$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: YSTY3tB9PCbbn19PKg/DymBo0shOGlZJoJ8ZSgqyvBk= Subject key identifier: B1:E6:1E:77:7D:A5:A0:FA:6F:FE:E0:45:60:4A:97:68:68:29:3F:E3 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C8C Signing time: Sat 18 Oct 2025 19:05:58 +0000 Manifest this update: Sat 18 Oct 2025 19:05:58 +0000 Manifest next update: Sat 25 Oct 2025 19:05:58 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: XqTWgXH3cj/OQuG2vH4ct8SwI+qnO19BWSbOVwrIWl4=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Oct 18 19:05:58 2025 GMT Not After : Oct 25 19:05:58 2025 GMT Subject: CN=68f3e516-6301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f1:41:90:94:55:ac:aa:d5:2b:e4:90:5d:00: 83:45:55:e3:6f:4d:c7:23:cf:a4:22:06:bb:71:51: 82:7c:1e:6e:75:74:0c:d9:81:75:4b:c3:66:71:cd: 85:17:c0:26:21:86:37:8c:3f:98:ec:da:e5:31:15: 51:7b:9f:57:a4:eb:27:03:2e:75:65:91:f5:66:44: ab:b2:fb:85:c2:c4:ce:74:a3:e6:b2:98:01:d0:29: c8:1d:d4:f8:d8:8a:0b:f4:9b:4e:35:4d:c1:25:0e: df:b7:55:ea:7d:dd:f2:07:b7:03:c9:c2:13:a0:1d: bc:75:49:ec:9a:42:ae:f6:da:40:b0:e4:38:ed:e9: 8a:05:d1:c0:99:74:a3:f7:50:f5:0a:6c:82:3b:92: ed:f2:2c:d1:7a:68:39:16:ef:bf:d2:d7:87:08:b6: af:8e:b2:ad:df:8e:45:f8:76:c2:5a:5f:f1:16:92: 52:ea:ed:46:65:08:df:31:37:70:5a:ef:5b:92:ae: e1:cd:c3:02:ac:84:5c:df:a2:76:6c:21:82:6d:18: 64:10:7a:2f:ea:4b:be:6a:f7:1a:9a:42:01:92:60: ca:e0:7e:c6:51:c2:7d:80:8b:ae:46:2a:e4:27:2a: 16:c5:af:d0:06:f0:7f:47:d2:56:2c:e1:0e:3c:bb: d0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E6:1E:77:7D:A5:A0:FA:6F:FE:E0:45:60:4A:97:68:68:29:3F:E3 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:3e:8e:0e:1c:22:a0:11:40:f9:53:99:3d:ed:9e:44:6f:08: 25:bf:dd:92:f5:52:5e:3a:0a:fe:46:5d:5e:1c:7b:7e:71:8f: 5c:34:d8:fd:90:ac:57:d5:02:e6:ea:ad:64:7a:11:33:21:c0: 7d:7e:a6:1c:20:8a:d4:e2:79:49:28:dc:d7:4e:8b:1b:c0:7c: 50:8b:17:e5:f2:81:a5:29:05:b3:7d:d7:87:f4:15:b9:95:31: 26:4a:ce:bd:61:66:48:45:56:d7:7a:cb:61:e6:c3:9e:c3:42: b7:1c:5c:10:a3:59:07:43:13:07:3e:93:8c:8c:19:75:28:82: 79:f2:f5:f8:cb:a7:72:4c:57:b0:9a:a9:6e:19:80:b9:96:37: cd:6b:d4:2b:d0:b9:da:fc:26:da:84:64:ee:25:e6:5f:16:71: 08:5b:46:27:57:39:bc:0b:6b:12:5b:b9:ee:ac:45:5d:76:10: 1e:19:f9:7f:d2:23:18:6e:fb:29:3e:19:2a:f2:76:50:fd:30: b8:91:3e:d4:bd:37:04:8f:5a:c9:9d:bb:0c:67:d6:64:01:3a: 1b:b2:46:96:1f:95:de:c3:d5:ca:1b:b4:56:88:62:00:00:bc: 8d:2e:d2:76:29:5f:90:c6:59:80:43:12:ee:0d:ce:ad:a7:9c: ac:59:4d:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUxMDE4MTkwNTU4WhcNMjUxMDI1MTkwNTU4WjAYMRYwFAYD VQQDEw02OGYzZTUxNi02MzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvFBkJRVrKrVK+SQXQCDRVXjb03HI8+kIga7cVGCfB5udXQM2YF1S8Nmcc2F F8AmIYY3jD+Y7NrlMRVRe59XpOsnAy51ZZH1ZkSrsvuFwsTOdKPmspgB0CnIHdT4 2IoL9JtONU3BJQ7ft1Xqfd3yB7cDycIToB28dUnsmkKu9tpAsOQ47emKBdHAmXSj 91D1CmyCO5Lt8izRemg5Fu+/0teHCLavjrKt345F+HbCWl/xFpJS6u1GZQjfMTdw Wu9bkq7hzcMCrIRc36J2bCGCbRhkEHov6ku+avcamkIBkmDK4H7GUcJ9gIuuRirk JyoWxa/QBvB/R9JWLOEOPLvQRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHmHnd9 paD6b/7gRWBKl2hoKT/jMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbPo4OHCKgEUD5U5k97Z5Ebwglv92S9VJeOgr+Rl1eHHt+cY9cNNj9 kKxX1QLm6q1kehEzIcB9fqYcIIrU4nlJKNzXTosbwHxQixfl8oGlKQWzfdeH9BW5 lTEmSs69YWZIRVbXesth5sOew0K3HFwQo1kHQxMHPpOMjBl1KIJ58vX4y6dyTFew mqluGYC5ljfNa9Qr0Lna/CbahGTuJeZfFnEIW0YnVzm8C2sSW7nurEVddhAeGfl/ 0iMYbvspPhkq8nZQ/TC4kT7UvTcEj1rJnbsMZ9ZkATobskaWH5Xew9XKG7RWiGIA ALyNLtJ2KV+QxlmAQxLuDc6tp5ysWU34 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:51 2025 by rpki-client