$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: 1zW4ohU+DJdnU6ScQf7R802t629P6GXVkzII4iHWfOo= Subject key identifier: 22:FE:55:5C:F3:71:4F:C2:8B:47:80:8E:03:45:36:E1:F8:5B:CD:F5 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01E5 Signing time: Mon 27 Oct 2025 04:27:37 +0000 Manifest this update: Mon 27 Oct 2025 04:27:37 +0000 Manifest next update: Mon 03 Nov 2025 04:27:37 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: Ze6bwKSlqnX7zQUcLaBpPUOJBvMFBoNyidHZi2IfkQU=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 04:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Oct 27 04:27:37 2025 GMT Not After : Nov 3 04:27:37 2025 GMT Subject: CN=68fef4b9-78ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:e9:03:4b:01:65:b4:f9:dd:0c:3f:42:8f: 8c:25:55:4c:de:40:c9:a7:69:4d:53:0a:ab:53:79: 16:ed:be:c7:cc:4f:01:e1:99:1e:e5:45:98:88:21: fd:9e:c4:13:2c:7e:68:17:9b:89:56:6c:71:4c:1b: d5:9d:f2:1b:ed:73:4d:9d:0e:9e:1d:98:fb:3f:11: 52:3b:d2:a2:7b:4f:32:47:a4:d4:52:ec:51:2c:f4: 8a:d8:72:1e:4d:d0:9c:04:52:b7:60:dc:60:9b:40: 2a:e6:88:a8:11:42:3b:ec:e6:7e:33:11:14:8a:a7: 81:c2:af:43:ce:9c:e2:6c:36:7d:bc:83:45:6b:ff: ef:79:23:1f:cd:25:ab:d4:30:e2:4f:3f:59:d8:29: 56:bf:bb:33:57:b0:42:07:a8:8d:23:7a:cc:0e:82: 5e:b5:78:37:21:68:b0:4d:5a:15:1e:f0:0e:2c:5f: 22:48:48:fc:4e:ab:af:ec:0d:fa:b2:c9:45:59:ff: 17:cd:f1:bf:e5:b4:da:9b:f5:a2:df:90:82:e2:ec: c7:ce:93:46:93:27:03:71:11:fb:92:34:c5:41:10: 8f:7a:cd:82:f1:fd:a4:6b:4d:fa:6d:c7:10:fe:11: 79:25:d6:8a:e7:77:29:0b:b4:6c:80:4f:0b:fe:7a: a0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FE:55:5C:F3:71:4F:C2:8B:47:80:8E:03:45:36:E1:F8:5B:CD:F5 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:c8:32:76:e7:59:23:19:a8:fa:62:a8:cf:f3:08:9c:a9:99: 62:13:9b:35:8a:d7:ee:56:2f:da:8b:51:65:3f:2a:46:aa:bd: c6:21:d7:96:86:68:0f:01:24:44:7f:4b:f5:40:f1:b3:4f:b1: ac:8a:ba:03:8c:43:08:b2:e0:6b:34:b8:0f:3f:9a:a0:01:ea: 61:0e:71:40:e8:67:8b:9a:14:f6:ff:3a:fe:ef:3d:36:d4:e7: 3c:15:e3:7d:21:1b:b0:23:e7:11:65:92:ac:34:9d:93:23:c6: 58:69:da:f3:c4:63:ba:fc:73:bb:c2:d7:74:03:67:7f:ee:22: 1d:89:6b:8d:ad:c1:90:08:38:63:8f:b9:f8:e1:bc:d5:da:e9: 6d:60:5b:6d:aa:4f:dc:b1:d7:5b:01:90:4f:bc:67:46:6c:40: a6:58:09:d7:cf:f9:41:d3:24:80:52:c7:87:22:2d:ea:06:f9: 0b:6e:98:21:0b:32:3f:f1:d8:0d:02:90:ce:12:56:98:27:45: 51:b2:cc:9a:20:3e:97:90:82:9e:cb:87:0d:d1:3b:ba:9d:2b: c1:ed:c0:17:35:6c:25:ca:70:37:4e:e5:b3:db:08:96:8d:62: 41:21:e3:48:01:61:96:20:26:66:fe:8a:19:16:aa:ba:c4:02: 8f:b7:de:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUxMDI3MDQyNzM3WhcNMjUxMTAzMDQyNzM3WjAYMRYwFAYD VQQDEw02OGZlZjRiOS03OGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVvpA0sBZbT53Qw/Qo+MJVVM3kDJp2lNUwqrU3kW7b7HzE8B4Zke5UWYiCH9 nsQTLH5oF5uJVmxxTBvVnfIb7XNNnQ6eHZj7PxFSO9Kie08yR6TUUuxRLPSK2HIe TdCcBFK3YNxgm0Aq5oioEUI77OZ+MxEUiqeBwq9DzpzibDZ9vINFa//veSMfzSWr 1DDiTz9Z2ClWv7szV7BCB6iNI3rMDoJetXg3IWiwTVoVHvAOLF8iSEj8Tquv7A36 sslFWf8XzfG/5bTam/Wi35CC4uzHzpNGkycDcRH7kjTFQRCPes2C8f2ka036bccQ /hF5JdaK53cpC7RsgE8L/nqgKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL+VVzz cU/Ci0eAjgNFNuH4W831MB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9yDJ251kjGaj6YqjP8wicqZliE5s1itfuVi/ai1FlPypGqr3GIdeW hmgPASREf0v1QPGzT7GsiroDjEMIsuBrNLgPP5qgAephDnFA6GeLmhT2/zr+7z02 1Oc8FeN9IRuwI+cRZZKsNJ2TI8ZYadrzxGO6/HO7wtd0A2d/7iIdiWuNrcGQCDhj j7n44bzV2ultYFttqk/csddbAZBPvGdGbECmWAnXz/lB0ySAUseHIi3qBvkLbpgh CzI/8dgNApDOElaYJ0VRssyaID6XkIKey4cN0Tu6nSvB7cAXNWwlynA3TuWz2wiW jWJBIeNIAWGWICZm/ooZFqq6xAKPt95Q -----END CERTIFICATE-----Generated at Mon Oct 27 15:00:50 2025 by rpki-client