4E:A9:E4:85:9E:FF:57:E2:23:C9:6C X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:e1:d3:6c:6a:5b:a0:ca:a5:2d:32:5a:16:bf:a3:33:66:2a: 4b:a7:d9:e7:33:58:43:33:82:e4:72:e7:53:4d:e2:26:49:15: 3f:78:94:1d:0e:00:a7:9e:46:9b:5e:a1:0d:1b:01:5a:d9:56: 5a:04:00:2c:4e:b8:87:dc:33:0d:6a:c4:1e:4a:c1:73:4c:4c: b7:e5:ef:59:ca:36:cd:45:1f:cc:2b:55:21:b8:e4:97:4c:af: 21:37:6d:bc:3c:29:86:ac:c8:11:e4:b5:1d:ca:c9:52:eb:10: a7:08:9f:eb:7d:30:7a:89:05:bb:18:67:e2:d7:a0:20:4b:7e: 7a:89:9d:04:2b:10:82:bc:33:c4:66:06:7c:77:85:fa:a6:b2: 3f:23:46:1b:02:d6:5c:98:6a:91:35:72:d6:ed:3b:81:2f:94: c0:bd:90:09:6e:cb:a0:10:ea:e8:3b:d2:40:db:4b:68:e8:7c: 86:6b:42:b9:2b:e4:68:85:9b:a8:b0:a6:e9:c4:d0:2a:2b:7b: 09:5a:fe:72:e1:e7:18:ed:06:48:f9:de:7b:4a:8f:33:8d:fe: a6:23:84:c3:e9:e5:e2:01:6e:c0:29:46:eb:dd:20:bf:38:66: 4e:c9:a4:68:c7:a8:72:73:74:08:f6:fa:4a:8e:3d:b4:75:04: 24:22:02:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUxMDE4MTgxMjQyWhcNMjUxMDI1MTgxMjQyWjAYMRYwFAYD VQQDEw02OGYzZDg5Yi00NjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8lH+O0FsQGzoajgaaaPQmuSww05bXQAFt2LaQ0raGUTExXff+dIDsCmPZMP pjLNcthH+LytlPeEmnMBZqn1cvFz3MxymiAjuQOPuHpUngFpLDMjGmFm5QsHSUdG 3+UJ88u+gvfb5B5cTVg8Vd6zAE+dpMr7vX/lEJJnZi0opdQMGXXdPOE+5XP+colk 9RSEbjTEGKphqdGpOl8cX2GZuml9KRx6SzE1Wgq3+T00mW3k9sSstyipLlI8wIGW eia44gjosVecFxmF/mltgPVWxIHfXmu/7BNPpDCG/cZVkD2/FsI59oZLxZWZoI/l x1dn1pkZiDNgcOLL26rl2ji+WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrJeYpN Eb4yyk6p5IWe/1fiI8lsMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd4dNsalugyqUtMloWv6MzZipLp9nnM1hDM4LkcudTTeImSRU/eJQd DgCnnkabXqENGwFa2VZaBAAsTriH3DMNasQeSsFzTEy35e9ZyjbNRR/MK1UhuOSX TK8hN228PCmGrMgR5LUdyslS6xCnCJ/rfTB6iQW7GGfi16AgS356iZ0EKxCCvDPE ZgZ8d4X6prI/I0YbAtZcmGqRNXLW7TuBL5TAvZAJbsugEOroO9JA20to6HyGa0K5 K+RohZuosKbpxNAqK3sJWv5y4ecY7QZI+d57So8zjf6mI4TD6eXiAW7AKUbr3SC/ OGZOyaRox6hyc3QI9vpKjj20dQQkIgIg -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:56 2025 by rpki-client