$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft File: i6wN0-SRhYlP2uKChO3IBHILRhQ.mft (raw, json) Hash identifier: nTa2elQg7K4nFRI6frXe0huqf8PEuct3oWF0tlB6fAQ= Subject key identifier: EC:84:3F:B6:38:D1:C2:32:9C:FB:E3:B5:A7:2C:F7:C5:72:3B:FB:9A Authority key identifier: 8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 Certificate issuer: /CN=A91EBFAE/serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Certificate serial: 34D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft Manifest number: 34D9 Signing time: Tue 04 Nov 2025 14:34:48 +0000 Manifest this update: Tue 04 Nov 2025 14:34:48 +0000 Manifest next update: Tue 11 Nov 2025 14:34:48 +0000 Files and hashes: 1: i6wN0-SRhYlP2uKChO3IBHILRhQ.crl (hash: scd7ZGyx1Ow5JmbdpEUK771whQL0XV5WrpH0DITlZ78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13529 (0x34d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Validity Not Before: Nov 4 14:34:48 2025 GMT Not After : Nov 11 14:34:48 2025 GMT Subject: CN=690a0f08-223d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2e:47:9d:41:45:ff:6b:51:fa:70:60:3a:29: af:de:4c:e6:1d:0d:10:e2:a0:03:5d:70:ea:8c:62: 67:9a:63:68:d9:50:bc:10:fb:e5:10:76:da:d3:cf: 18:27:b0:b1:04:14:d5:b6:84:a1:af:1a:6a:ef:16: 53:4d:f8:dd:02:2f:08:af:f0:b2:19:38:d8:a3:06: bb:f6:6d:dc:69:a9:75:a2:2f:d4:5d:12:ae:99:3d: 91:a7:a2:a9:e1:ef:f1:a6:61:6c:b9:04:eb:3d:03: 80:d3:47:15:3a:b5:a4:b0:15:26:6b:c0:05:5a:23: 90:64:fe:68:f6:76:b3:b6:76:c5:9c:07:d2:b1:87: cc:0d:48:d3:f2:ec:0f:d2:6b:cd:b5:9b:45:9d:79: c4:5b:bb:d1:84:25:e3:45:2d:58:10:19:04:57:ea: 62:e3:f6:c7:0b:21:d0:11:0e:99:d4:64:0f:0c:c4: 90:c1:90:3a:6f:a6:b7:81:ce:90:57:81:02:cd:d1: f7:8b:f1:e7:6c:8b:e8:a4:ef:c4:49:bc:9c:0c:7d: f2:5d:36:29:46:6a:ec:51:14:86:bb:7e:9b:30:96: 72:6e:3f:16:ee:c3:d9:20:8d:c8:02:fd:ec:0a:d2: 83:ef:8b:58:fa:23:6e:0c:7a:b2:7c:ad:3e:32:32: a1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:84:3F:B6:38:D1:C2:32:9C:FB:E3:B5:A7:2C:F7:C5:72:3B:FB:9A X509v3 Authority Key Identifier: keyid:8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:5b:da:88:08:d8:ed:47:1a:33:6c:5e:a3:03:0e:4b:b7:35: 4a:58:c5:47:b1:47:cb:e0:25:e4:3c:4a:b0:ac:cf:42:07:4d: d0:af:a8:34:e7:9b:a0:bf:7a:4f:cb:79:70:7b:4f:17:8c:f1: 66:de:fb:50:02:7b:98:49:e8:c5:26:fa:f4:18:f8:9c:ac:c5: 18:c5:14:f8:e3:67:f0:07:4f:51:7a:13:29:01:49:e1:53:f7: 51:40:00:93:1f:4d:f5:d5:47:03:ca:9c:2a:56:b1:b9:1e:ea: 7f:0e:03:88:20:af:35:e5:b6:c1:73:d6:3a:96:1b:9d:32:5b: 38:3d:e1:b6:40:3b:08:34:12:48:ca:a6:aa:90:fe:20:04:fb: 30:e4:04:4e:d8:d6:98:99:d2:3f:66:2f:e2:6f:5c:8e:9d:e9: b5:fd:6b:25:39:b8:df:dc:21:30:21:ad:06:bd:6f:cb:02:9b: 7c:b9:bb:06:a4:eb:05:37:57:4e:47:98:bf:83:11:a9:1f:5b: 0e:1f:e3:47:45:bb:19:ba:d7:7c:8a:5e:17:dc:ab:e5:e7:d1: 1e:ff:2e:df:bb:50:4f:2b:8e:d5:e4:b2:0f:79:a4:99:5e:76: 8f:ab:bd:2a:3b:9e:a3:25:11:25:2d:43:4a:85:b5:bf:d4:f4: 6b:ef:f3:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKDhCQUMwREQzRTQ5MTg1ODk0RkRBRTI4Mjg0RURDODA0 NzIwQjQ2MTQwHhcNMjUxMTA0MTQzNDQ4WhcNMjUxMTExMTQzNDQ4WjAYMRYwFAYD VQQDEw02OTBhMGYwOC0yMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAny5HnUFF/2tR+nBgOimv3kzmHQ0Q4qADXXDqjGJnmmNo2VC8EPvlEHba088Y J7CxBBTVtoShrxpq7xZTTfjdAi8Ir/CyGTjYowa79m3caal1oi/UXRKumT2Rp6Kp 4e/xpmFsuQTrPQOA00cVOrWksBUma8AFWiOQZP5o9naztnbFnAfSsYfMDUjT8uwP 0mvNtZtFnXnEW7vRhCXjRS1YEBkEV+pi4/bHCyHQEQ6Z1GQPDMSQwZA6b6a3gc6Q V4ECzdH3i/HnbIvopO/ESbycDH3yXTYpRmrsURSGu36bMJZybj8W7sPZII3IAv3s CtKD74tY+iNuDHqyfK0+MjKhKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyEP7Y4 0cIynPvjtacs98VyO/uaMB8GA1UdIwQYMBaAFIusDdPkkYWJT9rigoTtyARyC0YU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS8xNjhGRkQ2QzFE OEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZbFAydUtDaE8zSUJISUxS aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2d04wLVNSaFlsUDJ1S0NoTzNJQkhJTFJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS8xNjhGRkQ2QzFEOEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZ bFAydUtDaE8zSUJISUxSaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaW9qICNjtRxozbF6jAw5LtzVKWMVHsUfL4CXkPEqwrM9CB03Qr6g0 55ugv3pPy3lwe08XjPFm3vtQAnuYSejFJvr0GPicrMUYxRT442fwB09RehMpAUnh U/dRQACTH0311UcDypwqVrG5Hup/DgOIIK815bbBc9Y6lhudMls4PeG2QDsINBJI yqaqkP4gBPsw5ARO2NaYmdI/Zi/ib1yOnem1/WslObjf3CEwIa0GvW/LApt8ubsG pOsFN1dOR5i/gxGpH1sOH+NHRbsZutd8il4X3Kvl59Ee/y7fu1BPK47V5LIPeaSZ XnaPq70qO56jJRElLUNKhbW/1PRr7/Nk -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:07 2025 by rpki-client