$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: XenrRPOnCnG/qSSuFgK4SV+wXKzDXRcZMFDCAcyVyDc= Subject key identifier: 7A:AE:49:FE:10:EA:AA:5E:3F:B1:91:5E:C3:46:81:17:BE:B1:32:92 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 073F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C45 Signing time: Sat 18 Oct 2025 19:20:27 +0000 Manifest this update: Sat 18 Oct 2025 19:20:26 +0000 Manifest next update: Sat 25 Oct 2025 19:20:26 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: HfyUXOMuWCgsfuKyV1PpNP5+w2ebYVcFqzR6xP0rIek=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Oct 18 19:20:26 2025 GMT Not After : Oct 25 19:20:26 2025 GMT Subject: CN=68f3e87a-e5cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7f:52:64:a2:fd:a2:b0:a3:d9:0f:0b:fb:dc: 46:c9:66:b4:83:86:25:14:de:95:cb:1f:04:f4:70: 1b:7b:03:4e:1e:6e:fb:71:30:50:9b:a9:87:61:48: 30:80:0e:76:a8:bc:91:88:90:dc:ba:8c:17:fa:b9: 7a:8e:e0:0b:11:1a:fb:1f:18:89:fe:ab:ea:d9:be: c5:29:5f:ff:1b:b0:a0:55:c2:0f:b4:94:e4:7f:1d: d4:bd:50:42:03:76:aa:30:02:70:7f:f9:a6:6c:d7: 21:ea:fb:87:7f:99:18:d1:33:79:5d:b2:cf:af:89: e3:3b:e2:14:38:ac:d0:a4:fa:fb:50:17:04:df:9d: 09:7e:07:fb:e1:97:de:d7:3f:af:99:82:31:f0:26: 5d:da:70:9f:3c:11:ce:fe:90:b5:08:c9:e6:79:a7: d0:1c:01:50:be:c6:55:82:9e:68:27:d4:24:f8:29: c4:d2:61:b5:e2:3f:a8:16:ba:01:ca:7c:8d:34:d4: 2d:e2:fb:5f:8e:dd:d9:4a:ea:07:41:12:f7:c1:ee: f2:b7:0f:88:88:ba:e7:d3:e1:c4:a4:1a:95:1b:a5: 4f:45:09:36:2f:da:34:ff:f7:ca:7f:9e:8f:02:21: 4a:17:ca:58:5a:75:f2:86:01:7f:98:82:29:bc:5b: 47:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AE:49:FE:10:EA:AA:5E:3F:B1:91:5E:C3:46:81:17:BE:B1:32:92 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:bd:04:8b:ae:10:4e:28:e7:fd:14:4a:b5:ca:af:9d:d2:65: 85:d9:eb:4c:6d:a2:9b:93:5f:55:ef:d1:9b:27:68:04:af:df: 5e:68:91:40:3b:96:94:3b:92:eb:ea:d9:e5:4d:3d:12:ca:e8: 17:7d:fb:d2:ca:01:6a:b9:fd:15:ff:a5:7b:ad:9a:a4:6a:b8: f8:cd:bf:81:c4:b5:d8:74:85:f7:75:35:3d:4e:9c:dd:9c:2f: 25:10:f4:d1:da:cb:3e:bd:7c:8e:57:95:1e:03:01:63:9a:00: 58:98:d7:00:c5:0b:6f:bd:87:6e:bf:3e:cb:84:bb:ed:61:8a: 69:c0:f1:a4:9f:3a:1a:63:36:1f:a3:3d:08:3a:df:c6:cc:62: 7f:5f:78:db:3d:dc:68:06:88:c5:b8:c1:dc:63:50:a4:d6:97: c9:12:34:f4:b2:d1:0f:d8:59:46:54:88:77:80:6f:bb:bb:c0: 14:7e:81:bb:08:f3:bb:c7:96:63:36:68:51:77:f8:a2:64:40: eb:08:93:c4:d7:49:61:ea:4f:8c:91:3d:a9:c8:df:5b:29:de: 19:e9:6f:6c:f6:31:54:5f:c8:4f:38:12:47:ec:f4:ca:08:3e: cc:f8:e5:b4:60:da:d4:1b:19:b3:7a:c2:39:2d:62:b3:8a:65: de:3d:b7:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUxMDE4MTkyMDI2WhcNMjUxMDI1MTkyMDI2WjAYMRYwFAYD VQQDEw02OGYzZTg3YS1lNWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2X9SZKL9orCj2Q8L+9xGyWa0g4YlFN6Vyx8E9HAbewNOHm77cTBQm6mHYUgw gA52qLyRiJDcuowX+rl6juALERr7HxiJ/qvq2b7FKV//G7CgVcIPtJTkfx3UvVBC A3aqMAJwf/mmbNch6vuHf5kY0TN5XbLPr4njO+IUOKzQpPr7UBcE350Jfgf74Zfe 1z+vmYIx8CZd2nCfPBHO/pC1CMnmeafQHAFQvsZVgp5oJ9Qk+CnE0mG14j+oFroB ynyNNNQt4vtfjt3ZSuoHQRL3we7ytw+IiLrn0+HEpBqVG6VPRQk2L9o0//fKf56P AiFKF8pYWnXyhgF/mIIpvFtH5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHquSf4Q 6qpeP7GRXsNGgRe+sTKSMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyvQSLrhBOKOf9FEq1yq+d0mWF2etMbaKbk19V79GbJ2gEr99eaJFA O5aUO5Lr6tnlTT0SyugXffvSygFquf0V/6V7rZqkarj4zb+BxLXYdIX3dTU9Tpzd nC8lEPTR2ss+vXyOV5UeAwFjmgBYmNcAxQtvvYduvz7LhLvtYYppwPGknzoaYzYf oz0IOt/GzGJ/X3jbPdxoBojFuMHcY1Ck1pfJEjT0stEP2FlGVIh3gG+7u8AUfoG7 CPO7x5ZjNmhRd/iiZEDrCJPE10lh6k+MkT2pyN9bKd4Z6W9s9jFUX8hPOBJH7PTK CD7M+OW0YNrUGxmzesI5LWKzimXePbcm -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:21 2025 by rpki-client