$ rpki-client -vvf rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft File: IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft (raw, json) Hash identifier: Op/YwjbcFfvS9APvPIKE8IuurOvRVVFyF4j4nl9YT6M= Subject key identifier: 72:0F:85:33:43:E5:F2:F7:25:F1:3F:4D:0D:C8:73:ED:3D:7E:0D:5A Authority key identifier: 21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 Certificate issuer: /CN=A914022F/serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Certificate serial: 06E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft Manifest number: 06D8 Signing time: Tue 04 Nov 2025 22:08:12 +0000 Manifest this update: Tue 04 Nov 2025 22:08:11 +0000 Manifest next update: Tue 11 Nov 2025 22:08:11 +0000 Files and hashes: 1: IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl (hash: PE78ja6OTKfZ7GlZqzFEdeOriBVeDK/6yw1dB0cKexs=) 2: 24F33D7877AF11EB8E972C66C4F9AE02.roa (hash: 4G6we2Th1FMc0knctpDnaHzpZ2DpvqNSVPvecBD6QV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914022F, serialNumber=214B2FCF42BB2B98905845D733D945D95C2DCA12 Validity Not Before: Nov 4 22:08:11 2025 GMT Not After : Nov 11 22:08:11 2025 GMT Subject: CN=690a794b-4425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4b:4e:16:a2:c1:ea:98:2b:17:5b:a0:71:15: e2:21:3f:e4:8d:c4:e1:94:76:af:83:96:04:1e:18: d5:53:a0:d8:93:5c:4a:ed:bc:c8:38:b3:cd:36:3b: 14:a8:40:bd:8e:7c:09:35:21:0c:85:c3:26:4f:a8: 16:7f:58:c7:63:6e:81:e8:53:65:70:ec:07:83:d7: 19:70:b2:49:bb:83:0d:2f:bd:f9:b5:4e:77:6a:f7: 51:30:ba:3e:bd:f6:98:26:1a:a1:74:d0:cf:f0:92: 40:9c:6f:11:2c:66:50:da:0d:b8:a9:4b:cc:c4:43: a6:c3:6a:47:b2:6b:ff:25:be:0a:29:fd:79:4b:cc: 6e:c0:c3:87:9e:ee:b1:6e:7c:89:a9:df:71:a6:85: cc:96:55:bf:5a:ad:e5:0c:a5:7b:a9:0f:a6:f1:ba: 9e:6a:e7:cd:6b:b8:5d:81:ee:ab:39:d7:8f:2d:72: 11:ef:da:3d:2a:97:53:da:ce:4e:09:22:b5:c3:c8: 54:c4:cc:bc:3b:3c:6f:52:c0:aa:bf:b9:28:2a:6b: 30:11:73:b1:f6:06:59:ed:e6:2a:a4:bb:6b:d7:e0: a9:f2:3c:55:ef:2e:55:53:9a:60:dc:58:59:34:7a: 04:c7:be:70:b3:3f:1e:23:eb:5e:b6:3b:0d:37:7c: 97:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0F:85:33:43:E5:F2:F7:25:F1:3F:4D:0D:C8:73:ED:3D:7E:0D:5A X509v3 Authority Key Identifier: keyid:21:4B:2F:CF:42:BB:2B:98:90:58:45:D7:33:D9:45:D9:5C:2D:CA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUsvz0K7K5iQWEXXM9lF2VwtyhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914022F/7C644426776411EBB1C4F545C4F9AE02/IUsvz0K7K5iQWEXXM9lF2VwtyhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:0a:70:ff:0f:83:4a:6a:07:90:36:72:80:d6:b8:0c:5a:cf: 1c:c1:38:9e:3b:a3:48:71:39:ad:32:8f:61:88:9b:e1:93:e0: 8d:ad:27:3f:db:5d:10:7f:b1:41:a2:26:9f:32:a9:7e:12:c1: 7c:1c:1a:0d:be:7e:1a:63:db:fa:00:a4:3d:62:35:44:98:72: 4e:a6:a3:2a:83:a0:e6:fc:dc:63:9b:f2:04:0f:a7:dc:a9:64: e8:91:ec:3c:81:17:37:63:8f:8f:0d:dd:00:49:e4:be:20:86: a8:44:1b:fe:d1:6e:67:e8:54:f1:c9:0f:e1:c3:f7:aa:97:95: c0:d8:ac:05:68:d8:64:e4:5b:4e:48:65:5c:d9:c4:94:c0:88: 3f:8a:4f:fa:eb:5f:13:2b:7c:f1:84:09:ec:20:3c:5d:23:23: 5a:dd:d2:22:cd:80:f8:d6:f5:bd:21:6f:9a:cc:50:d3:5c:1c: 76:7f:a4:55:62:b6:54:ac:07:01:71:53:09:c4:46:17:f1:91: db:0c:0f:b3:a4:d9:f5:55:c9:a9:07:30:ea:3f:b8:45:49:5a: 12:06:06:ec:74:4b:f9:da:02:d1:5f:de:16:05:c4:2d:78:ad: a3:26:10:ea:a8:f5:0a:f1:31:6f:ea:e6:b9:8c:5f:22:c2:e6: ff:34:ad:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyMkYxMTAvBgNVBAUTKDIxNEIyRkNGNDJCQjJCOTg5MDU4NDVENzMzRDk0NUQ5 NUMyRENBMTIwHhcNMjUxMTA0MjIwODExWhcNMjUxMTExMjIwODExWjAYMRYwFAYD VQQDEw02OTBhNzk0Yi00NDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUtOFqLB6pgrF1ugcRXiIT/kjcThlHavg5YEHhjVU6DYk1xK7bzIOLPNNjsU qEC9jnwJNSEMhcMmT6gWf1jHY26B6FNlcOwHg9cZcLJJu4MNL735tU53avdRMLo+ vfaYJhqhdNDP8JJAnG8RLGZQ2g24qUvMxEOmw2pHsmv/Jb4KKf15S8xuwMOHnu6x bnyJqd9xpoXMllW/Wq3lDKV7qQ+m8bqeaufNa7hdge6rOdePLXIR79o9KpdT2s5O CSK1w8hUxMy8OzxvUsCqv7koKmswEXOx9gZZ7eYqpLtr1+Cp8jxV7y5VU5pg3FhZ NHoEx75wsz8eI+tetjsNN3yXlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIPhTND 5fL3JfE/TQ3Ic+09fg1aMB8GA1UdIwQYMBaAFCFLL89CuyuYkFhF1zPZRdlcLcoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDIyRi83QzY0NDQyNjc3 NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1aVFXRVhYTTlsRjJWd3R5 aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVc3Z6MEs3SzVpUVdFWFhNOWxGMlZ3dHloSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDIyRi83QzY0NDQyNjc3NjQxMUVCQjFDNEY1NDVDNEY5QUUwMi9JVXN2ejBLN0s1 aVFXRVhYTTlsRjJWd3R5aEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZCnD/D4NKageQNnKA1rgMWs8cwTieO6NIcTmtMo9hiJvhk+CNrSc/ 210Qf7FBoiafMql+EsF8HBoNvn4aY9v6AKQ9YjVEmHJOpqMqg6Dm/Nxjm/IED6fc qWTokew8gRc3Y4+PDd0ASeS+IIaoRBv+0W5n6FTxyQ/hw/eql5XA2KwFaNhk5FtO SGVc2cSUwIg/ik/6618TK3zxhAnsIDxdIyNa3dIizYD41vW9IW+azFDTXBx2f6RV YrZUrAcBcVMJxEYX8ZHbDA+zpNn1VcmpBzDqP7hFSVoSBgbsdEv52gLRX94WBcQt eK2jJhDqqPUK8TFv6ua5jF8iwub/NK0p -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:00 2025 by rpki-client