$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: AE0/DkTuZbC+IoQU/K23F6v4xeSl6hY80ZK0NhQnSVo= Subject key identifier: 0D:53:93:F7:25:FB:9E:28:EB:24:2A:09:D5:F3:4C:F7:8F:42:0F:A3 Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: B2 Signing time: Wed 05 Nov 2025 06:19:52 +0000 Manifest this update: Wed 05 Nov 2025 06:19:51 +0000 Manifest next update: Wed 12 Nov 2025 06:19:51 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: Hg5+ZRGBski3b2S/iG8cCgpt6hlfRPnDfbKBKCeCnVY=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Nov 5 06:19:51 2025 GMT Not After : Nov 12 06:19:51 2025 GMT Subject: CN=690aec88-fb2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:df:e5:23:e8:1e:31:0e:96:b3:bf:78:06:92: f7:e0:b4:42:8f:23:f1:3d:8d:57:f6:18:b4:da:e0: 85:c4:56:ca:8d:af:be:f8:e6:c6:18:9a:1b:b0:43: dc:3b:7f:41:7b:2a:1d:78:e9:43:3d:3c:43:13:23: 9a:a6:93:28:71:64:d7:6f:fb:fd:6a:4a:2b:56:43: df:46:a3:67:25:6c:44:e0:a0:68:c4:8d:f3:2e:4b: c0:64:f0:4b:be:df:97:b9:93:6e:04:86:8c:fb:ec: 32:8b:f0:7e:58:c8:5f:c3:24:c4:21:f7:5b:04:40: 81:ed:97:3d:78:7d:2d:2d:16:da:d4:ac:e0:f9:30: 5d:39:a2:d3:1d:40:95:f3:b3:89:af:30:95:4a:89: bd:0b:d9:bb:1c:bf:7a:2b:0c:b2:ef:ed:9b:02:f0: 08:16:95:a7:48:2d:66:16:94:9c:6a:f8:3c:47:c5: bb:a7:9e:f3:26:42:70:ad:46:5f:2e:16:ef:5e:07: 58:77:33:c9:3d:d8:54:f3:b2:f4:e6:32:c9:ca:48: 18:e8:25:ed:97:40:dd:ed:db:2e:e8:36:ab:94:bd: 4b:cd:9c:a4:3c:7c:45:48:46:b2:9e:4a:fd:57:ad: 85:ac:b9:8d:ac:78:f0:c1:a6:6d:9b:22:1d:0e:a2: bd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:53:93:F7:25:FB:9E:28:EB:24:2A:09:D5:F3:4C:F7:8F:42:0F:A3 X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:d4:3c:c1:6e:76:ce:6a:6b:d8:ee:ba:1b:5e:07:33:4f:a4: 96:4e:99:aa:97:85:25:e5:ec:8b:a1:bc:aa:3d:d9:cc:3f:75: 33:ce:3e:60:24:0c:f2:25:c3:30:ac:ff:30:02:64:4c:1e:24: 1d:63:68:77:be:ac:7e:61:b6:a2:36:4c:7e:d0:8c:35:aa:d2: 02:8c:c5:7e:36:e6:9d:ef:37:f8:83:d0:b2:0a:6c:ea:51:9c: cd:d5:dc:d6:10:c3:b0:5a:b0:4a:98:05:ba:3a:1f:a5:4f:8b: c6:ac:1c:73:a3:45:a5:03:d7:df:7a:37:d3:08:da:33:b0:10: 45:d9:24:46:9e:e9:8d:dc:e8:2d:3f:8d:62:0d:99:01:03:5b: 02:ac:d6:2b:12:a7:5e:47:7b:20:81:37:ab:d6:6e:77:33:54: 53:6a:2e:75:fb:d7:0c:60:47:57:ee:fa:f9:07:e2:2a:36:48: 3c:67:40:40:7c:fe:3e:54:a2:7a:67:2d:dd:03:d4:41:5b:93: 5c:a5:33:07:8f:cc:00:2c:9c:6c:9c:bf:9e:d8:b9:c2:7a:5c: 12:84:ab:d4:cd:d8:42:2d:58:2b:97:8f:78:a1:d4:f2:c6:e2: dc:74:85:87:12:aa:ca:42:35:4a:8f:40:8d:a6:cc:7a:88:28: 28:e7:c1:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjUxMTA1MDYxOTUxWhcNMjUxMTEyMDYxOTUxWjAYMRYwFAYD VQQDEw02OTBhZWM4OC1mYjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N/lI+geMQ6Ws794BpL34LRCjyPxPY1X9hi02uCFxFbKja+++ObGGJobsEPc O39BeyodeOlDPTxDEyOappMocWTXb/v9akorVkPfRqNnJWxE4KBoxI3zLkvAZPBL vt+XuZNuBIaM++wyi/B+WMhfwyTEIfdbBECB7Zc9eH0tLRba1Kzg+TBdOaLTHUCV 87OJrzCVSom9C9m7HL96Kwyy7+2bAvAIFpWnSC1mFpScavg8R8W7p57zJkJwrUZf LhbvXgdYdzPJPdhU87L05jLJykgY6CXtl0Dd7dsu6DarlL1LzZykPHxFSEaynkr9 V62FrLmNrHjwwaZtmyIdDqK9iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1Tk/cl +54o6yQqCdXzTPePQg+jMB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD1DzBbnbOamvY7robXgczT6SWTpmql4Ul5eyLobyqPdnMP3Uzzj5g JAzyJcMwrP8wAmRMHiQdY2h3vqx+YbaiNkx+0Iw1qtICjMV+Nuad7zf4g9CyCmzq UZzN1dzWEMOwWrBKmAW6Oh+lT4vGrBxzo0WlA9ffejfTCNozsBBF2SRGnumN3Ogt P41iDZkBA1sCrNYrEqdeR3sggTer1m53M1RTai51+9cMYEdX7vr5B+IqNkg8Z0BA fP4+VKJ6Zy3dA9RBW5NcpTMHj8wALJxsnL+e2LnCelwShKvUzdhCLVgrl494odTy xuLcdIWHEqrKQjVKj0CNpsx6iCgo58Ek -----END CERTIFICATE-----Generated at Wed Nov 5 22:02:36 2025 by rpki-client