$ rpki-client -vvf rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft (raw, json) Hash identifier: Hx59iKP8PU8sJ1OMeEDnO5guOr9rx4boRM3UKev7njo= Subject key identifier: AF:B8:F1:26:C6:9C:0B:A2:F7:40:D2:4D:F4:B5:05:F5:F4:B9:86:8E Authority key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A Certificate issuer: /CN=A91F83DC/serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft Manifest number: 0104 Signing time: Sun 19 Oct 2025 08:01:47 +0000 Manifest this update: Sun 19 Oct 2025 08:01:46 +0000 Manifest next update: Sun 26 Oct 2025 08:01:46 +0000 Files and hashes: 1: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl (hash: curZOO7lkTgbeJ1a90ZPA72u2dOslK6jIB0gllWebSE=) 2: 097951DC271E11EFA1884C2EC4F9AE02.roa (hash: Ha/cGz3EuqzsAq4mNf1LJHzYtP6EU2XABOfv8TEGk30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A Validity Not Before: Oct 19 08:01:46 2025 GMT Not After : Oct 26 08:01:46 2025 GMT Subject: CN=68f49aeb-0c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:78:37:60:99:4c:61:50:83:44:99:0b:ff: 9c:3e:81:2f:d8:11:51:72:b5:f9:9f:c6:7a:ac:4e: 4f:64:8e:b0:e8:93:cb:d2:2d:2e:92:c3:d5:28:23: 9a:92:55:65:7a:67:6b:18:b8:ce:9a:4b:d5:91:76: 34:b3:ad:01:3e:8a:70:1b:53:b4:8d:70:ec:eb:e5: c3:99:45:76:0b:3d:61:4b:18:b3:8c:37:b6:65:3e: 46:d3:f1:82:41:55:e6:b1:7d:3f:51:84:ad:10:0d: 7e:f0:08:72:c8:9d:a7:b3:9b:3f:21:ec:44:25:53: e6:74:1c:bc:9d:dd:35:ea:33:66:31:29:a6:ad:2b: 42:72:27:d8:18:8c:13:f0:bb:ac:88:e6:b5:4c:69: 01:a4:49:0e:93:7c:02:15:88:b6:f0:1a:d5:b0:da: 02:25:64:b4:62:33:b6:89:66:d7:02:f8:ae:67:4a: de:21:19:74:d9:45:e9:bb:ae:d2:90:93:b8:72:82: 9d:bb:7d:d5:0e:6b:c8:e5:00:9c:0d:1a:ce:cb:ae: 71:24:eb:50:dd:ac:70:54:c2:f7:f8:dd:fd:f1:b1: 7c:4f:7d:3c:0b:46:aa:68:bf:5a:79:65:fb:d0:d4: ab:be:90:e6:05:bc:c5:36:70:6a:fa:25:a3:87:46: ec:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B8:F1:26:C6:9C:0B:A2:F7:40:D2:4D:F4:B5:05:F5:F4:B9:86:8E X509v3 Authority Key Identifier: keyid:22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:6c:ab:3f:fd:c7:41:bb:3c:f4:07:e8:43:09:26:c5:93:48: 5f:8e:48:84:65:75:4a:15:4e:54:72:0b:84:82:89:0e:df:d6: e9:49:e3:45:e2:1f:1c:38:bb:a5:be:aa:83:10:00:75:cd:40: a8:84:3a:89:89:ae:ee:27:6e:3d:1f:48:70:90:e1:e7:fd:77: 25:54:9d:b5:04:f8:b5:80:9b:bc:c0:37:5a:05:c4:76:6f:44: cd:62:f6:1c:b4:bf:b6:de:ea:5e:7d:55:d8:b7:5c:8b:9b:2a: 55:e3:49:06:38:ff:1d:a3:84:eb:6b:13:27:03:4d:f9:0b:a4: ef:d5:3e:30:97:20:2d:45:7b:5d:a3:f6:77:ab:35:85:d6:17: bb:2a:1d:54:30:15:34:94:28:15:17:86:f4:a1:e4:b9:a8:29: 27:e5:68:fb:2f:dd:27:7d:58:77:93:33:49:aa:be:3f:45:3b: 05:60:7c:38:66:7a:3d:c5:55:66:a6:d4:bb:0a:97:3e:93:56: ea:49:cb:11:e0:76:f5:81:3f:07:42:00:48:c9:32:c9:d6:d5: 53:92:d5:45:6c:8f:a0:db:0d:c5:60:4f:27:35:26:88:35:80: 64:13:81:f6:85:18:8c:6c:e9:c4:8e:4d:01:cf:9e:cb:ef:e4: 77:83:96:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzREMxMTAvBgNVBAUTKDIyNEU2NjhGNDA1NjAxQ0FEQzMzOTEzODNGQ0E5NkRG OTQ2OEQ5NUEwHhcNMjUxMDE5MDgwMTQ2WhcNMjUxMDI2MDgwMTQ2WjAYMRYwFAYD VQQDEw02OGY0OWFlYi0wYzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdl4N2CZTGFQg0SZC/+cPoEv2BFRcrX5n8Z6rE5PZI6w6JPL0i0uksPVKCOa klVlemdrGLjOmkvVkXY0s60BPopwG1O0jXDs6+XDmUV2Cz1hSxizjDe2ZT5G0/GC QVXmsX0/UYStEA1+8AhyyJ2ns5s/IexEJVPmdBy8nd016jNmMSmmrStCcifYGIwT 8LusiOa1TGkBpEkOk3wCFYi28BrVsNoCJWS0YjO2iWbXAviuZ0reIRl02UXpu67S kJO4coKdu33VDmvI5QCcDRrOy65xJOtQ3axwVML3+N398bF8T308C0aqaL9aeWX7 0NSrvpDmBbzFNnBq+iWjh0bshwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+48SbG nAui90DSTfS1BfX0uYaOMB8GA1UdIwQYMBaAFCJOZo9AVgHK3DOROD/Klt+UaNla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODNEQy85OUM3NDg4ODI2 RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0FjcmNNNUU0UDhxVzM1Um8y Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrNW1qMEJXQWNyY001RTRQOHFXMzVSbzJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODNEQy85OUM3NDg4ODI2RUQxMUVGQjRDOUJBMjhDNEY5QUUwMi9JazVtajBCV0Fj cmNNNUU0UDhxVzM1Um8yVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBObKs//cdBuzz0B+hDCSbFk0hfjkiEZXVKFU5UcguEgokO39bpSeNF 4h8cOLulvqqDEAB1zUCohDqJia7uJ249H0hwkOHn/XclVJ21BPi1gJu8wDdaBcR2 b0TNYvYctL+23upefVXYt1yLmypV40kGOP8do4TraxMnA035C6Tv1T4wlyAtRXtd o/Z3qzWF1he7Kh1UMBU0lCgVF4b0oeS5qCkn5Wj7L90nfVh3kzNJqr4/RTsFYHw4 Zno9xVVmptS7Cpc+k1bqScsR4Hb1gT8HQgBIyTLJ1tVTktVFbI+g2w3FYE8nNSaI NYBkE4H2hRiMbOnEjk0Bz57L7+R3g5YI -----END CERTIFICATE-----Generated at Mon Oct 20 18:06:17 2025 by rpki-client