$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft File: IQlGzanedd75YJiV-_Ie2Exy9Oc.mft (raw, json) Hash identifier: MV63WFopj0w3/zekB0RcaUkInm8oe0teKKWLbvdwYqY= Subject key identifier: 0F:90:16:58:DD:86:C3:1B:FF:A6:0B:9B:52:6A:7E:2F:E9:83:58:52 Authority key identifier: 21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 Certificate issuer: /CN=A91F7537/serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft Manifest number: B6 Signing time: Wed 05 Nov 2025 06:14:42 +0000 Manifest this update: Wed 05 Nov 2025 06:14:42 +0000 Manifest next update: Wed 12 Nov 2025 06:14:42 +0000 Files and hashes: 1: IQlGzanedd75YJiV-_Ie2Exy9Oc.crl (hash: DSfjcH0zkMSP7j5UTXeXFzdAKFuDJOXRr96i9BeqNO0=) 2: 6156C7F6A27311EFBF7D5E22C4F9AE02.roa (hash: S974N0P9f8Bg6Jc7BIscRXeUqpVDlIBE/NP1Bo0j0PA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=210946CDA9DE75DEF9609895FBF21ED84C72F4E7 Validity Not Before: Nov 5 06:14:42 2025 GMT Not After : Nov 12 06:14:42 2025 GMT Subject: CN=690aeb52-2b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:aa:4a:ef:8f:0e:d9:84:02:db:5f:eb:9b:53: a3:d7:65:9f:4a:0c:02:d2:af:0c:c5:d2:3b:84:47: cf:16:8e:6e:86:6d:0a:24:33:94:37:c5:47:3b:18: 33:85:a2:2c:2e:2f:bd:8b:f9:f6:a3:49:9f:10:1d: e5:85:ef:ae:dc:de:03:c5:bf:bc:58:c7:ea:21:f5: a1:e8:ef:bc:de:17:8f:4f:d0:fe:f0:13:e4:df:0c: c2:52:9f:00:d4:a5:69:30:cc:61:37:02:99:ee:33: 88:56:95:de:e9:59:07:dd:e6:17:c6:4b:d3:f3:f1: 47:c3:a8:8a:23:8f:75:9b:a7:3b:56:4e:85:aa:10: a2:08:1c:aa:2e:7e:15:c3:8f:f1:d8:c2:d1:7a:0b: ca:0f:07:89:fe:b2:64:3b:4a:d3:1e:02:1e:8a:bf: 48:19:9a:5b:34:d2:49:71:cc:83:3c:6b:b7:c7:ea: e4:c7:8f:e4:49:c3:58:44:cd:57:e6:4b:a2:13:0b: cc:12:7b:e4:34:3a:1d:7d:e1:cc:c2:35:68:e6:c9: 4a:eb:3b:94:b2:b1:9f:4a:a6:2d:5e:cc:2e:15:d1: 71:20:5b:d5:90:ee:56:a6:73:ee:01:a0:5b:0b:35: ed:51:d3:b6:9c:0d:b1:93:cf:cd:56:45:09:b0:2f: 37:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:90:16:58:DD:86:C3:1B:FF:A6:0B:9B:52:6A:7E:2F:E9:83:58:52 X509v3 Authority Key Identifier: keyid:21:09:46:CD:A9:DE:75:DE:F9:60:98:95:FB:F2:1E:D8:4C:72:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQlGzanedd75YJiV-_Ie2Exy9Oc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/87DD548CA27111EFA392F079C4F9AE02/IQlGzanedd75YJiV-_Ie2Exy9Oc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:c4:6d:0e:07:5e:26:ea:e9:d4:5e:53:06:88:d8:c0:23:9d: e5:60:60:a3:e6:c1:08:19:f9:6d:b0:32:4d:98:b1:74:b7:9c: df:39:d7:fd:d4:89:bc:96:c1:86:69:8a:b5:ed:38:3b:2c:ff: eb:63:41:e1:18:fc:4d:86:6f:53:ee:be:3e:92:48:94:65:7f: e2:10:22:71:19:57:08:fe:20:08:8a:62:3f:7b:7e:96:db:cb: 8a:ab:b2:55:62:19:20:06:19:a8:43:38:57:6b:e0:10:ab:ed: 28:fd:f1:6b:83:9a:37:2b:dd:26:c5:6d:9c:8f:66:0c:cf:6f: 9c:ce:fd:c4:13:85:ad:a9:a1:52:93:26:8e:17:d5:da:83:f9: 36:63:a6:97:24:49:6a:de:36:fa:88:6a:80:79:d7:89:85:38: f1:93:e0:0d:31:84:8c:8e:b2:00:eb:27:76:b7:34:9b:58:2c: 6c:2b:33:d1:e3:7c:d0:95:f2:28:45:c1:c3:df:ae:df:97:3d: 26:30:07:bd:cd:ed:4e:1d:56:94:68:81:b7:54:79:01:00:06: f2:c8:b4:5f:5c:64:7d:20:e6:e3:12:4b:9f:80:0b:5c:95:a8: f3:2a:aa:e8:fd:f5:db:01:6b:b3:d7:87:6b:b8:84:b2:84:f5: 65:c7:0b:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1MzcxMTAvBgNVBAUTKDIxMDk0NkNEQTlERTc1REVGOTYwOTg5NUZCRjIxRUQ4 NEM3MkY0RTcwHhcNMjUxMTA1MDYxNDQyWhcNMjUxMTEyMDYxNDQyWjAYMRYwFAYD VQQDEw02OTBhZWI1Mi0yYjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KpK748O2YQC21/rm1Oj12WfSgwC0q8MxdI7hEfPFo5uhm0KJDOUN8VHOxgz haIsLi+9i/n2o0mfEB3lhe+u3N4Dxb+8WMfqIfWh6O+83hePT9D+8BPk3wzCUp8A 1KVpMMxhNwKZ7jOIVpXe6VkH3eYXxkvT8/FHw6iKI491m6c7Vk6FqhCiCByqLn4V w4/x2MLRegvKDweJ/rJkO0rTHgIeir9IGZpbNNJJccyDPGu3x+rkx4/kScNYRM1X 5kuiEwvMEnvkNDodfeHMwjVo5slK6zuUsrGfSqYtXswuFdFxIFvVkO5WpnPuAaBb CzXtUdO2nA2xk8/NVkUJsC83RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+QFljd hsMb/6YLm1Jqfi/pg1hSMB8GA1UdIwQYMBaAFCEJRs2p3nXe+WCYlfvyHthMcvTn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzUzNy84N0RENTQ4Q0Ey NzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRkNzVZSmlWLV9JZTJFeHk5 T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRbEd6YW5lZGQ3NVlKaVYtX0llMkV4eTlPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84N0RENTQ4Q0EyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi9JUWxHemFuZWRk NzVZSmlWLV9JZTJFeHk5T2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBxG0OB14m6unUXlMGiNjAI53lYGCj5sEIGfltsDJNmLF0t5zfOdf9 1Im8lsGGaYq17Tg7LP/rY0HhGPxNhm9T7r4+kkiUZX/iECJxGVcI/iAIimI/e36W 28uKq7JVYhkgBhmoQzhXa+AQq+0o/fFrg5o3K90mxW2cj2YMz2+czv3EE4WtqaFS kyaOF9Xag/k2Y6aXJElq3jb6iGqAedeJhTjxk+ANMYSMjrIA6yd2tzSbWCxsKzPR 43zQlfIoRcHD367flz0mMAe9ze1OHVaUaIG3VHkBAAbyyLRfXGR9IObjEkufgAtc lajzKqro/fXbAWuz14druISyhPVlxwuq -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:13 2025 by rpki-client