$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft File: iS3iAjP9DGSOLnuflZUPOpaBfL8.mft (raw, json) Hash identifier: OsVsx1ttEhXhMkk4J8GbTGAfJOEUNtd3gltJI6btg+c= Subject key identifier: 07:BA:A6:78:61:8E:BF:0F:42:16:50:00:A4:A6:BA:37:C1:8E:09:D4 Authority key identifier: 89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF Certificate issuer: /CN=A91C7175/serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft Manifest number: DF Signing time: Wed 05 Nov 2025 05:42:19 +0000 Manifest this update: Wed 05 Nov 2025 05:42:18 +0000 Manifest next update: Wed 12 Nov 2025 05:42:18 +0000 Files and hashes: 1: iS3iAjP9DGSOLnuflZUPOpaBfL8.crl (hash: 643F5QKviXpl0O+IoBRmRTXIYkHc00BQhRB96iheJWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:42:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7175, serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Validity Not Before: Nov 5 05:42:18 2025 GMT Not After : Nov 12 05:42:18 2025 GMT Subject: CN=690ae3bb-3553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f1:95:d2:e5:7a:5f:d6:4f:f2:c4:29:24:43: 96:59:6f:d2:fa:fb:89:b2:77:df:e6:3a:4e:31:a0: 6e:03:ba:07:1f:0a:d9:af:b7:c1:54:dc:42:20:51: 4a:a1:36:3d:4d:db:3a:09:eb:fe:ea:df:52:3e:f1: 82:ac:b2:be:e9:40:58:5f:e9:bd:56:84:be:ae:3b: c1:50:9f:75:da:09:e7:6b:33:d2:4b:fb:33:bb:5d: 57:73:ce:57:31:3d:66:c7:ec:97:29:b4:0a:44:17: 1f:94:06:aa:39:85:48:1a:3f:58:d8:da:1c:aa:19: 0f:bc:35:a6:bf:db:48:9b:e5:0a:37:ab:b2:00:e7: c8:3c:88:75:32:7b:d7:78:ec:e1:45:d2:62:3c:f2: 4a:af:fe:ab:5f:f0:41:09:10:87:2e:95:d5:5c:a5: ee:42:fa:bf:96:13:72:f7:d4:53:f3:b0:b0:af:5a: 18:d8:5a:92:61:d1:c8:3a:61:8b:73:72:0d:6d:20: d0:35:00:1d:c6:77:5a:69:82:aa:cd:19:94:d8:f4: bf:b2:e8:64:1c:28:7b:e8:22:e5:df:03:81:8b:6c: e4:ee:95:bc:3d:b2:46:3c:c6:f5:da:27:08:b3:15: c2:bd:ea:2a:23:75:1f:ce:1a:17:0a:71:80:08:ff: 0b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BA:A6:78:61:8E:BF:0F:42:16:50:00:A4:A6:BA:37:C1:8E:09:D4 X509v3 Authority Key Identifier: keyid:89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:60:9b:53:d1:77:cd:53:59:82:b0:4c:ab:ca:f1:96:b4:fc: 0b:6a:e9:15:13:61:a2:4b:81:bc:13:2c:72:e5:ee:46:4b:6a: da:cc:4c:c6:7e:37:05:38:48:ae:9b:b7:5f:2a:3c:a1:46:63: 29:14:fc:e5:95:36:55:ec:45:e5:02:b5:a5:09:eb:94:8c:18: 7f:0f:af:f7:2d:82:3c:84:d5:b8:4a:6a:0f:d6:d4:21:3c:a3: 26:1e:b2:54:1d:cd:5a:cc:27:04:36:ce:56:ae:2b:bb:ad:31: 00:6c:f3:1c:6d:f7:7f:69:91:b3:17:a3:a1:b1:55:8d:52:48: 38:55:a5:7e:7e:ae:de:e3:b0:e6:65:3c:c7:3f:60:c7:c6:4d: 9a:d2:14:ef:82:d4:f5:ee:98:ca:26:b5:e0:4b:63:16:ba:7b: 71:d7:06:64:44:84:07:ef:8a:6f:f2:70:97:a5:2c:a8:8b:39: 85:bb:4b:5d:3e:7c:e7:d1:95:db:ca:81:ef:3d:ff:61:eb:a7: 59:6c:ba:92:90:e4:22:b0:06:c9:36:1d:04:57:e1:1a:bb:10: ee:01:52:95:eb:55:f4:95:27:e0:21:bd:31:1d:8e:8f:c7:99: eb:ff:0d:57:bd:cc:be:0f:b3:7d:0b:40:c3:16:99:db:a9:1e: d6:13:6f:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxNzUxMTAvBgNVBAUTKDg5MkRFMjAyMzNGRDBDNjQ4RTJFN0I5Rjk1OTUwRjNB OTY4MTdDQkYwHhcNMjUxMTA1MDU0MjE4WhcNMjUxMTEyMDU0MjE4WjAYMRYwFAYD VQQDEw02OTBhZTNiYi0zNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fGV0uV6X9ZP8sQpJEOWWW/S+vuJsnff5jpOMaBuA7oHHwrZr7fBVNxCIFFK oTY9Tds6Cev+6t9SPvGCrLK+6UBYX+m9VoS+rjvBUJ912gnnazPSS/szu11Xc85X MT1mx+yXKbQKRBcflAaqOYVIGj9Y2NocqhkPvDWmv9tIm+UKN6uyAOfIPIh1MnvX eOzhRdJiPPJKr/6rX/BBCRCHLpXVXKXuQvq/lhNy99RT87Cwr1oY2FqSYdHIOmGL c3INbSDQNQAdxndaaYKqzRmU2PS/suhkHCh76CLl3wOBi2zk7pW8PbJGPMb12icI sxXCveoqI3UfzhoXCnGACP8LPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAe6pnhh jr8PQhZQAKSmujfBjgnUMB8GA1UdIwQYMBaAFIkt4gIz/Qxkji57n5WVDzqWgXy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzE3NS9GMjJCOUNDQTY4 RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9pUzNpQWpQOURHU09MbnVmbFpVUE9wYUJm TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lTM2lBalA5REdTT0xudWZsWlVQT3BhQmZMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzE3NS9GMjJCOUNDQTY4RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9pUzNpQWpQOURH U09MbnVmbFpVUE9wYUJmTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpYJtT0XfNU1mCsEyryvGWtPwLaukVE2GiS4G8Eyxy5e5GS2razEzG fjcFOEium7dfKjyhRmMpFPzllTZV7EXlArWlCeuUjBh/D6/3LYI8hNW4SmoP1tQh PKMmHrJUHc1azCcENs5Wriu7rTEAbPMcbfd/aZGzF6OhsVWNUkg4VaV+fq7e47Dm ZTzHP2DHxk2a0hTvgtT17pjKJrXgS2MWuntx1wZkRIQH74pv8nCXpSyoizmFu0td Pnzn0ZXbyoHvPf9h66dZbLqSkOQisAbJNh0EV+EauxDuAVKV61X0lSfgIb0xHY6P x5nr/w1Xvcy+D7N9C0DDFpnbqR7WE2+R -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:36 2025 by rpki-client