$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft File: pIqTm2fbIrr3fgB7Id87dFtig5A.mft (raw, json) Hash identifier: Bgf/NVRrXHDWdeKKWfNXr61sb0E1BFu8vKwalryNpYo= Subject key identifier: 5C:00:DB:7B:E0:1C:2F:B2:73:70:6A:77:FB:43:56:5D:EF:F9:DC:09 Authority key identifier: A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 Certificate issuer: /CN=A91E1ED2/serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft Manifest number: 06B0 Signing time: Tue 04 Nov 2025 22:18:55 +0000 Manifest this update: Tue 04 Nov 2025 22:18:54 +0000 Manifest next update: Tue 11 Nov 2025 22:18:54 +0000 Files and hashes: 1: pIqTm2fbIrr3fgB7Id87dFtig5A.crl (hash: h+GDjtEgVRyJA8S4+WdJTxX9LEw+pVn0cCL0J0f1k+0=) 2: A3AA461082BE11EB93A19A35C4F9AE02.roa (hash: pKScxQMxg1WdvXI6uB4aKpZXfYDWDJw+VDC0QK45Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1ED2, serialNumber=A48A939B67DB22BAF77E007B21DF3B745B628390 Validity Not Before: Nov 4 22:18:54 2025 GMT Not After : Nov 11 22:18:54 2025 GMT Subject: CN=690a7bcf-6a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:53:6e:2c:c8:28:8c:07:20:b0:10:09:e7:85: 52:74:a4:83:8f:6d:b7:f4:c9:a5:8f:38:2d:1f:52: b7:a9:f9:6f:d1:e6:bc:a6:84:41:6a:64:21:92:4a: cd:37:79:79:09:e3:55:53:bb:6d:48:37:61:1d:a2: 09:87:ae:8f:47:99:16:32:13:97:07:eb:96:54:2f: 25:99:46:9b:33:59:59:2a:a7:22:07:5a:4d:ac:b2: 94:6e:8f:27:61:87:bf:65:cf:5c:d5:2d:b2:fc:30: 95:73:ed:82:7b:3f:18:8b:3d:b2:dc:66:57:a9:2e: 1f:f8:76:03:0d:6e:f1:c6:f2:0f:9c:81:3e:b8:bb: 08:ee:03:c0:05:05:3d:3e:72:65:4e:b7:37:d4:c5: df:b4:a0:17:2b:76:b0:b4:78:3e:fd:f1:a8:50:b5: 60:2d:6c:19:83:96:83:c9:b3:fd:52:c2:d0:15:af: 09:01:dc:0e:dd:82:62:b0:ad:61:20:3d:3f:3b:f8: c8:bc:c6:98:eb:4e:62:69:a9:73:5a:9f:ba:61:b6: 1b:0e:ba:ea:69:6d:26:00:51:ed:cd:d1:df:bf:74: 9c:82:a3:47:ca:5d:5d:84:6d:9a:33:b5:9f:f7:cb: 55:17:97:b0:71:d5:80:dc:30:2e:db:64:a4:40:0c: e3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:00:DB:7B:E0:1C:2F:B2:73:70:6A:77:FB:43:56:5D:EF:F9:DC:09 X509v3 Authority Key Identifier: keyid:A4:8A:93:9B:67:DB:22:BA:F7:7E:00:7B:21:DF:3B:74:5B:62:83:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pIqTm2fbIrr3fgB7Id87dFtig5A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1ED2/3FE8DE6C82BD11EB9BC5D334C4F9AE02/pIqTm2fbIrr3fgB7Id87dFtig5A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:5f:cd:33:4c:75:f7:b9:9b:8d:92:71:34:f3:66:3f:e8:b3: 8b:1b:d5:22:0b:e5:2e:29:9d:48:bf:54:06:4b:8d:d6:ee:e4: a5:61:96:f3:69:ce:c3:37:98:67:05:fa:98:4b:dc:1f:5f:5c: 98:e5:db:32:3d:ed:85:75:eb:4f:4d:fa:06:84:5c:10:5a:20: ab:f5:85:2c:72:dd:86:0d:d4:d0:2d:9f:3b:16:ce:0c:1b:5d: b0:ef:bf:44:f1:c5:53:43:b3:5f:c9:2e:97:72:45:58:2e:85: 40:d6:a3:60:c7:8d:22:6b:8f:4e:88:83:b8:33:d6:38:6b:60: 3b:51:41:33:1f:55:d9:1c:bf:8a:df:3e:14:6a:f8:b6:72:bf: d8:98:10:8f:a4:f0:3a:aa:97:f8:08:8c:b3:27:38:39:2e:3c: 70:6c:f3:f7:00:2e:12:ac:b8:52:95:70:4a:8d:fb:2d:45:27: 54:ca:ea:62:c2:4b:51:c0:37:25:f5:12:07:1f:d8:2b:00:df: ac:f4:92:96:8e:8c:2f:99:b5:99:92:ee:76:2b:15:91:14:f3: 1d:db:2a:c0:af:0a:79:b0:b4:4c:99:0b:0d:af:70:8f:90:cc: 98:f4:db:95:ed:4e:da:3d:3a:78:65:f5:3a:39:25:b3:40:bd: 46:71:b0:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFFRDIxMTAvBgNVBAUTKEE0OEE5MzlCNjdEQjIyQkFGNzdFMDA3QjIxREYzQjc0 NUI2MjgzOTAwHhcNMjUxMTA0MjIxODU0WhcNMjUxMTExMjIxODU0WjAYMRYwFAYD VQQDEw02OTBhN2JjZi02YTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1NuLMgojAcgsBAJ54VSdKSDj2239MmljzgtH1K3qflv0ea8poRBamQhkkrN N3l5CeNVU7ttSDdhHaIJh66PR5kWMhOXB+uWVC8lmUabM1lZKqciB1pNrLKUbo8n YYe/Zc9c1S2y/DCVc+2Cez8Yiz2y3GZXqS4f+HYDDW7xxvIPnIE+uLsI7gPABQU9 PnJlTrc31MXftKAXK3awtHg+/fGoULVgLWwZg5aDybP9UsLQFa8JAdwO3YJisK1h ID0/O/jIvMaY605iaalzWp+6YbYbDrrqaW0mAFHtzdHfv3ScgqNHyl1dhG2aM7Wf 98tVF5ewcdWA3DAu22SkQAzjtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwA23vg HC+yc3Bqd/tDVl3v+dwJMB8GA1UdIwQYMBaAFKSKk5tn2yK6934AeyHfO3RbYoOQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUVEMi8zRkU4REU2Qzgy QkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYklycjNmZ0I3SWQ4N2RGdGln NUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BJcVRtMmZiSXJyM2ZnQjdJZDg3ZEZ0aWc1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUVEMi8zRkU4REU2QzgyQkQxMUVCOUJDNUQzMzRDNEY5QUUwMi9wSXFUbTJmYkly cjNmZ0I3SWQ4N2RGdGlnNUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0X80zTHX3uZuNknE082Y/6LOLG9UiC+UuKZ1Iv1QGS43W7uSlYZbz ac7DN5hnBfqYS9wfX1yY5dsyPe2FdetPTfoGhFwQWiCr9YUsct2GDdTQLZ87Fs4M G12w779E8cVTQ7NfyS6XckVYLoVA1qNgx40ia49OiIO4M9Y4a2A7UUEzH1XZHL+K 3z4Uavi2cr/YmBCPpPA6qpf4CIyzJzg5LjxwbPP3AC4SrLhSlXBKjfstRSdUyupi wktRwDcl9RIHH9grAN+s9JKWjowvmbWZku52KxWRFPMd2yrArwp5sLRMmQsNr3CP kMyY9NuV7U7aPTp4ZfU6OSWzQL1GcbCM -----END CERTIFICATE-----Generated at Wed Nov 5 23:06:46 2025 by rpki-client