$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: PpnUOMU+wR2JAZgUWxLcSygp8Elj1X9fmlgM8QpcwUY= Subject key identifier: CC:CF:06:85:02:32:47:EF:F7:17:7D:62:62:71:3E:55:D8:EF:E0:CD Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 1300 Signing time: Wed 22 Oct 2025 17:24:53 +0000 Manifest this update: Wed 22 Oct 2025 17:24:52 +0000 Manifest next update: Wed 29 Oct 2025 17:24:52 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: k/UZLpCKwPtrdZ5Zby0aYD1G+kAMzwseGJNjeYrL3Ok=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: F64rTtQK62WkoJ4T7LBeaKOnYlMCrnrGJqKnlzvZNxc=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: V0JrvauXWXNDpsL43DjdmMpgmoTrusHbq711Y8hqbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4885 (0x1315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Oct 22 17:24:52 2025 GMT Not After : Oct 29 17:24:52 2025 GMT Subject: CN=68f91365-e064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2d:02:00:a0:49:12:cd:53:d4:b4:d0:db:7e: e8:0e:91:08:31:37:8b:dc:44:2a:23:8b:06:80:cb: fc:ed:4e:1a:79:66:b5:62:9f:2d:01:07:03:25:4c: 4c:c7:6b:1f:12:41:0d:90:92:be:51:4a:cf:c3:6d: d7:7c:3d:af:aa:da:fc:3a:d1:6d:af:98:00:0d:c3: ba:1a:5c:05:81:6d:d1:8f:26:c1:f0:eb:e8:fc:8b: ef:46:ff:ce:0f:de:09:83:a4:09:61:83:a2:de:d2: fe:4b:64:c3:b0:48:6a:74:b3:8c:61:60:db:7c:95: ca:6e:b4:1b:98:43:28:60:b5:8b:6b:b8:f1:d5:d2: 85:16:7a:bc:59:69:9d:ef:6d:aa:f3:79:22:57:54: 5d:c2:0b:dc:1b:cc:be:f4:5e:28:a5:6a:3b:f5:9a: 7b:05:86:b9:6b:63:b4:44:4e:26:e2:39:59:88:c7: 51:a7:05:63:36:31:47:04:05:b2:b4:96:fb:e9:11: 43:5d:12:5e:b8:b9:05:70:59:37:c1:05:f5:bf:8e: c2:80:73:94:09:86:c4:e1:80:dd:18:ec:43:30:64: 26:08:83:f9:2c:b9:54:af:63:6a:25:e5:2b:91:ab: 8d:fb:08:07:ef:58:f9:0d:af:6d:fb:cd:c4:b7:62: a2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CF:06:85:02:32:47:EF:F7:17:7D:62:62:71:3E:55:D8:EF:E0:CD X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:0b:7c:30:8f:ae:4b:c7:13:82:53:5f:d9:55:59:d6:91:67: da:e5:48:10:93:93:7d:d3:71:86:f9:13:c1:56:5b:10:c6:28: 4d:6c:6d:e2:e9:b6:28:6e:1c:70:63:09:35:32:f0:b5:e6:00: 88:66:53:84:d1:b9:ee:51:8c:06:97:dd:93:31:c5:6b:77:3f: bb:80:ba:f7:c9:0d:ae:85:ee:ba:ac:ac:4f:a6:1e:23:8f:e2: 3d:d3:68:c9:9a:52:d7:12:ae:1c:20:80:16:e9:fa:5c:54:9d: 93:76:a8:36:24:2b:32:eb:02:50:dd:a2:a0:91:86:e5:87:a8: 5a:84:a4:83:c6:31:dc:99:a2:78:52:17:8c:8e:24:92:a2:cf: 5b:81:98:1f:c3:fe:64:24:47:79:83:9c:2b:ce:8d:60:cc:5b: f9:9b:6c:39:83:46:27:2d:3c:8b:48:7f:82:10:1d:45:3e:ab: 97:c5:10:38:59:7c:81:71:c8:89:30:b9:af:2b:38:51:0e:d7: b3:55:dd:06:44:2d:5d:18:3f:fa:88:26:ff:50:7f:5e:33:65: 6d:b3:77:38:fb:b0:f6:46:29:a4:fe:e9:55:e9:d0:71:2d:8f: 4c:cd:04:61:0e:bd:b5:ab:2c:61:35:06:32:8c:08:c9:7f:aa: 96:b3:50:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUxMDIyMTcyNDUyWhcNMjUxMDI5MTcyNDUyWjAYMRYwFAYD VQQDEw02OGY5MTM2NS1lMDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqi0CAKBJEs1T1LTQ237oDpEIMTeL3EQqI4sGgMv87U4aeWa1Yp8tAQcDJUxM x2sfEkENkJK+UUrPw23XfD2vqtr8OtFtr5gADcO6GlwFgW3RjybB8Ovo/IvvRv/O D94Jg6QJYYOi3tL+S2TDsEhqdLOMYWDbfJXKbrQbmEMoYLWLa7jx1dKFFnq8WWmd 722q83kiV1RdwgvcG8y+9F4opWo79Zp7BYa5a2O0RE4m4jlZiMdRpwVjNjFHBAWy tJb76RFDXRJeuLkFcFk3wQX1v47CgHOUCYbE4YDdGOxDMGQmCIP5LLlUr2NqJeUr kauN+wgH71j5Da9t+83Et2KirwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzPBoUC Mkfv9xd9YmJxPlXY7+DNMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfC3wwj65LxxOCU1/ZVVnWkWfa5UgQk5N903GG+RPBVlsQxihNbG3i 6bYobhxwYwk1MvC15gCIZlOE0bnuUYwGl92TMcVrdz+7gLr3yQ2uhe66rKxPph4j j+I902jJmlLXEq4cIIAW6fpcVJ2Tdqg2JCsy6wJQ3aKgkYblh6hahKSDxjHcmaJ4 UheMjiSSos9bgZgfw/5kJEd5g5wrzo1gzFv5m2w5g0YnLTyLSH+CEB1FPquXxRA4 WXyBcciJMLmvKzhRDtezVd0GRC1dGD/6iCb/UH9eM2Vts3c4+7D2Rimk/ulV6dBx LY9MzQRhDr21qyxhNQYyjAjJf6qWs1BD -----END CERTIFICATE-----Generated at Fri Oct 24 06:43:30 2025 by rpki-client