$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: gn146iFoJ4dmZdCgJmoLwvZgoOq38WDnVFdHmQv9L4Y= Subject key identifier: D5:BB:7B:DF:0E:E0:06:94:55:CD:58:DA:9B:03:90:DC:8F:CF:E2:55 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 01A7 Signing time: Wed 05 Nov 2025 03:23:11 +0000 Manifest this update: Wed 05 Nov 2025 03:23:11 +0000 Manifest next update: Wed 12 Nov 2025 03:23:11 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: jxVKrp14vI7pbQx9ZvHRgbAMF6zV1HYi+jRO2KZX5Ro=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Nov 5 03:23:11 2025 GMT Not After : Nov 12 03:23:11 2025 GMT Subject: CN=690ac31f-e06c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:4b:a7:6e:74:81:aa:1b:b4:0b:39:5c:a5: 46:0a:f7:2a:eb:e8:fd:8c:8d:a5:92:98:ff:ad:cc: 9c:09:be:4f:c6:e8:a3:0a:98:76:e3:0b:6b:11:93: a1:b7:1c:6b:27:92:23:dc:5c:1b:23:94:1f:02:9d: 73:e8:8d:29:d6:15:35:a2:24:a3:c1:34:db:08:41: 71:56:81:8c:9b:23:70:5a:2f:81:41:40:26:4c:a2: 99:86:1d:07:02:d6:db:7f:41:d4:20:e7:7b:ed:6d: de:66:20:6d:6d:7d:48:56:21:22:db:a7:19:af:ab: e2:87:d7:8a:53:61:e5:d6:29:6d:97:f0:c5:5a:58: ec:43:d1:8c:93:bc:b7:19:64:e4:5f:6e:01:9c:60: bb:0a:fd:b4:1b:09:ab:8e:e5:0f:50:d1:d0:7c:2a: 9c:17:e8:56:f2:cf:cf:e3:b9:57:d4:74:57:54:e9: 48:24:da:a6:22:49:2e:ec:1c:ac:8d:b0:e9:cf:de: 63:fa:8f:41:42:e0:6f:05:fc:f6:d1:ba:fa:4d:ee: a0:61:13:a3:c6:4a:a5:c9:75:fe:af:9d:79:7a:bb: bc:c1:f6:6b:4e:5f:b2:68:9e:b6:4a:dc:5e:de:ce: d2:88:20:a6:4e:e8:40:a1:fc:a8:d1:f2:69:f2:73: c1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BB:7B:DF:0E:E0:06:94:55:CD:58:DA:9B:03:90:DC:8F:CF:E2:55 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d6:54:3b:80:cd:de:5c:45:c4:c6:3d:f1:e5:6e:24:84:e6: 1b:7d:6a:77:60:39:56:e6:8d:d8:c9:df:78:08:fa:3c:08:d4: d7:5c:d1:40:18:c3:93:9c:21:74:c4:4a:ec:7c:22:8a:86:1b: d2:85:de:ed:9f:2f:6c:5d:e5:99:ac:9b:43:6f:f2:2b:1c:2a: 06:f2:88:bb:0f:0f:34:41:bf:86:8a:88:79:44:45:1a:0e:65: d6:4a:74:cc:85:78:e6:d0:32:16:67:62:63:3e:1d:7c:a2:4b: 06:69:ee:d3:ce:db:84:67:92:bb:15:fe:bc:53:7b:86:c7:31: a2:21:1b:31:65:36:e0:3c:f6:79:79:82:b0:4b:d1:83:36:ed: 18:f0:8a:90:71:be:37:d7:8d:da:47:8f:ca:ba:23:7a:7a:5c: 72:6d:31:af:f4:7f:bf:be:86:82:00:0b:7a:65:88:8b:03:3b: 54:80:04:f9:90:b3:79:75:83:6c:60:8e:f2:f8:2e:91:17:b9: 43:c5:dc:dc:1c:04:b1:40:94:8d:af:ed:11:cb:ee:f0:0a:8c: da:ae:cb:b5:02:5d:1f:55:90:d2:e8:f1:45:34:b6:2e:4e:b0: 22:8c:01:85:dc:b3:e9:9c:a3:e7:a2:e2:ef:29:52:54:93:9f: 2c:e7:3e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUxMTA1MDMyMzExWhcNMjUxMTEyMDMyMzExWjAYMRYwFAYD VQQDEw02OTBhYzMxZi1lMDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dBLp250gaobtAs5XKVGCvcq6+j9jI2lkpj/rcycCb5PxuijCph24wtrEZOh txxrJ5Ij3FwbI5QfAp1z6I0p1hU1oiSjwTTbCEFxVoGMmyNwWi+BQUAmTKKZhh0H Atbbf0HUIOd77W3eZiBtbX1IViEi26cZr6vih9eKU2Hl1iltl/DFWljsQ9GMk7y3 GWTkX24BnGC7Cv20GwmrjuUPUNHQfCqcF+hW8s/P47lX1HRXVOlIJNqmIkku7Bys jbDpz95j+o9BQuBvBfz20br6Te6gYROjxkqlyXX+r515eru8wfZrTl+yaJ62Stxe 3s7SiCCmTuhAofyo0fJp8nPBHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNW7e98O 4AaUVc1Y2psDkNyPz+JVMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg1lQ7gM3eXEXExj3x5W4khOYbfWp3YDlW5o3Yyd94CPo8CNTXXNFA GMOTnCF0xErsfCKKhhvShd7tny9sXeWZrJtDb/IrHCoG8oi7Dw80Qb+Gioh5REUa DmXWSnTMhXjm0DIWZ2JjPh18oksGae7TztuEZ5K7Ff68U3uGxzGiIRsxZTbgPPZ5 eYKwS9GDNu0Y8IqQcb43143aR4/KuiN6elxybTGv9H+/voaCAAt6ZYiLAztUgAT5 kLN5dYNsYI7y+C6RF7lDxdzcHASxQJSNr+0Ry+7wCozarsu1Al0fVZDS6PFFNLYu TrAijAGF3LPpnKPnouLvKVJUk58s5z4f -----END CERTIFICATE-----Generated at Wed Nov 5 05:12:59 2025 by rpki-client