$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: dnvojv0Z+hX64h0Qrzrf2hDugTL6g1KjPGxAO2PUa40= Subject key identifier: D0:FA:F3:F1:38:61:60:B9:91:D5:6E:A4:98:DF:4D:FD:A3:73:09:32 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D18 Signing time: Tue 04 Nov 2025 16:14:59 +0000 Manifest this update: Tue 04 Nov 2025 16:14:58 +0000 Manifest next update: Tue 11 Nov 2025 16:14:58 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: RedLHl/xuZGZunoN6xMfAV44VWy+r1xHfJlKaBgSlUU=) 2: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: 2aGejYYAILu+vq+h9Ds1ItJ4A2WEADfQRUwQnuAzQp4=) 3: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: dyKQZQJFWOlaLCos4pICmePW3GQtvzVk28wWqQnX6xA=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7469 (0x1d2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Nov 4 16:14:58 2025 GMT Not After : Nov 11 16:14:58 2025 GMT Subject: CN=690a2682-1841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c2:14:ed:69:80:bf:aa:84:22:87:ed:a4:60: 57:b0:05:e6:e1:ee:0d:72:f8:74:8d:9e:93:a7:ea: ae:e0:a7:1f:44:35:8f:b5:3e:f7:28:f9:df:ef:fe: 0d:55:6d:56:19:a9:19:e3:58:c8:07:78:bb:af:c5: 1d:2e:14:dd:84:37:72:f9:61:31:a2:86:39:4f:7b: 75:6a:a2:3a:c3:62:9d:fd:9a:dc:93:f6:3f:e0:fb: 80:68:b0:26:9d:78:ea:9c:3a:e5:f4:48:b7:d8:a0: 74:1e:00:cb:a1:19:80:39:ae:c8:6d:ac:50:74:91: ee:2c:f6:07:53:7e:35:4f:95:ec:d6:7f:3d:4e:32: 8c:e2:b5:9b:5b:bf:30:bd:d0:e9:ca:3d:70:44:54: cd:55:38:9d:a7:4f:2f:dd:99:8b:6b:51:03:1c:37: 4a:8b:ef:1f:13:f4:b8:5e:e7:80:c6:1b:7f:e3:c8: 93:fe:78:40:bd:bc:aa:33:88:13:1e:65:b5:32:1c: 1d:50:d1:80:91:81:42:99:d1:92:70:19:e1:96:50: 3a:82:39:9b:33:ed:ea:8c:3b:cc:05:ed:6f:87:e6: 9c:46:5b:81:7e:c3:b7:bf:33:bd:76:3c:de:b2:25: c1:7b:57:de:ed:94:26:6d:c8:b1:64:02:bd:0b:76: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FA:F3:F1:38:61:60:B9:91:D5:6E:A4:98:DF:4D:FD:A3:73:09:32 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:cd:7b:7a:24:3b:a9:65:4e:ce:1d:38:a4:95:d5:eb:24:45: 1e:a7:2a:f5:e5:2e:0c:2d:2a:34:7f:bd:4a:60:96:65:ff:a4: d0:ed:20:dc:6d:af:a9:2f:1d:80:7a:a8:cb:a5:2d:3a:43:8f: b6:cb:0a:7b:a6:24:92:f4:09:70:be:44:71:b3:39:65:38:a9: 6e:8b:58:4a:09:48:d5:e7:ae:12:93:ea:36:87:bc:cd:06:4f: d1:ce:d9:7b:14:3b:4c:ec:49:27:2a:85:9e:8b:1e:87:73:bb: d4:9b:ea:9f:90:e5:37:78:33:28:70:36:a9:3e:24:30:81:10: e1:21:35:a7:17:eb:0b:ee:34:59:49:95:87:3c:cd:f2:ba:48: d1:bf:e6:e3:04:ee:2c:84:48:51:ec:3f:6e:4a:16:bb:9c:68: fb:a8:e0:41:d9:bb:16:4c:a7:e8:c9:57:31:8c:1e:b0:7c:79: 59:b6:1a:2c:d6:4c:98:d6:f1:55:b3:2a:99:a1:6c:f1:4c:ad: c7:ea:9e:ca:a7:75:24:5f:a1:bb:dc:88:b9:f4:76:a4:1d:b9: 7a:6b:dc:41:a5:3f:c7:bf:52:82:0e:22:45:fb:41:d6:0b:4a: 0d:b1:bd:d8:3b:72:57:9c:7f:06:31:1e:a6:a2:c7:d4:5e:63: 3a:8a:21:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUxMTA0MTYxNDU4WhcNMjUxMTExMTYxNDU4WjAYMRYwFAYD VQQDEw02OTBhMjY4Mi0xODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38IU7WmAv6qEIoftpGBXsAXm4e4Ncvh0jZ6Tp+qu4KcfRDWPtT73KPnf7/4N VW1WGakZ41jIB3i7r8UdLhTdhDdy+WExooY5T3t1aqI6w2Kd/Zrck/Y/4PuAaLAm nXjqnDrl9Ei32KB0HgDLoRmAOa7IbaxQdJHuLPYHU341T5Xs1n89TjKM4rWbW78w vdDpyj1wRFTNVTidp08v3ZmLa1EDHDdKi+8fE/S4XueAxht/48iT/nhAvbyqM4gT HmW1MhwdUNGAkYFCmdGScBnhllA6gjmbM+3qjDvMBe1vh+acRluBfsO3vzO9djze siXBe1fe7ZQmbcixZAK9C3aFMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND68/E4 YWC5kdVupJjfTf2jcwkyMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCizXt6JDupZU7OHTikldXrJEUepyr15S4MLSo0f71KYJZl/6TQ7SDc ba+pLx2AeqjLpS06Q4+2ywp7piSS9AlwvkRxszllOKlui1hKCUjV564Sk+o2h7zN Bk/Rztl7FDtM7EknKoWeix6Hc7vUm+qfkOU3eDMocDapPiQwgRDhITWnF+sL7jRZ SZWHPM3yukjRv+bjBO4shEhR7D9uSha7nGj7qOBB2bsWTKfoyVcxjB6wfHlZthos 1kyY1vFVsyqZoWzxTK3H6p7Kp3UkX6G73Ii59HakHbl6a9xBpT/Hv1KCDiJF+0HW C0oNsb3YO3JXnH8GMR6mosfUXmM6iiGM -----END CERTIFICATE-----Generated at Wed Nov 5 22:44:33 2025 by rpki-client