$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: qVTSn2coQP0TbBDm0tE+W0bV+rqbW19hNN7LS/8ob1Y= Subject key identifier: 9B:E1:45:CD:2D:50:AB:0F:7F:F6:77:D6:0B:EB:F9:04:29:E6:38:2B Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 34E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 34E2 Signing time: Tue 04 Nov 2025 15:08:33 +0000 Manifest this update: Tue 04 Nov 2025 15:08:33 +0000 Manifest next update: Tue 11 Nov 2025 15:08:33 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: nxog9TaoEHcNuh40d0+ZefNmdvR6WKmxarS84u48T4s=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: M6Pt8WXLhq//MKcmuNDOr2BuMndgWlnu7AwCPG6iTjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13544 (0x34e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Nov 4 15:08:33 2025 GMT Not After : Nov 11 15:08:33 2025 GMT Subject: CN=690a16f1-7f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3e:37:36:4c:0b:33:71:b2:2e:93:b5:40:d5: 9a:4f:b0:59:d7:4d:be:9a:97:23:ab:c0:4f:d1:6b: ad:d5:f6:52:94:87:37:b2:8f:f2:0e:36:08:fc:2a: 5b:fd:42:72:a4:14:df:e7:ee:1e:df:0b:97:3a:98: 3a:eb:ff:b8:ef:33:80:2c:4d:0a:f0:14:e1:fd:5d: b0:8c:60:d8:97:1a:0d:50:34:fd:13:2d:5a:00:88: c2:d5:a4:63:85:27:62:9b:dc:1f:5b:66:ae:7f:e4: 47:68:16:13:a7:ca:5b:23:68:79:f1:63:f4:72:82: 49:62:40:c1:ea:ee:e7:33:cb:d0:29:01:25:32:e4: a8:c1:52:79:61:4a:2c:cf:dd:d5:96:71:9b:ec:4b: 85:79:33:e7:8c:b5:c6:5c:c2:87:bf:c5:0a:ea:f6: 71:05:a0:e2:ca:ba:64:4f:9c:bb:e2:ef:92:ed:c4: 26:62:d8:fa:ed:33:97:8d:ba:81:fc:a8:14:76:87: fc:a7:6a:a5:31:25:e3:9c:66:18:d0:1a:5d:ac:07: a5:0f:85:5f:8b:b5:4d:84:a8:60:1e:da:61:a0:2a: 4b:b8:83:ec:51:f7:4a:7b:4d:cb:97:2b:81:aa:8d: 92:7e:a8:91:46:bb:56:4b:e0:f8:fc:12:24:92:0e: 1d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E1:45:CD:2D:50:AB:0F:7F:F6:77:D6:0B:EB:F9:04:29:E6:38:2B X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:01:d8:cd:60:dd:de:fe:b2:3e:0c:82:3a:76:7a:f7:e0:11: 6b:ac:47:de:b5:a4:df:e2:37:9a:b6:e7:c7:35:2b:91:18:a7: 52:c9:b8:45:d5:3a:49:1c:db:5d:77:c0:bf:16:e8:85:ce:45: f3:a1:01:e3:2b:86:cf:da:23:d7:31:24:26:96:27:50:3e:16: 8e:56:3a:9e:1c:0a:27:b5:05:3e:f6:49:28:b1:59:8f:7f:78: 24:2e:a2:29:c4:23:cd:8c:62:86:bb:3a:e6:35:f0:2c:d6:01: e5:39:5c:15:48:ee:6f:b9:16:3e:10:14:76:a0:16:5a:73:9c: a1:85:d6:39:cb:f6:1e:ff:9f:bc:65:b1:2c:cf:6a:12:a8:d6: 00:a8:73:6b:dc:d2:f3:c9:e8:91:9e:2f:b7:ee:40:56:5b:e8: 78:16:57:4d:e9:3e:ba:46:b4:ed:76:8c:9f:b5:d8:71:e6:55: be:af:a5:9b:d6:07:21:a3:c6:58:4b:32:04:65:bd:11:5b:5f: bc:e5:7a:3e:c6:05:9c:87:e0:0a:1b:8f:6f:5f:56:e7:79:72: 81:53:f0:e1:60:1a:2d:fb:be:28:21:d7:fd:bb:4e:3c:8e:4c: 8f:bb:30:5f:2d:ed:0d:a3:cd:b7:28:e3:75:e2:e9:74:f5:ea: cf:df:ba:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUxMTA0MTUwODMzWhcNMjUxMTExMTUwODMzWjAYMRYwFAYD VQQDEw02OTBhMTZmMS03ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T43NkwLM3GyLpO1QNWaT7BZ102+mpcjq8BP0Wut1fZSlIc3so/yDjYI/Cpb /UJypBTf5+4e3wuXOpg66/+47zOALE0K8BTh/V2wjGDYlxoNUDT9Ey1aAIjC1aRj hSdim9wfW2auf+RHaBYTp8pbI2h58WP0coJJYkDB6u7nM8vQKQElMuSowVJ5YUos z93VlnGb7EuFeTPnjLXGXMKHv8UK6vZxBaDiyrpkT5y74u+S7cQmYtj67TOXjbqB /KgUdof8p2qlMSXjnGYY0BpdrAelD4Vfi7VNhKhgHtphoCpLuIPsUfdKe03LlyuB qo2SfqiRRrtWS+D4/BIkkg4dVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJvhRc0t UKsPf/Z31gvr+QQp5jgrMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjAdjNYN3e/rI+DII6dnr34BFrrEfetaTf4jeatufHNSuRGKdSybhF 1TpJHNtdd8C/FuiFzkXzoQHjK4bP2iPXMSQmlidQPhaOVjqeHAontQU+9kkosVmP f3gkLqIpxCPNjGKGuzrmNfAs1gHlOVwVSO5vuRY+EBR2oBZac5yhhdY5y/Ye/5+8 ZbEsz2oSqNYAqHNr3NLzyeiRni+37kBWW+h4FldN6T66RrTtdoyftdhx5lW+r6Wb 1gcho8ZYSzIEZb0RW1+85Xo+xgWch+AKG49vX1bneXKBU/DhYBot+74oIdf9u048 jkyPuzBfLe0No823KON14ul09erP37rE -----END CERTIFICATE-----Generated at Tue Nov 4 23:51:16 2025 by rpki-client