$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: cJG9rFHDggl0k2+jmu3ddIbB61yhbBnaZ+u7GSbTHp8= Subject key identifier: F3:72:D9:82:AF:42:05:5D:E1:16:8F:BC:A0:20:E8:06:FE:58:FB:C3 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0B0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0B03 Signing time: Sat 18 Oct 2025 20:15:46 +0000 Manifest this update: Sat 18 Oct 2025 20:15:45 +0000 Manifest next update: Sat 25 Oct 2025 20:15:45 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: rxESFpm4hWbodIvf9sxmpGcG6M5hnoYAT3kEDMXwFyE=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Oct 18 20:15:45 2025 GMT Not After : Oct 25 20:15:45 2025 GMT Subject: CN=68f3f571-212a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:f7:6b:c0:f2:fb:74:3f:d2:65:e3:7f:d1: 4f:20:08:9f:28:a8:ad:31:7b:c6:0a:50:fc:6e:49: 4f:b3:79:5b:49:4a:13:fd:37:81:f9:ae:4a:c3:d2: 31:ab:ee:49:8e:f4:95:3e:55:44:7d:9d:86:7a:d2: fa:14:04:15:01:41:34:d7:56:81:b6:a7:89:13:ed: a7:a1:de:23:c3:b6:f0:f5:d3:38:d6:8d:55:c4:b8: 3b:d0:af:ed:a8:77:27:a0:23:8a:40:8e:d2:a5:c1: 58:3f:9a:77:27:55:69:60:3a:c0:7e:af:05:5b:c6: a5:12:fb:21:ad:66:2f:cc:38:0a:40:cc:79:ae:a2: de:ab:b5:e5:11:cd:ed:24:99:3f:0a:e1:d1:63:ca: a5:70:e6:24:80:47:1f:4c:88:06:18:1c:1e:c4:c8: 09:66:e1:fd:b1:48:44:8e:e8:3c:26:59:67:d0:39: 73:85:cd:dd:85:0f:e1:45:3e:1f:0c:30:f3:07:dd: 3d:83:b6:f1:eb:77:5c:50:29:d5:a4:ce:0f:87:4c: 16:c6:b5:b0:14:68:6b:9d:2f:16:9f:6b:f3:14:72: c1:b6:44:12:32:7a:06:fe:1f:0f:7c:02:43:93:f4: 1a:a7:8e:37:29:25:aa:de:15:3f:80:ad:01:d3:95: 94:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:72:D9:82:AF:42:05:5D:E1:16:8F:BC:A0:20:E8:06:FE:58:FB:C3 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:56:9d:34:d5:5a:40:c1:c2:c8:f7:83:24:6c:eb:e8:cb:e9: 31:0e:d6:5c:4d:61:93:68:5c:6d:03:6a:e7:3e:6a:17:ee:c8: 35:da:9e:d9:e1:97:a4:b3:3e:07:b3:5c:7f:24:2e:9f:e8:1a: ee:e2:26:db:17:ed:ab:d5:a4:00:ba:7d:52:33:75:5a:e6:5a: a1:d1:44:01:2c:40:96:3a:42:bd:69:37:e5:93:94:16:2c:6a: 58:74:d3:6e:fb:56:e6:1a:c5:9d:b2:4f:1d:00:58:48:fc:03: 1e:c8:c8:e0:bd:d0:ee:e6:fc:be:d5:8b:b9:ff:b1:f9:36:4c: 94:9e:c3:c1:b5:88:df:76:87:3e:99:60:80:18:f1:6f:46:c3: f5:ee:24:f0:5a:b0:60:04:ab:e0:5a:25:1c:ce:eb:83:b7:33: 12:ba:be:10:60:76:8a:dc:2e:58:ae:a5:e6:fa:a2:f7:27:6b: 79:eb:e2:e9:d5:d7:74:de:24:34:24:5b:c1:55:11:9c:3a:6c: 14:94:b8:e0:66:be:71:d7:8e:c6:4b:1e:79:09:18:08:c5:f6: 5e:74:84:a5:aa:75:06:20:3d:cc:ab:73:97:f6:7f:d2:1b:9b: 4a:33:89:42:4d:81:a3:a3:14:c9:da:d1:67:f3:b6:b0:78:ad: 75:6b:0d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUxMDE4MjAxNTQ1WhcNMjUxMDI1MjAxNTQ1WjAYMRYwFAYD VQQDEw02OGYzZjU3MS0yMTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gD3a8Dy+3Q/0mXjf9FPIAifKKitMXvGClD8bklPs3lbSUoT/TeB+a5Kw9Ix q+5JjvSVPlVEfZ2GetL6FAQVAUE011aBtqeJE+2nod4jw7bw9dM41o1VxLg70K/t qHcnoCOKQI7SpcFYP5p3J1VpYDrAfq8FW8alEvshrWYvzDgKQMx5rqLeq7XlEc3t JJk/CuHRY8qlcOYkgEcfTIgGGBwexMgJZuH9sUhEjug8Jlln0Dlzhc3dhQ/hRT4f DDDzB909g7bx63dcUCnVpM4Ph0wWxrWwFGhrnS8Wn2vzFHLBtkQSMnoG/h8PfAJD k/Qap443KSWq3hU/gK0B05WUnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNy2YKv QgVd4RaPvKAg6Ab+WPvDMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYVp001VpAwcLI94MkbOvoy+kxDtZcTWGTaFxtA2rnPmoX7sg12p7Z 4Zeksz4Hs1x/JC6f6Bru4ibbF+2r1aQAun1SM3Va5lqh0UQBLECWOkK9aTflk5QW LGpYdNNu+1bmGsWdsk8dAFhI/AMeyMjgvdDu5vy+1Yu5/7H5NkyUnsPBtYjfdoc+ mWCAGPFvRsP17iTwWrBgBKvgWiUczuuDtzMSur4QYHaK3C5YrqXm+qL3J2t56+Lp 1dd03iQ0JFvBVRGcOmwUlLjgZr5x147GSx55CRgIxfZedISlqnUGID3Mq3OX9n/S G5tKM4lCTYGjoxTJ2tFn87aweK11aw0F -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:03 2025 by rpki-client