$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: kTBeXgcsZe5Vd1LBUTKR6IprU25HWNR5i/pRSe8IM5w= Subject key identifier: 78:80:4A:07:70:F3:A3:A0:CE:F5:4F:88:0B:98:CC:7C:14:7F:91:D5 Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07F0 Signing time: Sat 18 Oct 2025 22:18:45 +0000 Manifest this update: Sat 18 Oct 2025 22:18:44 +0000 Manifest next update: Sat 25 Oct 2025 22:18:44 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: WXwivjNGQrm2lXwbOTka+6JUgTvMyS+mOueEgIa/zLc=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Oct 18 22:18:44 2025 GMT Not After : Oct 25 22:18:44 2025 GMT Subject: CN=68f41244-8f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:66:5d:c0:1b:b3:3c:83:23:01:c0:87:d3:5a: d0:bf:e0:e7:32:58:72:cc:f6:13:ff:77:54:a1:e2: bb:f8:45:23:ff:f3:56:b5:e1:86:79:df:5d:a1:8e: 52:20:50:d0:7a:4d:5b:6e:7d:60:e3:3d:72:a3:30: 0d:a7:50:c2:39:74:ee:8f:8e:e8:01:3c:86:d0:37: 24:43:92:82:a8:20:f9:47:91:58:53:d7:e1:fa:df: 5c:40:44:cf:83:e7:3b:42:2c:cc:6c:d6:55:28:e0: 4e:bb:68:6c:ad:93:56:87:5f:48:bf:35:a2:17:d9: c3:53:1d:d2:bb:ef:90:e2:c7:57:70:a2:97:fc:be: b9:62:5f:d3:82:2a:d1:94:d5:a0:92:ba:73:fd:83: d1:cb:79:4b:43:8a:93:73:f9:23:69:a4:7f:5e:df: f1:e0:05:d7:b6:48:60:86:4f:36:7d:05:ca:75:e7: b5:1e:6d:64:29:66:13:9d:fd:c2:1d:fe:40:0a:d2: 47:2c:97:e8:ea:a1:e2:b2:b4:6d:65:41:6b:93:1a: fa:51:9f:a7:a9:c5:fa:51:65:30:3f:d0:5a:15:2b: 18:5c:d2:2b:57:70:a6:70:12:89:ee:f4:e3:74:15: 9e:cd:1f:bd:5c:49:96:83:9b:74:9d:f1:b3:10:0b: a1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:80:4A:07:70:F3:A3:A0:CE:F5:4F:88:0B:98:CC:7C:14:7F:91:D5 X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:9d:7a:e3:11:fb:b3:6c:34:3a:11:d2:d0:ac:24:41:b7:1e: af:7e:0b:e9:34:43:26:d8:e9:1a:10:f3:26:d3:98:8b:16:d4: 8b:aa:04:f8:40:e6:1f:33:07:22:dc:a9:ea:6e:4f:d6:f1:51: 10:ac:81:26:a8:3c:b6:d2:d0:55:53:e4:cf:13:6d:91:4d:31: c0:d4:7f:8e:f8:b7:ea:35:0f:c5:55:e0:c1:70:d8:bb:3e:96: 0e:7d:24:0e:a8:fa:ec:02:b1:51:8c:68:d8:43:21:bc:7f:5e: da:5a:a2:7e:ca:93:6d:29:fc:69:04:df:43:45:64:e9:c7:90: 63:7a:e1:5d:49:f1:91:03:90:2b:4e:cf:ef:00:b1:07:b4:cf: 72:2e:7a:25:b2:c1:1a:62:de:2e:5f:71:01:9a:bf:5b:d9:05: f9:10:62:8d:84:34:26:87:8f:32:cf:b4:6b:a5:85:d5:c5:d3: 5a:3c:89:fe:1f:c4:b5:40:79:27:9c:a9:8c:70:0d:3b:64:75: ef:d3:1b:73:eb:3d:f4:74:20:e2:f7:bd:5c:27:52:96:34:71: 9d:77:71:db:32:47:43:0b:4a:68:d9:b8:5c:03:8b:d8:e0:91: 77:34:11:6b:5c:35:f1:5b:d0:33:9a:22:e6:cd:e6:43:39:a5: 74:0e:95:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUxMDE4MjIxODQ0WhcNMjUxMDI1MjIxODQ0WjAYMRYwFAYD VQQDEw02OGY0MTI0NC04ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GZdwBuzPIMjAcCH01rQv+DnMlhyzPYT/3dUoeK7+EUj//NWteGGed9doY5S IFDQek1bbn1g4z1yozANp1DCOXTuj47oATyG0DckQ5KCqCD5R5FYU9fh+t9cQETP g+c7QizMbNZVKOBOu2hsrZNWh19IvzWiF9nDUx3Su++Q4sdXcKKX/L65Yl/TgirR lNWgkrpz/YPRy3lLQ4qTc/kjaaR/Xt/x4AXXtkhghk82fQXKdee1Hm1kKWYTnf3C Hf5ACtJHLJfo6qHisrRtZUFrkxr6UZ+nqcX6UWUwP9BaFSsYXNIrV3CmcBKJ7vTj dBWezR+9XEmWg5t0nfGzEAuhMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiASgdw 86OgzvVPiAuYzHwUf5HVMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCnXrjEfuzbDQ6EdLQrCRBtx6vfgvpNEMm2OkaEPMm05iLFtSLqgT4 QOYfMwci3Knqbk/W8VEQrIEmqDy20tBVU+TPE22RTTHA1H+O+LfqNQ/FVeDBcNi7 PpYOfSQOqPrsArFRjGjYQyG8f17aWqJ+ypNtKfxpBN9DRWTpx5BjeuFdSfGRA5Ar Ts/vALEHtM9yLnolssEaYt4uX3EBmr9b2QX5EGKNhDQmh48yz7RrpYXVxdNaPIn+ H8S1QHknnKmMcA07ZHXv0xtz6z30dCDi971cJ1KWNHGdd3HbMkdDC0po2bhcA4vY 4JF3NBFrXDXxW9AzmiLmzeZDOaV0DpX/ -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:42 2025 by rpki-client