$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: tKvX5UBU06LqcyL/PmE+SWWNPV0AO+8aJErLAHncb/8= Subject key identifier: 96:DC:01:D9:A5:A3:5A:90:53:8A:18:88:FC:5F:10:57:85:6E:DE:14 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 3033 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 300E Signing time: Sat 18 Oct 2025 15:39:12 +0000 Manifest this update: Sat 18 Oct 2025 15:39:11 +0000 Manifest next update: Sat 25 Oct 2025 15:39:11 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: nHb7/fYyt1i9m71LoKj1etrF36LMwVouObC2DbvNstU=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: 2Zr7Hm+ka4YogIeAL8utcPORDLzzcWzkuQ8uJ6QbXYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12339 (0x3033) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Oct 18 15:39:11 2025 GMT Not After : Oct 25 15:39:11 2025 GMT Subject: CN=68f3b49f-0033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:39:67:d9:fd:8b:6d:79:73:20:d8:34:f5: 09:f3:68:67:86:3f:75:77:14:78:90:9a:19:0c:83: 84:ce:13:c4:f4:9a:f9:26:ec:c6:e8:52:34:1e:ce: 1b:76:18:28:67:e1:d8:d5:a8:63:73:7f:70:39:63: 38:01:6e:87:1d:e5:98:33:7f:7c:a1:2d:3f:ff:eb: 61:ae:1f:1e:f7:6d:2f:b1:c5:5a:22:0d:b2:af:84: 59:3b:9b:68:78:eb:29:47:8f:e6:ab:2e:63:2d:f4: 9e:66:5d:7e:30:f4:fc:d9:b1:3a:0c:02:b9:9f:0e: ef:f7:01:4d:be:7e:2a:67:ef:2c:3c:98:19:a5:80: 66:7c:bb:9a:f2:f0:1a:58:14:17:3f:3b:fc:8e:31: eb:82:d2:7e:91:c1:0f:35:29:a6:a6:b2:9e:fc:fa: 58:d7:c3:2b:b3:1c:37:cc:13:99:bd:d7:64:b4:74: 8b:7f:d9:68:60:40:42:13:c9:6e:e6:a0:9e:89:1f: 57:d9:ee:a0:7d:0a:7c:e3:0c:8e:40:a9:f5:c2:ea: b5:07:a0:6a:c7:d9:72:50:10:5b:e0:86:dd:48:c8: 78:f9:27:78:f8:a4:eb:be:71:33:3e:97:73:ee:87: 49:03:41:2f:14:4c:10:d5:87:78:08:88:61:ad:1f: d2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DC:01:D9:A5:A3:5A:90:53:8A:18:88:FC:5F:10:57:85:6E:DE:14 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:39:a4:5e:a2:7b:11:0d:c8:7a:a0:b8:c2:f9:5b:fc:4b:7c: 72:e6:e8:d5:2a:4c:51:45:b2:5c:03:e9:6d:c2:d1:cf:8d:d0: 01:85:b6:bf:ed:c5:94:0f:f3:b2:9d:da:d8:f9:4a:c7:4c:16: e2:39:75:d9:66:0a:cc:d7:d1:d3:dd:e5:2a:ad:f6:ed:9d:f6: 59:92:ba:82:14:91:52:ce:4b:1a:14:25:31:85:c6:b6:25:14: e8:1d:62:a8:8f:ec:38:f9:10:ca:7f:64:f7:6c:2a:17:ef:7f: 73:14:63:7f:a4:e2:09:f3:c8:1c:81:2a:bb:b4:2e:d9:18:3b: c9:2d:a1:95:3d:63:db:c7:d1:d2:46:40:45:c0:23:a1:d6:9e: 31:6a:e3:ab:d3:81:62:c1:60:ed:30:64:97:41:d1:f9:cc:fe: 7e:32:d3:59:e0:ab:3d:50:51:17:1f:1d:ea:05:5f:72:40:97: 8a:ae:6f:58:cb:32:81:d5:83:2a:1b:f6:9d:54:f0:b7:f2:d4: 9a:9e:70:bd:bf:2b:60:c7:9a:ce:61:b5:6a:c9:33:cf:96:6d: 5b:e5:1f:0b:2c:28:84:eb:8c:33:d8:de:b6:b6:f5:93:74:0e: 3b:3e:f1:24:55:32:89:c2:29:ea:26:cf:a3:9a:ff:3e:68:2a: be:0b:79:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUxMDE4MTUzOTExWhcNMjUxMDI1MTUzOTExWjAYMRYwFAYD VQQDEw02OGYzYjQ5Zi0wMDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1Q5Z9n9i215cyDYNPUJ82hnhj91dxR4kJoZDIOEzhPE9Jr5JuzG6FI0Hs4b dhgoZ+HY1ahjc39wOWM4AW6HHeWYM398oS0//+thrh8e920vscVaIg2yr4RZO5to eOspR4/mqy5jLfSeZl1+MPT82bE6DAK5nw7v9wFNvn4qZ+8sPJgZpYBmfLua8vAa WBQXPzv8jjHrgtJ+kcEPNSmmprKe/PpY18Mrsxw3zBOZvddktHSLf9loYEBCE8lu 5qCeiR9X2e6gfQp84wyOQKn1wuq1B6Bqx9lyUBBb4IbdSMh4+Sd4+KTrvnEzPpdz 7odJA0EvFEwQ1Yd4CIhhrR/SlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbcAdml o1qQU4oYiPxfEFeFbt4UMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZOaReonsRDch6oLjC+Vv8S3xy5ujVKkxRRbJcA+ltwtHPjdABhba/ 7cWUD/OyndrY+UrHTBbiOXXZZgrM19HT3eUqrfbtnfZZkrqCFJFSzksaFCUxhca2 JRToHWKoj+w4+RDKf2T3bCoX739zFGN/pOIJ88gcgSq7tC7ZGDvJLaGVPWPbx9HS RkBFwCOh1p4xauOr04FiwWDtMGSXQdH5zP5+MtNZ4Ks9UFEXHx3qBV9yQJeKrm9Y yzKB1YMqG/adVPC38tSannC9vytgx5rOYbVqyTPPlm1b5R8LLCiE64wz2N62tvWT dA47PvEkVTKJwinqJs+jmv8+aCq+C3k3 -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:50 2025 by rpki-client