$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: WY7b2vWMLPGiLqAqTdpBQP22FY23dqzulKGI5cMbBRE= Subject key identifier: F5:AD:88:AC:E4:41:CC:9E:BA:CD:D1:1D:80:C8:EE:31:F4:1A:32:91 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0748 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C4E Signing time: Tue 04 Nov 2025 18:39:27 +0000 Manifest this update: Tue 04 Nov 2025 18:39:27 +0000 Manifest next update: Tue 11 Nov 2025 18:39:26 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: pNOSKLqkxjaH3qnPyrHdWtTLiEqg2dVgb9ycGbE6JB4=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Nov 4 18:39:27 2025 GMT Not After : Nov 11 18:39:26 2025 GMT Subject: CN=690a485f-eeb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a8:f4:bb:97:1a:aa:ce:26:24:1b:84:93:71: 60:5b:e5:97:9d:2a:76:04:fa:5e:7f:67:3b:59:67: 9a:31:16:ee:7a:d2:06:4a:53:f7:cb:53:10:8d:b6: aa:6c:be:d1:1b:50:a8:39:e2:9c:13:1a:b8:a4:aa: 84:86:72:02:2b:7b:cf:5a:27:99:2b:2d:e1:23:48: fb:39:6a:42:d1:20:25:8f:90:d8:fb:e2:5a:34:6c: 87:de:44:9b:f9:d3:82:0f:22:fa:c6:05:ad:fa:7a: 5b:3e:fd:6a:1f:0e:88:d8:5a:23:09:a0:f3:45:75: 19:df:40:2a:42:9c:db:2e:db:9b:f9:33:e2:d9:e2: 1f:de:3a:d3:c4:41:8c:d4:97:07:43:90:ad:72:c8: 35:82:b1:c3:26:4c:dd:d9:f3:fe:ea:88:cb:a4:fd: 9c:34:0c:6c:e3:09:16:3a:85:09:02:69:43:65:6c: 60:82:f3:9d:6d:c5:4d:8d:dd:ae:f2:ad:cf:b3:fb: 39:8e:c6:93:e2:0d:b0:b0:7e:f4:9f:21:02:d9:27: aa:ad:a3:f8:94:ba:66:f4:dc:10:27:0a:f7:55:40: 24:70:e0:9f:58:a7:9b:6b:1a:c4:e8:9f:23:13:c8: e4:31:15:37:67:95:de:fa:3b:c1:3e:2f:20:36:9c: 54:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:AD:88:AC:E4:41:CC:9E:BA:CD:D1:1D:80:C8:EE:31:F4:1A:32:91 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:8f:d0:4e:76:06:1b:c5:4c:94:07:bc:62:2a:fb:39:46:9f: 24:1f:0c:66:0f:17:1a:9d:2b:db:f5:f1:30:89:33:38:dc:81: 28:f9:e2:9e:56:d9:b3:49:02:fa:a6:77:ac:63:f6:04:14:0b: a7:b6:da:69:0a:28:ed:3c:eb:c7:99:0e:ea:39:6e:fe:f2:fb: 3f:f8:af:9a:31:d3:c7:ba:0e:38:2c:73:72:e0:14:a0:b2:62: ce:ad:c6:68:1b:08:d6:63:88:2c:b1:ce:4f:8b:03:96:1e:33: ab:c9:87:dc:cc:8b:bb:88:db:da:99:b3:8f:f7:e8:27:e9:2e: 29:ca:29:1f:13:72:ee:57:53:19:6c:14:c5:ab:d8:51:43:e8: 0c:5d:bf:d4:29:ec:79:47:01:e2:aa:5b:5d:8b:07:a8:32:2a: 9c:68:1a:12:03:7b:6f:8c:bf:f8:1b:66:9e:3e:57:af:5f:28: a0:df:8c:a1:96:b4:7b:c2:01:08:ad:c7:9a:d8:b4:94:a9:02: ba:f7:6e:93:74:2f:60:fd:7e:15:3e:62:ae:2e:b4:58:5d:3f: 67:05:6e:bd:a6:0f:2f:77:82:58:8a:f5:05:1f:b6:73:22:76: f8:32:fa:31:a4:00:8e:3e:60:3a:11:e0:b3:40:22:16:3b:af: 74:7d:53:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUxMTA0MTgzOTI3WhcNMjUxMTExMTgzOTI2WjAYMRYwFAYD VQQDEw02OTBhNDg1Zi1lZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Kj0u5caqs4mJBuEk3FgW+WXnSp2BPpef2c7WWeaMRbuetIGSlP3y1MQjbaq bL7RG1CoOeKcExq4pKqEhnICK3vPWieZKy3hI0j7OWpC0SAlj5DY++JaNGyH3kSb +dOCDyL6xgWt+npbPv1qHw6I2FojCaDzRXUZ30AqQpzbLtub+TPi2eIf3jrTxEGM 1JcHQ5Ctcsg1grHDJkzd2fP+6ojLpP2cNAxs4wkWOoUJAmlDZWxggvOdbcVNjd2u 8q3Ps/s5jsaT4g2wsH70nyEC2SeqraP4lLpm9NwQJwr3VUAkcOCfWKebaxrE6J8j E8jkMRU3Z5Xe+jvBPi8gNpxUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWtiKzk Qcyeus3RHYDI7jH0GjKRMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKj9BOdgYbxUyUB7xiKvs5Rp8kHwxmDxcanSvb9fEwiTM43IEo+eKe VtmzSQL6pnesY/YEFAunttppCijtPOvHmQ7qOW7+8vs/+K+aMdPHug44LHNy4BSg smLOrcZoGwjWY4gssc5PiwOWHjOryYfczIu7iNvambOP9+gn6S4pyikfE3LuV1MZ bBTFq9hRQ+gMXb/UKex5RwHiqltdiweoMiqcaBoSA3tvjL/4G2aePlevXyig34yh lrR7wgEIrcea2LSUqQK6926TdC9g/X4VPmKuLrRYXT9nBW69pg8vd4JYivUFH7Zz Inb4MvoxpACOPmA6EeCzQCIWO690fVO4 -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:33 2025 by rpki-client