$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: g3oSoHAG6R0XoTdNpJZFafImyzUO9dKJxVODO0Oze2Q= Subject key identifier: 29:10:72:00:40:14:17:32:5B:94:F2:BF:C6:DE:51:F9:2D:41:03:E2 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: D5 Signing time: Mon 03 Nov 2025 05:37:03 +0000 Manifest this update: Mon 03 Nov 2025 05:37:03 +0000 Manifest next update: Mon 10 Nov 2025 05:37:03 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: WRokoNbXMcuHT0JJ7TDXLXQgUOaCXWrxSQq9MDCETTg=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Nov 3 05:37:03 2025 GMT Not After : Nov 10 05:37:03 2025 GMT Subject: CN=69083f7f-0891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:ca:44:72:a2:25:ce:7d:47:a8:f9:5f:b1: 7d:5d:3b:dc:46:48:c1:e1:b8:6e:b7:f1:de:4b:81: 46:83:81:56:ab:21:6f:4d:9d:ad:65:62:8b:87:e2: dd:97:76:80:d5:ea:6c:ef:75:0d:22:bb:69:53:a1: 13:9a:8b:d9:e6:50:6b:f1:45:46:7b:bc:82:80:d2: 63:b1:2c:d1:62:76:00:7a:4a:c4:5d:95:9d:4e:07: 8b:5a:bf:71:47:4f:ff:04:4b:b4:98:88:5f:76:d8: 4d:f7:e6:2b:b7:03:17:6f:0a:4f:18:68:ed:8d:ca: f4:e6:74:f3:ad:35:0d:94:90:1a:ea:e2:e8:be:d0: 88:b1:1d:77:15:85:61:86:96:c7:a6:92:0d:c5:d0: 0a:b6:6d:20:d1:5e:ff:e6:e5:60:f8:6e:1d:a8:23: 12:26:9a:85:61:35:58:5e:d1:b9:6d:19:3a:6a:04: 4f:c9:d1:38:b9:06:45:52:16:f2:4a:11:c1:53:eb: 3f:8e:b1:d8:7d:6a:aa:5d:38:8b:53:5e:9f:37:9a: cd:fb:c1:4a:ee:6d:31:46:11:0d:3b:f9:4f:35:bd: a0:3a:67:2a:ce:cb:31:cc:43:55:d1:67:3e:cb:57: 84:60:9d:f7:c4:f7:e5:7e:c1:d6:f4:23:f9:d3:32: ad:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:10:72:00:40:14:17:32:5B:94:F2:BF:C6:DE:51:F9:2D:41:03:E2 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:7b:f4:0a:09:e8:fe:c5:80:23:66:e6:40:ed:db:f3:89:5c: af:f2:57:41:00:21:62:2e:76:29:5d:5b:17:ea:af:7b:1c:d9: 8d:79:3f:97:3e:27:47:67:fd:9e:c7:16:1b:b1:20:96:c5:62: 72:33:c4:6b:27:2d:54:a0:27:43:bc:e5:28:0c:7a:dc:01:07: 84:2d:fa:48:ef:ff:6c:04:d3:14:1b:41:0d:54:8f:8a:4e:ed: 75:09:d4:b3:3c:aa:cb:40:2e:f0:a7:30:d0:ce:79:77:55:d4: fc:41:28:2b:d8:e3:d5:dd:14:33:fa:a8:40:ec:ab:ac:b9:cc: 3f:41:dd:a8:b7:6d:3c:41:89:08:20:75:31:d0:2a:1e:ad:b4: 3c:95:ab:db:a5:38:5b:eb:91:45:0d:96:67:a4:40:8b:f5:e4: a2:71:19:31:96:b4:1c:98:08:66:c5:26:24:64:c0:14:ef:c5: 2b:22:e8:10:1f:10:83:17:b0:e8:d8:f2:19:e4:7f:92:da:b4: 77:37:5b:26:0a:09:e7:07:5c:21:bc:03:ff:ec:ea:80:ee:ab: 07:32:30:df:fc:05:b1:f5:33:6a:59:5a:e6:66:f1:c1:b0:67: a0:a4:44:55:66:8e:0e:72:39:e5:40:69:f3:50:91:6a:70:e7: ee:a2:22:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUxMTAzMDUzNzAzWhcNMjUxMTEwMDUzNzAzWjAYMRYwFAYD VQQDEw02OTA4M2Y3Zi0wODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHXKRHKiJc59R6j5X7F9XTvcRkjB4bhut/HeS4FGg4FWqyFvTZ2tZWKLh+Ld l3aA1eps73UNIrtpU6ETmovZ5lBr8UVGe7yCgNJjsSzRYnYAekrEXZWdTgeLWr9x R0//BEu0mIhfdthN9+YrtwMXbwpPGGjtjcr05nTzrTUNlJAa6uLovtCIsR13FYVh hpbHppINxdAKtm0g0V7/5uVg+G4dqCMSJpqFYTVYXtG5bRk6agRPydE4uQZFUhby ShHBU+s/jrHYfWqqXTiLU16fN5rN+8FK7m0xRhENO/lPNb2gOmcqzssxzENV0Wc+ y1eEYJ33xPflfsHW9CP50zKtNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkQcgBA FBcyW5Tyv8beUfktQQPiMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCe/QKCej+xYAjZuZA7dvziVyv8ldBACFiLnYpXVsX6q97HNmNeT+X PidHZ/2exxYbsSCWxWJyM8RrJy1UoCdDvOUoDHrcAQeELfpI7/9sBNMUG0ENVI+K Tu11CdSzPKrLQC7wpzDQznl3VdT8QSgr2OPV3RQz+qhA7Kusucw/Qd2ot208QYkI IHUx0CoerbQ8lavbpThb65FFDZZnpECL9eSicRkxlrQcmAhmxSYkZMAU78UrIugQ HxCDF7Do2PIZ5H+S2rR3N1smCgnnB1whvAP/7OqA7qsHMjDf/AWx9TNqWVrmZvHB sGegpERVZo4OcjnlQGnzUJFqcOfuoiJR -----END CERTIFICATE-----Generated at Tue Nov 4 21:29:01 2025 by rpki-client