$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: +bYXbaZMkYg7qpR+r/6P/0kF9mWEsVpj9nyiSYXYmIo= Subject key identifier: 3E:BA:20:26:19:F4:96:B4:83:52:83:87:F4:40:AF:DA:DB:56:FC:60 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0B4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0B3D Signing time: Tue 04 Nov 2025 19:21:25 +0000 Manifest this update: Tue 04 Nov 2025 19:21:24 +0000 Manifest next update: Tue 11 Nov 2025 19:21:24 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: NX0VqAVXgEA/pYkHrOE7Owryb115mYM+mJt5dW8l8FY=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: kISEPEmE2ZLNGr7M+gIIuLb+wfjhIl0pN5Ozrn7290M=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905, serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Nov 4 19:21:24 2025 GMT Not After : Nov 11 19:21:24 2025 GMT Subject: CN=690a5235-0468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d8:b4:bb:57:4b:47:82:db:c7:0b:c4:ee:b6: 15:d8:cd:23:08:99:13:de:40:b3:82:a8:75:29:82: e5:32:a2:ee:4d:ba:40:94:e1:3c:29:5a:98:29:71: d2:b2:f7:d3:27:04:3c:ae:02:f0:f6:8d:db:c1:d2: d0:63:d6:cc:e0:da:72:98:41:5c:96:74:32:55:f4: 9e:45:c3:36:89:a8:a4:89:8b:f1:e4:aa:47:13:b9: 96:84:2f:98:db:8c:a9:ea:86:b0:03:7e:99:4e:4d: 3e:ee:9f:9e:bd:f5:0e:63:26:60:3a:78:60:ab:b5: 9b:b2:6e:33:4c:77:be:b4:ea:1b:65:a6:20:ff:9e: c7:9a:a3:ae:34:4c:18:9c:3e:d3:1a:98:eb:34:b0: b8:e8:d4:6e:48:50:28:70:c1:26:95:4f:9f:c2:64: 11:cc:7c:fd:cd:37:8b:a1:70:f0:4a:c1:7b:c1:8e: c5:b6:1b:a5:90:af:04:48:4a:16:8f:5a:b0:06:5b: ec:35:03:35:da:c7:34:3f:e9:40:d7:66:2e:19:45: 90:22:ca:c9:b7:b4:9c:67:5f:ae:09:2c:e1:cf:e6: 64:77:11:36:36:40:6c:d6:4e:71:7c:73:00:6f:c8: f4:5f:15:d3:33:10:ea:e4:a2:c7:30:5f:8e:30:43: 98:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:BA:20:26:19:F4:96:B4:83:52:83:87:F4:40:AF:DA:DB:56:FC:60 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:ac:2e:58:c9:37:f5:1d:e6:53:40:cf:31:ab:c4:6c:b6:8a: af:33:39:73:4d:06:89:61:a7:60:21:35:ab:8f:11:b5:b2:8e: 6c:08:e5:4e:2d:cd:1d:8d:d0:f9:6a:c5:25:96:7c:5e:0d:7a: 1b:19:85:c1:d0:13:1b:01:4c:47:af:c3:29:be:4f:f7:b3:30: cd:c1:d7:b1:f3:5b:55:af:7d:4f:85:e2:e0:ef:70:5a:80:49: 7c:f3:ab:bb:fd:d2:80:16:a4:de:10:19:85:51:6b:df:4e:a8: 18:11:be:e1:9e:48:9b:2d:64:36:76:5c:e8:43:77:01:c7:4c: 54:47:f7:ab:98:f8:7b:02:0c:41:3a:70:5c:00:02:63:7e:0c: bf:1f:90:8c:e9:67:82:97:4e:b9:1f:61:8d:5f:5f:fb:cb:e9: 80:08:cf:58:ef:ac:99:94:ad:26:7a:8c:9c:87:6f:d5:f3:1c: 97:09:d2:c2:80:47:ad:19:b0:fb:0d:b0:d6:9c:7a:bd:91:7d: 98:06:66:32:ca:ae:4a:c2:07:5f:b1:6d:51:46:86:76:18:e4: cf:8e:f1:64:73:4e:d6:4c:b6:b1:52:f0:1b:0d:c9:cc:31:42: fd:d4:93:e5:ea:d2:36:a9:5a:96:1e:c0:3e:ce:62:a9:f6:8c: 8d:82:cc:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUxMTA0MTkyMTI0WhcNMjUxMTExMTkyMTI0WjAYMRYwFAYD VQQDEw02OTBhNTIzNS0wNDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0di0u1dLR4LbxwvE7rYV2M0jCJkT3kCzgqh1KYLlMqLuTbpAlOE8KVqYKXHS svfTJwQ8rgLw9o3bwdLQY9bM4NpymEFclnQyVfSeRcM2iaikiYvx5KpHE7mWhC+Y 24yp6oawA36ZTk0+7p+evfUOYyZgOnhgq7Wbsm4zTHe+tOobZaYg/57HmqOuNEwY nD7TGpjrNLC46NRuSFAocMEmlU+fwmQRzHz9zTeLoXDwSsF7wY7FthulkK8ESEoW j1qwBlvsNQM12sc0P+lA12YuGUWQIsrJt7ScZ1+uCSzhz+ZkdxE2NkBs1k5xfHMA b8j0XxXTMxDq5KLHMF+OMEOY7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD66ICYZ 9Ja0g1KDh/RAr9rbVvxgMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkrC5YyTf1HeZTQM8xq8RstoqvMzlzTQaJYadgITWrjxG1so5sCOVO Lc0djdD5asUllnxeDXobGYXB0BMbAUxHr8Mpvk/3szDNwdex81tVr31PheLg73Ba gEl886u7/dKAFqTeEBmFUWvfTqgYEb7hnkibLWQ2dlzoQ3cBx0xUR/ermPh7AgxB OnBcAAJjfgy/H5CM6WeCl065H2GNX1/7y+mACM9Y76yZlK0meoych2/V8xyXCdLC gEetGbD7DbDWnHq9kX2YBmYyyq5KwgdfsW1RRoZ2GOTPjvFkc07WTLaxUvAbDcnM MUL91JPl6tI2qVqWHsA+zmKp9oyNgswO -----END CERTIFICATE-----Generated at Wed Nov 5 13:07:01 2025 by rpki-client