$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft File: Iln4cJbkCts8hBgOKLVsPogi9lE.mft (raw, json) Hash identifier: wL6tZPVMMOeU/4gMELba0t2EeXwklWgmriuTWjlJjpA= Subject key identifier: DC:7C:90:8B:46:14:0B:8E:63:FE:0D:B0:D4:50:DA:1D:47:F2:36:74 Authority key identifier: 22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 Certificate issuer: /CN=A91E9B89/serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft Manifest number: D5 Signing time: Sun 19 Oct 2025 09:12:26 +0000 Manifest this update: Sun 19 Oct 2025 09:12:25 +0000 Manifest next update: Sun 26 Oct 2025 09:12:25 +0000 Files and hashes: 1: Iln4cJbkCts8hBgOKLVsPogi9lE.crl (hash: O75NN55uisrYwClf1YP3oy3BpRiH3d2jSDAer4lnN6M=) 2: CCFF219C6C1811EFA5619D0FC4F9AE02.roa (hash: 1z2L3hbnupa67ptFJmJyr3scDytw356F08ze+2XPBpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=2259F87096E40ADB3C84180E28B56C3E8822F651 Validity Not Before: Oct 19 09:12:25 2025 GMT Not After : Oct 26 09:12:25 2025 GMT Subject: CN=68f4ab7a-5fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8e:1b:06:9d:b0:1d:1f:01:15:83:6c:20:5b: 43:f2:31:bd:34:90:02:db:12:3b:e3:7d:3e:1a:dc: a9:f3:c8:4f:1e:76:3b:f3:55:ba:74:01:5b:9f:50: 62:25:d0:0f:f6:94:aa:11:18:d8:e4:ef:8c:ec:75: f7:b1:77:8f:2b:ff:b5:a6:0d:ad:36:9d:77:4e:8d: e3:ea:56:1c:da:6e:35:16:36:ff:a8:8d:5a:6a:3b: 8e:4b:45:63:25:f7:48:f5:bc:57:3f:6b:54:49:19: a1:b6:c1:f8:ed:67:50:a1:76:8c:d9:1e:53:24:d2: c0:ba:44:22:4e:c3:47:ad:23:b7:0c:ee:b6:ff:db: c4:58:40:62:1d:11:64:61:4f:30:7d:d6:7f:38:b0: 6d:73:53:14:58:68:1c:f4:0f:51:8b:1c:1f:8c:ab: 93:15:83:c4:50:01:38:ff:b8:39:e6:33:42:d1:89: b2:de:89:09:a0:56:57:58:27:80:f1:1b:3d:e4:f8: e0:93:fe:40:64:9c:64:98:65:bb:ca:54:4e:aa:06: 8c:4b:b9:52:cf:83:ef:35:de:02:86:48:36:c8:66: c0:b3:ed:27:65:2d:7c:e9:2d:ec:ad:9a:f1:b0:b9: 30:59:17:7b:ac:d7:4d:a1:97:04:2f:26:f7:c8:f3: ad:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7C:90:8B:46:14:0B:8E:63:FE:0D:B0:D4:50:DA:1D:47:F2:36:74 X509v3 Authority Key Identifier: keyid:22:59:F8:70:96:E4:0A:DB:3C:84:18:0E:28:B5:6C:3E:88:22:F6:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Iln4cJbkCts8hBgOKLVsPogi9lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/3A9C8A566C1811EFAB6B690CC4F9AE02/Iln4cJbkCts8hBgOKLVsPogi9lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:1b:7d:59:c1:da:d8:92:0d:00:94:5f:04:68:a9:82:b7:cc: bf:a9:2d:52:38:4c:32:f3:ec:6e:fa:1e:a8:d9:6b:46:6d:ff: 85:10:d5:bc:c7:4e:e3:3f:f4:80:f3:29:74:f4:22:af:28:e7: f0:a4:9a:60:f8:0a:e3:83:cd:c8:95:6b:11:fa:de:cb:f3:94: f4:2e:ac:f8:32:70:f2:58:29:8f:e1:16:d4:c8:ce:4d:10:1c: 72:08:fc:38:62:9c:b4:9b:d9:7b:04:2b:16:f5:b5:3a:98:8a: d7:91:94:72:e5:a1:31:f6:a1:09:59:04:2d:63:59:d1:cc:64: 06:c2:58:7b:56:2d:95:fe:e4:68:26:a1:47:4a:6f:c2:1d:d7: 67:ca:72:d7:ca:dc:a8:5d:d1:4f:07:e7:d7:02:7d:d6:84:4a: 72:ac:d7:4d:2d:b8:4f:3a:71:c8:64:ff:5d:c5:c6:ce:f2:97: ec:41:cf:01:79:ce:05:f7:e8:9d:db:56:c9:87:36:0c:80:54: 2d:32:56:0b:39:ae:12:54:75:78:d1:59:eb:4d:c9:91:95:4f: 45:6d:12:85:7c:15:5c:65:c1:a4:69:f9:43:aa:88:c1:6c:a6: fb:03:20:2f:f2:77:ed:5a:d5:d5:2f:c2:0a:f0:bd:64:32:62: 5c:e6:20:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDIyNTlGODcwOTZFNDBBREIzQzg0MTgwRTI4QjU2QzNF ODgyMkY2NTEwHhcNMjUxMDE5MDkxMjI1WhcNMjUxMDI2MDkxMjI1WjAYMRYwFAYD VQQDEw02OGY0YWI3YS01ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA144bBp2wHR8BFYNsIFtD8jG9NJAC2xI7430+Gtyp88hPHnY781W6dAFbn1Bi JdAP9pSqERjY5O+M7HX3sXePK/+1pg2tNp13To3j6lYc2m41Fjb/qI1aajuOS0Vj JfdI9bxXP2tUSRmhtsH47WdQoXaM2R5TJNLAukQiTsNHrSO3DO62/9vEWEBiHRFk YU8wfdZ/OLBtc1MUWGgc9A9RixwfjKuTFYPEUAE4/7g55jNC0Ymy3okJoFZXWCeA 8Rs95Pjgk/5AZJxkmGW7ylROqgaMS7lSz4PvNd4Chkg2yGbAs+0nZS186S3srZrx sLkwWRd7rNdNoZcELyb3yPOt2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNx8kItG FAuOY/4NsNRQ2h1H8jZ0MB8GA1UdIwQYMBaAFCJZ+HCW5ArbPIQYDii1bD6IIvZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS8zQTlDOEE1NjZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0czhoQmdPS0xWc1BvZ2k5 bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lsbjRjSmJrQ3RzOGhCZ09LTFZzUG9naTlsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS8zQTlDOEE1NjZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9JbG40Y0pia0N0 czhoQmdPS0xWc1BvZ2k5bEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMG31ZwdrYkg0AlF8EaKmCt8y/qS1SOEwy8+xu+h6o2WtGbf+FENW8 x07jP/SA8yl09CKvKOfwpJpg+Arjg83IlWsR+t7L85T0Lqz4MnDyWCmP4RbUyM5N EBxyCPw4Ypy0m9l7BCsW9bU6mIrXkZRy5aEx9qEJWQQtY1nRzGQGwlh7Vi2V/uRo JqFHSm/CHddnynLXytyoXdFPB+fXAn3WhEpyrNdNLbhPOnHIZP9dxcbO8pfsQc8B ec4F9+id21bJhzYMgFQtMlYLOa4SVHV40VnrTcmRlU9FbRKFfBVcZcGkaflDqojB bKb7AyAv8nftWtXVL8IK8L1kMmJc5iCI -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:23 2025 by rpki-client