$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: WCwaOBTATkjZ5cwNmp7i+BSYXhatI5YmTjc2m3TljQc= Subject key identifier: 42:DF:02:16:1F:20:71:AB:7F:39:CC:83:1F:F3:3E:E6:B8:EA:1E:EC Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 18ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 18E4 Signing time: Sat 18 Oct 2025 16:50:34 +0000 Manifest this update: Sat 18 Oct 2025 16:50:33 +0000 Manifest next update: Sat 25 Oct 2025 16:50:33 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: Njsj9+CGZpPf0Y4ZyZwVQ78yZ47ZH+q/lagKSjte4xA=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6381 (0x18ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Oct 18 16:50:33 2025 GMT Not After : Oct 25 16:50:33 2025 GMT Subject: CN=68f3c55a-330e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:66:e0:d7:fc:39:7d:c1:ab:71:ae:1d:89:75: 83:6c:11:32:dc:cd:ae:8d:6c:e2:bf:5e:03:99:08: 21:8e:0a:f5:ab:c9:3a:99:98:d0:6a:a4:66:8f:6e: d1:d6:bb:20:94:85:6a:dd:b1:09:3c:66:8e:ff:cc: 25:5d:24:cd:4a:85:d3:ff:13:a6:5b:12:47:b7:a5: 81:54:3e:be:b9:2f:df:10:07:c0:bd:a3:fe:7e:64: e9:af:a1:2e:2c:3f:6d:3c:cd:9c:32:dc:cf:98:44: 37:c9:10:19:37:38:bf:6e:bc:46:d3:ff:cb:35:ec: 63:28:b7:1e:53:3c:3f:bb:0f:c8:33:19:6f:0e:d1: c2:77:b6:40:88:f4:7a:f0:d9:c3:df:90:f0:77:4c: 2a:42:f1:42:9f:de:ae:5d:c5:84:0f:cd:60:a1:2e: 20:65:8e:e3:28:aa:3f:e8:5c:0b:72:34:13:2a:99: 89:73:d3:7b:d8:15:c9:32:b2:bc:61:36:5a:e5:53: d2:64:6b:a2:47:bc:c2:46:87:6d:26:cc:7f:62:b4: b4:57:c9:c1:c5:fa:79:7a:2f:52:40:c5:0d:43:06: 5f:c0:eb:0b:b6:40:04:52:3f:b8:1d:e0:2a:51:48: c6:bd:19:1f:49:bd:c0:70:21:16:2a:60:a4:fb:45: aa:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DF:02:16:1F:20:71:AB:7F:39:CC:83:1F:F3:3E:E6:B8:EA:1E:EC X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:78:da:ed:ef:5b:64:c2:f4:b9:d3:0b:bd:60:b2:64:73:be: 9d:a6:c2:f0:5d:47:2a:c2:b0:c4:ed:c2:17:d4:d9:ef:22:3b: 5e:1c:35:99:b8:1d:24:ab:aa:c4:b8:74:bf:a0:f6:99:d2:71: 7c:1e:94:34:b7:7b:2f:59:aa:38:59:40:af:b8:03:fc:f0:ea: 59:e1:87:b9:39:bc:f3:5c:0a:fa:8d:1e:66:bb:a1:66:6d:ca: 91:14:20:ba:90:ee:d8:10:88:87:47:22:94:6b:14:85:6a:f9: e4:d9:34:fd:a6:ba:d3:9c:6f:ec:b1:75:cc:be:aa:c5:8e:62: fc:45:11:24:d1:1a:3d:6b:96:bb:e1:e8:ac:4f:7d:f1:4c:8a: 85:1e:c5:64:a4:28:c3:ef:fd:e6:db:51:3b:52:f2:0b:dd:ac: ea:57:0c:78:dc:42:b7:9b:52:4e:4d:49:a9:a1:fd:10:eb:fe: e0:81:92:b0:79:8e:f8:4c:a7:f4:47:3b:95:41:c4:01:37:ee: c7:fc:cb:73:2a:49:61:e7:22:29:39:e8:5f:73:ee:70:9a:47: 79:f7:22:41:61:c9:cd:a3:2e:9b:2e:4e:8d:6d:a7:cd:43:6d: 8a:da:f1:3c:5f:d2:e9:0b:2c:c4:41:eb:90:82:3c:b8:30:fb: 5d:a7:c1:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUxMDE4MTY1MDMzWhcNMjUxMDI1MTY1MDMzWjAYMRYwFAYD VQQDEw02OGYzYzU1YS0zMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmbg1/w5fcGrca4diXWDbBEy3M2ujWziv14DmQghjgr1q8k6mZjQaqRmj27R 1rsglIVq3bEJPGaO/8wlXSTNSoXT/xOmWxJHt6WBVD6+uS/fEAfAvaP+fmTpr6Eu LD9tPM2cMtzPmEQ3yRAZNzi/brxG0//LNexjKLceUzw/uw/IMxlvDtHCd7ZAiPR6 8NnD35Dwd0wqQvFCn96uXcWED81goS4gZY7jKKo/6FwLcjQTKpmJc9N72BXJMrK8 YTZa5VPSZGuiR7zCRodtJsx/YrS0V8nBxfp5ei9SQMUNQwZfwOsLtkAEUj+4HeAq UUjGvRkfSb3AcCEWKmCk+0Wq1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELfAhYf IHGrfznMgx/zPua46h7sMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbeNrt71tkwvS50wu9YLJkc76dpsLwXUcqwrDE7cIX1NnvIjteHDWZ uB0kq6rEuHS/oPaZ0nF8HpQ0t3svWao4WUCvuAP88OpZ4Ye5ObzzXAr6jR5mu6Fm bcqRFCC6kO7YEIiHRyKUaxSFavnk2TT9prrTnG/ssXXMvqrFjmL8RREk0Ro9a5a7 4eisT33xTIqFHsVkpCjD7/3m21E7UvIL3azqVwx43EK3m1JOTUmpof0Q6/7ggZKw eY74TKf0RzuVQcQBN+7H/MtzKklh5yIpOehfc+5wmkd59yJBYcnNoy6bLk6NbafN Q22K2vE8X9LpCyzEQeuQgjy4MPtdp8Gu -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:09 2025 by rpki-client