$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: C1J+XNJ71VGsDi/5WukTD5I5sHf80WuY8042yc23A18= Subject key identifier: F1:C8:10:37:D0:93:ED:BE:39:17:81:51:A9:0C:28:F2:A3:15:1D:EE Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 04FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 04F4 Signing time: Sun 19 Oct 2025 01:29:34 +0000 Manifest this update: Sun 19 Oct 2025 01:29:33 +0000 Manifest next update: Sun 26 Oct 2025 01:29:33 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: LCZckixx1gPMPZo/lfl79Wxphmw8/0QKu2TJ4Cl4PMk=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1278 (0x4fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Oct 19 01:29:33 2025 GMT Not After : Oct 26 01:29:33 2025 GMT Subject: CN=68f43efe-5243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:89:11:51:bc:a9:cb:a3:58:5a:ce:e1:24:74: c1:aa:01:22:0d:47:a8:27:00:c7:34:48:af:7c:43: c6:ac:32:cf:0d:8d:4d:e4:78:0a:30:36:a7:ed:0f: 51:02:36:52:e5:65:24:14:00:d5:9d:e9:d4:b6:36: 96:99:2b:38:23:77:ee:10:76:8b:b0:9d:fb:a7:c9: 7d:1f:ad:d4:b8:83:74:23:26:63:cb:b6:f2:be:4c: 3a:a9:1a:bd:36:3f:ae:6d:84:c7:8e:76:99:9b:7d: 3f:af:2e:bf:7a:3d:41:00:65:80:4a:f6:b0:c4:fb: fb:78:2c:3f:af:b4:1e:50:6d:48:b1:b5:eb:8b:9f: f7:87:3e:9a:d1:e7:d9:78:58:5e:b5:1a:7e:5c:79: 71:ef:9a:e8:05:6c:a3:28:1b:e0:eb:9f:f3:0c:49: 3c:29:83:51:df:16:e3:b8:21:48:df:c0:ca:fa:2e: ac:bd:18:2b:db:02:60:1c:69:70:84:ac:e1:a7:3e: 3e:86:d0:7a:18:4a:18:1e:fe:f2:29:a3:5b:4a:26: 6a:f9:a3:9a:11:a3:ab:66:e8:9e:fd:57:d3:e6:90: 0f:08:8c:ed:75:18:32:47:e6:bd:8e:91:72:71:8e: 74:e9:62:02:cc:89:5f:4b:d7:91:85:1c:47:aa:e3: 04:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C8:10:37:D0:93:ED:BE:39:17:81:51:A9:0C:28:F2:A3:15:1D:EE X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:35:7c:9a:81:20:39:a2:4e:5d:76:7a:d0:09:d3:5a:ba:1b: 7c:0c:ec:d5:9e:55:f7:30:b4:36:76:24:59:d4:f1:59:9d:7f: a2:00:d2:cb:da:6d:3b:31:7d:44:b1:fb:db:5d:82:2c:24:02: 0a:2f:fe:fd:d4:d7:9d:75:95:91:d6:0f:5d:79:16:58:4e:a1: 90:8f:23:45:ed:ed:8d:f7:26:42:2c:b9:49:e9:26:7e:77:d5: 37:d4:8a:09:78:bf:d2:62:7b:b3:d7:47:b0:16:d4:c3:2b:f7: 2a:3c:f5:ea:5e:1b:b2:a3:f0:fd:f1:b5:43:f8:d6:c5:9b:88: 10:a5:ab:e3:af:26:15:6b:7c:2e:54:81:fd:e7:04:e4:7e:7d: e9:e0:0b:b0:d6:17:01:8d:98:66:cd:cb:c7:b1:0b:e6:72:a1: e3:c8:d6:57:12:45:5c:8f:fb:6a:83:c9:63:18:78:f1:1a:41: fb:1b:90:f4:20:9a:c7:77:fb:c5:00:76:74:1b:b3:aa:0d:ce: 1e:bc:9d:6b:07:b6:d0:e5:6e:50:7e:2a:8e:b6:52:de:b3:47: e2:f2:1a:2e:01:c2:b3:a3:ed:f3:da:de:eb:8e:7e:55:1a:e6: 0c:6b:a8:dc:a6:f8:b7:27:6f:92:c1:4d:57:3c:ce:e3:ef:4c: b5:08:5a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUxMDE5MDEyOTMzWhcNMjUxMDI2MDEyOTMzWjAYMRYwFAYD VQQDEw02OGY0M2VmZS01MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYkRUbypy6NYWs7hJHTBqgEiDUeoJwDHNEivfEPGrDLPDY1N5HgKMDan7Q9R AjZS5WUkFADVnenUtjaWmSs4I3fuEHaLsJ37p8l9H63UuIN0IyZjy7byvkw6qRq9 Nj+ubYTHjnaZm30/ry6/ej1BAGWASvawxPv7eCw/r7QeUG1IsbXri5/3hz6a0efZ eFhetRp+XHlx75roBWyjKBvg65/zDEk8KYNR3xbjuCFI38DK+i6svRgr2wJgHGlw hKzhpz4+htB6GEoYHv7yKaNbSiZq+aOaEaOrZuie/VfT5pAPCIztdRgyR+a9jpFy cY506WICzIlfS9eRhRxHquMEtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHIEDfQ k+2+OReBUakMKPKjFR3uMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWNXyagSA5ok5ddnrQCdNauht8DOzVnlX3MLQ2diRZ1PFZnX+iANLL 2m07MX1EsfvbXYIsJAIKL/791NeddZWR1g9deRZYTqGQjyNF7e2N9yZCLLlJ6SZ+ d9U31IoJeL/SYnuz10ewFtTDK/cqPPXqXhuyo/D98bVD+NbFm4gQpavjryYVa3wu VIH95wTkfn3p4Auw1hcBjZhmzcvHsQvmcqHjyNZXEkVcj/tqg8ljGHjxGkH7G5D0 IJrHd/vFAHZ0G7OqDc4evJ1rB7bQ5W5QfiqOtlLes0fi8houAcKzo+3z2t7rjn5V GuYMa6jcpvi3J2+SwU1XPM7j70y1CFox -----END CERTIFICATE-----Generated at Tue Oct 21 04:55:05 2025 by rpki-client