$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: fzAc0eLp4oNx5dolQE9C7vtzrTmXTGylZ4nd4afgDoc= Subject key identifier: E8:FE:EC:EC:C9:38:32:5C:D3:74:BD:1F:43:33:CC:96:BD:22:02:97 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 22FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 22EC Signing time: Tue 04 Nov 2025 15:55:31 +0000 Manifest this update: Tue 04 Nov 2025 15:55:31 +0000 Manifest next update: Tue 11 Nov 2025 15:55:31 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: sagSXdG4PB/Mbs9RFzNWBN6o0Lb9VomW0S270NVLtdI=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: +yqS5ARpGMGBWr2MyFGiajoFZUJV/KOEs+STzodgJKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8955 (0x22fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Nov 4 15:55:31 2025 GMT Not After : Nov 11 15:55:31 2025 GMT Subject: CN=690a21f3-0033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:2e:89:c8:6c:6e:be:19:f2:ad:d5:8d:ab:07: 2a:73:47:37:3f:ba:f5:cd:44:bf:01:31:90:92:ed: 90:ce:0b:ac:ac:68:f0:ee:a4:ee:2b:ca:00:65:1b: 75:14:1e:39:ab:1b:fa:f0:f7:6c:c5:70:0e:2d:ed: 66:cd:84:f1:f3:42:51:3d:55:52:34:ec:29:b1:a8: aa:0d:8a:3b:7b:15:a3:11:4f:3e:61:95:ef:00:2a: 02:6d:96:8a:5f:2f:a2:76:1d:18:7b:57:86:bf:c8: ee:2a:fe:71:4f:f9:fb:82:33:75:43:49:43:ee:ae: 21:f7:f8:22:f4:f0:94:9e:2f:3b:06:96:cd:c7:6d: 27:93:0d:f2:25:20:95:98:94:b2:99:4e:ec:6f:14: 20:24:88:25:c6:0d:8c:10:29:4c:f9:07:af:b6:29: d4:b1:03:cf:5e:b9:c6:5a:4b:83:00:34:14:ec:a3: c5:0f:fc:12:ca:01:9e:c2:18:70:e6:b7:43:7b:c4: 79:15:ff:05:18:f9:84:f6:fc:bc:d8:8c:40:90:6e: ee:df:38:1a:01:39:8f:7c:ca:e3:77:4a:65:0b:ce: cc:8d:23:4b:da:1f:0a:a2:a2:f8:b5:f6:f3:04:dd: ce:67:a8:b1:21:69:26:a0:bd:67:9d:b8:34:50:bc: 20:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FE:EC:EC:C9:38:32:5C:D3:74:BD:1F:43:33:CC:96:BD:22:02:97 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:3f:8c:df:e8:93:e5:65:2d:17:6c:40:cb:a3:b3:c8:d1:e4: a7:14:4b:4f:78:38:9a:90:2f:59:8c:fe:8e:fc:ce:2b:bc:5b: 80:c0:48:ea:35:05:0b:ba:91:fe:c0:4c:6e:a1:bb:31:c3:c7: 9c:d2:15:0e:d1:72:05:9c:5a:cd:15:3a:ac:7d:f5:6b:02:1f: ec:29:f2:c1:9e:4d:c6:56:d8:7e:c9:6b:32:99:b9:fb:45:94: 95:8f:c2:56:8e:bb:1b:d4:01:c6:10:48:c2:cb:40:7c:d8:81: 26:0a:6a:19:c8:d1:ec:13:8e:ab:cc:3e:c5:5f:87:7e:c3:62: 8f:b8:09:e0:b3:24:11:1a:03:44:e3:12:bb:6d:17:81:27:ce: 19:9b:f9:d7:be:31:9f:a1:c0:47:29:84:1e:00:ad:54:78:3a: bf:0d:b8:ce:31:6c:78:2c:a0:3a:e3:04:1a:7c:41:a7:2a:35: f4:f5:4a:51:b0:53:bf:84:d9:46:97:cd:5f:0f:87:58:02:08: 0c:98:67:23:3d:59:9e:ca:2e:92:05:5f:13:ce:c4:cd:db:f3: 9e:40:55:30:27:45:eb:9e:bd:03:c4:23:13:20:01:a2:a0:b4: 58:fe:ab:e6:57:2f:41:cd:8e:0c:58:b7:8e:5d:2b:4e:73:ea: bf:12:4a:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUxMTA0MTU1NTMxWhcNMjUxMTExMTU1NTMxWjAYMRYwFAYD VQQDEw02OTBhMjFmMy0wMDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAky6JyGxuvhnyrdWNqwcqc0c3P7r1zUS/ATGQku2QzgusrGjw7qTuK8oAZRt1 FB45qxv68PdsxXAOLe1mzYTx80JRPVVSNOwpsaiqDYo7exWjEU8+YZXvACoCbZaK Xy+idh0Ye1eGv8juKv5xT/n7gjN1Q0lD7q4h9/gi9PCUni87BpbNx20nkw3yJSCV mJSymU7sbxQgJIglxg2MEClM+QevtinUsQPPXrnGWkuDADQU7KPFD/wSygGewhhw 5rdDe8R5Ff8FGPmE9vy82IxAkG7u3zgaATmPfMrjd0plC87MjSNL2h8KoqL4tfbz BN3OZ6ixIWkmoL1nnbg0ULwggQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOj+7OzJ ODJc03S9H0MzzJa9IgKXMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEP4zf6JPlZS0XbEDLo7PI0eSnFEtPeDiakC9ZjP6O/M4rvFuAwEjq NQULupH+wExuobsxw8ec0hUO0XIFnFrNFTqsffVrAh/sKfLBnk3GVth+yWsymbn7 RZSVj8JWjrsb1AHGEEjCy0B82IEmCmoZyNHsE46rzD7FX4d+w2KPuAngsyQRGgNE 4xK7bReBJ84Zm/nXvjGfocBHKYQeAK1UeDq/DbjOMWx4LKA64wQafEGnKjX09UpR sFO/hNlGl81fD4dYAggMmGcjPVmeyi6SBV8TzsTN2/OeQFUwJ0Xrnr0DxCMTIAGi oLRY/qvmVy9BzY4MWLeOXStOc+q/EkqI -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:56 2025 by rpki-client