$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft File: iX4CzNjrQDmng9AjecVf7p8M7lk.mft (raw, json) Hash identifier: ZXBTpIlcmnROs8am48Qbu61cfXHyS4Dq6gj2QDJ45bg= Subject key identifier: CE:FC:1A:01:EE:B5:1A:EA:65:5B:28:F4:D0:2A:CD:70:2D:29:82:D5 Authority key identifier: 89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 Certificate issuer: /CN=A9146207/serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Certificate serial: 085C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft Manifest number: 0835 Signing time: Wed 22 Oct 2025 16:09:22 +0000 Manifest this update: Wed 22 Oct 2025 16:09:21 +0000 Manifest next update: Wed 29 Oct 2025 16:09:21 +0000 Files and hashes: 1: iX4CzNjrQDmng9AjecVf7p8M7lk.crl (hash: HFJ8ra/4jUYJgmuyadqsQs9b/3rLAx5YhUZg8E4zDGs=) 2: E19826A0EAA511EBA4C1F32CC4F9AE02.roa (hash: tG1HGaU5DUimsEMDFRA50jlq68FCzHx0C3arFNqcuaY=) 3: 0CC38EEC80E711EBB8CFF825C4F9AE02.roa (hash: MfRtvCwn59famvfu05RMk6NPUwzQW1gti+aq8XhNzyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 15:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2140 (0x85c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Validity Not Before: Oct 22 16:09:21 2025 GMT Not After : Oct 29 16:09:21 2025 GMT Subject: CN=68f901b1-03fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f4:40:c2:e7:17:8b:49:77:10:e1:53:13:19: 47:12:02:c3:55:b6:49:c2:9d:e8:b1:3b:f2:b4:9c: cc:a5:97:95:1f:42:e4:6b:fb:6e:69:db:41:68:cc: f6:99:46:d0:02:1c:e7:51:d5:91:a7:35:b4:57:3e: a0:00:de:4b:13:f0:b8:2f:a2:ba:ce:86:ae:d7:ea: a4:6e:5c:b3:49:41:0b:3e:49:56:36:1e:15:f2:22: f8:99:f3:5c:ba:16:fa:15:97:9a:d9:3f:9d:6f:de: e9:51:22:18:57:af:b8:eb:cd:23:8c:89:43:f0:63: 96:00:9c:66:b6:81:07:3d:14:da:57:16:75:ad:53: c7:18:91:06:22:cb:e4:f5:32:d3:85:c7:03:a5:fa: d0:d6:c0:94:6e:12:df:ab:a5:fe:a7:7e:d5:6d:ca: 9a:c3:50:25:60:4d:82:fe:b9:8d:52:4b:c9:15:6c: a6:bf:b3:96:44:7e:0a:33:a2:0d:58:bb:75:44:b6: 35:26:14:27:0c:ab:5d:11:d6:4e:03:e4:88:ca:41: 71:69:62:98:a6:9a:95:d9:f8:1e:6f:bb:b1:cf:0f: 3e:84:0a:83:9d:ef:d4:56:82:3f:ca:5a:a9:96:20: 2f:c7:19:95:a4:c0:91:59:e8:55:cf:29:db:7b:4d: 73:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FC:1A:01:EE:B5:1A:EA:65:5B:28:F4:D0:2A:CD:70:2D:29:82:D5 X509v3 Authority Key Identifier: keyid:89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:e3:f8:6c:e3:40:f3:37:46:e1:e6:15:9d:84:d4:5d:da:d3: 73:6e:26:15:96:64:af:05:a5:0d:ea:71:f6:d0:ec:49:bd:16: 41:b1:a7:c2:df:94:47:42:2f:f1:e8:9d:b1:4a:62:c7:a8:57: a9:cd:ed:cd:02:90:3b:4e:b5:53:be:1c:e1:59:21:71:c9:b8: 6f:c3:2a:84:0d:27:b6:b3:0b:ae:09:b1:ce:91:5f:95:89:c9: 1f:e9:5c:a3:a7:f7:25:bd:ab:85:ae:34:56:1a:fb:7d:b8:c9: 84:3b:f3:a0:30:c9:8d:d4:09:54:be:d4:2e:91:95:30:3d:37: f4:39:22:6f:b3:2c:fe:65:57:4e:c4:be:96:a5:cc:88:0a:11: 9d:98:0e:d0:a5:39:76:ee:71:ec:42:d3:2c:5b:59:cb:c4:d5: 72:32:2a:f5:ec:64:88:66:0f:f8:56:4c:a1:56:95:a8:7a:10: 13:2e:6b:d0:3f:dd:0b:0d:b7:35:71:d9:b0:6d:28:18:41:40: 6c:09:f8:37:10:d9:5e:94:2b:87:3a:c9:6e:45:f3:93:59:f4: 4e:30:5c:72:73:87:e0:c6:53:a4:d7:88:2c:0c:32:1a:34:90: 4d:5f:41:d3:26:40:ab:dc:b1:be:d7:4e:9b:79:6d:27:40:31: 65:ca:a2:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDg5N0UwMkNDRDhFQjQwMzlBNzgzRDAyMzc5QzU1RkVF OUYwQ0VFNTkwHhcNMjUxMDIyMTYwOTIxWhcNMjUxMDI5MTYwOTIxWjAYMRYwFAYD VQQDEw02OGY5MDFiMS0wM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vRAwucXi0l3EOFTExlHEgLDVbZJwp3osTvytJzMpZeVH0Lka/tuadtBaMz2 mUbQAhznUdWRpzW0Vz6gAN5LE/C4L6K6zoau1+qkblyzSUELPklWNh4V8iL4mfNc uhb6FZea2T+db97pUSIYV6+4680jjIlD8GOWAJxmtoEHPRTaVxZ1rVPHGJEGIsvk 9TLThccDpfrQ1sCUbhLfq6X+p37Vbcqaw1AlYE2C/rmNUkvJFWymv7OWRH4KM6IN WLt1RLY1JhQnDKtdEdZOA+SIykFxaWKYppqV2fgeb7uxzw8+hAqDne/UVoI/ylqp liAvxxmVpMCRWehVzynbe01zjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM78GgHu tRrqZVso9NAqzXAtKYLVMB8GA1UdIwQYMBaAFIl+AszY60A5p4PQI3nFX+6fDO5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy84QzY4QjlBMjA5 ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFEbW5nOUFqZWNWZjdwOE03 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lYNEN6TmpyUURtbmc5QWplY1ZmN3A4TTdsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjIwNy84QzY4QjlBMjA5ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFE bW5nOUFqZWNWZjdwOE03bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW4/hs40DzN0bh5hWdhNRd2tNzbiYVlmSvBaUN6nH20OxJvRZBsafC 35RHQi/x6J2xSmLHqFepze3NApA7TrVTvhzhWSFxybhvwyqEDSe2swuuCbHOkV+V ickf6Vyjp/clvauFrjRWGvt9uMmEO/OgMMmN1AlUvtQukZUwPTf0OSJvsyz+ZVdO xL6WpcyIChGdmA7QpTl27nHsQtMsW1nLxNVyMir17GSIZg/4VkyhVpWoehATLmvQ P90LDbc1cdmwbSgYQUBsCfg3ENlelCuHOsluRfOTWfROMFxyc4fgxlOk14gsDDIa NJBNX0HTJkCr3LG+106beW0nQDFlyqLc -----END CERTIFICATE-----Generated at Wed Oct 22 18:45:19 2025 by rpki-client