$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: pbP3IFs3Dcnf/cA2x0rhvnAMSVs6ZrCWHRd9iK1VdhE= Subject key identifier: 47:C4:98:5E:34:9B:08:12:4E:8F:68:3D:61:C8:DC:28:7C:C2:12:FC Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0C90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0C87 Signing time: Sat 18 Oct 2025 19:07:36 +0000 Manifest this update: Sat 18 Oct 2025 19:07:35 +0000 Manifest next update: Sat 25 Oct 2025 19:07:35 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: IzTV+XBMhbfGlqG01gbZ0NIBy3SyCW6ylhNknry6GrI=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: ZF76+TdQMAvJkkO6rvtsiHzBwUDEVkLOtw/tW67c6tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E, serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: Oct 18 19:07:35 2025 GMT Not After : Oct 25 19:07:35 2025 GMT Subject: CN=68f3e578-ca53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:94:47:c2:b1:d5:33:ef:1d:b3:a7:76:63:e9: 0e:f2:de:01:35:69:88:18:95:cc:d0:66:8b:d0:7c: 4c:21:35:05:3f:b4:05:23:34:1f:22:01:5e:14:86: 0a:63:9f:98:11:49:1c:15:e0:ad:15:c8:38:dd:f5: d0:05:cb:e8:92:7a:c6:5e:3a:61:7e:7a:ed:d1:ab: ee:56:eb:fa:3e:08:d8:0a:38:ac:8c:f8:5f:20:82: 62:d4:9a:1f:da:b4:2e:ca:f2:f6:ee:71:d6:95:2f: 32:9a:90:aa:30:61:a5:33:d7:77:10:90:0c:1d:a7: 62:de:9c:ec:38:98:62:36:be:09:30:c6:5e:4e:ce: b5:9d:46:df:36:78:04:67:b0:8e:14:ff:11:49:1c: f2:bb:67:21:03:ca:d8:a0:cd:33:e8:90:91:c2:82: e4:69:17:7d:ce:0a:2d:de:f4:10:88:2f:e8:10:76: df:d5:ce:7b:67:9f:ac:2b:74:05:11:92:5a:6b:31: 1a:2a:a1:94:29:8e:ba:3e:26:cc:98:71:0b:6f:08: 7f:3a:26:b9:5c:08:3b:e5:80:5b:0e:9a:9e:90:a8: 62:80:75:59:fe:bc:96:8e:f3:d9:3c:54:17:ff:e9: ed:42:dd:21:b5:ee:b6:e6:d4:a1:c8:a2:3d:7b:ed: d7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C4:98:5E:34:9B:08:12:4E:8F:68:3D:61:C8:DC:28:7C:C2:12:FC X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4d:82:17:64:38:53:61:e5:39:b2:ec:14:20:8e:66:d1:57: 45:c2:66:71:4c:ec:6b:8c:9d:93:7e:2a:fd:bb:cf:46:1a:06: 43:ab:7c:78:d1:ab:33:bb:0b:4a:8c:b9:df:7e:31:c7:8a:c2: 4b:e6:b7:bd:ec:1a:60:c5:26:aa:e8:26:b3:25:c4:b5:89:18: a0:4f:2e:c5:93:4f:70:e8:f4:6a:a1:01:bb:c7:d5:f1:c0:8c: 73:1c:71:a7:42:c0:0f:db:46:8f:68:a0:a2:3b:2c:ba:87:6c: 1e:01:a4:e1:51:a0:25:1c:5c:7c:ee:03:7c:63:0d:c6:04:48: 43:03:d6:4c:22:15:87:7c:10:6f:74:df:00:69:5e:ed:a6:66: 4e:76:c0:25:ce:7a:49:be:7f:01:f4:cd:57:dd:c2:7c:e5:d9: 26:d1:fa:e2:46:61:26:c7:d7:6f:57:10:11:15:3e:46:1e:52: a5:52:56:e8:54:c4:1f:26:bf:18:c5:6f:61:c9:a0:b3:53:e9: 29:16:04:46:e2:da:5b:7e:83:b4:fa:9c:bf:a8:30:5a:fa:c3: 4c:bb:69:ae:6c:fa:ac:d0:49:02:eb:5d:bb:71:c3:ad:bd:54: 7b:27:a1:47:83:99:1b:fb:77:f9:87:f3:b4:e0:77:a0:8e:03: 78:cc:2d:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjUxMDE4MTkwNzM1WhcNMjUxMDI1MTkwNzM1WjAYMRYwFAYD VQQDEw02OGYzZTU3OC1jYTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZRHwrHVM+8ds6d2Y+kO8t4BNWmIGJXM0GaL0HxMITUFP7QFIzQfIgFeFIYK Y5+YEUkcFeCtFcg43fXQBcvoknrGXjphfnrt0avuVuv6PgjYCjisjPhfIIJi1Jof 2rQuyvL27nHWlS8ympCqMGGlM9d3EJAMHadi3pzsOJhiNr4JMMZeTs61nUbfNngE Z7COFP8RSRzyu2chA8rYoM0z6JCRwoLkaRd9zgot3vQQiC/oEHbf1c57Z5+sK3QF EZJaazEaKqGUKY66PibMmHELbwh/Oia5XAg75YBbDpqekKhigHVZ/ryWjvPZPFQX /+ntQt0hte625tShyKI9e+3XUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfEmF40 mwgSTo9oPWHI3Ch8whL8MB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMTYIXZDhTYeU5suwUII5m0VdFwmZxTOxrjJ2Tfir9u89GGgZDq3x4 0aszuwtKjLnffjHHisJL5re97BpgxSaq6CazJcS1iRigTy7Fk09w6PRqoQG7x9Xx wIxzHHGnQsAP20aPaKCiOyy6h2weAaThUaAlHFx87gN8Yw3GBEhDA9ZMIhWHfBBv dN8AaV7tpmZOdsAlznpJvn8B9M1X3cJ85dkm0friRmEmx9dvVxARFT5GHlKlUlbo VMQfJr8YxW9hyaCzU+kpFgRG4tpbfoO0+py/qDBa+sNMu2mubPqs0EkC6127ccOt vVR7J6FHg5kb+3f5h/O04HegjgN4zC24 -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:25 2025 by rpki-client