$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: 5sq3LwYMwkA5vTl+d102adCFl50/+fykXNhyyFENhzo= Subject key identifier: 5D:DF:46:ED:2E:F2:B0:A3:29:24:C4:E5:7C:34:68:C1:8B:BD:52:DB Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01E2 Signing time: Sun 19 Oct 2025 05:11:49 +0000 Manifest this update: Sun 19 Oct 2025 05:11:49 +0000 Manifest next update: Sun 26 Oct 2025 05:11:49 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: ndbMKau+HOh3UpJmacEv4mYj6qFsrwn/tFSBFf/f+KE=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Oct 19 05:11:49 2025 GMT Not After : Oct 26 05:11:49 2025 GMT Subject: CN=68f47315-82fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:71:69:21:d9:f5:d6:e3:7a:6d:5b:ce:68:b9: 5f:9a:16:0b:dd:19:97:4c:b2:1c:dd:82:33:9c:4f: 75:ed:21:c9:51:e4:2e:79:b5:1f:97:40:20:09:79: 2f:f7:5b:13:68:bf:15:cc:84:fd:d0:5c:5a:ec:8b: 4d:5a:91:cc:0a:b7:e0:9e:72:9f:25:16:a3:df:4a: 2d:53:33:99:8d:35:31:31:3d:cb:c2:b2:56:69:48: 1f:c8:5d:79:a2:94:37:8b:29:27:6e:5f:ef:e7:d9: 5f:80:6f:fc:e1:78:2d:cc:56:e2:9c:4b:1d:9c:b2: e1:d4:d1:df:a9:82:07:14:1e:fd:23:6b:c3:2e:78: 85:65:3a:03:f1:6e:0b:c9:4b:f0:14:96:c7:8b:ce: cb:64:09:8c:6c:63:dd:1e:30:34:de:30:1e:a3:3f: 6b:76:96:50:70:a4:f6:c4:3b:53:32:e7:7a:32:9e: 17:1f:e3:4e:f2:9b:84:8f:c9:89:a0:12:1d:37:31: 6d:07:be:86:7e:77:c1:99:71:f8:d0:65:fb:51:b2: b7:89:26:40:43:4c:46:bf:91:9c:4a:1b:53:ab:47: bd:be:dd:7d:d4:fc:3e:65:a0:71:97:18:6c:d8:a2: e0:b9:cc:89:8e:99:ab:7d:4f:d2:0c:48:56:88:6e: 30:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DF:46:ED:2E:F2:B0:A3:29:24:C4:E5:7C:34:68:C1:8B:BD:52:DB X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:c6:0f:16:7b:ad:14:e9:9a:51:c9:83:7f:a2:fa:7d:37:ad: a9:c5:d5:a0:9d:dc:2b:97:ab:b1:83:23:92:5f:b9:09:84:80: 71:48:26:41:2b:79:60:80:67:fa:9b:62:50:49:46:a5:e1:f7: f2:63:23:bb:ba:ee:e2:71:11:0b:49:d3:de:c4:e3:4e:e2:e6: 84:94:33:e6:14:93:99:4c:03:0d:25:71:3b:bd:54:33:8c:93: 47:39:a8:87:85:f8:7e:c8:63:c0:cc:58:53:47:e4:31:73:18: ea:f7:26:09:52:af:d0:f7:3f:c1:d1:8f:02:9e:19:f1:38:08: c3:35:d1:d4:f4:62:a4:7f:73:7b:de:71:ad:0f:e6:7e:bb:f2: 68:0e:7d:e2:6a:8a:73:19:e0:ab:ae:96:39:a4:28:7f:37:e7: 60:0c:70:a1:aa:bf:fb:99:29:0f:eb:97:d2:7e:f8:49:c2:9b: de:82:56:6b:ba:03:9f:cb:07:aa:57:6b:3e:2f:6b:2c:6b:05: 01:b8:c0:66:a9:e0:f4:01:c8:13:20:19:e9:ff:8f:34:41:8d: 4d:97:67:3f:ca:22:0c:d8:5f:f6:ea:12:f1:02:e8:c7:da:47: 75:1f:05:15:d8:03:26:3b:f8:fc:22:eb:d5:fe:de:41:99:eb: d1:ba:95:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUxMDE5MDUxMTQ5WhcNMjUxMDI2MDUxMTQ5WjAYMRYwFAYD VQQDEw02OGY0NzMxNS04MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnFpIdn11uN6bVvOaLlfmhYL3RmXTLIc3YIznE917SHJUeQuebUfl0AgCXkv 91sTaL8VzIT90Fxa7ItNWpHMCrfgnnKfJRaj30otUzOZjTUxMT3LwrJWaUgfyF15 opQ3iyknbl/v59lfgG/84XgtzFbinEsdnLLh1NHfqYIHFB79I2vDLniFZToD8W4L yUvwFJbHi87LZAmMbGPdHjA03jAeoz9rdpZQcKT2xDtTMud6Mp4XH+NO8puEj8mJ oBIdNzFtB76GfnfBmXH40GX7UbK3iSZAQ0xGv5GcShtTq0e9vt191Pw+ZaBxlxhs 2KLgucyJjpmrfU/SDEhWiG4wUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3fRu0u 8rCjKSTE5Xw0aMGLvVLbMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjxg8We60U6ZpRyYN/ovp9N62pxdWgndwrl6uxgyOSX7kJhIBxSCZB K3lggGf6m2JQSUal4ffyYyO7uu7icRELSdPexONO4uaElDPmFJOZTAMNJXE7vVQz jJNHOaiHhfh+yGPAzFhTR+Qxcxjq9yYJUq/Q9z/B0Y8CnhnxOAjDNdHU9GKkf3N7 3nGtD+Z+u/JoDn3iaopzGeCrrpY5pCh/N+dgDHChqr/7mSkP65fSfvhJwpveglZr ugOfyweqV2s+L2ssawUBuMBmqeD0AcgTIBnp/480QY1Nl2c/yiIM2F/26hLxAujH 2kd1HwUV2AMmO/j8IuvV/t5BmevRupVc -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:19 2025 by rpki-client