$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: M++LVXqnZk0R6uXdNZNWbiIeeQcHjrEOE15zghDCsyc= Subject key identifier: 71:23:00:8F:1D:B7:DE:2B:2A:8F:D6:B8:0B:20:54:15:F8:01:3B:DD Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 0395 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 038C Signing time: Sun 19 Oct 2025 02:49:47 +0000 Manifest this update: Sun 19 Oct 2025 02:49:46 +0000 Manifest next update: Sun 26 Oct 2025 02:49:46 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: +OqCq8+HHTfwJbtT37acye2ftdwfHwYAIui41HLW8AA=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: eJqOfUXf9pyBvXqljah+FkA7bab4t5X+jzwwp1GzOds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 917 (0x395) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Oct 19 02:49:46 2025 GMT Not After : Oct 26 02:49:46 2025 GMT Subject: CN=68f451ca-62f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0f:d3:df:e5:13:ee:31:76:47:95:db:1f:1b: b9:80:b9:41:2a:a2:c4:89:3d:13:a5:0e:b3:ef:b8: 7d:96:b1:91:a1:6b:09:ef:a1:f1:22:7a:a6:9b:5d: 18:d2:4b:01:1d:b2:f2:be:fd:fe:79:75:ac:96:39: 75:2a:39:a3:51:2e:53:5b:59:a4:18:43:ed:e8:c0: 57:8b:e6:05:fa:49:df:46:38:7f:dd:f5:ef:0e:6d: 3d:aa:21:f5:87:cb:e0:64:a5:aa:41:01:23:44:8f: 35:e0:6a:1a:69:d1:b0:91:02:a4:a2:bc:07:b3:18: f4:20:e6:fe:7c:62:9a:ef:d8:49:a8:af:62:0b:cf: be:97:92:cf:58:b2:30:03:99:62:64:95:50:72:14: ec:40:25:33:1c:5e:2d:31:a5:30:ed:cf:f7:89:f1: 1f:96:4b:de:b0:89:18:3b:35:c9:88:0a:e4:d6:85: 4a:07:3d:0e:d0:73:5f:7a:08:e1:22:de:83:e1:14: cc:c5:e4:63:e5:b6:7b:8f:70:d4:d6:0b:d8:01:af: 9b:58:9d:e3:7a:be:b3:73:d7:07:db:5b:fa:d0:07: 7a:46:6f:f8:89:f7:d5:91:ef:e4:98:f9:72:bd:29: 48:4c:48:74:fe:1c:ae:58:85:6c:7e:83:4d:77:e2: 2c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:23:00:8F:1D:B7:DE:2B:2A:8F:D6:B8:0B:20:54:15:F8:01:3B:DD X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:b4:f5:bc:1b:ee:9d:ca:4f:aa:f5:6e:71:88:ce:87:b6:b6: 9f:80:21:37:17:2d:f0:ca:83:19:2b:34:50:b7:8a:6d:2d:99: 2b:b8:65:71:54:7d:c6:e7:b6:7a:7d:6e:20:fc:f4:41:28:17: 12:84:2d:80:4f:cb:c0:9a:9f:80:5d:29:9f:a9:8a:01:6c:f8: 7c:fb:35:27:b5:32:d5:72:b2:9f:cb:8e:08:1d:f7:ce:ab:70: 83:2f:60:af:6e:2e:0d:da:37:56:80:85:c5:21:f8:4e:61:03: ef:24:df:fa:3b:18:c3:7d:74:f4:16:8e:85:b5:56:f5:7d:3d: 9f:0b:31:e9:5c:ff:36:45:7a:76:85:79:fb:6f:54:56:44:a3: 86:53:ae:e3:c1:8e:e1:8c:20:87:b6:12:ad:c5:c0:00:c3:91: 1a:5b:67:9d:d7:c0:18:2b:fb:4c:10:92:9e:9e:9f:b0:0e:c0: 8c:c2:0b:c7:b9:99:5f:62:95:78:7a:41:c0:39:39:d1:e5:8d: 69:3f:c1:1b:a4:1b:02:6d:e4:c7:e5:fd:14:74:4a:4e:2c:a7: 70:5a:63:99:25:fe:77:21:50:19:40:78:5d:b5:2d:bc:01:39: 99:9e:1b:eb:de:75:1f:f4:9c:2b:a0:1d:a9:22:65:73:77:bd: 70:35:ae:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUxMDE5MDI0OTQ2WhcNMjUxMDI2MDI0OTQ2WjAYMRYwFAYD VQQDEw02OGY0NTFjYS02MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzA/T3+UT7jF2R5XbHxu5gLlBKqLEiT0TpQ6z77h9lrGRoWsJ76HxInqmm10Y 0ksBHbLyvv3+eXWsljl1KjmjUS5TW1mkGEPt6MBXi+YF+knfRjh/3fXvDm09qiH1 h8vgZKWqQQEjRI814GoaadGwkQKkorwHsxj0IOb+fGKa79hJqK9iC8++l5LPWLIw A5liZJVQchTsQCUzHF4tMaUw7c/3ifEflkvesIkYOzXJiArk1oVKBz0O0HNfegjh It6D4RTMxeRj5bZ7j3DU1gvYAa+bWJ3jer6zc9cH21v60Ad6Rm/4iffVke/kmPly vSlITEh0/hyuWIVsfoNNd+IsVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEjAI8d t94rKo/WuAsgVBX4ATvdMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0tPW8G+6dyk+q9W5xiM6HtrafgCE3Fy3wyoMZKzRQt4ptLZkruGVx VH3G57Z6fW4g/PRBKBcShC2AT8vAmp+AXSmfqYoBbPh8+zUntTLVcrKfy44IHffO q3CDL2Cvbi4N2jdWgIXFIfhOYQPvJN/6OxjDfXT0Fo6FtVb1fT2fCzHpXP82RXp2 hXn7b1RWRKOGU67jwY7hjCCHthKtxcAAw5EaW2ed18AYK/tMEJKenp+wDsCMwgvH uZlfYpV4ekHAOTnR5Y1pP8EbpBsCbeTH5f0UdEpOLKdwWmOZJf53IVAZQHhdtS28 ATmZnhvr3nUf9JwroB2pImVzd71wNa6h -----END CERTIFICATE-----Generated at Mon Oct 20 11:35:39 2025 by rpki-client