$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft File: iJGVOO7eyDINXq9rHzKymCOreBA.mft (raw, json) Hash identifier: jKjgx4+rL2/Olwgzv8hh6hlZ3ssx/Nnz/D9Y5SP6xcU= Subject key identifier: 45:2F:6B:25:2E:0C:2E:8C:B8:B8:F3:02:F8:53:BB:F5:26:98:70:82 Authority key identifier: 88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 Certificate issuer: /CN=A91B4460/serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft Manifest number: 6A Signing time: Wed 05 Nov 2025 07:09:18 +0000 Manifest this update: Wed 05 Nov 2025 07:09:17 +0000 Manifest next update: Wed 12 Nov 2025 07:09:17 +0000 Files and hashes: 1: iJGVOO7eyDINXq9rHzKymCOreBA.crl (hash: iRxhts1V9CDbJswbN2OmlhoLjIW1adcP7Mn378ar+no=) 2: 7A85F9D2148711F0AF960528C4F9AE02.roa (hash: v93VVwAanSucSOqj9EwS1pD5Lqih1cuGiSwwM282Dpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4460, serialNumber=88919538EEDEC8320D5EAF6B1F32B29823AB7810 Validity Not Before: Nov 5 07:09:17 2025 GMT Not After : Nov 12 07:09:17 2025 GMT Subject: CN=690af81e-3a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e4:f2:09:ac:34:44:ec:a0:ce:d6:c1:50:41: 73:e5:91:08:a3:7d:5a:6d:d6:54:ec:91:44:11:4a: 10:c7:e3:fc:3f:1b:52:48:b4:70:d3:09:c4:a5:1e: 84:73:6c:f7:85:45:21:26:21:1b:76:1c:3c:5d:48: 88:24:72:77:84:a3:c0:14:1b:83:f6:36:14:d5:db: a1:c6:7c:55:d3:59:0c:06:60:00:70:89:84:68:fa: e9:1b:33:dc:eb:f6:8d:9e:35:a2:2e:09:60:91:45: e1:9b:0b:6f:20:66:66:84:46:65:c5:a1:57:fb:81: bc:2c:aa:10:1c:5b:f5:0d:ba:c4:91:d6:71:e9:78: 50:ec:31:7c:38:6c:7e:fa:c0:b9:e7:4f:e0:c0:1d: 89:3c:81:b7:e2:aa:61:f2:da:d7:54:2b:0d:e6:84: e4:27:71:96:a1:64:32:b5:7b:08:c1:c2:db:71:82: f0:c5:22:20:9c:65:7a:fd:e6:24:b0:4d:8c:8f:a1: 55:97:4f:0e:1c:40:a8:6c:14:0c:91:cd:99:9b:1c: 38:ae:60:51:5c:f3:6e:b0:c7:37:21:91:d0:aa:43: c4:35:31:6b:8b:e1:44:43:48:23:76:ca:84:9f:fa: 1a:f6:b5:d9:70:93:e9:8a:f3:64:bd:fe:3e:f5:58: 01:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2F:6B:25:2E:0C:2E:8C:B8:B8:F3:02:F8:53:BB:F5:26:98:70:82 X509v3 Authority Key Identifier: keyid:88:91:95:38:EE:DE:C8:32:0D:5E:AF:6B:1F:32:B2:98:23:AB:78:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iJGVOO7eyDINXq9rHzKymCOreBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4460/04986476148711F0A79EAB26C4F9AE02/iJGVOO7eyDINXq9rHzKymCOreBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:1e:3a:ef:cb:10:63:8a:89:76:c8:9c:ac:8d:02:82:e1:bf: 30:36:0e:55:47:96:73:2c:ee:8e:ff:17:12:8e:26:cd:d7:02: 55:b8:bf:40:73:6d:ad:4b:b9:c1:7a:36:b7:40:4b:d5:1c:33: 9b:4d:dc:df:f7:9d:e8:68:d3:0f:f7:c8:00:83:9f:bf:a5:84: 76:21:d6:b4:3f:b9:31:15:57:9a:44:a4:3c:49:ec:2d:f4:19: eb:93:19:e5:fd:c0:aa:a4:d6:28:46:b6:9d:42:b0:76:2d:4c: c0:f8:b2:05:9a:5f:be:6a:3a:68:41:cc:f3:8c:c6:ea:b5:6f: de:46:bc:1d:a1:ed:eb:83:96:d4:71:23:66:71:82:6a:33:06: 4f:9a:ad:fd:5e:6c:b7:90:05:68:12:af:94:af:11:d5:f8:21: 22:e8:0d:81:74:af:95:06:00:89:d2:b4:1d:d2:68:c5:d6:b3: 22:cb:9d:89:f8:41:dd:e8:2d:7f:2b:50:8b:ad:b6:2c:d8:90: 58:54:60:c0:bc:c3:4e:8a:c9:e6:73:d2:81:19:73:5b:97:e7: 22:0e:74:ba:36:6d:bf:50:fb:62:94:e2:9b:57:a6:84:a1:73: b2:ad:a4:ad:0a:8f:a5:19:b0:e7:3b:cc:75:bc:00:c4:6a:8c: 25:a6:bd:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDQ2MDExMC8GA1UEBRMoODg5MTk1MzhFRURFQzgzMjBENUVBRjZCMUYzMkIyOTgy M0FCNzgxMDAeFw0yNTExMDUwNzA5MTdaFw0yNTExMTIwNzA5MTdaMBgxFjAUBgNV BAMTDTY5MGFmODFlLTNhOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDq5PIJrDRE7KDO1sFQQXPlkQijfVpt1lTskUQRShDH4/w/G1JItHDTCcSlHoRz bPeFRSEmIRt2HDxdSIgkcneEo8AUG4P2NhTV26HGfFXTWQwGYABwiYRo+ukbM9zr 9o2eNaIuCWCRReGbC28gZmaERmXFoVf7gbwsqhAcW/UNusSR1nHpeFDsMXw4bH76 wLnnT+DAHYk8gbfiqmHy2tdUKw3mhOQncZahZDK1ewjBwttxgvDFIiCcZXr95iSw TYyPoVWXTw4cQKhsFAyRzZmbHDiuYFFc826wxzchkdCqQ8Q1MWuL4URDSCN2yoSf +hr2tdlwk+mK82S9/j71WAELAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURS9rJS4M Loy4uPMC+FO79SaYcIIwHwYDVR0jBBgwFoAUiJGVOO7eyDINXq9rHzKymCOreBAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0NDYwLzA0OTg2NDc2MTQ4 NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJTlhxOXJIekt5bUNPcmVC QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUpHVk9PN2V5RElOWHE5ckh6S3ltQ09yZUJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 NDYwLzA0OTg2NDc2MTQ4NzExRjBBNzlFQUIyNkM0RjlBRTAyL2lKR1ZPTzdleURJ TlhxOXJIekt5bUNPcmVCQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHgeOu/LEGOKiXbInKyNAoLhvzA2DlVHlnMs7o7/FxKOJs3XAlW4v0Bz ba1LucF6NrdAS9UcM5tN3N/3neho0w/3yACDn7+lhHYh1rQ/uTEVV5pEpDxJ7C30 GeuTGeX9wKqk1ihGtp1CsHYtTMD4sgWaX75qOmhBzPOMxuq1b95GvB2h7euDltRx I2ZxgmozBk+arf1ebLeQBWgSr5SvEdX4ISLoDYF0r5UGAInStB3SaMXWsyLLnYn4 Qd3oLX8rUIuttizYkFhUYMC8w06KyeZz0oEZc1uX5yIOdLo2bb9Q+2KU4ptXpoSh c7KtpK0Kj6UZsOc7zHW8AMRqjCWmvXA= -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:47 2025 by rpki-client