$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: IoBM2JImqTXOtwI0r5kp0wStwpKjO7EQYet/HQkiT7A= Subject key identifier: 98:F5:E2:8B:0F:D1:C3:99:59:E0:84:5E:D1:43:44:E5:A8:4D:B3:16 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 017F Signing time: Sun 19 Oct 2025 06:17:52 +0000 Manifest this update: Sun 19 Oct 2025 06:17:51 +0000 Manifest next update: Sun 26 Oct 2025 06:17:51 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: enKxFlZ5gUgmv+CKZXNgVyOq6XlKRsCJMxKwk2BCTlY=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Oct 19 06:17:51 2025 GMT Not After : Oct 26 06:17:51 2025 GMT Subject: CN=68f4828f-bb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:43:f3:0e:ed:d7:8d:61:87:26:2d:43:c0:09: c8:2e:57:34:b1:d9:e7:b1:a9:05:ca:e6:7d:21:ae: ed:4b:13:ac:d7:a6:2e:e9:ca:c6:bb:36:f6:5f:8f: 69:cd:c4:c7:3c:35:c3:01:39:90:6c:3a:a5:69:3b: b3:f4:0f:6a:0e:ed:11:44:95:48:50:27:61:48:42: f7:eb:7f:72:3d:6c:c9:4d:0f:ff:0f:ed:ad:78:4e: 23:30:8b:32:e9:ea:94:68:03:a8:c2:5a:0a:20:85: b5:26:57:20:f3:63:26:16:66:36:bb:ce:ed:5d:93: ee:a8:13:fd:71:2e:9a:f5:3d:5b:7c:7f:e4:72:fd: 07:e4:1e:be:da:c3:16:b8:af:c8:ac:f5:cf:4d:99: 94:82:ef:47:dc:e8:b8:15:09:d2:62:dd:e8:ab:9c: 10:6e:d5:41:6e:6d:1d:11:dd:ff:a5:9c:92:92:56: be:12:8a:db:9d:0b:1f:bc:d1:2e:d8:ca:20:64:31: ee:29:3a:83:e5:99:86:50:0e:9b:a1:2b:c8:42:3c: 9b:9d:ef:1c:23:94:0d:c8:03:47:04:a0:07:aa:1f: 48:3f:fa:52:e4:cf:67:af:2d:b6:f1:6a:1b:d3:e2: af:12:43:ee:f6:1b:5c:06:a6:d2:d5:7c:56:94:5d: 2e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F5:E2:8B:0F:D1:C3:99:59:E0:84:5E:D1:43:44:E5:A8:4D:B3:16 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:39:f8:51:c9:4f:34:91:51:07:00:6e:40:42:d2:dd:78:0b: ce:92:6b:d6:5d:23:13:b7:6f:ad:50:93:74:2e:40:78:e2:4a: 61:b0:9d:5c:5e:dd:15:62:5f:84:84:87:34:a9:e8:5c:bd:72: 6f:9b:bc:8b:5d:44:a9:19:9c:eb:d3:8d:6f:dd:d1:33:c7:d4: b8:8b:13:5c:c2:6b:d7:58:a0:84:d7:e1:5e:6b:e1:57:60:e0: 47:f1:c9:a3:be:c2:72:04:88:dd:af:7f:47:eb:d5:d6:c8:b9: 93:1f:3a:bf:fc:59:2c:b9:fa:92:9b:d6:74:a8:2d:8c:4f:9d: 1d:b4:67:be:4f:2f:d4:a2:11:18:37:f2:a2:5d:25:86:09:ff: 02:8c:90:eb:48:0b:22:93:f4:7b:8f:cc:18:cb:67:2d:75:65: ea:fb:da:04:7e:63:ca:be:4c:49:d6:82:f0:1d:9a:f2:9f:4c: c0:26:4f:72:dc:1d:89:1e:b2:cf:3f:8f:28:81:21:da:90:38: 42:04:c9:df:b3:78:8a:ba:4e:7a:cd:4f:1b:6a:04:d3:38:a6: eb:2d:78:31:24:b8:5b:80:7b:54:42:55:16:18:48:a9:d9:ee: 99:b8:9d:a2:94:5b:46:01:4e:44:01:c5:73:7f:0c:5f:d0:fb: e5:cd:5d:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUxMDE5MDYxNzUxWhcNMjUxMDI2MDYxNzUxWjAYMRYwFAYD VQQDEw02OGY0ODI4Zi1iYjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0PzDu3XjWGHJi1DwAnILlc0sdnnsakFyuZ9Ia7tSxOs16Yu6crGuzb2X49p zcTHPDXDATmQbDqlaTuz9A9qDu0RRJVIUCdhSEL3639yPWzJTQ//D+2teE4jMIsy 6eqUaAOowloKIIW1Jlcg82MmFmY2u87tXZPuqBP9cS6a9T1bfH/kcv0H5B6+2sMW uK/IrPXPTZmUgu9H3Oi4FQnSYt3oq5wQbtVBbm0dEd3/pZySkla+EorbnQsfvNEu 2MogZDHuKTqD5ZmGUA6boSvIQjybne8cI5QNyANHBKAHqh9IP/pS5M9nry228Wob 0+KvEkPu9htcBqbS1XxWlF0uVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJj14osP 0cOZWeCEXtFDROWoTbMWMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuOfhRyU80kVEHAG5AQtLdeAvOkmvWXSMTt2+tUJN0LkB44kphsJ1c Xt0VYl+EhIc0qehcvXJvm7yLXUSpGZzr041v3dEzx9S4ixNcwmvXWKCE1+Fea+FX YOBH8cmjvsJyBIjdr39H69XWyLmTHzq//FksufqSm9Z0qC2MT50dtGe+Ty/UohEY N/KiXSWGCf8CjJDrSAsik/R7j8wYy2ctdWXq+9oEfmPKvkxJ1oLwHZryn0zAJk9y 3B2JHrLPP48ogSHakDhCBMnfs3iKuk56zU8bagTTOKbrLXgxJLhbgHtUQlUWGEip 2e6ZuJ2ilFtGAU5EAcVzfwxf0PvlzV3D -----END CERTIFICATE-----Generated at Mon Oct 20 12:15:25 2025 by rpki-client