$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: 1C7LzF3xIlxTijwWMfMD8X8nRG+2C1ObHeZYg1rp8G0= Subject key identifier: 48:CB:38:46:F1:19:BF:FE:35:E6:4A:CC:4B:F5:37:56:3D:17:4E:1F Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 87 Signing time: Wed 05 Nov 2025 06:48:24 +0000 Manifest this update: Wed 05 Nov 2025 06:48:24 +0000 Manifest next update: Wed 12 Nov 2025 06:48:24 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: WfnzK0EyT7kQXtuH4QSlfc+VZZw52RbRucW49+v07ZI=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Nov 5 06:48:24 2025 GMT Not After : Nov 12 06:48:24 2025 GMT Subject: CN=690af338-ce01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:10:b4:cd:c4:fc:51:6e:50:47:e0:9d:36:dc: f7:da:a4:c2:90:d1:af:bd:f4:e6:8d:cf:8a:57:63: fc:5f:40:9e:7f:df:ba:ec:b9:2a:5a:a8:5e:c0:90: 72:46:a7:ed:7b:d2:fe:0e:1a:3d:9c:58:0e:79:f3: 89:71:2e:88:68:ec:26:a7:b3:8d:91:12:2e:75:9f: 9a:cf:90:39:7d:d8:a9:f0:af:09:93:8f:51:14:88: 85:5d:0d:5c:3a:9a:de:9e:9f:e0:c7:44:33:04:a8: 40:34:e8:11:cb:4d:5c:75:8f:13:76:00:9c:95:a0: b5:8b:4a:cc:df:f7:15:5b:e9:0c:c6:90:da:0d:aa: 5e:61:5b:0f:a9:70:a2:81:22:0b:13:53:d3:b6:29: e3:bb:cf:f9:d1:1a:3c:d2:30:66:ea:b5:a8:6f:d6: 97:31:f8:96:b7:cf:41:24:b5:79:5c:9f:94:4e:c0: c6:80:ca:30:d7:83:e7:42:a4:14:42:7e:d1:ba:27: 43:74:b2:4e:e6:2c:52:ce:c6:d6:ed:ff:29:61:1f: 09:d1:2b:bf:0e:64:ef:23:6f:b5:3b:18:0d:ed:c9: 12:84:06:37:19:1b:95:84:51:ed:bd:92:b3:29:3c: ac:c5:88:ed:85:fe:a4:46:67:61:46:02:ee:84:29: b4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CB:38:46:F1:19:BF:FE:35:E6:4A:CC:4B:F5:37:56:3D:17:4E:1F X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:8c:4d:18:d9:a0:0e:f8:27:ba:c1:70:f3:30:aa:23:ca:c5: ee:cf:8d:fc:f3:0a:d4:dc:b8:bc:51:a8:f4:8f:11:41:8b:eb: 8a:5e:3b:d9:1b:c0:da:5e:63:fc:ae:d9:a5:78:5d:d3:59:c3: 50:e7:e1:e4:a9:0f:0c:fc:ba:cd:91:79:36:55:37:6c:d8:8d: a8:7b:de:bd:ac:28:14:90:2f:29:ed:aa:70:7a:04:fe:44:5a: 26:21:01:35:e3:60:28:9b:c1:2e:fa:8f:8d:26:95:ef:20:ca: 2d:3f:3d:24:f2:92:b8:f7:e4:4a:c3:3a:55:2c:f1:f5:2f:30: 9d:54:dc:07:4d:f7:01:c9:f6:1e:d3:c4:ca:10:51:69:71:26: 0c:55:3a:54:be:60:8b:ba:aa:f4:34:60:43:41:42:cf:09:fb: e8:9d:74:77:7c:ab:0d:46:a6:53:ce:58:80:d6:1e:8f:2e:63: a7:49:fc:88:fc:bb:36:e0:49:70:b2:c4:1e:76:5a:d3:7a:79: d7:da:c5:62:6b:2e:e6:01:7a:d0:18:f5:09:2c:98:48:ac:1f: 16:75:18:e1:a0:11:b4:24:db:03:e2:02:95:68:87:41:69:f8: 44:25:25:f7:58:e6:c8:7c:5d:7d:1e:cd:f6:47:21:e1:2b:9b: 2d:70:83:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjUxMTA1MDY0ODI0WhcNMjUxMTEyMDY0ODI0WjAYMRYwFAYD VQQDEw02OTBhZjMzOC1jZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9RC0zcT8UW5QR+CdNtz32qTCkNGvvfTmjc+KV2P8X0Cef9+67LkqWqhewJBy Rqfte9L+Dho9nFgOefOJcS6IaOwmp7ONkRIudZ+az5A5fdip8K8Jk49RFIiFXQ1c Oprenp/gx0QzBKhANOgRy01cdY8TdgCclaC1i0rM3/cVW+kMxpDaDapeYVsPqXCi gSILE1PTtinju8/50Ro80jBm6rWob9aXMfiWt89BJLV5XJ+UTsDGgMow14PnQqQU Qn7RuidDdLJO5ixSzsbW7f8pYR8J0Su/DmTvI2+1OxgN7ckShAY3GRuVhFHtvZKz KTysxYjthf6kRmdhRgLuhCm09wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjLOEbx Gb/+NeZKzEv1N1Y9F04fMB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBijE0Y2aAO+Ce6wXDzMKojysXuz4388wrU3Li8Uaj0jxFBi+uKXjvZ G8DaXmP8rtmleF3TWcNQ5+HkqQ8M/LrNkXk2VTds2I2oe969rCgUkC8p7apwegT+ RFomIQE142Aom8Eu+o+NJpXvIMotPz0k8pK49+RKwzpVLPH1LzCdVNwHTfcByfYe 08TKEFFpcSYMVTpUvmCLuqr0NGBDQULPCfvonXR3fKsNRqZTzliA1h6PLmOnSfyI /Ls24ElwssQedlrTennX2sViay7mAXrQGPUJLJhIrB8WdRjhoBG0JNsD4gKVaIdB afhEJSX3WObIfF19Hs32RyHhK5stcIPC -----END CERTIFICATE-----Generated at Wed Nov 5 17:08:24 2025 by rpki-client