$ rpki-client -vvf rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft File: iA5rTc1s7FPI0D10DIjpdzsEexk.mft (raw, json) Hash identifier: qEaE9zRloTGjPfVcSEKReoZNU3hXCgy8MwQSjgT2g6E= Subject key identifier: DE:D8:6C:9D:37:8C:E6:37:FD:E8:F3:F8:EA:F8:BB:63:23:59:0D:CD Authority key identifier: 88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 Certificate issuer: /CN=A9187465/serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Certificate serial: 16BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft Manifest number: 16A8 Signing time: Mon 20 Oct 2025 17:02:37 +0000 Manifest this update: Mon 20 Oct 2025 17:02:36 +0000 Manifest next update: Mon 27 Oct 2025 17:02:36 +0000 Files and hashes: 1: iA5rTc1s7FPI0D10DIjpdzsEexk.crl (hash: uqSg5SSzDu0+YEC2Tw+swnTrDHawhngux2hOofHYKuI=) 2: E1ADA4BC062B11F08449516EC4F9AE02.roa (hash: gYVrbtrIqWm9akFMSRfLyBApZQdsKZ/TGrfXdq2YQZg=) 3: E259315C57CA11EA8D931284C4F9AE02.roa (hash: Oe0ZhNHc+oTi0v0pEyomCNHZHmLGtOgid/cHD2LWfB4=) 4: 7D2EA194B20711EA8B74F445C4F9AE02.roa (hash: iK4wxE4X5dwuMQMPvFE//EwoDLAL1trl9tc0x5zzbqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5823 (0x16bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187465, serialNumber=880E6B4DCD6CEC53C8D03D740C88E9773B047B19 Validity Not Before: Oct 20 17:02:36 2025 GMT Not After : Oct 27 17:02:36 2025 GMT Subject: CN=68f66b2c-cde9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:a1:52:ec:3e:aa:f0:63:95:44:6c:1b:06: d5:1b:11:aa:e9:17:77:02:9f:55:8f:32:84:31:00: 63:e9:7f:fe:e3:d3:34:40:ca:7e:b2:76:37:af:89: ac:86:04:7f:fd:a8:5a:77:67:69:4f:af:a2:67:b6: 06:ca:d7:86:89:56:3a:61:67:80:5b:8b:01:38:4d: e7:1a:2b:56:94:88:13:15:8b:62:3e:fc:64:59:d3: 2a:e4:75:89:c1:5f:fa:78:5a:70:ab:93:23:db:65: 52:1a:a2:a3:c6:e2:5c:d7:9e:ad:75:b1:1e:14:0c: 3d:d2:bc:c4:97:f1:1d:61:fe:b5:5c:c7:13:1b:f3: c1:dd:90:38:ca:da:93:fc:fe:50:7b:e1:c9:fe:fa: 58:71:03:b7:58:18:8c:e9:05:c4:9b:1b:c5:70:29: 70:be:fa:f6:ab:c7:93:93:b8:1e:1b:95:a7:dc:b3: a7:c8:e8:8b:0c:c5:9e:17:fd:8b:96:b2:44:25:d6: db:93:2c:fa:f8:ef:cf:cf:30:bb:bb:19:3d:3d:d7: bf:bf:ad:a6:48:61:e0:64:d7:3d:a3:07:c0:84:2d: 38:21:28:0a:c2:a9:fd:0a:60:7e:6c:c4:4c:f0:95: 24:91:ae:20:80:c6:c5:10:96:4f:cf:f8:68:a3:b9: eb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D8:6C:9D:37:8C:E6:37:FD:E8:F3:F8:EA:F8:BB:63:23:59:0D:CD X509v3 Authority Key Identifier: keyid:88:0E:6B:4D:CD:6C:EC:53:C8:D0:3D:74:0C:88:E9:77:3B:04:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iA5rTc1s7FPI0D10DIjpdzsEexk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187465/B1AFB6FA0A5311E8AC7BEE2EC4F9AE02/iA5rTc1s7FPI0D10DIjpdzsEexk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:d2:31:82:12:25:99:17:96:4e:17:3a:4f:7d:84:1a:b8:9f: a1:3d:a6:fb:ca:99:ba:1e:1c:a2:08:1c:6b:1a:e1:b2:54:b4: 12:0c:37:34:e9:30:bb:7f:54:13:d6:c8:23:ed:78:a2:b2:2e: 70:25:b2:50:c5:44:23:99:20:62:e5:b8:c3:14:6b:6d:dc:f6: d2:bf:b1:3f:9a:7a:3d:f2:71:98:e5:4c:17:7d:85:c1:df:df: 22:7c:33:7c:2d:86:e5:2c:42:48:b2:6e:61:43:64:5f:8a:50: 1a:73:c9:c6:13:0f:ad:ae:fc:96:57:40:ea:5e:d9:17:ac:9f: 27:da:73:c7:ad:e5:18:11:35:e1:82:4b:f7:7a:f6:95:2c:ac: 70:e6:22:ea:10:fb:b1:3e:48:af:10:55:61:42:78:ab:02:dd: dd:c6:15:77:3f:54:65:ec:1a:a0:d9:70:66:18:3c:6c:67:ad: 5f:2c:43:3a:1a:3c:5b:3e:79:cc:9c:77:df:48:89:7f:a5:bb: 84:cd:05:93:3e:01:67:c3:84:eb:16:5a:c9:93:a7:c0:97:51: e3:f0:d5:54:d9:8f:36:7b:61:05:ca:47:7c:81:38:09:93:73: ec:18:6b:1d:64:85:7d:58:44:c2:00:bb:a2:1a:11:a9:9f:1b: 9b:df:3a:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjUxMTAvBgNVBAUTKDg4MEU2QjREQ0Q2Q0VDNTNDOEQwM0Q3NDBDODhFOTc3 M0IwNDdCMTkwHhcNMjUxMDIwMTcwMjM2WhcNMjUxMDI3MTcwMjM2WjAYMRYwFAYD VQQDEw02OGY2NmIyYy1jZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5ShUuw+qvBjlURsGwbVGxGq6Rd3Ap9VjzKEMQBj6X/+49M0QMp+snY3r4ms hgR//ahad2dpT6+iZ7YGyteGiVY6YWeAW4sBOE3nGitWlIgTFYtiPvxkWdMq5HWJ wV/6eFpwq5Mj22VSGqKjxuJc156tdbEeFAw90rzEl/EdYf61XMcTG/PB3ZA4ytqT /P5Qe+HJ/vpYcQO3WBiM6QXEmxvFcClwvvr2q8eTk7geG5Wn3LOnyOiLDMWeF/2L lrJEJdbbkyz6+O/PzzC7uxk9Pde/v62mSGHgZNc9owfAhC04ISgKwqn9CmB+bMRM 8JUkka4ggMbFEJZPz/hoo7nrJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7YbJ03 jOY3/ejz+Or4u2MjWQ3NMB8GA1UdIwQYMBaAFIgOa03NbOxTyNA9dAyI6Xc7BHsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2NS9CMUFGQjZGQTBB NTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdGUEkwRDEwRElqcGR6c0Vl eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lBNXJUYzFzN0ZQSTBEMTBESWpwZHpzRWV4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ2NS9CMUFGQjZGQTBBNTMxMUU4QUM3QkVFMkVDNEY5QUUwMi9pQTVyVGMxczdG UEkwRDEwRElqcGR6c0VleGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk0jGCEiWZF5ZOFzpPfYQauJ+hPab7ypm6HhyiCBxrGuGyVLQSDDc0 6TC7f1QT1sgj7Xiisi5wJbJQxUQjmSBi5bjDFGtt3PbSv7E/mno98nGY5UwXfYXB 398ifDN8LYblLEJIsm5hQ2RfilAac8nGEw+trvyWV0DqXtkXrJ8n2nPHreUYETXh gkv3evaVLKxw5iLqEPuxPkivEFVhQnirAt3dxhV3P1Rl7Bqg2XBmGDxsZ61fLEM6 GjxbPnnMnHffSIl/pbuEzQWTPgFnw4TrFlrJk6fAl1Hj8NVU2Y82e2EFykd8gTgJ k3PsGGsdZIV9WETCALuiGhGpnxub3zra -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:38 2025 by rpki-client