$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: mgXQdNvGQlrS6rw9LBoiNcndmhI2rbGcExQZvEGI/Mo= Subject key identifier: E6:CF:04:52:34:2F:F2:FB:5F:C3:55:29:AE:E2:6C:DB:33:28:04:8F Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 34F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 34E2 Signing time: Mon 20 Oct 2025 14:38:25 +0000 Manifest this update: Mon 20 Oct 2025 14:38:24 +0000 Manifest next update: Mon 27 Oct 2025 14:38:24 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: UUCpk9on5GKQgt9vhJrwCW8WhEuepHbRNJJSTXn5N8I=) 2: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 5: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13558 (0x34f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Oct 20 14:38:24 2025 GMT Not After : Oct 27 14:38:24 2025 GMT Subject: CN=68f64961-28f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:09:33:14:1d:d3:2e:99:b7:95:83:d4:c2:13: b2:b4:39:4c:2a:e5:b8:95:0f:51:9c:77:14:e2:73: e2:df:df:ba:58:a1:4f:9b:22:65:cb:60:9b:11:fd: dd:cb:69:57:b9:b1:b6:3e:5d:26:41:1f:21:99:21: 70:7b:bc:18:ca:fd:e3:6c:c6:57:73:82:db:ea:9a: 7c:8d:69:a7:a6:1e:f7:de:30:0b:0d:e4:95:9f:d8: 87:af:3e:7f:70:be:03:9a:2e:45:37:bc:ee:48:4f: 71:5e:d2:fc:d2:09:db:de:56:34:9d:5e:3c:ef:04: 94:87:9b:bc:a5:6b:1b:2a:7b:4f:97:b7:c0:b7:11: bd:d6:a2:45:4b:68:0f:44:90:9a:70:95:ac:df:e2: c7:0e:12:4c:46:46:32:02:7d:b0:62:5b:fe:b2:68: 84:9c:73:9c:bb:32:8c:47:38:d9:76:e0:08:4a:5b: 88:46:35:83:0d:5a:17:61:50:01:c6:93:63:fa:3f: ce:99:ff:81:14:ab:ae:3f:a4:a7:81:0a:9d:19:45: 63:22:c3:15:b8:d6:1e:0a:7c:20:56:74:f3:b2:2e: 16:51:ad:d9:a9:55:82:9e:30:cb:0a:33:5e:6d:1d: 16:4d:3f:41:14:79:88:09:25:5d:1f:e8:5d:45:ff: c8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CF:04:52:34:2F:F2:FB:5F:C3:55:29:AE:E2:6C:DB:33:28:04:8F X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:32:0c:27:3d:68:6f:d7:50:9e:d5:4d:3f:94:dd:38:ad:7b: fa:0b:f5:a9:be:0d:1e:2f:f8:fc:22:99:a2:55:9e:cb:96:47: b5:01:d9:19:3b:64:a2:bf:3a:85:93:4c:c4:fd:bd:64:c2:0e: 9f:06:c2:43:3f:33:3b:87:df:76:a6:97:fd:fd:8f:a6:c6:c9: 15:30:a6:ef:c8:1f:22:6d:5e:87:28:c7:f6:67:62:0a:e4:73: cd:9f:a4:d3:cc:fe:1d:88:2e:12:1e:2a:4b:65:46:3b:84:13: 9a:f2:13:19:a1:0e:8d:06:0c:92:0a:2c:8b:6f:b2:c6:98:5b: 38:4c:70:50:29:ca:9f:8f:97:22:32:e1:99:ea:a4:47:47:51: 71:18:05:1d:47:f9:3c:3b:2d:12:e5:de:e0:b3:17:2c:a4:03: 0b:1b:9d:07:58:53:7e:8c:50:b1:1b:29:b9:af:ff:25:f5:82: 6d:28:3c:53:34:af:53:3b:28:71:ea:86:8a:57:3f:91:a1:94: 81:05:11:6c:cd:01:93:d9:cf:d1:39:10:cd:4b:dd:0d:ff:64: de:ab:89:23:7d:f9:0e:36:d0:be:46:02:3e:2b:fe:fe:ad:cc: 15:ca:5c:b0:ce:fb:c2:cc:a2:f5:3f:3e:19:fa:d9:7a:24:99: 67:43:11:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUxMDIwMTQzODI0WhcNMjUxMDI3MTQzODI0WjAYMRYwFAYD VQQDEw02OGY2NDk2MS0yOGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAkzFB3TLpm3lYPUwhOytDlMKuW4lQ9RnHcU4nPi39+6WKFPmyJly2CbEf3d y2lXubG2Pl0mQR8hmSFwe7wYyv3jbMZXc4Lb6pp8jWmnph733jALDeSVn9iHrz5/ cL4Dmi5FN7zuSE9xXtL80gnb3lY0nV487wSUh5u8pWsbKntPl7fAtxG91qJFS2gP RJCacJWs3+LHDhJMRkYyAn2wYlv+smiEnHOcuzKMRzjZduAISluIRjWDDVoXYVAB xpNj+j/Omf+BFKuuP6SngQqdGUVjIsMVuNYeCnwgVnTzsi4WUa3ZqVWCnjDLCjNe bR0WTT9BFHmICSVdH+hdRf/IzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObPBFI0 L/L7X8NVKa7ibNszKASPMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIMgwnPWhv11Ce1U0/lN04rXv6C/Wpvg0eL/j8IpmiVZ7Llke1AdkZ O2SivzqFk0zE/b1kwg6fBsJDPzM7h992ppf9/Y+mxskVMKbvyB8ibV6HKMf2Z2IK 5HPNn6TTzP4diC4SHipLZUY7hBOa8hMZoQ6NBgySCiyLb7LGmFs4THBQKcqfj5ci MuGZ6qRHR1FxGAUdR/k8Oy0S5d7gsxcspAMLG50HWFN+jFCxGym5r/8l9YJtKDxT NK9TOyhx6oaKVz+RoZSBBRFszQGT2c/RORDNS90N/2Teq4kjffkONtC+RgI+K/7+ rcwVylywzvvCzKL1Pz4Z+tl6JJlnQxHZ -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:39 2025 by rpki-client