$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft File: iZOTjIV1ACgOj15T3As-kweu1Kc.mft (raw, json) Hash identifier: qhwWcsJOQO95wIGw9GDkhngo4hDxJMbFHYOyllu/ZQc= Subject key identifier: 84:4D:5B:94:37:1C:5E:29:43:56:59:00:F6:2A:EB:39:35:D5:65:87 Authority key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 Certificate issuer: /CN=A91BD3E1/serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft Manifest number: 7E Signing time: Sun 19 Oct 2025 10:02:42 +0000 Manifest this update: Sun 19 Oct 2025 10:02:41 +0000 Manifest next update: Sun 26 Oct 2025 10:02:41 +0000 Files and hashes: 1: iZOTjIV1ACgOj15T3As-kweu1Kc.crl (hash: wM5GuWJXOmF0HJ/R8E3yDMyXjYPUyt27RSCGgUQ14hs=) 2: 459FAF10EF4811EF8F4B9284C4F9AE02.roa (hash: t4VsjBzDPnCNqQJ4/+l/e7o+o8AvICh72VVWJ8BMmY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3E1, serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Validity Not Before: Oct 19 10:02:41 2025 GMT Not After : Oct 26 10:02:41 2025 GMT Subject: CN=68f4b742-6525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:f7:c8:4e:c2:9d:65:03:93:cc:3d:6a:35: 7e:2c:76:d0:3d:7b:cc:04:f7:7a:5b:d9:bb:0e:e3: 68:39:cd:72:0f:7f:6a:9c:ab:21:29:98:c3:1f:fb: 72:ad:2d:78:61:ed:00:94:da:07:b0:37:3f:52:8b: 3c:0a:1b:f3:23:97:6b:af:97:fc:16:66:be:5e:1e: ba:6c:39:c2:90:98:37:de:31:75:97:a3:0d:46:51: b9:f5:c2:b7:3d:24:34:1c:94:25:de:9a:c7:79:58: 8a:18:3c:01:f1:9d:21:bd:4a:4c:63:55:a2:c6:89: 95:fe:e8:d7:5d:ae:20:8f:66:54:16:6a:9d:77:e6: 1b:b2:cd:16:0a:69:fc:e1:0d:aa:e1:92:3f:c9:2b: 24:c9:43:f7:37:5c:fd:26:eb:f2:a9:cd:8a:6a:a2: 91:8e:52:67:2f:ee:5e:17:d0:65:31:20:bf:e2:00: ca:c4:2e:c5:f8:55:93:7b:58:88:e6:6a:56:58:30: 7f:c4:7b:e4:53:1e:ae:9a:53:60:8f:9f:ce:0b:18: be:18:88:4a:e6:96:13:f1:34:f7:9e:c1:fd:d9:01: 80:eb:79:6a:e9:43:77:72:e9:23:1c:98:82:4f:35: 2f:ce:27:7f:77:d1:0d:36:a6:e1:3d:9c:4b:97:28: c6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4D:5B:94:37:1C:5E:29:43:56:59:00:F6:2A:EB:39:35:D5:65:87 X509v3 Authority Key Identifier: keyid:89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:f3:38:c8:eb:73:7e:78:9a:7a:87:f5:07:2f:f3:a0:00:c1: ae:01:0c:2b:a2:10:28:4a:e0:94:41:7e:7a:dc:fe:20:be:34: 0b:97:bf:31:5f:73:80:dd:d3:5a:d3:e8:2d:fb:c3:9c:80:65: e6:1d:ef:22:c6:9b:4e:97:67:3b:fa:ca:86:c8:1e:70:77:f3: cb:97:42:bc:4b:a8:ed:6b:8b:bf:58:98:8b:9a:5e:b3:b4:96: b0:3d:4d:75:9a:9c:26:ce:33:d1:46:e6:be:bb:7b:0d:9e:4e: 69:6e:f1:15:69:d1:8b:61:58:33:96:a2:e8:43:5d:aa:0f:90: 4b:aa:fc:3d:47:cd:48:d6:70:9b:4a:cd:4e:28:44:eb:0b:a1: 95:60:40:bd:6f:6e:e4:02:3b:2a:11:71:69:a2:cf:f0:26:7e: a0:c8:7f:f8:60:22:5c:c9:e9:cc:d8:79:b3:f8:6d:c4:8c:15: 29:fa:19:e6:3d:d6:93:f0:35:cf:84:2c:28:5a:ea:01:97:a9: 69:d5:c4:81:17:29:81:cf:c4:21:81:fe:15:a8:65:0a:85:61: 36:e3:dd:d4:bd:ce:a4:97:05:a2:57:4a:e8:b9:6d:56:41:51: 25:b9:df:a7:2c:21:d4:ae:f1:83:31:24:cd:a0:14:9d:6a:da: 4f:98:62:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRTExMTAvBgNVBAUTKDg5OTM5MzhDODU3NTAwMjgwRThGNUU1M0RDMEIzRTkz MDdBRUQ0QTcwHhcNMjUxMDE5MTAwMjQxWhcNMjUxMDI2MTAwMjQxWjAYMRYwFAYD VQQDEw02OGY0Yjc0Mi02NTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Qv3yE7CnWUDk8w9ajV+LHbQPXvMBPd6W9m7DuNoOc1yD39qnKshKZjDH/ty rS14Ye0AlNoHsDc/Uos8ChvzI5drr5f8Fma+Xh66bDnCkJg33jF1l6MNRlG59cK3 PSQ0HJQl3prHeViKGDwB8Z0hvUpMY1WixomV/ujXXa4gj2ZUFmqdd+Ybss0WCmn8 4Q2q4ZI/ySskyUP3N1z9Juvyqc2KaqKRjlJnL+5eF9BlMSC/4gDKxC7F+FWTe1iI 5mpWWDB/xHvkUx6umlNgj5/OCxi+GIhK5pYT8TT3nsH92QGA63lq6UN3cukjHJiC TzUvzid/d9ENNqbhPZxLlyjGJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRNW5Q3 HF4pQ1ZZAPYq6zk11WWHMB8GA1UdIwQYMBaAFImTk4yFdQAoDo9eU9wLPpMHrtSn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNFMS83Q0YwN0JDNkVG NDcxMUVGQUY0QzQ5NjhDNEY5QUUwMi9pWk9UaklWMUFDZ09qMTVUM0FzLWt3ZXUx S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2laT1RqSVYxQUNnT2oxNVQzQXMta3dldTFLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNFMS83Q0YwN0JDNkVGNDcxMUVGQUY0QzQ5NjhDNEY5QUUwMi9pWk9UaklWMUFD Z09qMTVUM0FzLWt3ZXUxS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv8zjI63N+eJp6h/UHL/OgAMGuAQwrohAoSuCUQX563P4gvjQLl78x X3OA3dNa0+gt+8OcgGXmHe8ixptOl2c7+sqGyB5wd/PLl0K8S6jta4u/WJiLml6z tJawPU11mpwmzjPRRua+u3sNnk5pbvEVadGLYVgzlqLoQ12qD5BLqvw9R81I1nCb Ss1OKETrC6GVYEC9b27kAjsqEXFpos/wJn6gyH/4YCJcyenM2Hmz+G3EjBUp+hnm PdaT8DXPhCwoWuoBl6lp1cSBFymBz8Qhgf4VqGUKhWE2493Uvc6klwWiV0rouW1W QVElud+nLCHUrvGDMSTNoBSdatpPmGJD -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:41 2025 by rpki-client