$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: WKmr4T7Rqxd7K3891PN/w2iUNeEtnKZO5n/kVgMMOy4= Subject key identifier: 73:0F:A5:4D:4E:C0:11:58:2E:12:E5:5C:9C:99:B7:32:BD:4E:63:47 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 06AA Signing time: Sun 02 Nov 2025 22:13:52 +0000 Manifest this update: Sun 02 Nov 2025 22:13:51 +0000 Manifest next update: Sun 09 Nov 2025 22:13:51 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: 4y0jicUH84wXUvM2A3xVhIPOLQ1MDf5LUkrrHg/nRbQ=) 2: 399EDDAA823F11F0895C5843C4F9AE02.roa (hash: hcq6yF1A8/hzZcpFY0/jqdnjGI3YJGg87B872b9SYdE=) 3: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 4: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 5: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 6: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Nov 2 22:13:51 2025 GMT Not After : Nov 9 22:13:51 2025 GMT Subject: CN=6907d7a0-0974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:32:ca:5a:f8:8a:44:9e:90:fe:fc:c8:5f:65: 69:0e:17:de:13:9e:35:b1:ec:49:ef:41:ad:2b:fe: c2:b3:a7:4e:b2:ae:fb:ce:cf:8c:97:cc:17:cc:40: c2:38:31:56:c7:85:4d:fd:bc:4b:ae:3e:5f:a5:64: 12:d0:3e:3b:fa:66:70:ea:7a:af:b7:09:a8:c6:df: 7c:4d:fd:b0:ed:4e:76:e2:ba:40:26:60:51:23:00: da:a3:e2:71:1c:f4:76:ed:12:3e:71:a7:88:d7:46: 22:00:4d:e3:eb:36:4a:8b:d2:f9:4a:f2:31:c6:d2: 5a:d6:70:26:b9:d0:26:2d:ab:1f:df:f1:45:e2:48: 95:dc:ff:88:08:c5:b7:9c:94:46:ae:63:29:6b:a1: 48:8e:0a:a5:40:88:84:8f:38:19:f4:80:c6:ae:dc: c6:4f:3a:a8:09:69:14:95:86:e8:3a:65:31:62:a2: c7:ad:c5:39:67:a7:a7:36:8a:58:e1:fb:47:0d:0c: 7f:29:c8:24:d4:be:4c:ff:98:b3:49:45:50:64:f7: 42:5c:48:98:d9:af:3e:7d:5c:63:2a:2f:14:4a:b9: f3:52:aa:8e:3c:1e:85:42:74:b3:80:13:77:b6:d7: 73:bf:e9:42:27:83:c0:3b:88:94:f0:60:f8:e3:1f: 2b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0F:A5:4D:4E:C0:11:58:2E:12:E5:5C:9C:99:B7:32:BD:4E:63:47 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:21:8f:4b:0d:9a:4a:50:7d:1d:02:1e:20:cf:01:c5:d9:3c: 8a:ce:95:e5:33:b1:ba:28:20:77:5c:5f:93:b2:43:ea:5e:30: 69:98:6a:45:82:81:eb:d9:8a:28:dc:50:1f:11:aa:c1:bf:c2: 59:5e:ec:fc:7f:6d:13:be:98:fb:f6:36:6f:d8:4f:e1:ce:f9: 3f:91:ae:f4:71:13:76:f6:f0:85:a1:72:30:29:b3:8c:da:73: bf:c3:7e:f0:32:c0:1f:6b:37:2a:35:14:2c:15:b1:89:d1:e5: 89:be:14:27:16:1a:05:f6:c8:f6:75:ab:ee:93:94:f3:1c:c5: 31:6e:b7:0c:d9:da:91:5c:61:04:47:dd:b4:3b:2a:6c:fc:b9: 72:14:2f:e0:7b:f8:15:83:63:16:d1:3e:12:4c:2a:2e:65:de: 79:01:c7:5f:07:ba:c4:57:d7:90:e2:54:67:b1:82:3b:40:5d: 64:a9:a1:f2:9e:9f:a4:9e:f9:ad:34:b4:31:d7:47:f0:0f:68: d6:1c:71:2b:fb:72:c1:23:69:1a:e2:9d:1e:3f:86:1a:c7:02: 45:54:4d:86:13:6c:51:65:57:28:19:7b:46:ea:fb:af:c8:70: 84:50:00:a4:bb:94:64:96:3e:6f:e1:9b:c3:3a:23:27:a6:7a: 8f:6b:b5:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUxMTAyMjIxMzUxWhcNMjUxMTA5MjIxMzUxWjAYMRYwFAYD VQQDEw02OTA3ZDdhMC0wOTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzLKWviKRJ6Q/vzIX2VpDhfeE541sexJ70GtK/7Cs6dOsq77zs+Ml8wXzEDC ODFWx4VN/bxLrj5fpWQS0D47+mZw6nqvtwmoxt98Tf2w7U524rpAJmBRIwDao+Jx HPR27RI+caeI10YiAE3j6zZKi9L5SvIxxtJa1nAmudAmLasf3/FF4kiV3P+ICMW3 nJRGrmMpa6FIjgqlQIiEjzgZ9IDGrtzGTzqoCWkUlYboOmUxYqLHrcU5Z6enNopY 4ftHDQx/Kcgk1L5M/5izSUVQZPdCXEiY2a8+fVxjKi8USrnzUqqOPB6FQnSzgBN3 ttdzv+lCJ4PAO4iU8GD44x8rtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMPpU1O wBFYLhLlXJyZtzK9TmNHMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbIY9LDZpKUH0dAh4gzwHF2TyKzpXlM7G6KCB3XF+TskPqXjBpmGpF goHr2Yoo3FAfEarBv8JZXuz8f20Tvpj79jZv2E/hzvk/ka70cRN29vCFoXIwKbOM 2nO/w37wMsAfazcqNRQsFbGJ0eWJvhQnFhoF9sj2davuk5TzHMUxbrcM2dqRXGEE R920Oyps/LlyFC/ge/gVg2MW0T4STCouZd55AcdfB7rEV9eQ4lRnsYI7QF1kqaHy np+knvmtNLQx10fwD2jWHHEr+3LBI2ka4p0eP4YaxwJFVE2GE2xRZVcoGXtG6vuv yHCEUACku5Rklj5v4ZvDOiMnpnqPa7XV -----END CERTIFICATE-----Generated at Tue Nov 4 19:57:42 2025 by rpki-client