$ rpki-client -vvf rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft File: IooLm4TrYOtGFVZbAhDVR1xRiKk.mft (raw, json) Hash identifier: cpduKBKhQA7I1QWw7fXwJnDWosLWrAu5k6TrY9q6N+k= Subject key identifier: 9D:EF:76:3A:7D:A8:86:25:A1:9F:4F:07:DB:86:F7:F7:63:C7:4B:99 Authority key identifier: 22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 Certificate issuer: /CN=A916BE2F/serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Certificate serial: 0B7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft Manifest number: 0B76 Signing time: Sat 18 Oct 2025 19:55:18 +0000 Manifest this update: Sat 18 Oct 2025 19:55:18 +0000 Manifest next update: Sat 25 Oct 2025 19:55:18 +0000 Files and hashes: 1: IooLm4TrYOtGFVZbAhDVR1xRiKk.crl (hash: S1YNWrT1J1pGBoGT8B4/95z2sdW5yv8RP+xq0JacUpg=) 2: CFF490F63B3211EAA19CAB2DC4F9AE02.roa (hash: Q4J9l++n+la5Zfxccf3dc2lEQlGumKMJ7Sd1OPrz7gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2942 (0xb7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BE2F, serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Validity Not Before: Oct 18 19:55:18 2025 GMT Not After : Oct 25 19:55:18 2025 GMT Subject: CN=68f3f0a6-f2a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:86:b2:a5:ec:f7:89:8d:1a:c7:5a:ef:ee:51: 0a:4e:b5:fc:37:f6:7a:9d:d0:d8:fe:e8:60:bc:d4: 63:90:a9:15:f9:cd:14:69:16:22:7d:3e:ad:a3:15: b5:cc:6f:3e:58:c5:77:49:99:34:13:19:b2:34:b3: 60:39:ca:8c:89:82:78:da:bc:62:90:d4:ca:29:92: 10:be:06:20:f5:03:e7:81:32:84:e3:aa:b1:e7:8a: 1a:58:95:8d:a8:9d:63:56:bf:19:39:07:5c:df:7c: 5f:b1:bd:b6:cf:98:e5:57:2d:60:4e:b3:3f:a7:27: 5b:69:af:d8:63:92:8d:57:1b:43:ae:b9:fd:14:42: 97:a3:9c:04:48:38:99:ff:22:a8:37:ab:4c:44:85: 6f:c1:65:9d:50:7d:e5:e6:7f:0c:df:4a:74:0e:83: 53:2c:e4:92:5a:e8:4d:8c:ee:df:20:cc:36:d6:28: 03:52:43:60:f1:29:9d:e5:88:a8:30:f7:0d:6a:07: fd:5a:53:9a:1e:12:ac:eb:e9:53:db:d0:0c:a5:6f: 28:44:cf:d6:fa:89:da:ea:e3:58:43:f0:26:23:3c: d3:20:48:34:92:a6:28:2a:b2:82:a4:30:f4:f2:60: b3:36:a2:21:5c:59:30:11:dc:32:f6:32:78:a2:0f: 10:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EF:76:3A:7D:A8:86:25:A1:9F:4F:07:DB:86:F7:F7:63:C7:4B:99 X509v3 Authority Key Identifier: keyid:22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:96:da:d6:17:9b:a8:a6:83:41:a3:6a:4a:ce:b1:70:33:ec: 39:f4:61:b5:4b:f2:21:41:ce:fb:4a:47:b9:50:ac:f6:8c:7f: 1b:09:02:f1:0a:0f:e8:ab:fb:d2:e8:4f:94:cc:af:ba:57:5f: 22:fb:07:2c:22:eb:d7:65:1e:42:17:fe:1d:ea:6c:65:bd:27: fa:3c:a3:92:c6:9b:af:90:fe:ce:01:22:58:63:e7:87:d8:a0: fc:46:3f:af:36:2c:f6:62:dc:78:5a:31:a5:28:44:91:d9:c1: 5a:fa:17:0a:7e:cc:16:fc:f6:df:9e:76:dc:d3:85:26:ef:73: 0e:58:cb:12:63:65:97:1c:0b:77:f9:33:74:75:03:13:7f:7d: 98:b8:d9:eb:54:23:d0:a8:87:e9:23:1a:de:d1:64:e8:21:9d: 43:e8:94:37:d5:df:0f:b1:87:36:71:ac:90:27:41:2d:81:c4: 40:dc:02:11:fd:d4:b3:82:5a:01:66:98:d1:82:6f:ac:d8:80: c3:38:c0:e2:a4:4c:08:ac:2d:50:78:4c:f0:ea:31:ef:22:f3: 96:e0:74:61:93:d8:ef:e3:a2:60:f0:63:be:51:72:9f:82:48: 41:b4:34:77:4c:24:e7:88:6a:b2:97:61:c0:81:76:76:70:43: d9:ba:42:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJFMkYxMTAvBgNVBAUTKDIyOEEwQjlCODRFQjYwRUI0NjE1NTY1QjAyMTBENTQ3 NUM1MTg4QTkwHhcNMjUxMDE4MTk1NTE4WhcNMjUxMDI1MTk1NTE4WjAYMRYwFAYD VQQDEw02OGYzZjBhNi1mMmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34aypez3iY0ax1rv7lEKTrX8N/Z6ndDY/uhgvNRjkKkV+c0UaRYifT6toxW1 zG8+WMV3SZk0ExmyNLNgOcqMiYJ42rxikNTKKZIQvgYg9QPngTKE46qx54oaWJWN qJ1jVr8ZOQdc33xfsb22z5jlVy1gTrM/pydbaa/YY5KNVxtDrrn9FEKXo5wESDiZ /yKoN6tMRIVvwWWdUH3l5n8M30p0DoNTLOSSWuhNjO7fIMw21igDUkNg8Smd5Yio MPcNagf9WlOaHhKs6+lT29AMpW8oRM/W+ona6uNYQ/AmIzzTIEg0kqYoKrKCpDD0 8mCzNqIhXFkwEdwy9jJ4og8QLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3vdjp9 qIYloZ9PB9uG9/djx0uZMB8GA1UdIwQYMBaAFCKKC5uE62DrRhVWWwIQ1UdcUYip MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkUyRi9GRUIxMjI1ODNC MzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllPdEdGVlpiQWhEVlIxeFJp S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvb0xtNFRyWU90R0ZWWmJBaERWUjF4UmlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkUyRi9GRUIxMjI1ODNCMzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllP dEdGVlpiQWhEVlIxeFJpS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArltrWF5uopoNBo2pKzrFwM+w59GG1S/IhQc77Ske5UKz2jH8bCQLx Cg/oq/vS6E+UzK+6V18i+wcsIuvXZR5CF/4d6mxlvSf6PKOSxpuvkP7OASJYY+eH 2KD8Rj+vNiz2Ytx4WjGlKESR2cFa+hcKfswW/Pbfnnbc04Um73MOWMsSY2WXHAt3 +TN0dQMTf32YuNnrVCPQqIfpIxre0WToIZ1D6JQ31d8PsYc2cayQJ0EtgcRA3AIR /dSzgloBZpjRgm+s2IDDOMDipEwIrC1QeEzw6jHvIvOW4HRhk9jv46Jg8GO+UXKf gkhBtDR3TCTniGqyl2HAgXZ2cEPZukJt -----END CERTIFICATE-----Generated at Mon Oct 20 04:25:07 2025 by rpki-client