$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: kIZdag7AhLzEjAQdXER8En7Uw52s9/IGt+0AStqAxV8= Subject key identifier: F4:1C:FE:81:A9:4D:B9:5D:4E:05:B6:D8:D1:45:5E:82:D0:2A:70:A6 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 62 Signing time: Sun 19 Oct 2025 10:28:24 +0000 Manifest this update: Sun 19 Oct 2025 10:28:23 +0000 Manifest next update: Sun 26 Oct 2025 10:28:23 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: WeAHgGnhRr7tekUiJT/+j8/fGRltJvwcl1mOrztjWjw=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Oct 19 10:28:23 2025 GMT Not After : Oct 26 10:28:23 2025 GMT Subject: CN=68f4bd47-e1f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:51:5a:78:95:5c:fc:78:9c:4d:db:33:e2:ee: 56:cf:39:59:f2:98:58:46:29:43:ed:9b:8d:90:c7: e6:41:91:50:bc:ae:0b:64:78:f4:b6:07:96:40:38: 0e:cd:3a:bf:66:ac:cf:78:c2:c6:f4:c3:fc:17:f1: 1a:1b:21:d6:3f:e2:f8:39:11:fa:de:c2:6a:a9:9f: 89:7d:a1:ea:32:78:c2:52:8d:b4:a5:fc:6b:a7:a1: 9f:26:fa:0a:84:3d:1d:4e:cd:0e:4a:55:ce:5b:66: d6:c4:7b:8b:cf:5b:2e:3d:dc:31:ad:df:26:3a:27: 8e:9b:98:88:33:a9:99:2b:33:d7:2f:7f:d6:c1:82: ec:12:78:02:6e:ff:43:26:42:51:ab:fd:67:13:31: 12:e9:ce:da:10:a5:89:2f:80:b4:79:d7:7b:3d:2b: aa:34:d3:2e:46:30:58:d5:e4:50:09:4c:7b:63:75: 4e:d1:17:51:cc:5a:dd:98:15:40:d5:c6:c2:a8:7f: 1b:64:c8:2d:e8:b2:c4:d5:3c:33:36:dc:b7:98:db: 33:dc:94:11:46:87:95:52:96:70:c1:1a:34:50:f6: 9a:5e:ee:8b:d7:52:ec:6b:10:35:6e:01:85:74:79: 4d:aa:fa:57:b3:18:fe:5f:cb:7a:a9:a4:37:b5:01: 06:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1C:FE:81:A9:4D:B9:5D:4E:05:B6:D8:D1:45:5E:82:D0:2A:70:A6 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:5d:06:29:e3:0b:2b:4d:58:64:65:0f:e9:b5:5d:9e:68:b9: d4:08:3f:fb:cc:7b:53:de:37:74:78:5a:8f:99:3d:1d:80:0e: 1e:d3:5d:f6:c0:df:29:73:cc:2f:2d:19:a5:e2:61:52:7d:d2: 20:32:04:e9:59:05:13:82:ba:de:fc:21:57:ce:6b:9c:a6:40: 1f:87:1b:be:30:b9:9a:e8:3d:8e:cc:45:62:34:7e:ff:03:58: dc:f7:65:62:7b:f1:a4:c2:da:cf:8b:37:15:37:8f:ba:38:1a: 36:7c:d7:cb:b6:c0:a3:85:16:50:00:18:56:d2:33:bb:a8:fa: 42:95:19:09:69:e0:13:cc:16:1d:92:8f:df:49:f4:57:6a:db: fd:53:6e:2b:a4:2d:3a:a4:06:12:5c:56:4b:1e:bb:6b:81:4f: 22:b3:50:31:06:63:fa:7f:cf:c0:99:2c:61:49:08:a8:66:5f: 06:5a:59:46:3e:23:32:8c:ea:dc:81:5f:c4:01:8a:3f:05:4b: ed:ae:0a:9d:19:cf:10:56:29:c5:7f:64:c1:f7:95:5e:12:0c: e6:9f:6d:12:09:5e:08:e3:8c:55:9e:6b:cf:8b:c5:17:be:32: 6c:98:18:59:37:4b:80:5d:81:f5:47:2c:91:05:61:0b:ce:d2: f0:18:76:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTEwMTkxMDI4MjNaFw0yNTEwMjYxMDI4MjNaMBgxFjAUBgNV BAMTDTY4ZjRiZDQ3LWUxZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1UVp4lVz8eJxN2zPi7lbPOVnymFhGKUPtm42Qx+ZBkVC8rgtkePS2B5ZAOA7N Or9mrM94wsb0w/wX8RobIdY/4vg5Efrewmqpn4l9oeoyeMJSjbSl/GunoZ8m+gqE PR1OzQ5KVc5bZtbEe4vPWy493DGt3yY6J46bmIgzqZkrM9cvf9bBguwSeAJu/0Mm QlGr/WcTMRLpztoQpYkvgLR513s9K6o00y5GMFjV5FAJTHtjdU7RF1HMWt2YFUDV xsKofxtkyC3ossTVPDM23LeY2zPclBFGh5VSlnDBGjRQ9ppe7ovXUuxrEDVuAYV0 eU2q+lezGP5fy3qppDe1AQb3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9Bz+galN uV1OBbbY0UVegtAqcKYwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJpdBinjCytNWGRlD+m1XZ5oudQIP/vMe1PeN3R4Wo+ZPR2ADh7TXfbA 3ylzzC8tGaXiYVJ90iAyBOlZBROCut78IVfOa5ymQB+HG74wuZroPY7MRWI0fv8D WNz3ZWJ78aTC2s+LNxU3j7o4GjZ818u2wKOFFlAAGFbSM7uo+kKVGQlp4BPMFh2S j99J9Fdq2/1TbiukLTqkBhJcVkseu2uBTyKzUDEGY/p/z8CZLGFJCKhmXwZaWUY+ IzKM6tyBX8QBij8FS+2uCp0ZzxBWKcV/ZMH3lV4SDOafbRIJXgjjjFWea8+LxRe+ MmyYGFk3S4BdgfVHLJEFYQvO0vAYdko= -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:09 2025 by rpki-client