$ rpki-client -vvf rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft File: I9INognIlcMA7mtlm2sYKZJfvU8.mft (raw, json) Hash identifier: psbQSvfoIQ8K1n7cEh2HU6Jgvf3Y1ky7C3r+iFiGJMM= Subject key identifier: 31:9A:79:61:9D:BD:5F:05:42:44:6C:CE:C8:93:59:6E:9F:1A:D7:B3 Authority key identifier: 23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F Certificate issuer: /CN=A91829E3/serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Certificate serial: 0C71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft Manifest number: 0C5B Signing time: Tue 04 Nov 2025 18:44:21 +0000 Manifest this update: Tue 04 Nov 2025 18:44:20 +0000 Manifest next update: Tue 11 Nov 2025 18:44:20 +0000 Files and hashes: 1: I9INognIlcMA7mtlm2sYKZJfvU8.crl (hash: eTyOoU8Pmh7bl4bmAe/5FJedk9LYF4LvEDnMppGgf3Q=) 2: 7B96F1340C6011F088E6FD2FC4F9AE02.roa (hash: AlkpfpZwpFAFSNpnhnUShgrrcb/AfgC29z6/e4zKojg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3185 (0xc71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91829E3, serialNumber=23D20DA209C895C300EE6B659B6B1829925FBD4F Validity Not Before: Nov 4 18:44:20 2025 GMT Not After : Nov 11 18:44:20 2025 GMT Subject: CN=690a4985-b332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:5b:e4:9f:9f:6e:a8:a2:df:02:8d:76:8a: c0:f9:67:05:81:03:d8:36:79:89:ab:d3:14:56:da: 0f:86:20:02:94:85:4d:54:ee:e8:3b:88:6a:91:88: d0:00:f6:d6:50:47:d5:0e:5c:6c:c6:44:93:03:cb: e6:26:d8:7c:db:da:10:16:0f:cd:b9:26:82:3a:f4: 01:58:e2:84:0b:0d:c0:2a:b3:ab:e4:ad:5b:b7:bc: 80:90:af:9d:f4:03:53:1f:4f:6f:c2:31:f3:3c:08: 7c:70:53:5f:fb:5b:6f:fd:db:91:87:9f:01:65:45: e9:a6:7b:9f:cb:cd:0e:5e:19:88:75:c8:d9:8d:03: 2a:ec:c4:56:21:7e:26:22:d4:4f:74:45:1c:0e:e4: ac:44:65:60:80:06:79:ec:6e:e7:5b:5a:71:9c:92: 8d:c6:a6:25:e4:ac:33:ff:e9:0b:e5:83:21:1d:22: d2:cf:a8:20:ae:fc:77:2f:fa:20:e6:c0:29:47:4d: 23:52:b8:8b:50:b2:5e:96:45:06:20:cb:a4:90:04: 58:86:43:1b:99:cf:12:ce:9a:ca:44:99:57:eb:f0: 8b:69:ac:a4:79:eb:ae:37:21:58:a3:49:26:b4:1d: 88:27:05:8d:bf:ad:58:49:66:88:6d:8f:ef:63:48: 3c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9A:79:61:9D:BD:5F:05:42:44:6C:CE:C8:93:59:6E:9F:1A:D7:B3 X509v3 Authority Key Identifier: keyid:23:D2:0D:A2:09:C8:95:C3:00:EE:6B:65:9B:6B:18:29:92:5F:BD:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9INognIlcMA7mtlm2sYKZJfvU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91829E3/C45F60DA143711EAACF9FA33C4F9AE02/I9INognIlcMA7mtlm2sYKZJfvU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:45:d3:08:06:d0:97:fd:bd:bc:3c:e9:9a:f5:20:67:f2:9a: bb:d4:26:6a:85:fe:09:3e:ff:73:64:f5:3d:57:5c:a4:c5:a8: 3c:72:26:5e:e7:f5:a6:d5:20:2e:92:72:a3:25:83:08:e1:eb: 98:a5:68:43:c8:0d:db:ab:ad:f8:08:fc:4b:98:53:5e:25:4f: 29:48:7b:43:dc:d4:be:15:a5:fd:30:0a:80:c6:2e:02:e2:c6: 82:07:f4:f9:8c:35:fd:18:cb:8c:e0:0a:20:86:10:0f:b0:45: af:32:b3:52:ff:b5:d0:1b:5d:3e:4f:e4:1a:f6:4c:ef:53:7b: 54:35:2f:88:34:24:cd:99:2e:43:53:a1:b5:5f:79:af:4f:30: 65:38:0c:46:ce:17:d3:6d:77:38:d6:b2:49:5c:f0:2a:43:f3: 57:d8:da:a3:51:f6:ca:e6:7f:14:a2:79:39:fc:61:95:d5:8c: 45:5a:54:eb:b8:cc:17:bb:1b:a0:74:ab:92:c9:46:e8:12:d8: 18:a5:8f:55:3e:c3:b0:a7:12:74:ba:36:de:30:3f:9f:89:a8: 9c:8b:c5:7b:1c:a5:34:ee:af:39:dd:7d:24:ba:3f:e0:72:14: c3:51:45:47:3d:82:11:cd:4c:eb:5e:97:3e:6f:05:34:0b:7e: 43:67:6f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5RTMxMTAvBgNVBAUTKDIzRDIwREEyMDlDODk1QzMwMEVFNkI2NTlCNkIxODI5 OTI1RkJENEYwHhcNMjUxMTA0MTg0NDIwWhcNMjUxMTExMTg0NDIwWjAYMRYwFAYD VQQDEw02OTBhNDk4NS1iMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNhb5J+fbqii3wKNdorA+WcFgQPYNnmJq9MUVtoPhiAClIVNVO7oO4hqkYjQ APbWUEfVDlxsxkSTA8vmJth829oQFg/NuSaCOvQBWOKECw3AKrOr5K1bt7yAkK+d 9ANTH09vwjHzPAh8cFNf+1tv/duRh58BZUXppnufy80OXhmIdcjZjQMq7MRWIX4m ItRPdEUcDuSsRGVggAZ57G7nW1pxnJKNxqYl5Kwz/+kL5YMhHSLSz6ggrvx3L/og 5sApR00jUriLULJelkUGIMukkARYhkMbmc8SzprKRJlX6/CLaaykeeuuNyFYo0km tB2IJwWNv61YSWaIbY/vY0g8mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGaeWGd vV8FQkRszsiTWW6fGtezMB8GA1UdIwQYMBaAFCPSDaIJyJXDAO5rZZtrGCmSX71P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjlFMy9DNDVGNjBEQTE0 MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxjTUE3bXRsbTJzWUtaSmZ2 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5SU5vZ25JbGNNQTdtdGxtMnNZS1pKZnZVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjlFMy9DNDVGNjBEQTE0MzcxMUVBQUNGOUZBMzNDNEY5QUUwMi9JOUlOb2duSWxj TUE3bXRsbTJzWUtaSmZ2VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTRdMIBtCX/b28POma9SBn8pq71CZqhf4JPv9zZPU9V1ykxag8ciZe 5/Wm1SAuknKjJYMI4euYpWhDyA3bq634CPxLmFNeJU8pSHtD3NS+FaX9MAqAxi4C 4saCB/T5jDX9GMuM4AoghhAPsEWvMrNS/7XQG10+T+Qa9kzvU3tUNS+INCTNmS5D U6G1X3mvTzBlOAxGzhfTbXc41rJJXPAqQ/NX2NqjUfbK5n8Uonk5/GGV1YxFWlTr uMwXuxugdKuSyUboEtgYpY9VPsOwpxJ0ujbeMD+fiaici8V7HKU07q853X0kuj/g chTDUUVHPYIRzUzrXpc+bwU0C35DZ2+W -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:53 2025 by rpki-client