$ rpki-client -vvf rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft File: iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft (raw, json) Hash identifier: rwdlXmSioDLpmi8h/JcE6qM8ISQID6uwhsqFlEXjy7Q= Subject key identifier: A1:C7:3A:FD:A5:03:12:EC:62:D7:68:45:52:6D:8A:41:E3:81:44:CB Authority key identifier: 88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A Certificate issuer: /CN=A91376FB/serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Certificate serial: 0434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft Manifest number: 042D Signing time: Mon 03 Nov 2025 00:17:59 +0000 Manifest this update: Mon 03 Nov 2025 00:17:58 +0000 Manifest next update: Mon 10 Nov 2025 00:17:58 +0000 Files and hashes: 1: iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl (hash: YCE0cH8/ij17ddFHqrcf9hk+gwYafVdUxtiFEctGT/Y=) 2: 25C61AECB7ED11ED9CF6A63EC4F9AE02.roa (hash: Yv9ClrwAFACGSqITuh9ooZXNuE+9WgMW5OezB268l+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91376FB, serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Validity Not Before: Nov 3 00:17:58 2025 GMT Not After : Nov 10 00:17:58 2025 GMT Subject: CN=6907f4b6-46bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8c:24:9c:e2:77:69:96:e3:7d:69:8b:31:6a: fd:99:d0:80:7d:e8:d6:ba:58:45:cc:75:b5:89:c6: 7a:79:97:db:ff:4f:5c:1f:8d:0e:e1:f0:21:f0:61: ad:6b:5b:d6:9d:92:b4:0e:55:37:fb:7d:2b:e3:1d: 2f:51:f1:87:6e:e9:69:ff:b1:23:60:b2:9f:65:92: f8:56:13:d9:68:ff:61:4d:73:ad:65:14:34:70:bb: 12:c8:d2:d5:16:4c:f7:96:64:b3:40:df:99:2a:60: f9:41:71:e3:03:9a:04:ce:9b:2e:45:4d:e4:ce:45: c2:b2:75:22:fb:88:54:58:ab:06:ac:2a:42:78:15: 91:3c:af:78:34:ab:d7:56:b2:d7:8c:6b:3d:68:8e: de:05:4a:cc:92:7b:be:08:5e:7d:51:16:32:ad:b7: 33:fc:e3:cb:d1:6a:95:dc:2b:23:ac:63:c8:f8:8b: b4:fd:04:4e:35:a2:2c:00:24:68:95:0c:7d:e4:5a: c2:c7:89:77:e7:e6:48:77:7c:c4:52:f0:b2:1d:2f: f0:28:64:10:2d:d8:56:59:a2:34:f1:1f:df:18:cb: d0:87:e6:79:52:1e:f8:ef:96:3e:8d:64:e0:6f:60: c5:04:ca:96:6e:2e:60:33:36:ee:60:9e:ba:d1:69: ca:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C7:3A:FD:A5:03:12:EC:62:D7:68:45:52:6D:8A:41:E3:81:44:CB X509v3 Authority Key Identifier: keyid:88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ff:ce:ea:2a:ec:82:07:f5:5b:e0:26:e0:0a:71:b0:cd:1a: 40:a9:f6:42:e6:92:32:b4:b4:45:15:51:e8:d6:e2:e2:64:3e: 21:9c:8a:9a:ca:27:06:35:0b:73:43:9a:1e:3c:49:ad:be:fb: 2c:cf:af:cc:ca:b1:2b:85:ab:cc:9b:43:5c:4c:19:b4:e9:bf: 1d:b1:5a:45:2b:74:92:39:85:7e:59:cc:18:90:c3:f3:40:53: 32:ca:cd:eb:87:55:e7:f3:c8:e1:5e:b7:31:7e:04:1a:0c:f7: 97:55:04:89:06:c2:5e:71:02:4d:ce:8f:5b:4a:fa:fe:7a:fb: 76:3c:ed:7b:c3:ce:29:86:50:d9:e6:3a:fe:91:63:50:45:c5: be:4d:04:a4:9a:00:e5:01:10:ac:be:79:1b:aa:20:b6:3a:32: 66:6a:5d:9c:b4:eb:ec:14:b5:a9:64:ff:fc:df:c6:99:40:4e: 73:29:0d:b9:c8:3c:7f:22:a3:76:0e:eb:4d:73:8e:70:db:e6: 9e:2a:76:13:6b:81:18:e2:dd:39:92:66:49:10:3d:e1:3e:75: ee:e2:33:99:b4:a7:b6:99:b9:72:b3:cd:26:66:93:5c:a3:38: 33:8c:23:44:4c:7c:ba:88:0a:90:cb:a1:52:4e:72:ae:60:c7: 4d:fe:78:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2RkIxMTAvBgNVBAUTKDg4NkEwRUU2QkM3QUJEQzA5RkE4MjJFMTE0REY0MzVG MEIwRTg2NUEwHhcNMjUxMTAzMDAxNzU4WhcNMjUxMTEwMDAxNzU4WjAYMRYwFAYD VQQDEw02OTA3ZjRiNi00NmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YwknOJ3aZbjfWmLMWr9mdCAfejWulhFzHW1icZ6eZfb/09cH40O4fAh8GGt a1vWnZK0DlU3+30r4x0vUfGHbulp/7EjYLKfZZL4VhPZaP9hTXOtZRQ0cLsSyNLV Fkz3lmSzQN+ZKmD5QXHjA5oEzpsuRU3kzkXCsnUi+4hUWKsGrCpCeBWRPK94NKvX VrLXjGs9aI7eBUrMknu+CF59URYyrbcz/OPL0WqV3CsjrGPI+Iu0/QRONaIsACRo lQx95FrCx4l35+ZId3zEUvCyHS/wKGQQLdhWWaI08R/fGMvQh+Z5Uh7475Y+jWTg b2DFBMqWbi5gMzbuYJ660WnKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHHOv2l AxLsYtdoRVJtikHjgUTLMB8GA1UdIwQYMBaAFIhqDua8er3An6gi4RTfQ18LDoZa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzZGQi85MkZCNzFBMDgz RjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZjQ2ZxQ0xoRk45RFh3c09o bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lHb081cng2dmNDZnFDTGhGTjlEWHdzT2hsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzZGQi85MkZCNzFBMDgzRjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZj Q2ZxQ0xoRk45RFh3c09obG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB/87qKuyCB/Vb4CbgCnGwzRpAqfZC5pIytLRFFVHo1uLiZD4hnIqa yicGNQtzQ5oePEmtvvssz6/MyrErhavMm0NcTBm06b8dsVpFK3SSOYV+WcwYkMPz QFMyys3rh1Xn88jhXrcxfgQaDPeXVQSJBsJecQJNzo9bSvr+evt2PO17w84phlDZ 5jr+kWNQRcW+TQSkmgDlARCsvnkbqiC2OjJmal2ctOvsFLWpZP/838aZQE5zKQ25 yDx/IqN2DutNc45w2+aeKnYTa4EY4t05kmZJED3hPnXu4jOZtKe2mblys80mZpNc ozgzjCNETHy6iAqQy6FSTnKuYMdN/ngR -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:23 2025 by rpki-client