$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: hlek30TtbftQBSDMaiGVojOb7TM+7HKYgizAmXVeKJo= Subject key identifier: 12:59:FE:24:FE:44:5A:45:2C:C1:D8:8D:02:FE:1C:C7:C7:21:B0:3B Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 09D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 09CC Signing time: Mon 20 Oct 2025 20:48:14 +0000 Manifest this update: Mon 20 Oct 2025 20:48:13 +0000 Manifest next update: Mon 27 Oct 2025 20:48:13 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: z4PkwePq4+unproGFkU00irt+qCfCoUw86MYzTovTNU=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Oct 20 20:48:13 2025 GMT Not After : Oct 27 20:48:13 2025 GMT Subject: CN=68f6a00d-aab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:51:07:3f:bf:c6:f9:d6:55:a8:2f:17:44:af: b6:4d:6d:a3:68:02:ed:39:b5:83:69:ad:99:92:08: ec:1a:5d:a0:7c:b5:69:dc:c3:14:3c:96:07:58:a6: a9:11:2a:17:c9:f9:e8:55:e8:a0:a9:1a:46:b7:96: fd:33:a8:81:35:94:78:92:cd:e9:82:fa:31:14:9b: fc:12:56:fb:73:86:36:36:9b:c3:ef:c6:2a:0c:60: be:21:ca:bb:6b:29:e4:01:4c:ed:d2:aa:93:33:be: aa:71:c4:a6:70:71:3d:bb:50:d1:ed:1d:af:43:8a: 34:0d:6c:1b:84:42:7b:bc:5f:f8:ea:9f:a4:8e:bd: 74:95:fc:9b:d5:4e:4e:ee:bb:d5:4a:5f:13:8f:64: 1a:ac:da:9e:7a:44:b6:f3:54:13:66:5b:a2:75:ca: 17:d4:1a:be:30:9b:42:ad:95:79:dd:65:da:93:dc: 96:a5:ad:a4:00:bc:34:9c:91:08:db:9e:f1:34:8c: 85:5b:0d:11:87:52:80:35:f7:33:4f:b4:c1:1f:38: ad:1f:b4:10:2b:51:02:c9:31:5d:cb:9b:d1:97:ce: 53:43:34:03:bd:58:f5:96:8f:2e:9a:33:b1:11:71: 8f:1e:3f:51:28:cb:ac:c9:2c:85:18:9d:45:fe:37: e5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:59:FE:24:FE:44:5A:45:2C:C1:D8:8D:02:FE:1C:C7:C7:21:B0:3B X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f4:07:cf:e7:6d:69:f9:95:be:5d:10:ac:ae:6e:f5:6f:68: e5:1d:a4:1d:e0:28:8d:0e:46:18:23:b7:d0:19:d9:2e:3c:8c: 73:c4:92:86:fc:85:17:db:91:2e:1f:1b:cf:98:46:ca:70:b8: b9:38:b5:f3:02:52:82:56:a6:67:12:e1:30:cc:0c:0e:84:5d: 54:ec:e6:a3:e5:76:4e:86:33:42:5d:ca:bb:61:d0:01:11:60: e0:cb:f5:99:97:07:1b:0e:62:fd:91:75:7c:32:de:21:6a:c1: 79:71:f2:39:e4:06:8d:74:32:56:21:17:d2:bd:e6:a7:31:89: db:f9:d4:27:14:b2:cf:3d:34:a8:f2:48:79:15:fa:a6:02:43: 4f:bc:ab:b6:96:68:2a:04:d0:f8:91:83:ca:1e:1f:7c:2e:ff: b7:d1:2e:87:ec:d5:81:89:3f:39:c2:80:cb:3d:f5:e0:a8:44: 96:9d:3f:08:cc:d3:21:0d:e2:44:56:00:03:cb:9a:e5:a6:8f: a1:a2:0e:a7:4c:22:fc:aa:df:2c:34:5e:77:8f:4a:ca:9d:01: 5b:ef:56:e5:09:cb:d1:b3:8e:e5:7b:ce:12:5d:2d:8c:11:5e: e3:20:07:12:9c:bc:16:3e:5d:47:58:b3:35:1f:02:ff:9a:0d: 06:e3:8a:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUxMDIwMjA0ODEzWhcNMjUxMDI3MjA0ODEzWjAYMRYwFAYD VQQDEw02OGY2YTAwZC1hYWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplEHP7/G+dZVqC8XRK+2TW2jaALtObWDaa2ZkgjsGl2gfLVp3MMUPJYHWKap ESoXyfnoVeigqRpGt5b9M6iBNZR4ks3pgvoxFJv8Elb7c4Y2NpvD78YqDGC+Icq7 aynkAUzt0qqTM76qccSmcHE9u1DR7R2vQ4o0DWwbhEJ7vF/46p+kjr10lfyb1U5O 7rvVSl8Tj2QarNqeekS281QTZluidcoX1Bq+MJtCrZV53WXak9yWpa2kALw0nJEI 257xNIyFWw0Rh1KANfczT7TBHzitH7QQK1ECyTFdy5vRl85TQzQDvVj1lo8umjOx EXGPHj9RKMusySyFGJ1F/jflKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJZ/iT+ RFpFLMHYjQL+HMfHIbA7MB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY9AfP521p+ZW+XRCsrm71b2jlHaQd4CiNDkYYI7fQGdkuPIxzxJKG /IUX25EuHxvPmEbKcLi5OLXzAlKCVqZnEuEwzAwOhF1U7Oaj5XZOhjNCXcq7YdAB EWDgy/WZlwcbDmL9kXV8Mt4hasF5cfI55AaNdDJWIRfSveanMYnb+dQnFLLPPTSo 8kh5FfqmAkNPvKu2lmgqBND4kYPKHh98Lv+30S6H7NWBiT85woDLPfXgqESWnT8I zNMhDeJEVgADy5rlpo+hog6nTCL8qt8sNF53j0rKnQFb71blCcvRs47le84SXS2M EV7jIAcSnLwWPl1HWLM1HwL/mg0G44oj -----END CERTIFICATE-----Generated at Tue Oct 21 02:37:37 2025 by rpki-client