$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: 2c4Ct/FjGCQ4fSQOQ4bJt2251ACGH0Ili6YzadM0HL4= Subject key identifier: 8B:C9:87:FA:DE:A4:8F:99:69:0A:9F:69:46:FB:E6:B7:5D:62:8B:FF Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 0119 Signing time: Sun 19 Oct 2025 07:41:52 +0000 Manifest this update: Sun 19 Oct 2025 07:41:52 +0000 Manifest next update: Sun 26 Oct 2025 07:41:52 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: vok1sJIWUyHtdq9abNvsddbyu9Dhky1QNcjstTiECEo=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: rdcsVeSD/0uRXsupB+gdsyd8ZZ4QY82jQKGKV8TuBBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Oct 19 07:41:52 2025 GMT Not After : Oct 26 07:41:52 2025 GMT Subject: CN=68f49640-22cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d8:7c:f0:c5:25:ce:07:6d:b3:5a:74:63:63: 35:02:b9:19:ab:1a:70:45:b8:b3:e9:66:75:33:5e: b4:1b:97:ed:3c:e5:5c:71:29:cb:1c:a5:c9:6e:9d: 4f:71:79:b2:7f:46:45:b2:e5:23:cc:83:89:b5:e7: 2a:b2:39:f2:f0:a3:f2:96:ff:91:63:3e:db:bc:88: 22:96:ee:2d:d1:53:62:36:24:b0:a5:72:fe:50:0d: bf:94:4d:29:76:26:c2:b3:8a:79:f7:b1:5a:81:65: 77:df:e2:d2:65:2a:3a:b5:c5:5f:d3:6d:9e:f6:3b: 42:1e:05:3c:bc:42:29:4e:6e:5c:96:d2:00:c9:50: 4b:61:6d:40:a7:50:16:68:e7:21:36:35:7d:8f:e9: 49:c0:65:c4:40:7f:d0:7f:75:4c:6f:c8:e4:c1:30: e3:13:e1:0d:39:d8:b0:32:ea:e7:0e:4e:e3:d2:f1: 4c:e4:7b:97:ae:cc:fe:7b:a5:d7:50:60:e1:ab:62: 23:4a:ad:83:48:47:f4:54:1e:8c:84:08:94:a3:b6: f8:40:67:ba:8b:22:f4:3c:02:b0:ba:51:df:17:4e: 3d:6a:9b:02:b5:aa:5f:8f:ba:01:a4:69:a8:90:f9: c3:7b:e6:24:6d:91:44:19:4c:57:fc:92:55:64:54: eb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C9:87:FA:DE:A4:8F:99:69:0A:9F:69:46:FB:E6:B7:5D:62:8B:FF X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:92:83:87:97:6b:57:b6:78:05:62:cb:47:af:83:0f:4c:aa: 4d:f5:31:e1:79:80:ef:53:ab:57:34:1b:c6:36:87:2b:15:15: fa:dd:7a:51:ef:a5:d7:09:bc:34:c8:9c:4f:8f:2e:d7:7a:51: 74:99:8a:13:1b:bc:b6:4e:c3:9b:6a:d6:33:5d:e6:ee:4d:51: 49:d3:53:23:e3:91:03:3a:4f:fe:03:52:4c:54:11:22:e3:ce: 5f:75:05:62:32:5b:67:78:69:82:12:57:09:9a:b4:31:40:b9: bf:0d:d0:7a:ff:47:86:82:f2:83:08:64:c2:d1:94:96:4e:bc: 31:dc:5a:2b:c2:a3:c7:a6:ff:82:a5:c3:08:01:62:a6:ac:97: ad:83:0e:e9:7d:7a:21:d2:54:c1:b2:a3:0b:3e:fd:48:3f:e5: 01:5a:e0:40:1b:ac:99:93:83:69:72:7e:2e:bd:ad:1a:e1:3e: 59:39:89:4a:35:37:b1:69:fe:8c:3d:e1:4c:c2:5d:54:12:61: 83:a1:49:8d:8d:15:67:90:0b:0c:43:69:e3:16:b8:3c:5c:6f: 8c:97:81:b2:b0:68:00:86:62:ac:12:c0:3b:18:67:07:40:6a: f3:5d:fe:4e:37:dc:f5:fc:49:cf:2c:04:69:20:70:c2:89:54: 22:f3:41:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjUxMDE5MDc0MTUyWhcNMjUxMDI2MDc0MTUyWjAYMRYwFAYD VQQDEw02OGY0OTY0MC0yMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyth88MUlzgdts1p0Y2M1ArkZqxpwRbiz6WZ1M160G5ftPOVccSnLHKXJbp1P cXmyf0ZFsuUjzIOJtecqsjny8KPylv+RYz7bvIgilu4t0VNiNiSwpXL+UA2/lE0p dibCs4p597FagWV33+LSZSo6tcVf022e9jtCHgU8vEIpTm5cltIAyVBLYW1Ap1AW aOchNjV9j+lJwGXEQH/Qf3VMb8jkwTDjE+ENOdiwMurnDk7j0vFM5HuXrsz+e6XX UGDhq2IjSq2DSEf0VB6MhAiUo7b4QGe6iyL0PAKwulHfF049apsCtapfj7oBpGmo kPnDe+YkbZFEGUxX/JJVZFTr6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvJh/re pI+ZaQqfaUb75rddYov/MB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMkoOHl2tXtngFYstHr4MPTKpN9THheYDvU6tXNBvGNocrFRX63XpR 76XXCbw0yJxPjy7XelF0mYoTG7y2TsObatYzXebuTVFJ01Mj45EDOk/+A1JMVBEi 485fdQViMltneGmCElcJmrQxQLm/DdB6/0eGgvKDCGTC0ZSWTrwx3ForwqPHpv+C pcMIAWKmrJetgw7pfXoh0lTBsqMLPv1IP+UBWuBAG6yZk4Npcn4uva0a4T5ZOYlK NTexaf6MPeFMwl1UEmGDoUmNjRVnkAsMQ2njFrg8XG+Ml4GysGgAhmKsEsA7GGcH QGrzXf5ON9z1/EnPLARpIHDCiVQi80Ft -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:27 2025 by rpki-client