$ rpki-client -vvf rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft File: IRcCLfYdpCG55OG7hIPYXkmCv5E.mft (raw, json) Hash identifier: GfVlpbr8cydth6W8/QylNxa/yQlWVnUj+rgrgAVleWs= Subject key identifier: F8:49:9A:3E:CC:87:34:B8:51:28:6C:41:2B:56:96:0E:01:C7:31:E2 Authority key identifier: 21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 Certificate issuer: /CN=A9169382/serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Certificate serial: 0535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft Manifest number: 052D Signing time: Fri 31 Oct 2025 23:41:19 +0000 Manifest this update: Fri 31 Oct 2025 23:41:18 +0000 Manifest next update: Fri 07 Nov 2025 23:41:18 +0000 Files and hashes: 1: IRcCLfYdpCG55OG7hIPYXkmCv5E.crl (hash: O35bBn6IN6DavqwnCzFt//bxPCuLeqLAkTyTavLSCjM=) 2: E41BF8841CDC11ECBA794120C4F9AE02.roa (hash: rjtMstoekwsHa6BZ54dV6mwwRoqiKzp6w3p85Pa6dX4=) 3: B5D70D9ACE3311EFA7B9B640C4F9AE02.roa (hash: YGJLT2fYDhmz5xGHsZzCsBINR5owfOYXZwH2Xtyir7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 23:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169382, serialNumber=2117022DF61DA421B9E4E1BB8483D85E4982BF91 Validity Not Before: Oct 31 23:41:18 2025 GMT Not After : Nov 7 23:41:18 2025 GMT Subject: CN=6905491e-68f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:07:60:3e:85:f5:d5:9d:72:4f:f5:62:75:fb: c4:d7:37:bd:86:97:48:49:f7:eb:96:86:3c:6c:65: 9f:04:7c:9d:75:f1:05:67:ff:e9:ed:9a:5a:68:1b: f8:8a:39:b0:f5:46:91:45:7b:ff:61:b6:29:b1:db: ed:3e:24:86:2a:3f:ac:08:68:72:c2:33:f5:97:1f: 8c:55:14:ee:d1:b6:99:de:c7:0a:6e:20:a5:05:07: 0b:c5:c7:5a:95:fe:f7:9d:02:36:b1:fe:ab:b1:fd: 19:eb:26:a1:ce:36:aa:c1:34:39:28:26:dc:16:b1: ea:3f:80:34:16:5b:a4:86:47:aa:28:d7:55:82:d9: 04:eb:2b:34:16:c7:98:44:d4:37:f5:9f:b0:2a:14: 72:5a:ae:bb:67:99:b8:02:d7:37:6f:7f:13:18:66: c9:55:cb:f9:60:fe:c9:b6:d7:1c:90:ec:81:76:3a: 7e:8a:ac:a7:3d:4f:0e:61:92:63:8d:e3:e7:1c:56: d7:97:82:0f:56:46:a6:7f:84:ee:74:62:a4:8d:e2: 42:ed:f9:4b:9e:cb:07:25:c6:33:6c:a6:8f:87:64: ec:ee:15:db:ef:57:e1:5e:58:b1:17:6a:b5:70:54: ef:7b:c2:2a:13:cb:ec:0d:99:b1:ea:99:ca:3b:08: 80:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:49:9A:3E:CC:87:34:B8:51:28:6C:41:2B:56:96:0E:01:C7:31:E2 X509v3 Authority Key Identifier: keyid:21:17:02:2D:F6:1D:A4:21:B9:E4:E1:BB:84:83:D8:5E:49:82:BF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRcCLfYdpCG55OG7hIPYXkmCv5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169382/A5FB81581CD911EC92AD571CC4F9AE02/IRcCLfYdpCG55OG7hIPYXkmCv5E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:de:30:c9:6e:b7:da:ea:cc:7b:cd:39:ea:68:ed:ff:2f:a6: 48:0e:c5:31:da:45:b8:4d:d1:25:c3:42:be:10:dc:c2:d5:a2: d9:9b:4b:a3:6d:1e:86:2e:11:d9:35:8c:04:65:27:39:98:c3: ad:be:ea:3c:1f:bc:a0:32:a4:f0:9a:ab:a8:d0:3d:28:63:61: 64:28:0b:25:89:2f:44:58:80:16:bf:e0:0e:1a:f2:9c:8a:38: 2c:cf:ad:2c:61:81:1b:86:c2:b7:90:30:61:02:6d:43:e2:40: 89:6d:9f:96:ff:e3:1b:58:5f:f2:a5:e4:57:52:92:bb:44:e8: 68:21:5f:85:82:34:88:bc:c5:98:e4:c2:14:57:d7:91:bc:25: ee:b2:18:62:1d:6f:8c:80:f7:0b:c7:0d:7b:64:cb:2d:34:16: f6:f5:f9:aa:55:96:bf:49:03:8b:04:1e:12:7f:ba:d2:a7:9d: c2:3c:ab:93:43:ed:57:9a:71:99:44:df:29:ba:61:44:d8:f0: dc:1c:b6:73:ee:b9:47:8b:87:ee:78:e8:37:ee:7c:1f:61:f9: 27:9a:5c:f8:4a:45:7b:01:0a:01:fa:6a:ed:02:9b:53:93:10: 4a:fb:83:e3:51:27:28:e3:28:18:60:e7:42:0a:65:19:60:3e: b2:e4:7d:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzODIxMTAvBgNVBAUTKDIxMTcwMjJERjYxREE0MjFCOUU0RTFCQjg0ODNEODVF NDk4MkJGOTEwHhcNMjUxMDMxMjM0MTE4WhcNMjUxMTA3MjM0MTE4WjAYMRYwFAYD VQQDEw02OTA1NDkxZS02OGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wdgPoX11Z1yT/VidfvE1ze9hpdISffrloY8bGWfBHyddfEFZ//p7ZpaaBv4 ijmw9UaRRXv/YbYpsdvtPiSGKj+sCGhywjP1lx+MVRTu0baZ3scKbiClBQcLxcda lf73nQI2sf6rsf0Z6yahzjaqwTQ5KCbcFrHqP4A0FlukhkeqKNdVgtkE6ys0FseY RNQ39Z+wKhRyWq67Z5m4Atc3b38TGGbJVcv5YP7JttcckOyBdjp+iqynPU8OYZJj jePnHFbXl4IPVkamf4TudGKkjeJC7flLnssHJcYzbKaPh2Ts7hXb71fhXlixF2q1 cFTve8IqE8vsDZmx6pnKOwiARQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhJmj7M hzS4UShsQStWlg4BxzHiMB8GA1UdIwQYMBaAFCEXAi32HaQhueThu4SD2F5Jgr+R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM4Mi9BNUZCODE1ODFD RDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBDRzU1T0c3aElQWVhrbUN2 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lSY0NMZllkcENHNTVPRzdoSVBZWGttQ3Y1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM4Mi9BNUZCODE1ODFDRDkxMUVDOTJBRDU3MUNDNEY5QUUwMi9JUmNDTGZZZHBD RzU1T0c3aElQWVhrbUN2NUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH3jDJbrfa6sx7zTnqaO3/L6ZIDsUx2kW4TdElw0K+ENzC1aLZm0uj bR6GLhHZNYwEZSc5mMOtvuo8H7ygMqTwmquo0D0oY2FkKAsliS9EWIAWv+AOGvKc ijgsz60sYYEbhsK3kDBhAm1D4kCJbZ+W/+MbWF/ypeRXUpK7ROhoIV+FgjSIvMWY 5MIUV9eRvCXushhiHW+MgPcLxw17ZMstNBb29fmqVZa/SQOLBB4Sf7rSp53CPKuT Q+1XmnGZRN8pumFE2PDcHLZz7rlHi4fueOg37nwfYfknmlz4SkV7AQoB+mrtAptT kxBK+4PjUSco4ygYYOdCCmUZYD6y5H1W -----END CERTIFICATE-----Generated at Sun Nov 2 18:07:21 2025 by rpki-client