$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: zWZbqRl5QW80IHO4ZeIo0431I5YUT1XUspgrfwrnNnQ= Subject key identifier: 50:96:DC:23:84:AA:92:F4:7A:FA:1F:78:78:70:29:6F:5D:5D:6B:97 Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 055A Signing time: Sun 19 Oct 2025 01:07:31 +0000 Manifest this update: Sun 19 Oct 2025 01:07:31 +0000 Manifest next update: Sun 26 Oct 2025 01:07:31 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: c/0ziF+orOmOcx/065dri4o/8LbKcXY+EDJcUtMufB8=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Oct 19 01:07:31 2025 GMT Not After : Oct 26 01:07:31 2025 GMT Subject: CN=68f439d3-52d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:00:6e:48:b9:58:3f:ff:bb:29:16:33:a2: 33:42:f0:57:4e:47:75:46:b1:11:ec:c1:d1:8e:31: 1b:71:32:51:17:82:81:cc:0b:65:3e:1b:8b:59:5c: af:10:b4:bb:68:70:e3:9a:a9:66:7a:7c:99:d3:cf: 2a:82:2e:54:57:43:db:06:04:5f:9f:87:c6:97:86: 8f:60:a3:a5:17:c5:57:7e:3d:2b:64:37:54:85:85: 53:e0:30:ae:27:88:98:de:7d:03:e0:d8:10:dc:bb: 68:b4:ec:bc:52:f7:0d:90:4b:3a:35:58:68:0d:16: ef:c8:fb:fc:5d:f8:98:d5:e2:a0:98:cc:7a:b1:46: 93:c3:17:bb:a1:7e:cf:a1:6e:8e:69:cf:8c:70:44: c0:52:0e:d2:9d:b0:3e:0c:28:81:57:ef:6b:dd:57: 7b:f2:24:33:35:b7:da:87:6b:7f:cc:01:68:0f:ae: 99:99:42:bf:1d:13:6d:00:b8:45:ae:c3:1b:c1:69: 9f:b4:a7:95:3c:00:2b:ac:79:f0:b7:c5:b7:43:24: d8:64:7d:ce:35:b4:68:8b:2f:25:6d:7c:e6:de:0f: d4:8a:e6:5d:8b:87:ba:91:08:83:ae:ee:08:cd:9c: 49:a1:f3:76:7d:fa:49:f8:5f:02:bd:78:f3:a4:ba: eb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:96:DC:23:84:AA:92:F4:7A:FA:1F:78:78:70:29:6F:5D:5D:6B:97 X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:ff:66:45:49:09:a9:a9:72:21:f8:63:55:ab:75:a6:5c:9f: 21:83:0a:77:08:7f:83:6d:29:e2:21:7f:af:f5:3e:be:7a:88: 36:3b:cf:fc:94:ba:ac:cd:64:92:6d:a2:7e:f0:ba:92:08:72: fa:1a:28:ac:e1:96:9c:4a:b5:0e:38:ae:c6:ce:0a:5e:d4:88: 95:8d:2a:f4:c4:80:ff:6f:af:e9:73:cb:08:e6:df:23:33:d2: 1e:59:9b:12:ef:3f:f6:cb:4a:7d:a0:20:e3:71:f6:e3:d7:91: cc:52:17:7f:c0:19:7b:b5:3d:4c:5f:52:3d:ad:fd:38:0e:03: f3:2b:88:f6:83:5a:ef:09:08:cf:02:a0:75:9f:b9:0b:52:81: 59:22:97:b4:b3:ba:b8:12:55:41:23:0f:2b:32:8a:1d:72:3c: 8f:81:7b:41:0b:ab:c8:74:95:34:5a:c0:b3:c8:d7:00:bd:50: 7e:2f:0a:48:5e:60:df:d6:ef:14:16:89:cf:a3:3f:82:74:c3: 14:76:d6:bf:24:86:8b:51:9e:eb:03:75:48:78:c3:d5:8d:1f: 64:af:32:c5:87:61:6b:6f:49:5d:83:8f:bb:3a:e1:21:eb:1b: 51:00:12:68:31:b9:3e:c4:76:8e:e7:3c:90:76:db:d7:1e:38: 0c:b8:68:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUxMDE5MDEwNzMxWhcNMjUxMDI2MDEwNzMxWjAYMRYwFAYD VQQDEw02OGY0MzlkMy01MmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub0Abki5WD//uykWM6IzQvBXTkd1RrER7MHRjjEbcTJRF4KBzAtlPhuLWVyv ELS7aHDjmqlmenyZ088qgi5UV0PbBgRfn4fGl4aPYKOlF8VXfj0rZDdUhYVT4DCu J4iY3n0D4NgQ3LtotOy8UvcNkEs6NVhoDRbvyPv8XfiY1eKgmMx6sUaTwxe7oX7P oW6Oac+McETAUg7SnbA+DCiBV+9r3Vd78iQzNbfah2t/zAFoD66ZmUK/HRNtALhF rsMbwWmftKeVPAArrHnwt8W3QyTYZH3ONbRoiy8lbXzm3g/UiuZdi4e6kQiDru4I zZxJofN2ffpJ+F8CvXjzpLrrWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCW3COE qpL0evofeHhwKW9dXWuXMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv/2ZFSQmpqXIh+GNVq3WmXJ8hgwp3CH+DbSniIX+v9T6+eog2O8/8 lLqszWSSbaJ+8LqSCHL6Giis4ZacSrUOOK7Gzgpe1IiVjSr0xID/b6/pc8sI5t8j M9IeWZsS7z/2y0p9oCDjcfbj15HMUhd/wBl7tT1MX1I9rf04DgPzK4j2g1rvCQjP AqB1n7kLUoFZIpe0s7q4ElVBIw8rMoodcjyPgXtBC6vIdJU0WsCzyNcAvVB+LwpI XmDf1u8UFonPoz+CdMMUdta/JIaLUZ7rA3VIeMPVjR9krzLFh2Frb0ldg4+7OuEh 6xtRABJoMbk+xHaO5zyQdtvXHjgMuGiD -----END CERTIFICATE-----Generated at Mon Oct 20 15:24:24 2025 by rpki-client