$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: Eg2oumt5NTJDyr8S5gGuM82u4nHid2zupiO4SPZNHxU= Subject key identifier: A5:C6:B9:E7:B3:54:42:E3:0D:28:D1:C6:2A:6D:C0:61:7D:60:1B:A6 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0396 Signing time: Mon 03 Nov 2025 00:43:43 +0000 Manifest this update: Mon 03 Nov 2025 00:43:43 +0000 Manifest next update: Mon 10 Nov 2025 00:43:43 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: 6zmNQ+pmmaHEVNZUGlOUXF8/5XOw9rfjYa2QBIr/Ifk=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Nov 3 00:43:43 2025 GMT Not After : Nov 10 00:43:43 2025 GMT Subject: CN=6907fabf-0733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c2:6c:a9:04:c5:c8:19:2a:7c:d2:72:ac:ec: ae:2d:21:19:fe:d6:a1:88:d2:c6:bf:35:74:5b:dc: 72:f0:83:3c:db:ca:9a:c3:a1:e9:25:2e:c7:6d:b0: 6e:ae:04:c9:99:10:bf:0f:a0:e1:57:ac:ee:c8:2c: 4b:3e:db:8f:d4:13:7b:d3:4d:67:7c:4d:2a:12:b0: 98:f4:1d:e5:ff:2d:f8:d0:67:89:36:8f:df:b2:78: 0e:cd:29:e5:6d:d1:e9:e7:61:71:95:dc:39:31:50: d7:70:92:7b:2e:1c:00:89:12:71:13:0c:30:13:59: 31:93:5a:45:4e:0f:fb:d6:78:9a:3c:08:0d:c6:db: 5c:f0:78:fd:16:52:36:2d:89:49:d7:68:9c:ae:23: 30:93:ed:dd:1c:15:1c:0f:6d:ce:1d:13:24:0b:19: 7f:02:0b:38:48:d9:c0:77:40:c1:f1:56:5d:fd:88: 8f:98:c2:4c:1c:c3:fb:c2:97:33:0f:c6:42:4a:53: 99:08:05:4b:2c:37:69:1f:33:47:30:18:8e:75:e2: 55:ae:08:6f:f5:e1:5a:6d:0c:2f:05:dc:f2:27:eb: c8:ef:8d:5f:9e:75:9c:0e:4f:16:a3:d0:96:54:f7: ef:01:1c:39:f8:af:4e:5e:8a:a8:e5:5a:2c:7a:a2: f7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C6:B9:E7:B3:54:42:E3:0D:28:D1:C6:2A:6D:C0:61:7D:60:1B:A6 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b8:ec:eb:b0:94:1c:6b:50:16:48:70:30:a9:ca:62:ba:02: d7:f8:bd:af:91:a8:57:04:7f:f4:0d:a2:86:08:46:a9:89:23: f9:ad:06:ef:60:a2:73:d4:ec:7c:47:55:ec:f3:25:e2:f2:67: 1b:02:4d:18:48:4d:79:f6:9a:87:b8:32:dd:24:03:8d:cf:df: 85:62:9b:9c:92:f8:32:0c:4c:cc:f4:7d:52:c1:a7:ab:6d:f0: 0a:19:fc:3b:f8:4a:1a:12:f2:b4:72:05:c7:cf:e8:ef:59:f9: 58:2b:4f:65:d9:69:79:28:ec:d9:cc:b9:a0:b5:60:75:80:f2: 2b:80:53:65:d2:20:32:79:15:06:b0:7d:40:16:cd:ec:e1:7e: 9b:c8:40:8f:34:99:16:e3:7e:b1:89:0b:45:6b:de:64:95:cd: 7c:9f:c3:31:68:16:77:05:6f:04:5f:7a:77:8f:2e:cb:fe:33: c7:94:bc:b0:4e:73:ee:35:62:70:d6:7c:19:5e:d8:b3:d2:9a: 25:f8:a1:b1:a7:16:e7:29:6b:97:6e:19:d9:e4:d2:30:76:09: 7b:61:bc:79:71:bb:f5:60:f8:85:a9:f2:fe:c8:63:26:05:69: 1e:ae:68:ec:e8:fc:a3:db:c8:80:42:63:29:36:41:0e:5f:97: 51:1d:36:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUxMTAzMDA0MzQzWhcNMjUxMTEwMDA0MzQzWjAYMRYwFAYD VQQDEw02OTA3ZmFiZi0wNzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcJsqQTFyBkqfNJyrOyuLSEZ/tahiNLGvzV0W9xy8IM828qaw6HpJS7HbbBu rgTJmRC/D6DhV6zuyCxLPtuP1BN7001nfE0qErCY9B3l/y340GeJNo/fsngOzSnl bdHp52Fxldw5MVDXcJJ7LhwAiRJxEwwwE1kxk1pFTg/71niaPAgNxttc8Hj9FlI2 LYlJ12icriMwk+3dHBUcD23OHRMkCxl/Ags4SNnAd0DB8VZd/YiPmMJMHMP7wpcz D8ZCSlOZCAVLLDdpHzNHMBiOdeJVrghv9eFabQwvBdzyJ+vI741fnnWcDk8Wo9CW VPfvARw5+K9OXoqo5VoseqL3mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXGueez VELjDSjRxiptwGF9YBumMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsuOzrsJQca1AWSHAwqcpiugLX+L2vkahXBH/0DaKGCEapiSP5rQbv YKJz1Ox8R1Xs8yXi8mcbAk0YSE159pqHuDLdJAONz9+FYpuckvgyDEzM9H1Swaer bfAKGfw7+EoaEvK0cgXHz+jvWflYK09l2Wl5KOzZzLmgtWB1gPIrgFNl0iAyeRUG sH1AFs3s4X6byECPNJkW436xiQtFa95klc18n8MxaBZ3BW8EX3p3jy7L/jPHlLyw TnPuNWJw1nwZXtiz0pol+KGxpxbnKWuXbhnZ5NIwdgl7Ybx5cbv1YPiFqfL+yGMm BWkermjs6Pyj28iAQmMpNkEOX5dRHTbS -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:39 2025 by rpki-client