$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft File: ivWYKUtrI6E57fVPJCi8YZZRqhc.mft (raw, json) Hash identifier: /abuGJve+0CshAytZX1iegjrUaHGKkkRBi/NLSuS1tE= Subject key identifier: 51:62:DC:1E:0A:D8:44:BE:A4:B9:20:B2:8A:D6:14:44:86:EA:3C:B6 Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft Manifest number: 39 Signing time: Sun 19 Oct 2025 10:59:47 +0000 Manifest this update: Sun 19 Oct 2025 10:59:46 +0000 Manifest next update: Sun 26 Oct 2025 10:59:46 +0000 Files and hashes: 1: ivWYKUtrI6E57fVPJCi8YZZRqhc.crl (hash: OcNcovCxZ97v5tfVxCu+AeFWrqJpXi4RO8dwWMlEpUE=) 2: 69F70CA058AC11F09233031BC4F9AE02.roa (hash: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Oct 19 10:59:46 2025 GMT Not After : Oct 26 10:59:46 2025 GMT Subject: CN=68f4c4a3-78a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:94:ca:38:23:35:d2:9a:53:19:a1:7d:2e:9f: b0:42:c4:9a:97:a5:91:d6:c1:ae:95:99:28:6b:a5: 83:21:b1:77:24:70:84:be:5c:32:e5:30:9c:13:c4: d4:44:2d:40:e6:d3:ce:54:5b:00:30:67:49:b3:74: 2d:f3:2d:f4:f8:b4:72:66:9f:35:23:b4:fb:a0:b0: 6a:d8:d3:40:66:fc:5d:b0:9f:57:40:e8:8a:27:cc: d3:20:d8:a9:ca:97:0b:5c:fb:e4:13:73:f3:38:ce: 9d:60:83:23:00:bd:ce:b6:65:79:17:6f:8b:d4:55: 95:c8:7b:2a:c9:26:fe:1c:f3:94:31:57:18:fd:c5: 6f:c3:c0:f3:4d:d8:60:db:af:4d:27:bf:d7:ca:25: 35:f1:a0:4a:13:7f:8a:df:cf:8a:71:4b:00:36:dd: a3:99:35:42:4e:58:27:6f:49:ab:77:c5:21:e0:9c: 60:7a:20:af:b6:ae:37:2c:be:48:07:d2:ca:ab:45: 32:39:5e:27:5a:11:16:33:9e:9b:39:7f:8e:51:3b: 33:d0:d7:7c:f5:7e:c1:f2:88:9c:01:5b:81:da:b1: e4:ff:29:26:f9:5e:59:c8:6b:bf:71:4e:88:4a:ec: c5:06:33:d5:e0:ba:ad:88:09:6b:8b:1e:fc:be:cd: fa:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:62:DC:1E:0A:D8:44:BE:A4:B9:20:B2:8A:D6:14:44:86:EA:3C:B6 X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:0f:28:df:4d:17:f5:19:49:b4:37:7d:32:d6:bb:da:7f:da: 34:f3:ef:ec:18:4e:82:ea:b5:43:67:dc:aa:54:28:62:67:a5: a2:b6:65:67:6e:80:5f:f3:f0:23:52:ba:7d:9f:30:d5:a1:fb: 14:e7:cd:c7:89:a1:4b:4c:96:3a:47:b3:23:0d:ff:54:99:52: e7:01:fb:41:fc:bb:3b:89:30:f2:57:2c:01:1f:57:bc:51:3b: 28:64:8f:a0:fa:3a:b6:2e:a0:b8:0d:0d:90:1f:66:50:8e:e9: 85:89:68:44:6c:d4:c6:53:d0:99:66:f4:fe:03:1b:44:11:3f: 49:16:f3:ab:c2:ae:f3:f3:34:93:1f:42:fe:c2:57:54:d5:bb: fc:7d:4e:a7:7f:9d:c1:21:70:51:b0:9c:2b:a6:13:bb:38:47: 08:88:71:16:e2:e2:a0:48:ba:14:af:4f:41:fa:e6:ee:e5:e5: 6e:c8:51:6d:97:ad:12:6f:41:f6:f8:5f:2b:8d:2c:3d:8b:8c: 0c:e1:be:f6:f9:12:4c:11:44:30:7a:13:08:c9:d7:09:b5:b5: c9:ae:34:b6:db:12:24:c8:8e:8f:8c:6d:2f:9f:2f:95:26:56: 1b:a6:dd:5e:f6:16:54:33:05:c5:ba:17:8a:ca:06:b8:1c:3f: 35:ba:b3:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTEwMTkxMDU5NDZaFw0yNTEwMjYxMDU5NDZaMBgxFjAUBgNV BAMTDTY4ZjRjNGEzLTc4YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCulMo4IzXSmlMZoX0un7BCxJqXpZHWwa6VmShrpYMhsXckcIS+XDLlMJwTxNRE LUDm085UWwAwZ0mzdC3zLfT4tHJmnzUjtPugsGrY00Bm/F2wn1dA6IonzNMg2KnK lwtc++QTc/M4zp1ggyMAvc62ZXkXb4vUVZXIeyrJJv4c85QxVxj9xW/DwPNN2GDb r00nv9fKJTXxoEoTf4rfz4pxSwA23aOZNUJOWCdvSat3xSHgnGB6IK+2rjcsvkgH 0sqrRTI5XidaERYznps5f45ROzPQ13z1fsHyiJwBW4HaseT/KSb5XlnIa79xTohK 7MUGM9Xguq2ICWuLHvy+zfrtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUWLcHgrY RL6kuSCyitYURIbqPLYwHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE Qjc3LzkzNEUzNTYyNThBQTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZF NTdmVlBKQ2k4WVpaUnFoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACIPKN9NF/UZSbQ3fTLWu9p/2jTz7+wYToLqtUNn3KpUKGJnpaK2ZWdu gF/z8CNSun2fMNWh+xTnzceJoUtMljpHsyMN/1SZUucB+0H8uzuJMPJXLAEfV7xR Oyhkj6D6OrYuoLgNDZAfZlCO6YWJaERs1MZT0Jlm9P4DG0QRP0kW86vCrvPzNJMf Qv7CV1TVu/x9Tqd/ncEhcFGwnCumE7s4RwiIcRbi4qBIuhSvT0H65u7l5W7IUW2X rRJvQfb4XyuNLD2LjAzhvvb5EkwRRDB6EwjJ1wm1tcmuNLbbEiTIjo+MbS+fL5Um Vhum3V72FlQzBcW6F4rKBrgcPzW6s9c= -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:22 2025 by rpki-client