$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: D+dmLPFHxWsEd1R4WQ2G/IsJi2HgGwPOtvFz/fpxkzM= Subject key identifier: CA:30:AF:55:50:52:44:E7:C9:ED:30:CA:9C:CA:10:5C:30:E5:F7:99 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 016C Signing time: Sun 19 Oct 2025 06:32:51 +0000 Manifest this update: Sun 19 Oct 2025 06:32:50 +0000 Manifest next update: Sun 26 Oct 2025 06:32:50 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: jwdXoixj7V9Qrfh9vNWKOZtl4FoSU7Yz2HbB8aE+UZI=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: gkpGu4s3lw8zurLXdvn6Zq+w59lx0+P+q37arJjTECg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Oct 19 06:32:50 2025 GMT Not After : Oct 26 06:32:50 2025 GMT Subject: CN=68f48613-cd11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a6:56:21:97:ef:ff:8e:00:84:b9:a3:5a:ea: c5:37:0c:ca:72:9d:8f:3f:b3:a0:be:14:f0:33:d2: f6:75:c7:f9:56:e3:28:68:52:e4:c4:c3:0a:1d:42: ea:4a:4d:b6:0e:e7:d2:15:32:3f:1e:31:d4:96:6e: 33:77:79:ec:47:bc:81:a1:3b:19:80:e7:6b:b5:a2: d2:28:0b:6e:66:55:08:d6:ee:ec:0c:55:49:0d:25: 83:26:dc:f7:29:5c:41:b5:5b:b7:02:3d:09:b5:d7: c0:e6:85:b5:68:e3:07:48:98:ec:02:cf:8d:d7:a6: 14:5d:6f:c8:4c:41:8d:1f:a4:01:0e:ba:2f:2f:ab: 50:47:f2:d2:a0:28:be:af:bb:db:e5:58:b7:6e:86: 14:ba:d3:c8:11:99:a0:9e:4c:60:be:82:8b:28:1e: 18:f9:e8:0f:b1:0b:ad:2d:cc:57:aa:8c:9c:5c:ba: 96:7a:a9:ba:15:31:15:15:0e:08:be:49:43:00:06: 2c:a6:5a:b9:3f:1a:7b:2c:4d:7c:97:9e:20:87:98: 61:c8:e9:7e:33:85:96:41:84:c2:ab:01:8d:ad:89: 17:88:c8:78:12:7b:15:ba:ea:76:9f:af:40:ff:73: 26:3a:71:4b:8e:5d:2b:1e:ab:4b:f6:7f:9e:65:e5: a9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:30:AF:55:50:52:44:E7:C9:ED:30:CA:9C:CA:10:5C:30:E5:F7:99 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:5e:cd:0f:7e:8f:e1:98:83:d0:d6:07:fb:0d:dc:27:c1:01: e4:c9:5f:27:84:00:e9:6d:82:55:00:da:3f:ae:34:74:02:6b: 13:6d:fb:66:66:72:29:60:2c:18:58:80:b8:6e:78:56:e8:12: 18:73:dc:77:49:20:e9:6a:3d:12:d0:54:66:1e:65:52:0b:9a: be:76:b5:25:d0:48:b5:f7:ac:9c:86:37:95:d0:21:20:e1:f0: 46:d2:9d:11:97:4e:ba:9f:d5:d4:c6:2f:8f:2f:c7:e3:ed:2f: 41:69:25:f7:c8:c7:ce:22:4c:b5:a1:01:7b:90:45:cb:b6:d1: 1c:ee:6a:9d:ee:d9:03:4e:ab:10:b0:2b:23:79:90:f1:31:00: 08:f8:6e:24:86:02:06:ca:dd:94:e2:9e:83:5b:16:72:64:22: 67:49:1a:eb:df:40:08:86:57:bb:38:ff:2b:76:d7:18:6f:24: db:61:92:e6:92:39:5a:6b:85:e2:25:c7:4e:07:eb:04:32:ac: 42:9c:72:bc:48:5a:8d:71:e6:7a:2b:16:f0:cd:3f:cd:d8:1c: 4d:86:15:6e:fa:69:33:5b:37:b1:b9:0c:c3:a3:71:56:26:0d: 3a:14:65:06:76:00:e3:ab:a1:40:32:f0:94:5b:a9:f1:bc:00: 0f:0b:94:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUxMDE5MDYzMjUwWhcNMjUxMDI2MDYzMjUwWjAYMRYwFAYD VQQDEw02OGY0ODYxMy1jZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8aZWIZfv/44AhLmjWurFNwzKcp2PP7OgvhTwM9L2dcf5VuMoaFLkxMMKHULq Sk22DufSFTI/HjHUlm4zd3nsR7yBoTsZgOdrtaLSKAtuZlUI1u7sDFVJDSWDJtz3 KVxBtVu3Aj0JtdfA5oW1aOMHSJjsAs+N16YUXW/ITEGNH6QBDrovL6tQR/LSoCi+ r7vb5Vi3boYUutPIEZmgnkxgvoKLKB4Y+egPsQutLcxXqoycXLqWeqm6FTEVFQ4I vklDAAYsplq5Pxp7LE18l54gh5hhyOl+M4WWQYTCqwGNrYkXiMh4EnsVuup2n69A /3MmOnFLjl0rHqtL9n+eZeWpCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMowr1VQ UkTnye0wypzKEFww5feZMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSXs0Pfo/hmIPQ1gf7DdwnwQHkyV8nhADpbYJVANo/rjR0AmsTbftm ZnIpYCwYWIC4bnhW6BIYc9x3SSDpaj0S0FRmHmVSC5q+drUl0Ei196ychjeV0CEg 4fBG0p0Rl066n9XUxi+PL8fj7S9BaSX3yMfOIky1oQF7kEXLttEc7mqd7tkDTqsQ sCsjeZDxMQAI+G4khgIGyt2U4p6DWxZyZCJnSRrr30AIhle7OP8rdtcYbyTbYZLm kjlaa4XiJcdOB+sEMqxCnHK8SFqNceZ6KxbwzT/N2BxNhhVu+mkzWzexuQzDo3FW Jg06FGUGdgDjq6FAMvCUW6nxvAAPC5Qj -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:58 2025 by rpki-client