$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: GVs1JzJfBLtZ9X+0MMgjSHwLfOV/mF1u3U4VdZCC43g= Subject key identifier: A5:C3:84:C5:B1:70:85:D8:A6:E1:4A:4B:10:89:9F:F3:4A:E1:2E:5E Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0552 Signing time: Sat 25 Oct 2025 02:00:36 +0000 Manifest this update: Sat 25 Oct 2025 02:00:36 +0000 Manifest next update: Sat 01 Nov 2025 02:00:36 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: l1mP6FwVjilY+RXEJJwRvi4rGV3mcpWK+SuqMS+2Kb8=) 2: 3A549A1EB00211F0A3A86535C4F9AE02.roa (hash: O1i4s2Zr51Hi0mPfbBoKpN4N/jUayIwH+cV3RnZNMM4=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: knZ5ekXVEf4sYcirbL+CCT4b4jXdUdcrAEg+dwXTAho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 02:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1376 (0x560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Oct 25 02:00:36 2025 GMT Not After : Nov 1 02:00:36 2025 GMT Subject: CN=68fc2f44-b65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:94:d4:1a:f1:3e:70:c7:7f:e3:38:d6:d1:cf: 35:ec:61:57:b5:88:44:62:5a:d4:9c:fe:15:4c:2f: 6d:49:d2:12:27:e4:d9:59:34:b2:bc:2a:d4:77:7d: 3a:31:a6:2e:5b:c9:f0:2d:f1:b8:59:17:10:0b:69: 40:48:f0:94:af:df:5f:b9:b5:5e:c5:7e:14:57:3a: c6:ce:7f:0e:29:e2:85:5c:bd:a7:91:04:67:b3:1b: 85:1d:ef:c0:84:55:66:d4:07:9a:e5:fd:7d:a4:e6: db:36:28:ad:7c:46:4b:32:ff:43:b3:59:88:5f:c1: a8:4c:2f:91:61:e6:7c:a9:a5:89:71:0e:a7:11:bb: da:aa:9f:7e:82:fb:8e:a8:7f:22:32:cc:7e:93:04: c2:2d:b0:96:8f:f4:aa:22:91:ba:8e:bb:7c:13:e9: ed:c5:93:62:b9:41:0d:75:a5:33:ab:4b:53:83:c6: dd:97:9c:b8:58:6c:12:84:40:9d:15:fd:69:1b:e9: d8:c4:56:4d:12:6d:d1:bf:c6:a0:ac:4a:8b:32:83: 08:5c:b8:3b:f4:ad:c4:39:5f:05:5f:c5:aa:ec:1d: 8c:db:cc:d3:bb:bc:ea:96:f3:60:53:42:00:0f:f7: 55:f6:f3:24:cb:ce:0f:54:ec:71:3c:eb:2a:7e:88: 08:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C3:84:C5:B1:70:85:D8:A6:E1:4A:4B:10:89:9F:F3:4A:E1:2E:5E X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:23:36:e6:27:5b:62:ae:68:48:78:22:15:63:fa:c4:0a:66: 92:1c:1c:53:64:9b:12:86:d0:4c:32:7c:d4:fc:f0:c4:70:95: e1:77:fc:aa:d9:dc:0c:99:d4:da:69:a7:93:05:23:b1:c7:07: e7:34:20:4d:e9:31:a8:8d:e5:b8:25:0b:8d:93:66:5d:57:69: b1:ae:d9:e3:59:83:b3:27:98:31:7b:35:0e:f6:d5:11:62:a1: aa:46:8c:c0:11:a5:4b:1e:e0:22:09:f1:0c:a0:32:11:ed:e9: aa:27:9d:24:7a:a4:ee:75:b2:73:4d:44:8f:01:13:8b:cb:e0: 9c:a4:e4:8a:c4:e9:8c:a8:32:ca:af:7c:66:ca:8b:0c:fd:5f: 34:ee:dc:77:af:36:45:69:92:f9:b4:23:f7:7a:75:63:43:23: da:77:5a:3e:f8:7d:ea:1d:d5:03:8a:1b:df:29:14:53:4d:88: 5c:9b:d3:57:01:e2:6a:2f:f5:a5:26:41:80:c1:19:10:82:c7: 5f:45:6e:6e:7d:e5:1b:0a:ad:e6:71:8a:b5:cf:7b:70:ff:8a: ae:fc:00:f0:bd:a8:b7:54:aa:71:9e:45:ec:9a:e8:28:d2:0f: 90:d8:21:84:1e:c3:a6:17:f4:77:5d:8f:14:66:a6:56:32:79: 32:ff:af:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUxMDI1MDIwMDM2WhcNMjUxMTAxMDIwMDM2WjAYMRYwFAYD VQQDEw02OGZjMmY0NC1iNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJTUGvE+cMd/4zjW0c817GFXtYhEYlrUnP4VTC9tSdISJ+TZWTSyvCrUd306 MaYuW8nwLfG4WRcQC2lASPCUr99fubVexX4UVzrGzn8OKeKFXL2nkQRnsxuFHe/A hFVm1Aea5f19pObbNiitfEZLMv9Ds1mIX8GoTC+RYeZ8qaWJcQ6nEbvaqp9+gvuO qH8iMsx+kwTCLbCWj/SqIpG6jrt8E+ntxZNiuUENdaUzq0tTg8bdl5y4WGwShECd Ff1pG+nYxFZNEm3Rv8agrEqLMoMIXLg79K3EOV8FX8Wq7B2M28zTu7zqlvNgU0IA D/dV9vMky84PVOxxPOsqfogIdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXDhMWx cIXYpuFKSxCJn/NK4S5eMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAIzbmJ1tirmhIeCIVY/rECmaSHBxTZJsShtBMMnzU/PDEcJXhd/yq 2dwMmdTaaaeTBSOxxwfnNCBN6TGojeW4JQuNk2ZdV2mxrtnjWYOzJ5gxezUO9tUR YqGqRozAEaVLHuAiCfEMoDIR7emqJ50keqTudbJzTUSPAROLy+CcpOSKxOmMqDLK r3xmyosM/V807tx3rzZFaZL5tCP3enVjQyPad1o++H3qHdUDihvfKRRTTYhcm9NX AeJqL/WlJkGAwRkQgsdfRW5ufeUbCq3mcYq1z3tw/4qu/ADwvai3VKpxnkXsmugo 0g+Q2CGEHsOmF/R3XY8UZqZWMnky/6/r -----END CERTIFICATE-----Generated at Sat Oct 25 17:26:48 2025 by rpki-client