$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: xusOriqZzRhzmOuqy3KtuM/rYDriPMw5QLGnKoJCF6w= Subject key identifier: 22:FD:33:4A:D1:2F:25:D7:E7:D0:2C:4C:F0:F2:44:A4:55:A3:DB:3C Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 0156 Signing time: Mon 03 Nov 2025 04:07:36 +0000 Manifest this update: Mon 03 Nov 2025 04:07:36 +0000 Manifest next update: Mon 10 Nov 2025 04:07:36 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: qWKX8f3L6I8dbTPIKta8sO4zJoh7ORRgfO/DbAnInD0=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Nov 3 04:07:36 2025 GMT Not After : Nov 10 04:07:36 2025 GMT Subject: CN=69082a88-ffe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9d:78:f7:e9:47:65:6d:1e:d1:e1:65:a0:ec: 5c:e7:ac:72:60:aa:6a:75:68:a8:57:7f:92:9f:99: 63:3a:88:83:10:8c:8d:16:80:21:d2:41:e6:d3:d7: 60:69:2e:6f:0f:24:bb:ac:ed:3e:fc:6b:a9:bf:2d: f9:08:77:76:9b:ee:9b:af:8e:1e:63:d1:6c:44:15: f2:8a:de:9a:b1:85:cf:ed:04:f1:a6:99:04:a7:3b: 99:69:a9:aa:6a:3e:7a:fa:82:51:f1:e8:36:5f:0c: 48:59:8b:0f:12:18:4b:9c:95:69:75:06:30:3c:d7: 59:ed:b9:98:df:9d:47:99:b4:9b:47:06:de:a7:a1: c8:99:e4:28:2c:63:5b:41:8f:10:2d:12:3b:0b:3d: 40:98:f8:ca:2c:76:1d:b3:ba:36:72:92:bd:3c:ee: b4:53:1b:42:b9:86:73:e4:c6:9a:8e:c1:9a:d7:5c: 49:b1:97:56:ae:7b:d0:de:41:97:44:be:94:56:be: b3:20:f4:83:a8:52:65:d3:22:02:8a:c2:8b:ce:ac: 3f:c3:27:00:89:a7:f4:cb:1e:83:08:8b:50:f2:6a: 74:38:84:96:a5:28:31:a3:c3:3d:5d:02:59:47:df: 58:3d:13:c5:14:5b:c0:30:6a:e3:eb:4c:71:67:51: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FD:33:4A:D1:2F:25:D7:E7:D0:2C:4C:F0:F2:44:A4:55:A3:DB:3C X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:d3:b9:c1:b0:c1:d8:14:d4:f7:32:53:e4:34:5d:d0:e5:f4: 7f:1a:37:7e:e9:dc:66:54:e5:50:c0:d0:63:67:87:74:d4:79: 78:df:39:10:29:ae:23:44:3e:a5:71:fe:42:71:cb:b3:a7:dc: 08:6c:52:12:eb:5a:90:dd:1c:8e:6b:fd:2e:c9:6a:6f:0c:3e: 2f:9e:fc:48:04:87:9f:86:3b:7e:f9:19:d5:6f:aa:9c:d4:05: 0c:a5:61:33:27:af:bc:e7:83:86:85:fd:19:81:ab:74:f8:cf: b2:36:c3:23:a5:57:6a:70:bf:0e:92:9b:c6:5d:10:36:a8:a6: a5:44:4f:68:18:df:a1:13:f8:d9:a4:c0:2c:79:e9:96:9e:db: 33:df:75:46:6d:12:09:32:6b:e0:d5:08:9c:6e:ce:35:16:85: 94:5e:28:cf:77:0a:b3:4f:0e:78:80:93:8a:c3:2f:01:1a:9d: 2c:15:4c:58:2f:66:be:cd:45:72:0c:3b:7d:44:b0:ef:6c:01: 88:72:f4:9c:a0:59:2d:5a:f9:29:19:b7:57:69:1c:df:d0:b4: 63:da:e4:af:75:9e:90:8b:ab:a3:36:e7:2a:02:c8:ee:02:87: e8:29:b0:87:ae:f5:79:0e:ca:37:24:2a:73:e4:b9:1a:1e:dc: d9:f0:21:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUxMTAzMDQwNzM2WhcNMjUxMTEwMDQwNzM2WjAYMRYwFAYD VQQDEw02OTA4MmE4OC1mZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4p149+lHZW0e0eFloOxc56xyYKpqdWioV3+Sn5ljOoiDEIyNFoAh0kHm09dg aS5vDyS7rO0+/Gupvy35CHd2m+6br44eY9FsRBXyit6asYXP7QTxppkEpzuZaamq aj56+oJR8eg2XwxIWYsPEhhLnJVpdQYwPNdZ7bmY351HmbSbRwbep6HImeQoLGNb QY8QLRI7Cz1AmPjKLHYds7o2cpK9PO60UxtCuYZz5MaajsGa11xJsZdWrnvQ3kGX RL6UVr6zIPSDqFJl0yICisKLzqw/wycAiaf0yx6DCItQ8mp0OISWpSgxo8M9XQJZ R99YPRPFFFvAMGrj60xxZ1FUlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL9M0rR LyXX59AsTPDyRKRVo9s8MB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO07nBsMHYFNT3MlPkNF3Q5fR/Gjd+6dxmVOVQwNBjZ4d01Hl43zkQ Ka4jRD6lcf5Cccuzp9wIbFIS61qQ3RyOa/0uyWpvDD4vnvxIBIefhjt++RnVb6qc 1AUMpWEzJ6+854OGhf0Zgat0+M+yNsMjpVdqcL8OkpvGXRA2qKalRE9oGN+hE/jZ pMAseemWntsz33VGbRIJMmvg1Qicbs41FoWUXijPdwqzTw54gJOKwy8BGp0sFUxY L2a+zUVyDDt9RLDvbAGIcvScoFktWvkpGbdXaRzf0LRj2uSvdZ6Qi6ujNucqAsju AofoKbCHrvV5Dso3JCpz5LkaHtzZ8CEX -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:38 2025 by rpki-client