$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: 3ApaBMaufxPMRD0hhLrckcjC0HeTBf18ky9BguMX0Zk= Subject key identifier: 8F:A8:FB:4D:CD:3F:2C:8B:47:59:91:34:5A:83:6D:E0:84:DD:9A:E9 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 089C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 0892 Signing time: Sat 18 Oct 2025 21:43:29 +0000 Manifest this update: Sat 18 Oct 2025 21:43:28 +0000 Manifest next update: Sat 25 Oct 2025 21:43:28 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: LLYMsHyVkVzgu0Igdj/kBSDzrDCqosaEakF9WS8+h0g=) 2: 041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa (hash: d06+mSNp0KvkytcMNow0ahEeejEwPmx7QslBksVYoOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2204 (0x89c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Oct 18 21:43:28 2025 GMT Not After : Oct 25 21:43:28 2025 GMT Subject: CN=68f40a00-f1d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:65:6a:f6:d5:ae:37:9a:95:6f:a6:5c:fc: 9f:b9:0d:b0:6a:b8:aa:60:20:36:7b:3e:82:69:e3: df:9b:c1:a2:62:ab:c6:f9:e3:bc:4b:03:a7:9d:11: d8:85:c5:b8:9d:f8:88:98:8c:d3:2d:26:94:b6:4e: 9c:d5:05:63:c4:f4:f8:85:0c:f2:07:1a:3c:75:a7: 98:f3:50:36:07:7d:5a:f7:28:d5:2e:78:7f:47:45: 19:5c:6e:96:92:32:41:3b:7e:6e:fc:f2:c6:5a:8f: 9f:d5:5e:31:f6:77:47:1f:74:6a:1f:86:cc:fd:04: 99:ab:1b:1e:34:b4:38:72:db:82:c7:fa:ae:1b:41: 0c:88:08:2e:ed:43:7e:b6:61:c9:50:93:84:0a:81: d3:98:bb:06:d2:bd:07:1a:fe:27:4c:7b:92:df:65: 33:f3:79:99:d9:d2:cd:68:e8:44:25:be:b7:57:f5: db:c3:26:98:0b:53:b7:8a:f9:34:77:08:89:6f:09: 98:89:c1:3e:9c:36:94:36:a0:cf:be:1f:1a:eb:ca: c4:03:f7:65:31:e5:26:28:75:1b:f1:de:ac:25:ff: 45:fe:f9:f3:a7:bf:69:fd:01:32:61:0d:bb:39:7a: cc:09:6f:f8:08:66:ed:d5:94:d8:f8:36:28:75:ae: 8c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A8:FB:4D:CD:3F:2C:8B:47:59:91:34:5A:83:6D:E0:84:DD:9A:E9 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:37:11:de:28:1f:82:36:8a:e2:40:93:4a:7c:fd:a4:32:23: 89:86:95:e6:93:73:f6:2a:7a:f6:67:1d:75:14:63:13:93:cf: 5c:8d:d1:c2:1c:a4:01:fe:5c:4e:a1:c3:49:c7:b8:67:81:82: 6e:97:4d:8a:dd:ff:21:33:bd:c1:04:67:e7:53:c1:16:ff:2d: cb:e8:80:ad:06:89:ae:ae:d7:e2:9d:d0:8c:fe:aa:d8:0e:1d: 61:2b:81:17:5b:9e:5d:5f:08:2e:6f:ed:12:81:3d:c5:16:f0: d0:62:d1:28:1b:ce:c6:1f:8f:7b:b8:d0:70:41:c9:4d:1d:6f: 81:66:dd:67:6c:b0:01:d8:d4:d4:e8:50:1d:56:34:b1:2d:a1: 56:1c:f1:e1:fc:06:c8:93:a1:93:0b:49:f5:2a:9e:2e:3f:3e: 43:0c:10:e2:b5:30:64:91:bb:af:02:4d:13:aa:eb:5c:8c:4b: c2:7a:15:c9:95:b6:93:c0:25:0d:49:a9:ae:bf:f2:ad:55:34: 8f:57:63:47:0b:4d:1d:92:32:fd:9e:5f:00:f2:ed:20:14:02: ec:f0:5a:68:d9:1a:17:83:ca:b6:d0:c7:07:b1:b7:49:d1:3e: 7f:4f:ec:b1:4c:bb:64:52:fb:b6:93:43:24:f3:c9:93:9b:86: e9:9b:39:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUxMDE4MjE0MzI4WhcNMjUxMDI1MjE0MzI4WjAYMRYwFAYD VQQDEw02OGY0MGEwMC1mMWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vxlavbVrjealW+mXPyfuQ2wariqYCA2ez6CaePfm8GiYqvG+eO8SwOnnRHY hcW4nfiImIzTLSaUtk6c1QVjxPT4hQzyBxo8daeY81A2B31a9yjVLnh/R0UZXG6W kjJBO35u/PLGWo+f1V4x9ndHH3RqH4bM/QSZqxseNLQ4ctuCx/quG0EMiAgu7UN+ tmHJUJOECoHTmLsG0r0HGv4nTHuS32Uz83mZ2dLNaOhEJb63V/XbwyaYC1O3ivk0 dwiJbwmYicE+nDaUNqDPvh8a68rEA/dlMeUmKHUb8d6sJf9F/vnzp79p/QEyYQ27 OXrMCW/4CGbt1ZTY+DYoda6M2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+o+03N PyyLR1mRNFqDbeCE3ZrpMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVNxHeKB+CNoriQJNKfP2kMiOJhpXmk3P2Knr2Zx11FGMTk89cjdHC HKQB/lxOocNJx7hngYJul02K3f8hM73BBGfnU8EW/y3L6ICtBomurtfindCM/qrY Dh1hK4EXW55dXwgub+0SgT3FFvDQYtEoG87GH497uNBwQclNHW+BZt1nbLAB2NTU 6FAdVjSxLaFWHPHh/AbIk6GTC0n1Kp4uPz5DDBDitTBkkbuvAk0TqutcjEvCehXJ lbaTwCUNSamuv/KtVTSPV2NHC00dkjL9nl8A8u0gFALs8Fpo2RoXg8q20McHsbdJ 0T5/T+yxTLtkUvu2k0Mk88mTm4bpmznV -----END CERTIFICATE-----Generated at Mon Oct 20 16:19:20 2025 by rpki-client