$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: iJW4QA4Ic79IQHhoJkVTR+NzNRpIyQZbVhQSziLHwJM= Subject key identifier: 3C:A0:BA:56:58:16:0D:6D:FB:EE:94:5B:C5:13:71:35:43:64:33:0A Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 0457 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 044B Signing time: Mon 03 Nov 2025 00:12:29 +0000 Manifest this update: Mon 03 Nov 2025 00:12:29 +0000 Manifest next update: Mon 10 Nov 2025 00:12:29 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: +B6XXmGUG5G2tw8W0idm3/gKCf1ZcLOWszD+ZbMziUI=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: ciNIImuAbj1AO0K4GihG7jlhzLEKvAURaWl26eH889E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Nov 3 00:12:29 2025 GMT Not After : Nov 10 00:12:29 2025 GMT Subject: CN=6907f36d-fb7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:09:16:82:1d:c5:21:86:c5:0d:36:cf:b0: 47:09:9d:26:9c:f2:82:49:c6:4c:fb:ab:38:d8:91: f7:e5:63:47:21:0d:b9:8d:fb:f1:de:bb:e2:03:4c: ad:c8:9a:73:96:7b:ab:d7:0d:9a:2a:59:b0:da:5e: a6:4d:23:98:1e:4e:3a:95:9c:c0:71:70:1b:5c:80: f3:b4:a2:e7:e5:9f:b9:69:15:08:6c:c0:68:84:78: 56:4f:6a:0b:f2:78:56:79:e8:f2:7f:6d:88:9e:35: 07:2f:d6:7a:6f:7c:31:4c:33:fd:bc:43:6d:99:10: 1d:b9:c8:be:ac:bc:62:32:35:e2:8c:de:00:1a:0b: 5a:4a:36:44:ed:18:62:b0:35:e5:af:cb:bb:31:f2: c6:d7:00:1f:57:a9:d8:d5:dc:a0:6c:57:d8:e6:50: 55:df:7c:30:e9:6d:27:51:45:92:ac:37:76:98:64: 1f:b6:73:be:6b:48:6a:f6:b2:d2:e7:a2:f1:26:50: e3:90:39:43:c2:4a:72:b3:eb:26:da:12:d6:b1:71: b0:8f:03:ec:e1:66:67:26:96:73:52:cb:a1:84:cd: d3:d5:6f:8d:5a:20:3e:83:8e:09:d9:db:5c:5c:ee: 34:4d:1a:c6:b2:81:fc:86:c7:08:aa:03:ec:9c:be: d4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A0:BA:56:58:16:0D:6D:FB:EE:94:5B:C5:13:71:35:43:64:33:0A X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:bf:79:4c:97:4f:2f:23:a6:4b:39:ae:e1:7f:5a:c1:59:a8: e4:88:43:db:2a:4f:9c:a1:31:5c:16:6e:f0:1f:6f:71:84:9c: fe:15:01:2b:72:19:61:6b:fa:da:e9:bd:c0:97:bb:a4:df:e8: a4:68:ce:3c:d8:b7:c4:fe:b2:33:d0:32:8c:48:c4:e7:fb:74: 31:fd:cf:d6:15:3f:63:0b:c9:c7:13:37:fe:23:b0:33:57:53: 58:d7:8f:8e:89:ff:6b:ce:a4:23:9e:9b:f1:b0:78:e3:fe:58: 49:d9:c4:6a:87:62:34:a5:ab:01:f1:7b:c8:df:fe:6a:72:12: d5:aa:f7:95:4a:06:9b:c9:dd:01:cb:dc:aa:57:89:ab:e3:a6: 80:02:fd:bb:60:36:46:5d:20:46:26:86:bb:7d:b2:aa:61:2a: 61:4f:9c:3b:2f:e3:2a:91:5f:92:40:37:01:30:3c:5f:3b:7d: 37:bb:6f:8d:4d:bf:44:f5:06:57:21:2d:9c:b4:ae:5c:a1:69: 48:9d:a2:78:f0:77:7c:46:be:4c:4b:31:74:2a:61:42:46:65: bc:58:83:2d:37:64:76:6a:dd:9e:ae:1d:37:b1:10:7a:9c:46: 4e:72:7e:98:bc:03:80:8e:e7:41:d0:c8:09:ed:89:0f:d2:7d: e5:14:7a:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjUxMTAzMDAxMjI5WhcNMjUxMTEwMDAxMjI5WjAYMRYwFAYD VQQDEw02OTA3ZjM2ZC1mYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVYJFoIdxSGGxQ02z7BHCZ0mnPKCScZM+6s42JH35WNHIQ25jfvx3rviA0yt yJpzlnur1w2aKlmw2l6mTSOYHk46lZzAcXAbXIDztKLn5Z+5aRUIbMBohHhWT2oL 8nhWeejyf22InjUHL9Z6b3wxTDP9vENtmRAduci+rLxiMjXijN4AGgtaSjZE7Rhi sDXlr8u7MfLG1wAfV6nY1dygbFfY5lBV33ww6W0nUUWSrDd2mGQftnO+a0hq9rLS 56LxJlDjkDlDwkpys+sm2hLWsXGwjwPs4WZnJpZzUsuhhM3T1W+NWiA+g44J2dtc XO40TRrGsoH8hscIqgPsnL7UMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDygulZY Fg1t++6UW8UTcTVDZDMKMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVv3lMl08vI6ZLOa7hf1rBWajkiEPbKk+coTFcFm7wH29xhJz+FQEr chlha/ra6b3Al7uk3+ikaM482LfE/rIz0DKMSMTn+3Qx/c/WFT9jC8nHEzf+I7Az V1NY14+Oif9rzqQjnpvxsHjj/lhJ2cRqh2I0pasB8XvI3/5qchLVqveVSgabyd0B y9yqV4mr46aAAv27YDZGXSBGJoa7fbKqYSphT5w7L+MqkV+SQDcBMDxfO303u2+N Tb9E9QZXIS2ctK5coWlInaJ48Hd8Rr5MSzF0KmFCRmW8WIMtN2R2at2erh03sRB6 nEZOcn6YvAOAjudB0MgJ7YkP0n3lFHqz -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:20 2025 by rpki-client