$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: cuxbs0Ys9QTgIsw/OZim45tte+PcE8oR7OypVaBKxDQ= Subject key identifier: 48:6E:E7:D3:DA:62:D6:F8:A3:B3:D3:CC:E3:A7:08:CA:D6:29:FD:67 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 05E9 Signing time: Mon 03 Nov 2025 00:23:09 +0000 Manifest this update: Mon 03 Nov 2025 00:23:09 +0000 Manifest next update: Mon 10 Nov 2025 00:23:09 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: lHsIlqa+RHnIEMlZJA1TzvJ6TEv5y9mj4tpKsW9SN7I=) 2: 9DFE04787F8411F0AAC1963BC4F9AE02.roa (hash: CtN+xxhUO3bDEdjbEM7vq/EcPqW7lv1VXztGCW7n23A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Nov 3 00:23:09 2025 GMT Not After : Nov 10 00:23:09 2025 GMT Subject: CN=6907f5ed-7f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:00:24:76:c7:6e:90:7a:5f:d4:f4:17:0f:64: 7e:30:e2:d6:7e:3a:b3:94:11:d5:ee:7a:e7:d3:c8: a7:44:1e:ef:c5:6b:2f:67:17:be:7c:f0:b9:94:59: 34:f6:1c:b9:2d:48:49:4a:d9:11:c7:1e:7c:a6:6b: eb:ed:93:d7:61:1a:4f:eb:77:c9:4e:5b:29:19:bf: 8a:ac:dc:e5:bc:c8:f5:7d:14:56:ec:3f:a4:41:94: db:24:d9:77:0d:f2:ef:00:a9:38:1e:0d:f3:6a:66: b5:eb:63:69:93:d0:35:42:ea:40:87:c7:90:2a:a1: 75:a9:14:08:9a:5e:1e:21:14:68:79:e3:ce:f3:fd: 84:21:3c:59:1d:08:9b:f7:9b:0b:a9:85:27:e7:a8: d7:16:3a:e8:72:7d:ae:e4:e1:9a:cf:cc:15:ca:66: 46:a6:71:83:e7:e1:7c:04:29:18:5a:69:4b:1c:05: 9f:82:2d:d6:9a:d4:5b:aa:88:62:b9:e3:0a:42:74: 09:f3:1a:58:e6:64:6b:b2:6b:fe:85:b8:aa:6e:0d: 9e:a9:ac:b9:52:4a:11:e9:c6:52:fb:fa:4a:05:52: 71:c6:6a:29:f0:02:be:f0:bb:ef:d7:01:ec:d8:94: 56:f1:d5:58:5b:5e:03:52:94:f5:45:26:d1:7a:9c: 9f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6E:E7:D3:DA:62:D6:F8:A3:B3:D3:CC:E3:A7:08:CA:D6:29:FD:67 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:1e:38:2b:7a:23:fa:e4:e7:34:4a:8f:d9:91:b4:b5:f3:bb: 32:57:f1:bf:f5:2e:f7:ab:5e:80:c4:05:d4:cf:ec:ba:96:7d: b8:9f:2e:b0:b7:73:ae:46:4d:03:66:4c:2d:6a:50:0b:db:67: 6f:05:23:df:67:f6:a9:3f:26:7c:0f:3c:72:00:77:5e:18:b5: 85:0a:f6:86:e6:61:59:ab:6b:51:2a:0e:84:07:90:2a:ec:a9: 92:c7:df:a6:83:78:ba:e8:01:30:4d:a0:18:4a:a1:6d:dc:09: b4:ee:ef:8d:7b:5a:8f:e5:bc:78:6a:1b:12:cd:14:fb:76:d6: a4:20:46:ef:86:60:cf:31:6b:95:f0:09:df:03:5f:99:ab:bc: ed:1a:29:72:c7:6d:2b:80:8a:b2:2f:e4:cf:8a:9d:66:af:d4: fe:50:69:4f:e8:88:73:b9:55:a5:0b:6a:5c:be:af:80:49:bb: 9c:60:b2:4e:c3:4e:a1:ab:d0:75:b5:6b:57:0d:93:b4:8f:d4: cc:6c:53:73:fb:d0:af:fb:46:a4:ff:89:1e:d5:a5:db:a2:fb: b0:74:33:c2:84:97:f0:6d:76:ac:ef:b5:9f:37:e3:1e:5a:35: d9:1e:b4:71:1b:35:23:b7:ce:aa:11:44:2f:48:53:00:b6:8f: ea:c5:af:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUxMTAzMDAyMzA5WhcNMjUxMTEwMDAyMzA5WjAYMRYwFAYD VQQDEw02OTA3ZjVlZC03ZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gAkdsdukHpf1PQXD2R+MOLWfjqzlBHV7nrn08inRB7vxWsvZxe+fPC5lFk0 9hy5LUhJStkRxx58pmvr7ZPXYRpP63fJTlspGb+KrNzlvMj1fRRW7D+kQZTbJNl3 DfLvAKk4Hg3zama162Npk9A1QupAh8eQKqF1qRQIml4eIRRoeePO8/2EITxZHQib 95sLqYUn56jXFjrocn2u5OGaz8wVymZGpnGD5+F8BCkYWmlLHAWfgi3WmtRbqohi ueMKQnQJ8xpY5mRrsmv+hbiqbg2eqay5UkoR6cZS+/pKBVJxxmop8AK+8Lvv1wHs 2JRW8dVYW14DUpT1RSbRepyfDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhu59Pa Ytb4o7PTzOOnCMrWKf1nMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJHjgreiP65Oc0So/ZkbS187syV/G/9S73q16AxAXUz+y6ln24ny6w t3OuRk0DZkwtalAL22dvBSPfZ/apPyZ8DzxyAHdeGLWFCvaG5mFZq2tRKg6EB5Aq 7KmSx9+mg3i66AEwTaAYSqFt3Am07u+Ne1qP5bx4ahsSzRT7dtakIEbvhmDPMWuV 8AnfA1+Zq7ztGilyx20rgIqyL+TPip1mr9T+UGlP6IhzuVWlC2pcvq+ASbucYLJO w06hq9B1tWtXDZO0j9TMbFNz+9Cv+0ak/4ke1aXbovuwdDPChJfwbXas77WfN+Me WjXZHrRxGzUjt86qEUQvSFMAto/qxa+3 -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:00 2025 by rpki-client