$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: wbxp3tDnAKS4LxYsOWNn3Hi1ysv5a3q4c0qA5AvzPkk= Subject key identifier: 46:47:4B:22:F3:79:10:F9:45:16:A4:A6:C3:26:1D:C8:17:16:FA:31 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 074C Signing time: Sat 18 Oct 2025 23:04:17 +0000 Manifest this update: Sat 18 Oct 2025 23:04:17 +0000 Manifest next update: Sat 25 Oct 2025 23:04:17 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: IVK4xqFFw0cbM8+9nVNI2tDH+4zA3Mfs1Zcp71ixn48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Oct 18 23:04:17 2025 GMT Not After : Oct 25 23:04:17 2025 GMT Subject: CN=68f41cf1-2bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9f:83:8e:aa:aa:c1:83:fa:f4:7c:68:e6:7e: f8:9b:ed:a9:5b:ce:5a:60:d4:62:ab:d4:6b:88:28: f3:17:90:66:44:b4:1a:68:1f:e1:8e:93:ba:cf:24: b7:6d:19:43:5b:a8:a5:96:64:66:0d:6e:28:f0:14: 4d:f1:9f:89:ab:30:af:da:24:20:df:c1:36:c3:dd: e1:30:9f:08:1a:c0:0b:d2:f4:0c:79:e8:2a:1e:53: 82:a0:a7:37:42:53:75:94:fc:f2:5a:61:42:d3:13: e3:90:fe:a2:7e:8e:09:9e:85:23:86:aa:26:bf:71: cb:cf:23:d5:2c:28:8b:b6:9a:25:8b:8d:d3:ab:15: d3:05:80:7e:91:40:b3:20:d8:09:d3:68:45:b0:30: 36:a9:b7:59:76:df:44:06:ab:c6:dd:a7:41:d3:31: 0d:a7:69:aa:f3:fe:c4:ba:ed:60:b3:9e:02:60:b4: b5:f4:93:d8:b9:81:09:38:2b:11:65:80:ff:c1:ac: 52:2e:e5:0f:59:80:a8:13:c3:d4:bb:6d:94:21:6a: bf:5b:40:f8:05:ef:c3:3d:b1:a8:d3:0f:99:3f:ae: d9:c2:cb:5e:7e:6a:00:df:15:8d:0a:69:6b:2b:30: bd:b0:ef:d3:57:19:30:af:b2:d9:b7:41:06:42:15: cc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:47:4B:22:F3:79:10:F9:45:16:A4:A6:C3:26:1D:C8:17:16:FA:31 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:f7:df:d4:8a:39:07:36:29:73:06:73:a9:89:43:52:72:f8: 4c:8e:c7:78:5e:36:55:61:76:4d:ef:77:41:1a:32:df:02:c7: 1f:59:9c:5e:a2:8e:09:9b:b0:db:fe:a3:96:8e:01:03:e5:e8: 01:51:bf:0b:17:58:20:ec:f0:ad:34:ad:02:84:2e:5a:01:1c: fb:cd:23:91:82:74:82:52:b9:cd:d8:a1:0b:1e:00:8f:9d:38: 08:fc:23:c5:d0:51:e7:42:53:7d:46:cd:8f:73:45:53:27:58: 1b:16:9a:17:7e:71:90:79:85:ef:6b:12:f3:e9:06:b5:81:4b: 8d:77:38:a3:ee:71:90:49:55:ae:75:82:0f:55:23:0e:9d:05: 32:5d:15:d8:61:3e:fe:64:4e:a8:03:7d:75:7b:45:a6:b7:0f: 87:9a:8b:8d:28:7b:cb:29:10:fd:b3:b2:54:c2:a7:f3:2d:07: 1e:6c:d4:06:bd:25:f9:c6:78:f0:00:75:26:84:05:e8:79:79: 16:ac:71:87:95:b3:ab:ae:23:e6:8d:58:ee:19:52:7a:8f:aa: a7:d1:22:f6:80:bb:b9:1f:51:49:d7:0f:dc:77:e8:23:e8:89: 40:b0:3a:e9:53:38:44:20:ea:74:cd:bb:83:d1:33:05:d2:84: 07:e0:ec:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUxMDE4MjMwNDE3WhcNMjUxMDI1MjMwNDE3WjAYMRYwFAYD VQQDEw02OGY0MWNmMS0yYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5+DjqqqwYP69Hxo5n74m+2pW85aYNRiq9RriCjzF5BmRLQaaB/hjpO6zyS3 bRlDW6illmRmDW4o8BRN8Z+JqzCv2iQg38E2w93hMJ8IGsAL0vQMeegqHlOCoKc3 QlN1lPzyWmFC0xPjkP6ifo4JnoUjhqomv3HLzyPVLCiLtpoli43TqxXTBYB+kUCz INgJ02hFsDA2qbdZdt9EBqvG3adB0zENp2mq8/7Euu1gs54CYLS19JPYuYEJOCsR ZYD/waxSLuUPWYCoE8PUu22UIWq/W0D4Be/DPbGo0w+ZP67ZwstefmoA3xWNCmlr KzC9sO/TVxkwr7LZt0EGQhXM9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZHSyLz eRD5RRakpsMmHcgXFvoxMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh99/UijkHNilzBnOpiUNScvhMjsd4XjZVYXZN73dBGjLfAscfWZxe oo4Jm7Db/qOWjgED5egBUb8LF1gg7PCtNK0ChC5aARz7zSORgnSCUrnN2KELHgCP nTgI/CPF0FHnQlN9Rs2Pc0VTJ1gbFpoXfnGQeYXvaxLz6Qa1gUuNdzij7nGQSVWu dYIPVSMOnQUyXRXYYT7+ZE6oA311e0Wmtw+HmouNKHvLKRD9s7JUwqfzLQcebNQG vSX5xnjwAHUmhAXoeXkWrHGHlbOrriPmjVjuGVJ6j6qn0SL2gLu5H1FJ1w/cd+gj 6IlAsDrpUzhEIOp0zbuD0TMF0oQH4Oye -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:36 2025 by rpki-client