$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: 3bkjyBB3ASMG80NCyI22H0TqRYTh4Cxr5TFMaF9noPU= Subject key identifier: 9E:3C:FA:53:50:7D:8E:92:94:4F:17:F1:7A:4A:DA:6F:AA:48:85:07 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: 010F Signing time: Sun 19 Oct 2025 07:53:51 +0000 Manifest this update: Sun 19 Oct 2025 07:53:50 +0000 Manifest next update: Sun 26 Oct 2025 07:53:50 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: OhM2K/TnJb1LS8scFHCKsEyI2n1Y0tK7gMB0B0kOTBw=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: 7Ge+Ur1HNSgNTEqBJNH+Y2JY0m3BlGqRwSkervRpW04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Oct 19 07:53:50 2025 GMT Not After : Oct 26 07:53:50 2025 GMT Subject: CN=68f4990e-1030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:36:80:a6:f6:3d:05:8b:27:66:8e:df:8c:e5: b5:e3:5c:32:35:9b:99:f3:45:ee:08:cb:94:bd:c4: 4c:90:57:5f:12:29:9f:55:5d:2e:ac:d3:6d:bb:56: e5:93:6b:cf:f5:4c:24:11:d9:a4:52:9c:c8:f0:b7: 47:4a:b0:ae:e0:46:b1:a3:5b:ba:7c:fc:f3:be:8e: 8f:3c:8f:17:5a:17:1c:86:48:e7:cf:f3:f7:cc:26: a1:ea:9c:0e:10:c5:49:44:bf:e7:21:e8:4a:35:7c: 96:58:01:7f:5c:b1:41:4a:d2:bf:ff:d2:aa:eb:0a: d1:9d:32:4f:dc:59:38:c5:c4:da:88:25:46:8f:dc: c5:f4:5d:cc:39:51:41:58:e2:fa:65:68:4e:5e:ad: 10:d2:46:ee:b3:39:cb:b0:ea:17:e0:95:f0:d2:39: 90:a8:c7:0f:10:b9:3c:15:1a:39:44:7a:1c:b3:cf: d2:1e:98:06:1a:eb:6d:32:39:a3:88:68:bd:6b:e1: ce:01:0c:b5:ef:5c:25:36:6b:48:53:28:5a:94:ec: 75:4a:f3:e0:c5:68:93:6b:6d:04:1e:6c:6c:43:cf: a6:1b:4a:28:57:ea:fd:12:a4:a5:15:5e:73:d5:79: 3c:f6:02:d9:5d:06:cc:a7:7d:35:35:ef:ef:ef:b6: 1b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3C:FA:53:50:7D:8E:92:94:4F:17:F1:7A:4A:DA:6F:AA:48:85:07 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:da:4a:1a:5a:86:88:00:64:84:05:ee:bf:2e:91:88:69:14: b7:dd:c9:91:57:10:a6:04:bc:c2:13:72:07:5e:f6:23:5d:9a: 40:d8:96:fd:52:bc:5b:9a:76:71:19:89:53:d2:e0:dd:cf:61: be:f2:16:9c:48:30:64:62:7d:a4:1f:8b:eb:2d:a8:d6:17:23: 65:7e:67:35:d5:16:a3:c0:53:6b:6f:3e:a3:89:ee:93:49:28: d6:e2:70:dd:b6:36:15:6b:65:2a:59:c9:e2:c7:3e:d5:44:24: 37:f1:eb:fa:a1:9d:74:50:9c:63:e4:a2:de:48:b2:4c:5c:d4: d5:62:34:3b:f4:07:34:2a:f1:f7:cb:6b:78:1d:1b:da:7a:3f: a8:86:af:d8:39:3b:c3:c6:7e:0e:fd:17:d3:d7:d3:f6:7c:d1: 32:17:62:e3:5e:6f:6e:0a:a4:47:49:c6:f8:27:84:7c:4d:9f: 5b:11:d8:c4:f6:38:01:19:eb:69:62:d7:c6:84:c9:5c:ff:87: 00:fb:3a:85:42:af:96:c1:38:7c:24:03:e7:7a:b0:02:18:8d: 64:53:ce:90:ef:b6:8a:8f:0a:4b:88:27:5a:02:18:9b:eb:ae: ef:44:30:c5:47:82:4f:80:f4:ac:ff:ad:b6:d2:98:6e:b6:86: a7:58:99:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUxMDE5MDc1MzUwWhcNMjUxMDI2MDc1MzUwWjAYMRYwFAYD VQQDEw02OGY0OTkwZS0xMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDaApvY9BYsnZo7fjOW141wyNZuZ80XuCMuUvcRMkFdfEimfVV0urNNtu1bl k2vP9UwkEdmkUpzI8LdHSrCu4Eaxo1u6fPzzvo6PPI8XWhcchkjnz/P3zCah6pwO EMVJRL/nIehKNXyWWAF/XLFBStK//9Kq6wrRnTJP3Fk4xcTaiCVGj9zF9F3MOVFB WOL6ZWhOXq0Q0kbusznLsOoX4JXw0jmQqMcPELk8FRo5RHocs8/SHpgGGuttMjmj iGi9a+HOAQy171wlNmtIUyhalOx1SvPgxWiTa20EHmxsQ8+mG0ooV+r9EqSlFV5z 1Xk89gLZXQbMp301Ne/v77YbjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ48+lNQ fY6SlE8X8XpK2m+qSIUHMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG2koaWoaIAGSEBe6/LpGIaRS33cmRVxCmBLzCE3IHXvYjXZpA2Jb9 UrxbmnZxGYlT0uDdz2G+8hacSDBkYn2kH4vrLajWFyNlfmc11RajwFNrbz6jie6T SSjW4nDdtjYVa2UqWcnixz7VRCQ38ev6oZ10UJxj5KLeSLJMXNTVYjQ79Ac0KvH3 y2t4HRvaej+ohq/YOTvDxn4O/RfT19P2fNEyF2LjXm9uCqRHScb4J4R8TZ9bEdjE 9jgBGetpYtfGhMlc/4cA+zqFQq+WwTh8JAPnerACGI1kU86Q77aKjwpLiCdaAhib 667vRDDFR4JPgPSs/6220phutoanWJnk -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:34 2025 by rpki-client