$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: BtvHNHJXkWhG6q9JOtSFaJLKO3OQOMYV5gP7w/43/A4= Subject key identifier: 23:78:6C:10:5A:6D:35:FF:86:76:C1:DF:D3:BB:E3:B8:A9:49:F1:63 Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: 62 Signing time: Wed 05 Nov 2025 07:15:01 +0000 Manifest this update: Wed 05 Nov 2025 07:15:00 +0000 Manifest next update: Wed 12 Nov 2025 07:15:00 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: R85IgoGmCkDfXDdPt3g9YRwCEOgT88kljlEq6zh4EkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: Nov 5 07:15:00 2025 GMT Not After : Nov 12 07:15:00 2025 GMT Subject: CN=690af974-ddc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:54:d4:63:84:11:19:29:9f:e8:ca:a4:e2:32: 8c:6d:91:a3:d7:fb:93:f7:f3:91:66:ea:e0:f9:47: 5f:c0:99:2d:17:35:a9:26:db:c8:ec:5d:d1:53:13: 7c:9c:42:f0:26:2e:ee:91:13:ae:e0:aa:28:dd:bb: 67:2d:15:f8:cb:83:18:aa:b7:58:ca:d4:d2:e9:1b: 60:37:a4:67:db:c4:a5:07:99:72:e9:8f:6a:5e:3d: 5e:e2:98:b0:c8:e0:5e:9b:2c:67:bc:fd:e9:5d:bf: 22:75:e4:9d:f6:46:2f:23:a0:64:25:3a:03:a2:de: 46:53:64:f7:8a:c8:5f:c4:fb:4d:a1:1f:8d:b5:9a: 44:17:e5:38:22:44:7d:b5:86:da:99:14:17:f8:66: 6f:f4:1a:3f:ec:0c:d3:26:88:a2:eb:24:3a:2f:76: de:f1:0a:fc:81:a5:10:b1:5a:7d:40:0b:22:40:a1: 0c:e0:3a:79:50:f7:67:c2:55:98:71:89:8d:dd:1a: ce:d5:c6:6e:5b:dd:82:8b:7f:bd:72:fe:cb:6f:b9: ae:e9:3c:13:82:d2:e7:ac:54:6c:5b:0f:92:94:bc: 98:8b:b2:7d:05:c0:39:67:4e:5f:73:19:c6:29:e0: cc:09:68:c8:e4:9f:46:b8:28:67:08:18:aa:a6:35: b8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:78:6C:10:5A:6D:35:FF:86:76:C1:DF:D3:BB:E3:B8:A9:49:F1:63 X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:93:c0:f1:52:d0:4f:29:7f:ad:80:38:51:46:4f:79:b4:4a: 5c:8e:c2:4b:74:75:c2:92:2e:f9:0b:9f:db:f1:37:20:8a:3c: a5:e7:a6:d5:56:6e:88:3d:db:ba:b8:47:2b:b5:0d:7c:69:ac: ec:0a:5a:92:23:f9:c2:13:d6:d0:72:75:91:f5:95:25:f1:2e: 03:0f:e0:16:b2:c8:22:61:52:e9:76:94:d9:82:4a:27:7e:ea: a8:b0:83:0e:39:cb:3a:86:fa:8e:12:c5:de:1d:8a:44:28:31: 6a:3c:f8:89:75:8c:a6:7f:b4:8e:71:62:73:7d:4b:f2:ac:7d: 8c:35:c7:ec:02:09:d1:41:f6:9a:67:f9:16:53:bf:18:77:d8: 53:ab:58:12:44:6c:0e:01:28:c5:40:ef:1f:c8:4b:7d:8a:f9: 4d:34:b0:78:bc:f8:09:3b:9f:84:1d:74:99:62:33:29:1d:ea: 18:30:52:86:4d:05:88:3e:fc:f3:55:93:6c:1e:b7:01:86:0d: 6b:b9:7d:2b:f8:18:2f:f3:7d:73:5e:bb:2e:c4:10:f4:6a:c3: b9:c4:53:ee:ff:ee:40:22:d6:5a:db:03:c6:79:e9:16:d0:53: cc:23:60:25:5c:6b:5d:4b:04:89:08:26:2d:e8:c4:55:de:ab: 81:7f:c1:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NThBQTExMC8GA1UEBRMoMjM3NDM0NEI3MUIyOUYwRTM4MzUyMENBRkM2Qzg4MzUw QzM1NjE2ODAeFw0yNTExMDUwNzE1MDBaFw0yNTExMTIwNzE1MDBaMBgxFjAUBgNV BAMTDTY5MGFmOTc0LWRkYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrVNRjhBEZKZ/oyqTiMoxtkaPX+5P385Fm6uD5R1/AmS0XNakm28jsXdFTE3yc QvAmLu6RE67gqijdu2ctFfjLgxiqt1jK1NLpG2A3pGfbxKUHmXLpj2pePV7imLDI 4F6bLGe8/eldvyJ15J32Ri8joGQlOgOi3kZTZPeKyF/E+02hH421mkQX5TgiRH21 htqZFBf4Zm/0Gj/sDNMmiKLrJDovdt7xCvyBpRCxWn1ACyJAoQzgOnlQ92fCVZhx iY3dGs7Vxm5b3YKLf71y/stvua7pPBOC0uesVGxbD5KUvJiLsn0FwDlnTl9zGcYp 4MwJaMjkn0a4KGcIGKqmNbjfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI3hsEFpt Nf+GdsHf07vjuKlJ8WMwHwYDVR0jBBgwFoAUI3Q0S3Gynw44NSDK/GyINQw1YWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1OEFBL0NBNTBDOTI2MjQw MjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSTNRMFMzR3ludzQ0TlNES19HeUlOUXcxWVdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 OEFBL0NBNTBDOTI2MjQwMjExRjA5NjFCNjQ2REM0RjlBRTAyL0kzUTBTM0d5bnc0 NE5TREtfR3lJTlF3MVlXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHmTwPFS0E8pf62AOFFGT3m0SlyOwkt0dcKSLvkLn9vxNyCKPKXnptVW bog927q4Ryu1DXxprOwKWpIj+cIT1tBydZH1lSXxLgMP4BayyCJhUul2lNmCSid+ 6qiwgw45yzqG+o4Sxd4dikQoMWo8+Il1jKZ/tI5xYnN9S/KsfYw1x+wCCdFB9ppn +RZTvxh32FOrWBJEbA4BKMVA7x/IS32K+U00sHi8+Ak7n4QddJliMykd6hgwUoZN BYg+/PNVk2wetwGGDWu5fSv4GC/zfXNeuy7EEPRqw7nEU+7/7kAi1lrbA8Z56RbQ U8wjYCVca11LBIkIJi3oxFXeq4F/wco= -----END CERTIFICATE-----Generated at Wed Nov 5 14:44:51 2025 by rpki-client