$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft File: i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft (raw, json) Hash identifier: vNR6O3l3NGtSEPPFuCMIEI50+iXwM7+xQ0vJJriLr+g= Subject key identifier: 47:8C:39:DE:94:FE:AC:5B:8B:EA:47:A8:D2:EA:30:78:B0:F6:61:A1 Authority key identifier: 8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C Certificate issuer: /CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft Manifest number: 0142 Signing time: Wed 05 Nov 2025 04:33:33 +0000 Manifest this update: Wed 05 Nov 2025 04:33:33 +0000 Manifest next update: Wed 12 Nov 2025 04:33:33 +0000 Files and hashes: 1: i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl (hash: ZqyKPG3cBuFL3xHvGo3KLZrR0vDZsqzW+lUJKLJZbSw=) 2: 52333EB4CFAE11EEB928CD25C4F9AE02.roa (hash: 6P1QigKgDh/og+D4IavE2ADNPbY260YTNHIn9cQtib4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0EDF, serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Validity Not Before: Nov 5 04:33:33 2025 GMT Not After : Nov 12 04:33:33 2025 GMT Subject: CN=690ad39d-3adb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:ca:92:37:26:57:8b:ea:86:db:23:59:ac: 2d:fa:81:d1:a3:43:cc:30:97:f0:ef:c3:02:d8:ee: 87:a6:e6:42:bd:ac:cd:b9:46:69:d7:de:de:fc:85: a1:66:a3:34:b8:b9:a3:34:8f:bb:4c:fe:74:e7:f2: f1:57:d3:23:9b:94:72:e1:1e:74:d0:e8:3c:8b:97: e8:42:c4:bd:d8:cc:49:f3:7e:ba:e8:98:20:09:a1: cc:8f:7c:10:2c:46:84:e4:6a:cb:be:91:8b:99:f8: 05:c3:02:df:48:6e:3e:26:df:80:97:52:fc:ed:05: 4c:4e:2f:28:b5:f0:a0:b8:ed:1a:57:56:78:2b:89: b0:38:fe:a6:f0:a1:98:2c:3c:90:f3:89:58:f4:9c: c0:46:95:c3:8c:1d:da:ad:8d:da:2f:4c:9b:84:d3: 75:bc:63:b1:cf:ff:7c:93:3f:73:e3:5a:43:78:dd: 5d:d6:3c:75:99:62:5c:1c:94:79:7b:6f:80:0a:62: 39:75:5c:98:79:d7:44:c8:f7:46:51:4d:1b:00:7c: 81:c0:62:2a:d4:01:48:58:9b:01:e5:a4:91:ae:fd: a8:cb:4e:55:9e:a3:50:ad:49:8c:97:1a:4e:26:44: 93:c2:6f:06:73:2d:19:7d:b7:f7:77:84:30:f7:65: 8f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:8C:39:DE:94:FE:AC:5B:8B:EA:47:A8:D2:EA:30:78:B0:F6:61:A1 X509v3 Authority Key Identifier: keyid:8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:90:13:14:b8:f9:28:d5:c2:2b:b7:77:ee:83:75:4b:24:58: a7:74:6b:27:00:20:9f:b9:98:df:8d:e0:c2:87:6f:45:42:df: c4:9d:75:b0:41:f1:91:9c:a0:09:16:8c:60:00:20:1d:70:40: 64:11:44:f0:4c:c3:c8:4e:73:55:1a:c5:52:7d:94:bd:b0:89: 66:41:c0:c7:0c:20:21:65:e4:65:31:97:89:ae:ca:ee:75:8a: 48:17:af:14:9a:0b:cf:85:d6:cf:f7:b8:f2:65:52:32:21:9d: 88:99:a5:20:c1:d7:18:c3:8f:96:f7:5b:6b:e5:1c:6e:e3:de: 1d:6e:00:99:35:1e:46:f2:ea:70:9f:3c:f6:45:46:09:2a:07: 65:ab:62:15:63:8f:c9:d7:5c:0d:b1:da:1e:35:f6:45:b3:27: a8:1a:f0:0f:f2:0a:d4:36:ae:04:47:b6:79:2c:53:ac:c8:3a: f5:55:79:97:94:5a:48:d7:09:f0:24:b3:9a:5a:aa:36:81:15: 1b:ff:3b:2b:4c:ff:d8:b2:64:9c:28:18:99:f5:f1:68:ec:f6: 92:ce:66:3f:f7:ef:82:2f:30:58:0d:7f:3c:d3:75:e7:10:96: ac:1f:c5:50:8f:da:56:9a:31:da:72:86:42:5a:be:51:d4:6d: 8c:22:4a:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFREYxMTAvBgNVBAUTKDhCNjQxOTY4NjkxMTdCOTlCODc5QjREQ0JBRjA0Mjkw QkMxNjgxMEMwHhcNMjUxMTA1MDQzMzMzWhcNMjUxMTEyMDQzMzMzWjAYMRYwFAYD VQQDEw02OTBhZDM5ZC0zYWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO3KkjcmV4vqhtsjWawt+oHRo0PMMJfw78MC2O6HpuZCvazNuUZp197e/IWh ZqM0uLmjNI+7TP505/LxV9Mjm5Ry4R500Og8i5foQsS92MxJ83666JggCaHMj3wQ LEaE5GrLvpGLmfgFwwLfSG4+Jt+Al1L87QVMTi8otfCguO0aV1Z4K4mwOP6m8KGY LDyQ84lY9JzARpXDjB3arY3aL0ybhNN1vGOxz/98kz9z41pDeN1d1jx1mWJcHJR5 e2+ACmI5dVyYeddEyPdGUU0bAHyBwGIq1AFIWJsB5aSRrv2oy05VnqNQrUmMlxpO JkSTwm8Gcy0Zfbf3d4Qw92WPOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeMOd6U /qxbi+pHqNLqMHiw9mGhMB8GA1UdIwQYMBaAFItkGWhpEXuZuHm03LrwQpC8FoEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEVERi8zREUzOUU4MkNG QUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1bTRlYlRjdXZCQ2tMd1dn UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyUVphR2tSZTVtNGViVGN1dkJDa0x3V2dRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEVERi8zREUzOUU4MkNGQUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1 bTRlYlRjdXZCQ2tMd1dnUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDfkBMUuPko1cIrt3fug3VLJFindGsnACCfuZjfjeDCh29FQt/EnXWw QfGRnKAJFoxgACAdcEBkEUTwTMPITnNVGsVSfZS9sIlmQcDHDCAhZeRlMZeJrsru dYpIF68UmgvPhdbP97jyZVIyIZ2ImaUgwdcYw4+W91tr5Rxu494dbgCZNR5G8upw nzz2RUYJKgdlq2IVY4/J11wNsdoeNfZFsyeoGvAP8grUNq4ER7Z5LFOsyDr1VXmX lFpI1wnwJLOaWqo2gRUb/zsrTP/YsmScKBiZ9fFo7PaSzmY/9++CLzBYDX8803Xn EJasH8VQj9pWmjHacoZCWr5R1G2MIkqz -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:14 2025 by rpki-client