$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft File: ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft (raw, json) Hash identifier: z9s8i35RMGkKdi+NoOxOiWQfxfWFPASvTewQZ81ypXg= Subject key identifier: 1D:1C:DD:01:63:24:94:06:CE:41:59:5D:78:07:73:77:BE:09:73:0D Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 Certificate issuer: /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft Manifest number: F7 Signing time: Wed 05 Nov 2025 05:23:55 +0000 Manifest this update: Wed 05 Nov 2025 05:23:55 +0000 Manifest next update: Wed 12 Nov 2025 05:23:55 +0000 Files and hashes: 1: ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl (hash: Q3J5FRiJYDNmqPmmxk4DvhJJU5NHNMzq7HPoA6essM4=) 2: A8051CC4508011EF81053074C4F9AE02.roa (hash: cDS5FdTBOYoVAs3WZmJDzExZ2RFGAHrfOHhqQyrBupo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2E2, serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Validity Not Before: Nov 5 05:23:55 2025 GMT Not After : Nov 12 05:23:55 2025 GMT Subject: CN=690adf6b-4c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:9a:29:90:a7:37:ec:59:d8:b1:94:2d:20: 15:7b:af:57:9b:77:cd:14:af:24:c5:85:7c:42:6b: 22:df:37:5d:35:30:b2:96:1f:b5:ed:dd:39:c5:65: 7e:91:79:04:7f:ce:f0:dd:3c:1d:c0:85:f5:5b:42: f7:e7:c9:27:78:be:2c:86:13:d8:0e:69:69:67:c8: c2:c9:ab:97:aa:6a:c5:47:8f:29:e7:9b:c8:9a:db: 82:83:5f:85:7e:77:88:fc:c9:ae:7c:ee:ac:4a:76: 19:57:93:ce:80:d2:d6:fd:87:76:35:a7:57:58:ef: a1:d5:68:f7:b8:64:62:fc:c8:bd:20:91:b5:bc:57: db:b7:8e:60:d8:22:c5:ce:c6:45:17:b8:5d:7f:dd: 96:c7:44:6d:bf:32:ed:0b:87:38:74:82:37:1d:42: f9:26:09:59:84:1c:47:06:96:1d:c5:e0:9b:6a:d0: 79:8d:97:d8:7e:97:db:89:9d:52:b6:75:23:b5:55: 06:06:f9:40:a9:ea:46:31:14:62:2a:5a:d4:ca:19: 07:4f:e4:f9:00:75:19:13:2d:d0:0d:b7:49:b1:f1: 63:05:da:9a:a1:59:b2:4d:5b:93:99:b4:da:2b:42: 2d:26:54:f9:e7:01:7b:1d:8d:77:8d:df:9d:ba:a3: 59:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1C:DD:01:63:24:94:06:CE:41:59:5D:78:07:73:77:BE:09:73:0D X509v3 Authority Key Identifier: keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:00:5e:ea:c3:47:d8:d5:cd:28:2f:a1:e0:52:7e:c0:ac:99: 8c:ab:f5:c0:ba:71:33:2c:18:4d:60:46:1d:ce:16:c3:5f:ce: e9:08:e7:e3:6c:6e:99:75:fa:28:eb:6e:ec:ff:1f:8c:2d:f9: 69:07:b3:60:61:2f:d1:02:0a:5e:f4:4b:71:f3:1c:38:e6:2d: 06:31:50:ef:eb:41:dd:bf:17:ec:d4:b6:21:7e:12:bb:63:de: 8b:31:57:60:25:25:c5:c3:b8:43:fb:e1:bd:ed:9b:53:e0:84: 3c:97:a5:70:ab:59:65:8a:57:fc:d8:48:19:3b:88:35:58:c1: 23:0f:04:eb:38:59:9c:fc:4b:da:38:89:9e:5a:82:53:d2:82: 77:ed:10:89:21:38:22:96:d1:bc:2c:4a:0a:fc:92:22:58:f6: a4:dc:ab:c4:24:68:93:e4:e2:4d:a0:44:6a:c6:2a:ea:73:99: ab:28:54:9c:12:54:c4:d9:21:7a:23:6c:e9:fa:90:b6:93:26: dd:e4:d2:f1:48:da:c0:50:2b:55:fe:ac:7c:75:d5:9e:96:42: 44:b0:c4:98:f9:70:6e:f0:3d:31:e1:de:c2:85:5a:44:32:9a: 65:51:5e:b2:db:39:95:6b:90:60:7b:b0:e4:14:65:49:99:6f: f7:de:68:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyRTIxMTAvBgNVBAUTKDIxMjYxQjg5NzQ5ODkzQzNCMzE4NDFCOTZGRTNGQjYz MjMwMzJGMTgwHhcNMjUxMTA1MDUyMzU1WhcNMjUxMTEyMDUyMzU1WjAYMRYwFAYD VQQDEw02OTBhZGY2Yi00YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQeaKZCnN+xZ2LGULSAVe69Xm3fNFK8kxYV8Qmsi3zddNTCylh+17d05xWV+ kXkEf87w3TwdwIX1W0L358kneL4shhPYDmlpZ8jCyauXqmrFR48p55vImtuCg1+F fneI/MmufO6sSnYZV5POgNLW/Yd2NadXWO+h1Wj3uGRi/Mi9IJG1vFfbt45g2CLF zsZFF7hdf92Wx0RtvzLtC4c4dII3HUL5JglZhBxHBpYdxeCbatB5jZfYfpfbiZ1S tnUjtVUGBvlAqepGMRRiKlrUyhkHT+T5AHUZEy3QDbdJsfFjBdqaoVmyTVuTmbTa K0ItJlT55wF7HY13jd+duqNZ5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0c3QFj JJQGzkFZXXgHc3e+CXMNMB8GA1UdIwQYMBaAFCEmG4l0mJPDsxhBuW/j+2MjAy8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJFMi9DNUI2QjkzNjQ0 MDQxMUVGQjlBNjJDMERDNEY5QUUwMi9JU1liaVhTWWs4T3pHRUc1Yi1QN1l5TURM eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lTWWJpWFNZazhPekdFRzViLVA3WXlNREx4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjJFMi9DNUI2QjkzNjQ0MDQxMUVGQjlBNjJDMERDNEY5QUUwMi9JU1liaVhTWWs4 T3pHRUc1Yi1QN1l5TURMeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJAF7qw0fY1c0oL6HgUn7ArJmMq/XAunEzLBhNYEYdzhbDX87pCOfj bG6Zdfoo627s/x+MLflpB7NgYS/RAgpe9Etx8xw45i0GMVDv60Hdvxfs1LYhfhK7 Y96LMVdgJSXFw7hD++G97ZtT4IQ8l6Vwq1llilf82EgZO4g1WMEjDwTrOFmc/Eva OImeWoJT0oJ37RCJITgiltG8LEoK/JIiWPak3KvEJGiT5OJNoERqxirqc5mrKFSc ElTE2SF6I2zp+pC2kybd5NLxSNrAUCtV/qx8ddWelkJEsMSY+XBu8D0x4d7ChVpE MpplUV6y2zmVa5Bge7DkFGVJmW/33mi2 -----END CERTIFICATE-----Generated at Wed Nov 5 08:00:07 2025 by rpki-client