$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: cTm/sa+4Ya9j0252tLLjXAY7MAJH7KJFLoY5R3z9PA4= Subject key identifier: A5:1B:8E:E4:D4:8C:3D:00:AA:FD:20:15:5D:DE:1D:E6:5F:14:39:D3 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 0753 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 0753 Signing time: Sun 02 Nov 2025 21:39:12 +0000 Manifest this update: Sun 02 Nov 2025 21:39:11 +0000 Manifest next update: Sun 09 Nov 2025 21:39:11 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: J7lGuVMRVgdcbraaIfRreYrQQUz26RwjYujvGGnM3EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Nov 2 21:39:11 2025 GMT Not After : Nov 9 21:39:11 2025 GMT Subject: CN=6907cf7f-c62c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c1:32:31:d5:e5:22:43:5b:e4:9f:9b:61:0f: 7c:53:c5:c2:a2:30:f5:15:75:9d:42:63:1e:8d:90: be:d9:90:4c:c7:99:1c:d8:07:bc:40:0c:55:d3:3b: 24:96:1a:49:3c:c0:5a:d9:6e:16:a4:99:0b:97:34: b6:ce:36:b4:44:46:37:42:25:c8:57:ab:c3:d1:20: 13:66:c3:20:35:c4:f2:0b:c9:c5:be:1b:92:85:7d: a7:65:9a:57:b2:12:f9:e4:a9:12:f4:ea:6a:2f:21: c2:7e:af:21:35:79:5a:30:88:a3:1c:7c:d5:3c:5d: 2a:28:33:a5:99:db:07:6d:1b:87:31:ad:c7:95:ff: 9f:94:ba:50:4a:47:9c:1b:5c:e3:d8:5d:74:81:16: 13:64:54:45:44:ce:1b:b7:cb:c9:f2:b2:b5:27:e9: c1:6b:0c:0c:dd:16:a2:ec:9f:21:ac:4d:77:6e:60: 5e:10:34:f0:5c:d7:87:f7:56:1e:58:dd:18:bf:96: 70:82:f9:27:f8:7b:ed:fa:8d:57:0b:34:d8:b0:74: dd:4f:0b:96:3e:dd:74:7d:83:f6:a2:cc:ed:c0:2e: 9f:63:78:0b:1e:02:83:2b:8d:17:74:25:6c:2d:6a: 73:c8:ac:a1:15:00:b3:2a:a5:b6:fc:93:05:36:fc: a3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1B:8E:E4:D4:8C:3D:00:AA:FD:20:15:5D:DE:1D:E6:5F:14:39:D3 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:c9:ae:d9:a4:d2:0c:90:f9:49:a7:5d:4f:75:d4:81:9f:6b: 16:c0:f1:be:db:2b:07:97:e8:c3:3d:82:22:56:85:84:52:0f: e7:28:21:2f:e1:6f:50:33:86:f6:74:42:f9:c0:66:3a:dc:59: 98:f5:44:64:57:25:eb:d2:b0:ae:75:97:85:a1:18:26:6e:df: f7:1b:94:1c:fd:61:20:a1:fb:8e:81:24:f2:ac:ff:54:ac:cf: 13:10:ad:3d:6c:a9:9c:77:df:4b:35:14:ad:97:b5:00:ea:80: 72:8a:6d:47:56:e7:6b:da:72:fd:c1:5d:0a:cc:06:4a:a8:5d: 38:3f:ce:48:db:0a:e4:53:d9:1d:31:64:af:19:93:39:18:d4: cc:5e:7a:89:91:83:c5:cd:ed:71:ea:d7:57:74:86:cc:76:78: 10:00:33:ac:8b:5f:5a:1a:b9:96:48:99:01:fd:6d:02:14:95: bc:3c:c2:98:66:02:03:3f:bf:97:bc:cc:fa:99:10:a3:15:20: 6a:bd:11:aa:2b:d5:19:bb:dc:8c:6c:33:4c:d2:6a:a5:91:87: 93:21:1b:6d:54:12:ac:83:aa:f4:cd:63:9b:21:e1:02:ef:fc: 99:82:7d:9c:d3:0f:72:7e:e0:6d:81:d3:9e:48:c9:e5:21:5e: eb:5b:19:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUxMTAyMjEzOTExWhcNMjUxMTA5MjEzOTExWjAYMRYwFAYD VQQDEw02OTA3Y2Y3Zi1jNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8EyMdXlIkNb5J+bYQ98U8XCojD1FXWdQmMejZC+2ZBMx5kc2Ae8QAxV0zsk lhpJPMBa2W4WpJkLlzS2zja0REY3QiXIV6vD0SATZsMgNcTyC8nFvhuShX2nZZpX shL55KkS9OpqLyHCfq8hNXlaMIijHHzVPF0qKDOlmdsHbRuHMa3Hlf+flLpQSkec G1zj2F10gRYTZFRFRM4bt8vJ8rK1J+nBawwM3Rai7J8hrE13bmBeEDTwXNeH91Ye WN0Yv5Zwgvkn+Hvt+o1XCzTYsHTdTwuWPt10fYP2osztwC6fY3gLHgKDK40XdCVs LWpzyKyhFQCzKqW2/JMFNvyjIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUbjuTU jD0Aqv0gFV3eHeZfFDnTMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjya7ZpNIMkPlJp11PddSBn2sWwPG+2ysHl+jDPYIiVoWEUg/nKCEv 4W9QM4b2dEL5wGY63FmY9URkVyXr0rCudZeFoRgmbt/3G5Qc/WEgofuOgSTyrP9U rM8TEK09bKmcd99LNRStl7UA6oByim1HVudr2nL9wV0KzAZKqF04P85I2wrkU9kd MWSvGZM5GNTMXnqJkYPFze1x6tdXdIbMdngQADOsi19aGrmWSJkB/W0CFJW8PMKY ZgIDP7+XvMz6mRCjFSBqvRGqK9UZu9yMbDNM0mqlkYeTIRttVBKsg6r0zWObIeEC 7/yZgn2c0w9yfuBtgdOeSMnlIV7rWxle -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:48 2025 by rpki-client