$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: b4MuuZpiyNzhEkWlSpkoIABfIN+tZTTegz/FGPP3m10= Subject key identifier: 55:34:DE:D8:85:D0:1B:94:EB:3B:27:DA:5C:13:79:0C:74:AB:C4:85 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 019F Signing time: Sun 19 Oct 2025 05:53:42 +0000 Manifest this update: Sun 19 Oct 2025 05:53:42 +0000 Manifest next update: Sun 26 Oct 2025 05:53:42 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: RRszHFTIgb56eoyul9qorMyljELbRlJLYdiDbyU4WM0=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Oct 19 05:53:42 2025 GMT Not After : Oct 26 05:53:42 2025 GMT Subject: CN=68f47ce6-4e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e7:82:c0:84:b7:ff:64:bb:50:b2:a9:d9:6e: e3:5c:6d:50:e4:43:4c:8b:d1:66:70:ac:19:0f:a4: b5:08:e0:db:81:da:50:b9:be:75:cb:68:d7:f0:c7: 42:a3:8b:23:9b:ce:52:4e:63:08:4e:78:10:db:e2: 13:2b:6f:60:46:b7:ab:95:1f:ec:4c:2e:d3:81:77: 80:8b:34:a9:da:a2:58:b2:4b:d5:09:bc:87:68:10: ea:02:6c:5e:72:0d:24:93:75:71:f5:4b:48:24:71: ee:9f:5c:1a:bc:cb:90:46:65:60:9a:16:98:3d:d6: 59:7f:80:ca:52:e7:4e:87:59:72:58:8d:7a:4d:22: 8e:56:df:94:eb:92:9c:c5:0e:7c:3d:57:80:35:3f: a5:87:58:3e:e2:90:89:7f:3f:4a:b1:a3:97:b9:27: 95:ec:d6:4f:73:cb:ad:fc:78:a5:9c:79:ec:4c:48: a1:78:08:3a:d3:a2:27:64:e2:96:9f:86:66:7d:c8: a4:c9:13:07:70:f3:b6:6a:99:4a:8c:6d:f8:2c:76: f5:67:2e:20:86:6f:6f:fa:e8:19:4d:09:ed:fe:d3: ff:3b:76:f2:5a:9e:8e:80:b5:51:c3:7b:c5:99:e7: 8d:f3:ad:ec:b1:16:fa:74:2a:0f:a0:e4:1c:8f:33: 09:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:34:DE:D8:85:D0:1B:94:EB:3B:27:DA:5C:13:79:0C:74:AB:C4:85 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:41:95:a6:e3:ec:7e:d6:cf:71:40:98:c9:36:7b:4b:d3:73: c5:0b:b2:aa:c9:43:75:d0:ed:64:d5:bd:45:30:54:6c:2f:24: cd:7f:62:61:ed:8c:ed:6b:37:79:e3:9a:e0:21:61:94:04:fc: 55:25:e4:28:e9:62:e5:25:8e:dc:6b:39:16:c7:d6:18:60:dd: e3:2f:96:3b:bf:be:13:59:b4:ef:29:2e:02:4a:e9:3f:99:16: c7:e6:b3:05:41:be:6d:59:7d:b8:96:d9:d3:49:32:19:0b:db: ee:5c:20:f3:1a:09:f2:53:42:c9:6e:67:ca:e3:40:36:a2:4e: 13:60:68:33:d4:be:62:c9:81:91:e9:79:ca:7d:fb:86:99:18: e4:a7:18:f2:4c:e6:d3:84:9b:24:af:10:0f:d0:1b:c2:b7:1e: 09:55:ea:c5:64:c4:28:0a:90:71:6d:81:06:66:4d:12:ba:0c: 3b:74:60:6f:96:6a:48:59:cd:89:4b:94:bf:12:59:b0:29:88: 4e:61:6c:2a:60:d1:c0:a5:70:69:6c:5f:2b:20:9b:69:6c:e1: 1b:71:52:53:04:fa:5b:80:a4:d9:10:9c:b9:b0:e4:78:a1:85: ed:dd:c1:a3:7b:6e:52:e0:f7:98:de:d1:4b:1d:7b:5f:3a:17: 45:84:b2:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUxMDE5MDU1MzQyWhcNMjUxMDI2MDU1MzQyWjAYMRYwFAYD VQQDEw02OGY0N2NlNi00ZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsueCwIS3/2S7ULKp2W7jXG1Q5ENMi9FmcKwZD6S1CODbgdpQub51y2jX8MdC o4sjm85STmMITngQ2+ITK29gRrerlR/sTC7TgXeAizSp2qJYskvVCbyHaBDqAmxe cg0kk3Vx9UtIJHHun1wavMuQRmVgmhaYPdZZf4DKUudOh1lyWI16TSKOVt+U65Kc xQ58PVeANT+lh1g+4pCJfz9KsaOXuSeV7NZPc8ut/HilnHnsTEiheAg606InZOKW n4ZmfcikyRMHcPO2aplKjG34LHb1Zy4ghm9v+ugZTQnt/tP/O3byWp6OgLVRw3vF meeN863ssRb6dCoPoOQcjzMJ2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFU03tiF 0BuU6zsn2lwTeQx0q8SFMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdQZWm4+x+1s9xQJjJNntL03PFC7KqyUN10O1k1b1FMFRsLyTNf2Jh 7Yztazd545rgIWGUBPxVJeQo6WLlJY7cazkWx9YYYN3jL5Y7v74TWbTvKS4CSuk/ mRbH5rMFQb5tWX24ltnTSTIZC9vuXCDzGgnyU0LJbmfK40A2ok4TYGgz1L5iyYGR 6XnKffuGmRjkpxjyTObThJskrxAP0BvCtx4JVerFZMQoCpBxbYEGZk0Sugw7dGBv lmpIWc2JS5S/ElmwKYhOYWwqYNHApXBpbF8rIJtpbOEbcVJTBPpbgKTZEJy5sOR4 oYXt3cGje25S4PeY3tFLHXtfOhdFhLKs -----END CERTIFICATE-----Generated at Mon Oct 20 10:52:06 2025 by rpki-client