$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: caUSjCjCcLmywBeLJQMps4BloNTzl/v3HpVfwVIR+VU= Subject key identifier: 94:AB:F4:97:E5:59:58:1C:7D:A3:A9:42:99:AB:A4:5E:6B:E0:E3:59 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 07D4 Signing time: Sat 18 Oct 2025 22:27:33 +0000 Manifest this update: Sat 18 Oct 2025 22:27:32 +0000 Manifest next update: Sat 25 Oct 2025 22:27:32 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: 9+RSK2nVVDpK5wlkULHIlQaVp4xkU59zE2udVB3Nd3g=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Oct 18 22:27:32 2025 GMT Not After : Oct 25 22:27:32 2025 GMT Subject: CN=68f41455-ad40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:68:2e:8c:ac:aa:8e:da:d3:43:82:8e:49:ee: 77:10:85:6e:61:59:6c:5c:84:82:4f:fe:61:a7:0e: 1f:d4:37:ae:13:f3:97:31:0c:26:3a:46:aa:0f:6b: 51:50:54:75:bf:72:5a:6f:d3:c1:48:96:d0:15:a3: ad:e0:b8:be:8e:48:45:28:1a:4b:47:6e:83:21:54: ab:71:86:58:8b:cc:cb:09:a6:e2:73:4e:14:85:a4: a9:52:30:cb:85:cb:2e:54:42:16:ac:8b:7b:eb:34: f7:d1:61:40:ab:b5:ac:40:86:01:6b:ab:47:11:2f: 1b:1a:9c:dc:4b:35:92:16:ca:39:f5:60:a9:3b:3b: 05:6f:ef:1c:58:a1:64:59:8f:a7:bb:38:ec:9c:e1: b0:49:2d:d2:4a:17:a6:b4:61:df:64:19:9a:d3:f5: 18:08:7d:3c:93:a0:39:7f:5a:48:fb:ba:a0:07:6b: 56:9b:bc:94:0f:fa:0f:3a:cc:23:3c:72:1a:2b:8d: 18:59:11:14:5c:e4:ed:72:0b:1b:cb:0d:48:7d:a6: 43:24:41:00:50:3c:f5:d3:14:75:db:f9:eb:49:2c: 2f:52:f8:ef:7e:e2:11:83:64:0b:d9:38:20:8b:fe: fb:37:2e:cb:2a:40:e4:e6:fc:5a:af:fa:32:91:e0: 7d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AB:F4:97:E5:59:58:1C:7D:A3:A9:42:99:AB:A4:5E:6B:E0:E3:59 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:1f:8c:4b:b9:4d:6d:e2:8f:a4:bc:51:30:94:6b:a3:d9:88: 8b:cd:12:c3:e0:7a:f6:6c:16:6d:1f:12:b5:06:18:83:a2:f5: ff:fe:30:59:1e:e3:1c:8c:70:15:ef:ad:63:e8:69:e9:e2:5a: b8:a0:88:92:40:25:02:7e:1a:0d:6a:45:42:8b:21:01:32:e2: cc:18:27:2a:6f:89:f3:4b:21:12:82:c5:5d:a3:fa:ec:fa:f7: 08:9d:65:14:6c:15:4d:17:8c:cb:93:c7:a7:b5:2c:95:76:07: 86:34:b4:7e:ca:1c:2c:c6:32:3e:fd:f6:29:17:9a:6b:77:f8: 5d:2f:8a:de:c1:aa:22:a7:85:13:32:f2:21:ed:44:75:a5:a8: be:c7:0d:cb:5b:4a:66:6f:f7:0c:ac:a5:cd:cc:e2:0b:1e:d8: 59:f6:b0:03:ec:de:f8:fc:7f:ee:ff:a7:63:a5:84:d0:b2:ed: 72:d7:8d:e7:ef:7b:ff:a2:78:e1:0c:0b:77:40:90:c8:8b:8c: 15:98:2a:57:79:8d:b6:37:2f:fb:df:ee:c9:c7:eb:9c:04:54: 93:41:f2:85:88:66:0c:17:80:60:93:b4:ca:6c:b7:17:9d:b9: 2d:1f:98:ce:b6:bd:be:3d:a6:af:1c:8e:fa:35:81:bc:1e:b8: a9:cd:79:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUxMDE4MjIyNzMyWhcNMjUxMDI1MjIyNzMyWjAYMRYwFAYD VQQDEw02OGY0MTQ1NS1hZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmgujKyqjtrTQ4KOSe53EIVuYVlsXISCT/5hpw4f1DeuE/OXMQwmOkaqD2tR UFR1v3Jab9PBSJbQFaOt4Li+jkhFKBpLR26DIVSrcYZYi8zLCabic04UhaSpUjDL hcsuVEIWrIt76zT30WFAq7WsQIYBa6tHES8bGpzcSzWSFso59WCpOzsFb+8cWKFk WY+nuzjsnOGwSS3SShemtGHfZBma0/UYCH08k6A5f1pI+7qgB2tWm7yUD/oPOswj PHIaK40YWREUXOTtcgsbyw1IfaZDJEEAUDz10xR12/nrSSwvUvjvfuIRg2QL2Tgg i/77Ny7LKkDk5vxar/oykeB9cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSr9Jfl WVgcfaOpQpmrpF5r4ONZMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOH4xLuU1t4o+kvFEwlGuj2YiLzRLD4Hr2bBZtHxK1BhiDovX//jBZ HuMcjHAV761j6Gnp4lq4oIiSQCUCfhoNakVCiyEBMuLMGCcqb4nzSyESgsVdo/rs +vcInWUUbBVNF4zLk8entSyVdgeGNLR+yhwsxjI+/fYpF5prd/hdL4rewaoip4UT MvIh7UR1pai+xw3LW0pmb/cMrKXNzOILHthZ9rAD7N74/H/u/6djpYTQsu1y143n 73v/onjhDAt3QJDIi4wVmCpXeY22Ny/73+7Jx+ucBFSTQfKFiGYMF4Bgk7TKbLcX nbktH5jOtr2+PaavHI76NYG8HripzXmw -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:34 2025 by rpki-client