$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: 6MLLCCsW+K0Q6CTO438+bNkgDs4u00lZ4oa5GWIfOZ8= Subject key identifier: 3F:3E:85:A6:D8:96:84:05:37:1A:79:65:6C:37:8A:1B:4A:A7:F2:5A Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 038F Signing time: Sun 19 Oct 2025 02:48:21 +0000 Manifest this update: Sun 19 Oct 2025 02:48:20 +0000 Manifest next update: Sun 26 Oct 2025 02:48:20 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: C84HURtW7dyoLP8k1g4q9L8NEYlv0MiLnlMU0M0HObs=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Oct 19 02:48:20 2025 GMT Not After : Oct 26 02:48:20 2025 GMT Subject: CN=68f45175-16cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d7:6c:1d:78:1a:ac:ae:1b:e0:78:ce:4d:d1: bb:2a:20:76:37:ea:90:1e:f0:3d:d3:9b:7b:68:e6: 2c:06:13:3a:73:97:3e:3a:da:bb:5c:25:52:8e:90: bc:8d:16:4d:60:48:28:40:96:4f:76:c3:f2:00:f4: d1:a9:7d:ac:80:68:a3:64:4b:c3:ee:ca:54:49:94: 26:e5:64:ad:72:b2:ac:cc:85:7a:2b:f2:54:8b:9d: da:1b:29:8d:0e:53:ea:1c:d5:bd:0d:fb:2d:27:2a: d5:39:f3:52:d0:ae:86:ba:bd:4d:a8:2e:74:d6:b6: 85:31:9f:56:4a:96:06:d0:a7:4a:57:46:34:5e:32: cd:48:08:96:f4:b0:07:4a:93:51:70:74:a7:4e:f7: c3:be:1b:af:1d:07:c2:41:66:bf:8f:79:56:04:1c: 85:30:1c:4a:4f:6e:fd:31:dc:38:6a:f2:04:c0:d0: d8:0b:13:8f:f9:b5:60:f7:c8:a6:c2:e4:7e:d0:d4: bd:f2:bd:16:a3:7a:de:0e:be:8a:3b:a9:37:a5:a2: 37:3e:fe:8d:ec:3d:95:2d:7f:98:52:4b:81:1f:8f: 07:e2:57:7b:3b:aa:88:07:e4:c8:cc:3c:85:1b:9d: 1c:b9:de:2c:5f:b4:c5:66:d9:31:6a:30:39:0a:38: 96:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3E:85:A6:D8:96:84:05:37:1A:79:65:6C:37:8A:1B:4A:A7:F2:5A X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:41:3a:81:39:27:70:c0:c8:ce:a2:62:ed:6a:5a:e4:2a:ba: ea:16:72:23:c2:63:49:c6:e1:90:c0:00:8d:92:de:81:47:d6: e4:23:00:52:34:1a:4d:a7:f9:a0:44:c6:d9:b4:c9:44:ab:a8: d2:f7:94:95:d5:7d:5c:89:69:04:34:4c:2e:37:aa:38:66:4e: d8:bb:b2:16:54:89:bc:08:e2:8e:0a:e8:74:32:be:e6:9b:01: a2:3c:bf:49:99:a3:96:11:d5:90:7b:7b:3e:bd:81:37:ef:bd: 9d:85:35:69:77:dc:d5:e7:25:e5:41:b5:75:9f:e6:a9:a6:69: 97:b6:7a:c1:af:5f:47:41:32:44:9a:a0:ec:f2:58:20:36:e0: b8:a4:a0:98:80:71:ce:81:72:29:77:ea:98:da:01:10:92:86: e1:26:65:e9:89:c8:b3:73:31:06:42:95:6d:0a:28:e1:b8:1c: f7:54:25:41:83:41:d5:62:c2:23:03:f5:e0:80:b4:29:4a:e9: 23:dc:2c:b9:d4:b3:eb:a6:43:15:0b:e0:f5:11:13:32:ae:ee: 20:7e:a3:5a:fe:fa:30:bc:3a:88:1e:6a:18:81:2e:ef:e2:94: 8a:92:b7:d0:96:76:ea:10:7e:6d:b6:19:97:df:1e:d1:7e:39: 05:57:4b:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUxMDE5MDI0ODIwWhcNMjUxMDI2MDI0ODIwWjAYMRYwFAYD VQQDEw02OGY0NTE3NS0xNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltdsHXgarK4b4HjOTdG7KiB2N+qQHvA905t7aOYsBhM6c5c+Otq7XCVSjpC8 jRZNYEgoQJZPdsPyAPTRqX2sgGijZEvD7spUSZQm5WStcrKszIV6K/JUi53aGymN DlPqHNW9DfstJyrVOfNS0K6Gur1NqC501raFMZ9WSpYG0KdKV0Y0XjLNSAiW9LAH SpNRcHSnTvfDvhuvHQfCQWa/j3lWBByFMBxKT279Mdw4avIEwNDYCxOP+bVg98im wuR+0NS98r0Wo3reDr6KO6k3paI3Pv6N7D2VLX+YUkuBH48H4ld7O6qIB+TIzDyF G50cud4sX7TFZtkxajA5CjiWTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8+habY loQFNxp5ZWw3ihtKp/JaMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2QTqBOSdwwMjOomLtalrkKrrqFnIjwmNJxuGQwACNkt6BR9bkIwBS NBpNp/mgRMbZtMlEq6jS95SV1X1ciWkENEwuN6o4Zk7Yu7IWVIm8COKOCuh0Mr7m mwGiPL9JmaOWEdWQe3s+vYE3772dhTVpd9zV5yXlQbV1n+appmmXtnrBr19HQTJE mqDs8lggNuC4pKCYgHHOgXIpd+qY2gEQkobhJmXpicizczEGQpVtCijhuBz3VCVB g0HVYsIjA/XggLQpSukj3Cy51LPrpkMVC+D1ERMyru4gfqNa/vowvDqIHmoYgS7v 4pSKkrfQlnbqEH5tthmX3x7RfjkFV0t+ -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:15 2025 by rpki-client