$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: whUHVghryG8RYgUXF6jspMBY8CZalvPuxptLrFm3vlY= Subject key identifier: 89:A2:68:84:BD:9D:8C:2E:F7:40:D9:F8:56:16:BD:91:9D:0F:AE:72 Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 023A Signing time: Wed 05 Nov 2025 01:57:03 +0000 Manifest this update: Wed 05 Nov 2025 01:57:02 +0000 Manifest next update: Wed 12 Nov 2025 01:57:02 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: +lgYNekiqkuaKAGC2BqMCMAMVhZAjTfSgGGIE9Bhl4s=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: Nov 5 01:57:02 2025 GMT Not After : Nov 12 01:57:02 2025 GMT Subject: CN=690aaeef-02c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4c:f8:2a:cc:6d:89:64:34:7c:31:75:e2:27: e0:ed:cd:ba:13:af:45:2b:1e:f2:9b:f7:1d:a3:d6: c6:67:5a:9c:6a:ae:bd:c2:4a:ba:7d:16:56:2b:13: 25:86:28:0a:90:cf:1b:65:3f:f8:0a:39:2b:ee:e3: 92:c7:d9:af:1c:de:5f:9a:5b:38:0c:5c:5b:7e:0d: 02:00:58:af:bb:03:d5:47:4f:c2:6b:90:5c:46:5b: 8b:25:69:16:b1:93:a1:fd:d2:41:73:e0:ff:c1:0d: 83:d6:4c:11:c1:c6:fe:5f:e5:94:cd:4c:1c:dc:03: 9f:a0:48:1f:12:a7:c4:00:1d:b4:8e:3a:37:03:96: 80:40:a5:91:2a:73:06:d2:08:05:08:23:0d:df:48: 50:fe:c4:48:aa:d2:74:15:2f:43:ea:9d:2e:71:f6: af:3d:22:d5:ba:6d:cc:88:e4:84:1f:ca:74:09:0f: 77:bb:f6:18:5d:54:d0:83:0a:4c:28:11:dd:08:a3: 19:44:f2:10:40:2c:fa:e3:c1:86:b9:55:97:3c:62: ae:2a:de:e8:35:ee:ec:84:d3:bf:dd:9c:c8:30:3b: 41:4d:b2:34:ef:f8:99:2d:d2:ec:2f:97:c0:fe:96: 90:56:c0:6f:78:1e:92:5f:1a:ab:87:85:0f:fb:ce: 93:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A2:68:84:BD:9D:8C:2E:F7:40:D9:F8:56:16:BD:91:9D:0F:AE:72 X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:91:61:a1:ef:25:a5:56:7a:5b:cc:2f:d2:9b:6d:70:7f:74: c0:90:b4:ab:7d:e3:24:2b:00:40:d7:59:0d:96:a5:a4:5b:4f: 8d:d6:3f:93:ae:13:98:13:b9:94:2c:65:4b:5d:ae:5a:90:c2: d7:40:e5:7c:4a:a2:1e:c4:42:c5:0d:1b:2b:2f:57:9d:c5:1c: b0:33:6a:47:aa:78:c8:10:41:94:62:6f:a5:43:f6:a8:47:b9: 3c:bb:4c:e6:85:dc:e1:58:a7:18:09:39:93:a9:37:76:37:6b: 31:3f:57:16:36:a0:1a:cb:86:d2:d6:4a:72:cd:46:b1:c2:ee: 9f:5c:2d:1f:ae:b0:6c:a6:1b:92:ec:3f:c7:64:98:c1:cf:d9: a2:47:db:d9:41:6f:2a:e4:29:bd:5e:54:20:25:78:7c:52:76: 5b:73:78:1a:37:b1:24:be:1b:9e:b5:e1:52:61:b8:98:c0:fc: 98:48:a5:74:30:52:1d:e4:eb:73:3b:c6:70:37:10:f1:8c:22: fd:6f:d3:f9:88:2d:af:de:28:6b:6b:93:de:dc:ca:ac:e8:15: cc:0c:b7:16:97:88:69:75:b6:92:ae:88:d7:4c:2f:62:dd:b0: 16:50:c2:71:e9:84:6b:01:45:a1:58:ff:d2:31:04:d8:1f:a8: ac:17:f0:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjUxMTA1MDE1NzAyWhcNMjUxMTEyMDE1NzAyWjAYMRYwFAYD VQQDEw02OTBhYWVlZi0wMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kz4KsxtiWQ0fDF14ifg7c26E69FKx7ym/cdo9bGZ1qcaq69wkq6fRZWKxMl higKkM8bZT/4Cjkr7uOSx9mvHN5fmls4DFxbfg0CAFivuwPVR0/Ca5BcRluLJWkW sZOh/dJBc+D/wQ2D1kwRwcb+X+WUzUwc3AOfoEgfEqfEAB20jjo3A5aAQKWRKnMG 0ggFCCMN30hQ/sRIqtJ0FS9D6p0ucfavPSLVum3MiOSEH8p0CQ93u/YYXVTQgwpM KBHdCKMZRPIQQCz648GGuVWXPGKuKt7oNe7shNO/3ZzIMDtBTbI07/iZLdLsL5fA /paQVsBveB6SXxqrh4UP+86TXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImiaIS9 nYwu90DZ+FYWvZGdD65yMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0kWGh7yWlVnpbzC/Sm21wf3TAkLSrfeMkKwBA11kNlqWkW0+N1j+T rhOYE7mULGVLXa5akMLXQOV8SqIexELFDRsrL1edxRywM2pHqnjIEEGUYm+lQ/ao R7k8u0zmhdzhWKcYCTmTqTd2N2sxP1cWNqAay4bS1kpyzUaxwu6fXC0frrBsphuS 7D/HZJjBz9miR9vZQW8q5Cm9XlQgJXh8UnZbc3gaN7EkvhueteFSYbiYwPyYSKV0 MFId5OtzO8ZwNxDxjCL9b9P5iC2v3ihra5Pe3Mqs6BXMDLcWl4hpdbaSrojXTC9i 3bAWUMJx6YRrAUWhWP/SMQTYH6isF/Aq -----END CERTIFICATE-----Generated at Wed Nov 5 11:59:02 2025 by rpki-client