$ rpki-client -vvf rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft File: iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft (raw, json) Hash identifier: 4bi3L0q2mJsTlA2Dw+U84Di7XviUIBbsQYsdomRMIRs= Subject key identifier: 2F:49:D4:A8:E8:71:3B:61:E8:45:17:89:0A:7F:67:AF:25:A9:46:7E Authority key identifier: 88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF Certificate issuer: /CN=A913AD90/serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft Manifest number: 0117 Signing time: Sun 19 Oct 2025 07:48:43 +0000 Manifest this update: Sun 19 Oct 2025 07:48:42 +0000 Manifest next update: Sun 26 Oct 2025 07:48:42 +0000 Files and hashes: 1: iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl (hash: KfL/6+eIuZZ3LfcxrCQZz0RdpE4GYkAsWOG62iQPvOU=) 2: 5DB3B5AA145C11EFAE012A55C4F9AE02.roa (hash: IjBd7XUR2i0dTIqKZWCJ7zm+gZSogWBX4IMREVDmhgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AD90, serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Validity Not Before: Oct 19 07:48:42 2025 GMT Not After : Oct 26 07:48:42 2025 GMT Subject: CN=68f497da-e45c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bd:a5:ad:93:9f:b8:18:6b:4f:e7:58:9c:dc: 94:15:f3:b1:d8:c5:7f:70:34:1b:db:50:36:7a:42: 81:07:60:46:17:89:cb:3f:a4:88:32:9a:85:d6:06: e6:55:a8:e3:6c:44:9b:64:29:1d:dc:03:32:59:ae: 22:3a:ef:38:76:55:1a:00:ea:26:c7:b9:48:b2:2a: 9c:41:43:ee:11:7d:dc:9f:12:a7:3a:ff:37:77:1a: 5c:47:fd:3a:95:c6:9a:7b:21:d6:24:3a:72:16:0c: 1d:0d:51:ae:ac:6b:87:18:f0:46:c5:00:94:2d:80: 1a:7f:17:49:fb:d4:32:18:c6:c2:82:03:05:3a:24: 8d:db:b9:a0:4f:8b:80:ee:b0:6b:19:af:50:e5:e4: 9b:ed:72:d6:02:20:18:f6:a2:90:cc:f9:16:40:56: ab:8c:f4:df:97:36:e6:bc:18:53:bb:f1:aa:cb:3f: 0d:29:0c:ed:83:f9:b2:ed:6e:9d:a4:4a:5f:ca:43: e4:be:0e:87:68:fa:7c:d2:ca:05:17:dd:b5:d1:8d: 0b:0a:32:c3:7a:53:3e:3d:3b:ba:41:9c:2a:2c:9f: 5c:67:45:5d:e9:e8:89:fd:46:d4:32:12:f7:3c:87: 16:72:9c:d7:d6:b7:08:2e:c8:a3:30:2e:00:be:5b: 8a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:49:D4:A8:E8:71:3B:61:E8:45:17:89:0A:7F:67:AF:25:A9:46:7E X509v3 Authority Key Identifier: keyid:88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:bf:7b:d5:2e:98:56:8c:b9:a6:c9:00:c9:31:02:55:70:51: ae:69:75:7e:87:3b:98:42:80:9e:1f:14:8c:f8:0c:e0:3e:c0: 6f:d3:4e:4a:5d:a6:e6:7a:56:c1:99:42:04:67:26:6d:6d:50: ac:94:67:56:ee:61:8f:2f:ed:96:79:e7:a0:1f:e3:62:02:41: 3c:17:27:8f:eb:a3:c3:57:b8:d1:b3:23:5e:f6:ea:ca:2a:cb: 7f:e2:6f:28:b3:78:77:10:b4:af:4b:b9:1b:3b:f7:bb:b4:54: c9:ef:c3:c9:f4:4e:5b:28:ee:8f:75:bf:2b:8e:c3:cf:75:45: b3:dd:4c:a0:d4:34:27:cc:a8:27:9b:75:c2:9e:04:75:27:01: 6f:5f:61:4b:ff:e8:c7:f5:b5:dd:a0:6c:c7:aa:5d:13:7c:b3: cd:51:b7:a9:eb:83:75:3a:8e:eb:a4:cf:46:b8:b4:00:08:8a: b0:a6:9c:79:51:cc:bd:a4:b4:58:ed:ae:6a:7c:52:8a:56:66: 72:35:69:6c:be:da:f6:6e:84:51:e9:89:59:a6:3a:38:35:06: dc:9c:ef:be:2e:a1:13:f7:7d:fb:58:aa:65:fd:a2:d4:f0:c9: e4:71:67:c4:65:eb:25:35:04:3b:02:ad:29:1c:06:9e:0c:c1: ac:91:a3:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FEOTAxMTAvBgNVBAUTKDg4MDkxOEE4NzU2RjA0OTMxQTMyRjRDRUEzNDFDNEYy M0ZBRDUwRUYwHhcNMjUxMDE5MDc0ODQyWhcNMjUxMDI2MDc0ODQyWjAYMRYwFAYD VQQDEw02OGY0OTdkYS1lNDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt72lrZOfuBhrT+dYnNyUFfOx2MV/cDQb21A2ekKBB2BGF4nLP6SIMpqF1gbm VajjbESbZCkd3AMyWa4iOu84dlUaAOomx7lIsiqcQUPuEX3cnxKnOv83dxpcR/06 lcaaeyHWJDpyFgwdDVGurGuHGPBGxQCULYAafxdJ+9QyGMbCggMFOiSN27mgT4uA 7rBrGa9Q5eSb7XLWAiAY9qKQzPkWQFarjPTflzbmvBhTu/Gqyz8NKQztg/my7W6d pEpfykPkvg6HaPp80soFF9210Y0LCjLDelM+PTu6QZwqLJ9cZ0Vd6eiJ/UbUMhL3 PIcWcpzX1rcILsijMC4AvluKqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9J1Kjo cTth6EUXiQp/Z68lqUZ+MB8GA1UdIwQYMBaAFIgJGKh1bwSTGjL0zqNBxPI/rVDv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUQ5MC8wMzAwQzUxNDBG MEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJKTWFNdlRPbzBIRThqLXRV TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBa1lxSFZ2QkpNYU12VE9vMEhFOGotdFVPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUQ5MC8wMzAwQzUxNDBGMEExMUVGOTBDOEExMzJDNEY5QUUwMi9pQWtZcUhWdkJK TWFNdlRPbzBIRThqLXRVTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOv3vVLphWjLmmyQDJMQJVcFGuaXV+hzuYQoCeHxSM+AzgPsBv005K XabmelbBmUIEZyZtbVCslGdW7mGPL+2WeeegH+NiAkE8FyeP66PDV7jRsyNe9urK Kst/4m8os3h3ELSvS7kbO/e7tFTJ78PJ9E5bKO6Pdb8rjsPPdUWz3Uyg1DQnzKgn m3XCngR1JwFvX2FL/+jH9bXdoGzHql0TfLPNUbep64N1Oo7rpM9GuLQACIqwppx5 Ucy9pLRY7a5qfFKKVmZyNWlsvtr2boRR6YlZpjo4NQbcnO++LqET9337WKpl/aLU 8MnkcWfEZeslNQQ7Aq0pHAaeDMGskaMa -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:40 2025 by rpki-client