$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: B5vz5GuJh2H5DS2iS6eLfKwBhsFxxAi+AT4pLQVHkiw= Subject key identifier: 77:5F:D3:F4:BD:D8:76:71:E3:6C:85:FC:0D:4A:87:B9:9D:91:07:22 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 05DB Signing time: Sun 19 Oct 2025 02:23:07 +0000 Manifest this update: Sun 19 Oct 2025 02:23:06 +0000 Manifest next update: Sun 26 Oct 2025 02:23:06 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: GLKGjFnBOu2GBqHdvo4JPGFFHnnkQE49F/ew4N6B+kI=) 2: 9DFE04787F8411F0AAC1963BC4F9AE02.roa (hash: CtN+xxhUO3bDEdjbEM7vq/EcPqW7lv1VXztGCW7n23A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Oct 19 02:23:06 2025 GMT Not After : Oct 26 02:23:06 2025 GMT Subject: CN=68f44b8b-ec98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9e:da:f4:ee:d4:62:f3:1a:9b:ac:84:87:6f: 8a:10:62:d7:0e:a3:ca:39:cf:1c:85:4a:2c:c9:8b: e5:32:fe:f1:31:7d:87:72:5d:36:e1:d3:02:f8:65: 44:3e:aa:1a:c9:a9:73:25:ad:87:7d:a2:04:cd:a1: aa:b0:6d:ea:58:4b:ce:be:28:0b:80:69:81:0b:a3: 83:df:ac:0a:ba:22:59:fb:0c:a4:43:07:06:6a:5b: 02:c2:1e:ee:68:64:00:17:9c:7d:24:ac:d8:b6:aa: 72:65:9c:d9:da:53:92:dc:7f:fb:34:84:50:47:e0: d3:7b:e4:a8:73:11:23:55:f8:60:92:ed:42:15:9d: 43:f1:b6:72:82:db:a2:2f:b3:4f:09:7c:50:d0:d9: 47:00:24:e1:9d:07:6f:bb:ef:14:42:59:65:70:69: 9f:db:03:ba:41:fa:ee:3a:77:28:b4:10:56:ba:f9: 0f:91:6f:97:29:a4:44:7c:ab:b5:ea:58:39:84:db: c2:3a:91:26:33:c4:20:d5:42:1f:5b:37:a7:a6:47: c8:d9:69:f3:a5:94:cf:79:66:53:18:fb:cf:5b:5f: 34:42:eb:81:b6:2d:32:15:21:c7:7b:01:d4:09:62: 6b:70:f7:4f:35:98:b6:32:70:10:6e:3c:f2:91:ab: af:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5F:D3:F4:BD:D8:76:71:E3:6C:85:FC:0D:4A:87:B9:9D:91:07:22 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:79:85:ae:dc:51:ed:f3:8e:62:6a:8e:ec:36:ca:a3:98:ad: 1e:41:39:aa:7e:ac:6e:75:6c:ad:16:87:2c:e8:94:69:9b:e4: 91:48:2f:89:50:4f:72:62:78:f1:fc:d1:c1:6d:41:08:73:37: 14:70:7d:34:db:93:22:9c:23:9d:35:b9:d3:19:75:a6:3c:10: 6d:38:5c:71:77:a8:15:d1:2f:aa:0c:d4:d6:46:db:2d:22:8f: ad:58:f1:68:55:1f:cd:84:8d:89:7c:80:02:09:cb:bc:c1:55: 3e:77:7b:0f:7c:a8:2b:e2:db:50:6f:34:4c:6e:f4:7a:d6:ca: 32:13:c0:bd:a7:8c:2e:3f:59:9d:16:7f:6f:de:90:d0:a4:9c: 2c:c3:23:17:32:17:22:99:fd:de:24:24:5b:0d:f2:f8:30:a3: ce:d0:ee:2c:57:65:d4:a1:30:c9:6c:f8:fd:93:fe:02:04:87: b0:dc:6f:32:ee:a6:2f:5d:b4:60:2b:1a:c7:8a:48:e7:2c:aa: 11:ed:09:d2:98:68:82:64:75:db:7d:4e:c0:3e:2a:b7:ad:0e: bc:28:44:c3:7a:83:b9:6e:09:25:c7:e0:c2:b4:20:6c:82:90: 25:97:a6:fd:b2:aa:22:93:7c:b6:7d:90:a2:c4:2f:87:dd:f7: f7:f3:16:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUxMDE5MDIyMzA2WhcNMjUxMDI2MDIyMzA2WjAYMRYwFAYD VQQDEw02OGY0NGI4Yi1lYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0p7a9O7UYvMam6yEh2+KEGLXDqPKOc8chUosyYvlMv7xMX2Hcl024dMC+GVE PqoayalzJa2HfaIEzaGqsG3qWEvOvigLgGmBC6OD36wKuiJZ+wykQwcGalsCwh7u aGQAF5x9JKzYtqpyZZzZ2lOS3H/7NIRQR+DTe+SocxEjVfhgku1CFZ1D8bZygtui L7NPCXxQ0NlHACThnQdvu+8UQlllcGmf2wO6QfruOncotBBWuvkPkW+XKaREfKu1 6lg5hNvCOpEmM8Qg1UIfWzenpkfI2WnzpZTPeWZTGPvPW180QuuBti0yFSHHewHU CWJrcPdPNZi2MnAQbjzykauviwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdf0/S9 2HZx42yF/A1Kh7mdkQciMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+eYWu3FHt845iao7sNsqjmK0eQTmqfqxudWytFocs6JRpm+SRSC+J UE9yYnjx/NHBbUEIczcUcH0025MinCOdNbnTGXWmPBBtOFxxd6gV0S+qDNTWRtst Io+tWPFoVR/NhI2JfIACCcu8wVU+d3sPfKgr4ttQbzRMbvR61soyE8C9p4wuP1md Fn9v3pDQpJwswyMXMhcimf3eJCRbDfL4MKPO0O4sV2XUoTDJbPj9k/4CBIew3G8y 7qYvXbRgKxrHikjnLKoR7QnSmGiCZHXbfU7APiq3rQ68KETDeoO5bgklx+DCtCBs gpAll6b9sqoik3y2fZCixC+H3ff38xaZ -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:31 2025 by rpki-client