$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: fC3lbk1enUnNLNcRpIwKlHhxQuQA+eJ6984wPXYwooY= Subject key identifier: C8:37:05:BB:A4:63:7E:52:1A:B0:65:FA:7B:66:3C:A5:71:18:0F:81 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 0692 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 068C Signing time: Sun 02 Nov 2025 22:24:03 +0000 Manifest this update: Sun 02 Nov 2025 22:24:03 +0000 Manifest next update: Sun 09 Nov 2025 22:24:03 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: jdk4Cds9cMEYrFEUeepzkTdTeXUTuHlAtfwy0lIFcQo=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Nov 2 22:24:03 2025 GMT Not After : Nov 9 22:24:03 2025 GMT Subject: CN=6907da03-7881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:37:5a:9e:2d:99:7a:54:b5:84:ad:db:31:9b: 89:ec:8c:47:1f:90:f7:3c:98:5b:dd:20:89:0f:5c: cb:a0:ae:39:c1:9c:a4:8b:1b:ac:8f:49:31:83:a2: aa:f3:d3:77:f7:89:39:b6:56:cf:a8:1a:b8:76:c2: 8a:63:b1:2f:cb:fd:94:53:7d:77:67:7c:c8:26:85: 65:68:64:68:0f:af:53:2a:f2:48:9e:f1:03:16:61: 9a:66:c7:bd:a6:cf:65:9f:3b:eb:33:82:96:ff:4e: 44:6a:1c:02:97:ee:40:87:61:aa:0f:6d:b7:c0:3a: 23:23:a9:3f:0a:55:77:82:fb:2a:ea:63:c2:be:71: c9:1f:8b:4f:46:25:9d:fc:40:66:a1:45:0c:b9:2d: 99:10:cb:79:76:de:4c:4b:42:a4:4d:2f:fb:1d:46: f4:59:b3:ae:70:f7:6a:be:89:70:11:34:c1:3b:d2: cb:51:de:7d:9f:48:71:26:ee:0a:54:0a:52:2f:0e: bf:7f:a4:ae:4d:34:57:99:99:c4:49:c6:b8:fd:e8: 84:19:3c:63:85:2b:ef:df:03:52:e5:8b:0d:40:ed: 1f:fe:02:50:67:23:f4:9a:15:49:60:6b:65:93:0e: 27:6e:e8:c7:a6:28:38:01:cd:63:c7:35:f9:30:19: f4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:37:05:BB:A4:63:7E:52:1A:B0:65:FA:7B:66:3C:A5:71:18:0F:81 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:64:80:d0:ad:b4:95:62:1f:38:29:86:33:bc:38:01:7b:6a: 42:30:7b:fd:cb:22:af:c8:33:f8:97:bc:ce:5e:48:09:6b:d4: 1d:9e:32:01:94:fc:62:76:e0:90:54:aa:0f:53:e5:d3:04:0b: 3d:80:64:bc:b9:0e:a6:dd:0c:af:47:0e:85:2a:4e:b7:ce:05: 33:2c:25:eb:d8:24:db:63:9f:22:4d:40:1b:b1:b3:74:ae:ea: 28:f0:6a:da:3e:b1:bc:e7:84:75:31:64:08:7e:c2:df:97:46: 95:3b:45:14:4f:9e:db:15:3f:22:0d:39:51:a4:d2:ed:fc:49: 76:4d:c5:b0:1d:25:e9:22:40:08:84:36:b4:ea:98:bf:75:34: 69:0b:a4:cf:56:45:63:77:93:88:85:8c:cf:48:7e:89:82:9c: bf:90:ba:4d:5d:06:d0:3f:29:24:49:58:46:1d:1c:69:db:1a: 87:95:9b:8b:e2:19:57:a0:d3:23:f8:06:13:21:28:81:38:88: cd:f1:7c:03:00:19:cd:a2:e1:b3:64:c2:c9:dc:7d:8d:1f:24: 6d:e6:b6:71:eb:60:16:38:49:46:79:77:e5:c9:f2:fb:15:14: 93:35:16:69:6e:45:44:a1:c4:1c:90:c4:0a:7b:91:b9:72:e2: c9:e9:b2:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUxMTAyMjIyNDAzWhcNMjUxMTA5MjIyNDAzWjAYMRYwFAYD VQQDEw02OTA3ZGEwMy03ODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ddani2ZelS1hK3bMZuJ7IxHH5D3PJhb3SCJD1zLoK45wZykixusj0kxg6Kq 89N394k5tlbPqBq4dsKKY7Evy/2UU313Z3zIJoVlaGRoD69TKvJInvEDFmGaZse9 ps9lnzvrM4KW/05EahwCl+5Ah2GqD223wDojI6k/ClV3gvsq6mPCvnHJH4tPRiWd /EBmoUUMuS2ZEMt5dt5MS0KkTS/7HUb0WbOucPdqvolwETTBO9LLUd59n0hxJu4K VApSLw6/f6SuTTRXmZnESca4/eiEGTxjhSvv3wNS5YsNQO0f/gJQZyP0mhVJYGtl kw4nbujHpig4Ac1jxzX5MBn0PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMg3Bbuk Y35SGrBl+ntmPKVxGA+BMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDfZIDQrbSVYh84KYYzvDgBe2pCMHv9yyKvyDP4l7zOXkgJa9QdnjIB lPxiduCQVKoPU+XTBAs9gGS8uQ6m3QyvRw6FKk63zgUzLCXr2CTbY58iTUAbsbN0 ruoo8GraPrG854R1MWQIfsLfl0aVO0UUT57bFT8iDTlRpNLt/El2TcWwHSXpIkAI hDa06pi/dTRpC6TPVkVjd5OIhYzPSH6Jgpy/kLpNXQbQPykkSVhGHRxp2xqHlZuL 4hlXoNMj+AYTISiBOIjN8XwDABnNouGzZMLJ3H2NHyRt5rZx62AWOElGeXflyfL7 FRSTNRZpbkVEocQckMQKe5G5cuLJ6bLi -----END CERTIFICATE-----Generated at Tue Nov 4 21:32:11 2025 by rpki-client