$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft File: iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft (raw, json) Hash identifier: 9P9TLrCeNy/oC3QvKK6zgNM2UdRxEvyuzrezDNG0l8c= Subject key identifier: DA:1E:9D:19:D2:4A:DA:D3:1B:B0:A1:49:AF:D3:41:00:62:1A:CA:68 Authority key identifier: 89:78:4D:6D:93:8B:05:CC:3B:7B:66:6E:5E:7A:EE:92:23:DE:4D:70 Certificate issuer: /CN=A91D8185/serialNumber=89784D6D938B05CC3B7B666E5E7AEE9223DE4D70 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft Manifest number: 24 Signing time: Mon 03 Nov 2025 07:44:19 +0000 Manifest this update: Mon 03 Nov 2025 07:44:18 +0000 Manifest next update: Mon 10 Nov 2025 07:44:18 +0000 Files and hashes: 1: iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl (hash: k+ktZ47gdwMlCd/8VQ9RYS/SR///i0IydApEJGovxxk=) 2: CC2C3CB684AC11F0B7B8977DC4F9AE02.roa (hash: Iyg31gxgmZNKpKPcyuwxT2WShJvbdC1BGcvDKYneqcE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:44:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8185, serialNumber=89784D6D938B05CC3B7B666E5E7AEE9223DE4D70 Validity Not Before: Nov 3 07:44:18 2025 GMT Not After : Nov 10 07:44:18 2025 GMT Subject: CN=69085d53-301f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:87:67:7f:c3:f6:d6:7e:fd:9d:fa:fd:5e:12: c3:f9:eb:dc:bf:47:f3:d8:57:77:64:d5:50:29:82: f8:5b:8e:1c:6a:ac:ef:f5:5e:25:19:bf:0f:45:6d: 4c:b8:cd:09:18:77:98:13:46:b4:8a:50:37:51:18: 5e:70:1c:11:cc:ed:a4:e9:3a:c2:9e:fb:42:e5:aa: e5:17:6e:92:75:91:3b:00:b2:5f:ee:2d:c6:48:b7: b0:2c:49:e5:5d:43:ac:87:df:66:3b:a0:3a:ad:5c: 4b:21:2d:87:91:4c:85:bd:f4:4f:31:98:90:43:a8: de:a2:06:89:70:d7:de:99:ed:20:cc:5b:c4:73:b5: 3e:8a:66:9a:7c:a7:3a:a3:ec:ad:9f:17:df:7d:fc: 79:5c:80:d3:74:71:db:aa:ee:72:dc:ad:1b:26:9f: 33:27:f8:b2:51:7f:ed:65:e7:1a:bd:46:53:c2:5e: 87:d1:6d:71:fb:8e:85:f4:42:f8:f3:75:98:ef:c9: d9:82:1a:8c:ab:29:c3:53:c3:f0:bf:49:6d:a3:d8: ef:59:69:36:ff:a8:15:7e:3b:a3:1e:21:94:20:87: 46:80:14:2b:9c:dc:8c:2b:40:3d:b1:6b:b3:1f:84: 03:63:cb:1d:01:c7:a7:96:d6:58:f8:5c:4f:6f:62: 08:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1E:9D:19:D2:4A:DA:D3:1B:B0:A1:49:AF:D3:41:00:62:1A:CA:68 X509v3 Authority Key Identifier: keyid:89:78:4D:6D:93:8B:05:CC:3B:7B:66:6E:5E:7A:EE:92:23:DE:4D:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXhNbZOLBcw7e2ZuXnrukiPeTXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8185/8501153284AC11F08D3AB979C4F9AE02/iXhNbZOLBcw7e2ZuXnrukiPeTXA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:7b:a8:91:7e:7c:5d:19:c2:e5:45:da:d7:49:2d:6d:dd:05: d7:e2:7a:87:c1:1d:9b:ae:6f:57:0e:ec:1e:9f:c6:94:66:20: 4d:25:a9:63:e8:0d:8b:42:6f:78:13:f7:62:f0:b2:7d:2b:ae: d7:86:2c:fb:8f:21:bf:d7:2b:69:80:5b:94:79:66:58:d3:d8: f2:f3:c8:c4:6b:b3:41:e7:36:64:1c:df:1d:d9:cc:3c:17:30: e2:4b:a9:eb:72:14:3f:e2:01:2a:13:9c:d6:27:98:d0:26:a3: 5d:35:62:6b:0c:6f:38:53:1b:84:2a:e9:db:fb:f5:06:ba:d2: a2:40:23:24:1f:85:08:d3:bc:ff:ab:b7:ea:76:40:79:07:0b: e1:c3:e3:82:38:9b:c5:b7:fc:15:46:bb:9f:04:29:18:51:84: 66:cb:40:74:4d:ec:75:e1:2c:e5:62:79:c0:f0:4f:c1:8b:23: 0b:7d:eb:74:a9:9b:eb:07:f5:92:48:b2:05:1a:e6:6e:8d:56: fd:13:1d:78:08:e1:e6:f4:8f:93:0e:c5:d2:e4:60:62:a5:af: b2:7d:8c:d7:4e:3f:54:e6:63:c1:38:ac:00:0c:63:3e:f1:ce: a4:8e:d7:a9:e6:fe:41:b7:99:1e:87:60:86:f8:1c:e8:c9:21: 84:be:c4:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODE4NTExMC8GA1UEBRMoODk3ODRENkQ5MzhCMDVDQzNCN0I2NjZFNUU3QUVFOTIy M0RFNEQ3MDAeFw0yNTExMDMwNzQ0MThaFw0yNTExMTAwNzQ0MThaMBgxFjAUBgNV BAMTDTY5MDg1ZDUzLTMwMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDh2d/w/bWfv2d+v1eEsP569y/R/PYV3dk1VApgvhbjhxqrO/1XiUZvw9FbUy4 zQkYd5gTRrSKUDdRGF5wHBHM7aTpOsKe+0LlquUXbpJ1kTsAsl/uLcZIt7AsSeVd Q6yH32Y7oDqtXEshLYeRTIW99E8xmJBDqN6iBolw196Z7SDMW8RztT6KZpp8pzqj 7K2fF999/HlcgNN0cduq7nLcrRsmnzMn+LJRf+1l5xq9RlPCXofRbXH7joX0Qvjz dZjvydmCGoyrKcNTw/C/SW2j2O9ZaTb/qBV+O6MeIZQgh0aAFCuc3IwrQD2xa7Mf hANjyx0Bx6eW1lj4XE9vYgilAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2h6dGdJK 2tMbsKFJr9NBAGIaymgwHwYDVR0jBBgwFoAUiXhNbZOLBcw7e2ZuXnrukiPeTXAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTg1Lzg1MDExNTMyODRB QzExRjA4RDNBQjk3OUM0RjlBRTAyL2lYaE5iWk9MQmN3N2UyWnVYbnJ1a2lQZVRY QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhoTmJaT0xCY3c3ZTJadVhucnVraVBlVFhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MTg1Lzg1MDExNTMyODRBQzExRjA4RDNBQjk3OUM0RjlBRTAyL2lYaE5iWk9MQmN3 N2UyWnVYbnJ1a2lQZVRYQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMB7qJF+fF0ZwuVF2tdJLW3dBdfieofBHZuub1cO7B6fxpRmIE0lqWPo DYtCb3gT92Lwsn0rrteGLPuPIb/XK2mAW5R5ZljT2PLzyMRrs0HnNmQc3x3ZzDwX MOJLqetyFD/iASoTnNYnmNAmo101YmsMbzhTG4Qq6dv79Qa60qJAIyQfhQjTvP+r t+p2QHkHC+HD44I4m8W3/BVGu58EKRhRhGbLQHRN7HXhLOViecDwT8GLIwt963Sp m+sH9ZJIsgUa5m6NVv0THXgI4eb0j5MOxdLkYGKlr7J9jNdOP1TmY8E4rAAMYz7x zqSO16nm/kG3mR6HYIb4HOjJIYS+xGg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:40 2025 by rpki-client