$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: zNcf13+lOKESPII473ki7Qx7MiF/ETUrttInNKh0a40= Subject key identifier: 70:D0:19:1B:7D:8C:21:CF:4C:72:AE:9E:2A:CC:52:C5:0C:65:5B:16 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: E4 Signing time: Sun 19 Oct 2025 08:29:43 +0000 Manifest this update: Sun 19 Oct 2025 08:29:42 +0000 Manifest next update: Sun 26 Oct 2025 08:29:42 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: V40i9w9b1sNfo7lr7oLnje0OZwnnkCUrULnRcX0ish0=) 2: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (hash: ifOEg9W1aB/k/lXnYsmHjMPmR84JfX9/zAJq58rKyJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Oct 19 08:29:42 2025 GMT Not After : Oct 26 08:29:42 2025 GMT Subject: CN=68f4a177-e25d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:98:66:4a:05:f5:92:a4:18:3e:55:f8:ae:44: 8c:29:9f:65:32:9c:15:7d:c1:fc:4a:e4:32:6e:13: 70:ac:d5:bd:2c:87:78:9f:ed:af:d2:11:27:87:f0: 78:ba:8c:5d:c3:70:ce:47:11:16:2c:f6:ce:83:75: 43:6c:d3:20:c3:9a:62:79:f6:3b:f4:02:b1:63:48: 92:3b:80:bd:8b:c3:9e:5b:5b:ce:3b:03:7a:7f:17: cf:c6:a1:59:aa:78:d8:29:05:fc:ec:2c:89:70:28: bb:0e:b8:87:a8:d7:3d:a0:d3:4f:f2:97:3f:16:a5: ad:de:ae:29:a9:22:15:a6:4d:4c:87:b5:7d:1d:99: 11:04:0f:35:d8:87:17:f8:e6:83:42:8e:4b:ab:43: d4:3d:3c:f1:e5:84:93:c3:f2:95:1e:0e:21:88:48: 4f:19:51:be:71:2b:d2:f8:87:a4:19:af:de:68:64: 91:86:26:eb:de:ac:f4:fa:3b:4a:01:32:c0:dd:66: 2b:b0:40:62:78:b8:67:15:b2:c5:da:4c:fd:35:23: 1b:c5:b9:2b:d5:78:d0:c5:19:30:87:d6:75:9b:fd: c9:d7:c5:6c:bd:86:88:2a:e9:90:b0:8a:9e:e8:ac: c0:d2:ac:2a:24:03:c5:21:25:bf:33:90:f6:1a:b3: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D0:19:1B:7D:8C:21:CF:4C:72:AE:9E:2A:CC:52:C5:0C:65:5B:16 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:1b:9c:6f:e3:b1:ef:9f:0f:d9:84:d7:41:1b:12:ec:2c:7d: d2:ba:50:27:9a:be:b0:34:c0:a1:71:60:4d:44:f1:16:cd:39: 5b:39:0b:af:7e:3c:d9:50:39:8d:a4:bd:2c:98:91:7a:02:13: 8e:11:a2:2d:11:d0:92:d1:2b:cc:41:fa:58:72:81:c5:4a:41: 04:3a:8e:74:0e:a4:f8:d4:a3:7a:73:28:7c:68:b4:14:2c:26: c0:d0:ac:dd:3a:ba:d2:2d:8c:a3:d0:cc:62:91:6d:81:ac:4f: ea:2e:30:ae:15:c7:19:f9:07:3f:0f:17:af:ea:6d:42:98:2e: bb:e7:6a:e4:4b:e1:99:b2:21:6b:e2:1b:5a:34:1a:fb:82:b5: 9c:58:33:26:47:da:3b:ee:12:a6:97:b0:e1:45:3a:ba:09:ed: 69:8b:45:77:b8:ce:7a:6f:ba:79:2f:ff:c6:d7:b9:07:51:0e: e7:a6:dd:f4:ea:9f:20:d4:46:f3:7f:22:81:a7:e6:6e:61:10: 0d:9d:e7:65:07:0e:80:e2:e0:75:a3:fe:ff:8e:08:6c:f6:a3: 65:e1:e6:a2:75:c9:17:a7:1f:dd:76:7c:76:3e:f5:4f:d1:86: 51:a4:07:1c:3a:7b:70:76:d1:ab:3d:19:b8:d2:c2:14:6f:16: 84:f4:2a:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUxMDE5MDgyOTQyWhcNMjUxMDI2MDgyOTQyWjAYMRYwFAYD VQQDEw02OGY0YTE3Ny1lMjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05hmSgX1kqQYPlX4rkSMKZ9lMpwVfcH8SuQybhNwrNW9LId4n+2v0hEnh/B4 uoxdw3DORxEWLPbOg3VDbNMgw5piefY79AKxY0iSO4C9i8OeW1vOOwN6fxfPxqFZ qnjYKQX87CyJcCi7DriHqNc9oNNP8pc/FqWt3q4pqSIVpk1Mh7V9HZkRBA812IcX +OaDQo5Lq0PUPTzx5YSTw/KVHg4hiEhPGVG+cSvS+IekGa/eaGSRhibr3qz0+jtK ATLA3WYrsEBieLhnFbLF2kz9NSMbxbkr1XjQxRkwh9Z1m/3J18VsvYaIKumQsIqe 6KzA0qwqJAPFISW/M5D2GrPUjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDQGRt9 jCHPTHKunirMUsUMZVsWMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnG5xv47Hvnw/ZhNdBGxLsLH3SulAnmr6wNMChcWBNRPEWzTlbOQuv fjzZUDmNpL0smJF6AhOOEaItEdCS0SvMQfpYcoHFSkEEOo50DqT41KN6cyh8aLQU LCbA0KzdOrrSLYyj0MxikW2BrE/qLjCuFccZ+Qc/Dxev6m1CmC6752rkS+GZsiFr 4htaNBr7grWcWDMmR9o77hKml7DhRTq6Ce1pi0V3uM56b7p5L//G17kHUQ7npt30 6p8g1EbzfyKBp+ZuYRANnedlBw6A4uB1o/7/jghs9qNl4eaidckXpx/ddnx2PvVP 0YZRpAccOntwdtGrPRm40sIUbxaE9Cq5 -----END CERTIFICATE-----Generated at Tue Oct 21 05:02:14 2025 by rpki-client