$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: Kr5cjRszDx/nRkxNKP6Z9Z2XugQZbPsWBlsKI78cwlE= Subject key identifier: 73:9D:E4:EC:5B:16:36:98:09:C7:F1:91:E7:24:F3:22:76:D3:61:C7 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 013E Signing time: Sun 19 Oct 2025 07:13:11 +0000 Manifest this update: Sun 19 Oct 2025 07:13:11 +0000 Manifest next update: Sun 26 Oct 2025 07:13:11 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: UjaB30sr0LGs68Loq6HqORwEkcpHggNtfXPlgWL/W5U=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Oct 19 07:13:11 2025 GMT Not After : Oct 26 07:13:11 2025 GMT Subject: CN=68f48f87-4c82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:87:cf:a3:0b:f3:66:83:c7:8d:d2:c8:92: 57:91:50:0b:6a:3a:c3:74:d7:22:94:f4:f1:ef:74: 40:33:13:b3:2f:75:9c:6d:19:c2:af:86:19:a7:8e: 25:11:b8:6f:6c:2a:1c:6a:c8:d1:c0:7f:91:0a:99: 49:55:b9:be:e6:ba:c4:52:b5:5f:f3:c3:fb:77:6b: c7:d9:8e:ba:ae:d8:43:46:a1:6f:73:ef:a7:d8:9a: 60:a9:4a:98:b7:33:87:ad:db:35:1b:59:2a:31:c8: 31:fd:1a:66:c4:7c:e5:0f:47:2e:6c:21:b8:f6:d0: 92:e1:34:e9:b8:7c:57:ab:76:dd:f1:ce:a1:b9:a8: 48:cc:a5:d2:0b:f1:ef:6b:b5:65:a9:e4:20:9f:fa: e9:03:b8:4b:69:e4:f1:89:72:72:52:e3:8e:ec:03: 55:79:20:ac:9f:de:d3:6b:85:00:3e:81:51:9e:29: a1:43:bd:2a:1c:0e:f0:6a:f6:76:a3:21:a5:e8:72: 73:df:a8:40:47:af:7c:bb:17:4c:c8:95:b7:0b:87: 11:12:b5:a6:42:b8:f5:41:31:bf:0e:71:06:27:bc: 35:18:bb:94:28:47:07:c2:8f:1e:ee:ce:f3:94:e4: b9:36:92:4b:f5:90:39:a8:17:28:35:09:6b:d7:24: 57:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9D:E4:EC:5B:16:36:98:09:C7:F1:91:E7:24:F3:22:76:D3:61:C7 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:b6:56:4e:8e:21:8a:3d:78:f9:dc:0a:2a:dd:59:e7:98:fe: c6:80:82:1e:08:a5:62:ed:2c:d5:53:a6:25:6a:9a:21:14:f0: 4f:9f:38:66:1a:6b:a0:0b:e7:2f:13:76:46:74:62:af:47:f7: 05:ab:f6:cd:d9:97:a1:9d:93:a2:e5:87:02:15:56:52:49:78: bf:4d:a6:87:46:85:74:93:9b:99:02:05:79:10:d5:12:bf:5c: 15:e8:83:40:9e:7b:5c:cf:f2:9b:66:1a:72:13:0e:ed:65:5a: 39:74:93:dc:39:55:84:97:c2:b7:f0:39:04:c1:f2:7c:18:fb: d4:f2:2b:2b:82:67:8b:70:f2:32:ae:1c:ac:02:84:0d:7b:83: 39:36:78:bd:ed:4a:a3:9d:1c:79:ae:22:47:72:b1:99:5e:83: 7c:bb:ec:1a:f0:a6:8b:6f:48:6f:7c:f6:c8:f5:12:84:da:f3: 19:ae:70:de:ac:9a:3c:65:d0:74:d6:67:ae:2f:70:fe:36:14: 49:62:0d:74:ad:0a:86:cd:8e:4d:8e:76:18:89:27:31:da:12: 66:32:2b:36:0c:69:52:a2:ef:a9:42:40:72:a4:b1:d3:f2:69: f5:31:7c:0c:9e:1d:d2:c4:1c:2e:27:86:f3:1b:1f:f9:63:55: 69:2a:83:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUxMDE5MDcxMzExWhcNMjUxMDI2MDcxMzExWjAYMRYwFAYD VQQDEw02OGY0OGY4Ny00YzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGOHz6ML82aDx43SyJJXkVALajrDdNcilPTx73RAMxOzL3WcbRnCr4YZp44l EbhvbCocasjRwH+RCplJVbm+5rrEUrVf88P7d2vH2Y66rthDRqFvc++n2JpgqUqY tzOHrds1G1kqMcgx/RpmxHzlD0cubCG49tCS4TTpuHxXq3bd8c6huahIzKXSC/Hv a7VlqeQgn/rpA7hLaeTxiXJyUuOO7ANVeSCsn97Ta4UAPoFRnimhQ70qHA7wavZ2 oyGl6HJz36hAR698uxdMyJW3C4cRErWmQrj1QTG/DnEGJ7w1GLuUKEcHwo8e7s7z lOS5NpJL9ZA5qBcoNQlr1yRXMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOd5Oxb FjaYCcfxkeck8yJ202HHMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBytlZOjiGKPXj53Aoq3VnnmP7GgIIeCKVi7SzVU6YlapohFPBPnzhm GmugC+cvE3ZGdGKvR/cFq/bN2ZehnZOi5YcCFVZSSXi/TaaHRoV0k5uZAgV5ENUS v1wV6INAnntcz/KbZhpyEw7tZVo5dJPcOVWEl8K38DkEwfJ8GPvU8isrgmeLcPIy rhysAoQNe4M5Nni97UqjnRx5riJHcrGZXoN8u+wa8KaLb0hvfPbI9RKE2vMZrnDe rJo8ZdB01meuL3D+NhRJYg10rQqGzY5NjnYYiScx2hJmMis2DGlSou+pQkBypLHT 8mn1MXwMnh3SxBwuJ4bzGx/5Y1VpKoO8 -----END CERTIFICATE-----Generated at Mon Oct 20 23:34:53 2025 by rpki-client