$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: wlNgU6ANtasNU1al4s+j2gEbLvpOdGIs9E28NTgwCq0= Subject key identifier: 0D:1E:22:03:F4:9E:54:1E:31:CE:B7:85:01:69:3D:09:49:81:25:7E Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0FB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F76 Signing time: Sun 02 Nov 2025 17:36:40 +0000 Manifest this update: Sun 02 Nov 2025 17:36:40 +0000 Manifest next update: Sun 09 Nov 2025 17:36:40 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: 315vcD06CPo13p+KDcRqBtJwXPOBoywhWcn0JMKwrpY=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4017 (0xfb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Nov 2 17:36:40 2025 GMT Not After : Nov 9 17:36:40 2025 GMT Subject: CN=690796a8-53b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:40:da:8f:b5:e5:c6:d4:be:87:37:46:72:c3: 51:2c:3e:49:81:f8:df:26:e5:ca:47:68:1f:d9:07: 4b:68:e4:c6:a5:1e:a8:92:c9:73:c9:84:4b:ea:5e: b1:b4:e8:b2:3f:92:6f:c2:34:e2:4a:25:57:6c:a1: 1f:20:19:ce:ae:0d:30:48:64:e8:3d:ee:54:79:9a: f4:3a:e8:97:14:79:4a:35:bd:9e:3a:b0:d1:37:08: 8d:c7:40:bc:e4:35:5a:9c:76:84:82:aa:9f:6d:23: ea:c1:bf:9d:47:8c:05:1f:34:86:c4:02:bd:61:ae: a3:61:ce:b3:f5:c9:aa:07:4c:ce:31:22:31:0e:8a: 00:47:57:9e:5b:1b:a1:4d:95:c1:88:e7:49:02:2d: b5:4d:90:13:83:ef:30:28:10:a2:2b:d1:58:89:4d: ee:96:73:48:32:bf:dd:df:89:a1:96:6e:65:43:31: 96:f9:d2:fa:7a:f2:dd:7b:11:aa:1d:c2:76:3e:73: ec:03:50:0e:bd:34:b8:9e:8d:54:e1:6d:58:c3:c6: 89:26:17:32:3b:9e:0f:d5:db:a2:94:2b:76:31:e2: e2:d4:76:e0:60:a6:0a:59:7b:07:5e:ea:7e:93:29: c8:b6:c5:2c:32:34:f7:c3:fc:d5:07:93:98:98:36: 84:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:1E:22:03:F4:9E:54:1E:31:CE:B7:85:01:69:3D:09:49:81:25:7E X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:73:c3:d5:4f:e8:c2:07:1d:53:2d:45:e3:a6:50:45:3c:84: 7b:cf:01:d1:62:31:53:cc:52:c8:e6:2f:a8:c9:86:42:cf:6e: c2:3d:f4:0e:73:55:52:c9:62:ad:ec:44:26:52:cc:68:4d:5e: 9e:a2:04:63:b9:ff:70:09:e2:65:ac:7c:b1:7b:e4:7a:e8:f1: fa:5d:f6:4b:0f:ac:a3:3a:d2:b7:a1:66:3b:a6:0f:de:8f:0f: 57:8d:bc:5d:d7:88:7e:ac:1f:9c:d7:97:11:81:89:01:d6:0a: 7b:8e:cd:1a:8a:f1:e6:35:c2:a0:aa:44:33:fc:7b:f9:a8:e6: b9:19:71:26:43:a8:d9:64:07:fa:02:93:e0:66:4e:de:09:d0: db:74:a2:3f:1a:b6:ff:5d:7d:8b:c3:a0:22:b4:14:ff:73:57: 0a:56:ed:1b:87:39:e8:4c:d0:b3:7c:5d:d1:5e:9d:f2:25:e0: a0:6e:4b:39:34:73:a0:b2:9a:3e:24:c6:47:ce:62:bf:91:1c: fc:80:a9:4b:ba:3d:d3:a0:b4:12:d8:41:df:17:c0:14:a9:b2: fd:84:f2:e1:a6:c7:5a:9c:11:6d:07:08:cc:ab:f1:70:90:1e: 3d:36:63:af:10:6a:d3:e4:29:2a:af:b9:e6:27:2c:44:9f:24: 7b:1b:e2:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUxMTAyMTczNjQwWhcNMjUxMTA5MTczNjQwWjAYMRYwFAYD VQQDEw02OTA3OTZhOC01M2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9UDaj7XlxtS+hzdGcsNRLD5JgfjfJuXKR2gf2QdLaOTGpR6okslzyYRL6l6x tOiyP5JvwjTiSiVXbKEfIBnOrg0wSGToPe5UeZr0OuiXFHlKNb2eOrDRNwiNx0C8 5DVanHaEgqqfbSPqwb+dR4wFHzSGxAK9Ya6jYc6z9cmqB0zOMSIxDooAR1eeWxuh TZXBiOdJAi21TZATg+8wKBCiK9FYiU3ulnNIMr/d34mhlm5lQzGW+dL6evLdexGq HcJ2PnPsA1AOvTS4no1U4W1Yw8aJJhcyO54P1duilCt2MeLi1HbgYKYKWXsHXup+ kynItsUsMjT3w/zVB5OYmDaEAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0eIgP0 nlQeMc63hQFpPQlJgSV+MB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQc8PVT+jCBx1TLUXjplBFPIR7zwHRYjFTzFLI5i+oyYZCz27CPfQO c1VSyWKt7EQmUsxoTV6eogRjuf9wCeJlrHyxe+R66PH6XfZLD6yjOtK3oWY7pg/e jw9Xjbxd14h+rB+c15cRgYkB1gp7js0aivHmNcKgqkQz/Hv5qOa5GXEmQ6jZZAf6 ApPgZk7eCdDbdKI/Grb/XX2Lw6AitBT/c1cKVu0bhznoTNCzfF3RXp3yJeCgbks5 NHOgspo+JMZHzmK/kRz8gKlLuj3ToLQS2EHfF8AUqbL9hPLhpsdanBFtBwjMq/Fw kB49NmOvEGrT5Ckqr7nmJyxEnyR7G+IU -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:58 2025 by rpki-client