$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: JNIUPlDEq/jC98d9k1JO8LgrKWm1izKZmlUXei0D+AQ= Subject key identifier: 43:4D:A2:17:B9:4B:AC:54:ED:9F:8C:65:A5:A0:33:C8:EA:37:D9:45 Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: 0173 Signing time: Mon 03 Nov 2025 03:48:42 +0000 Manifest this update: Mon 03 Nov 2025 03:48:41 +0000 Manifest next update: Mon 10 Nov 2025 03:48:41 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: Umu8Sy0tHxm43tcVT2X0HyvG7E1jZEVM+PKRLzFg1As=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: gkpGu4s3lw8zurLXdvn6Zq+w59lx0+P+q37arJjTECg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7, serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Nov 3 03:48:41 2025 GMT Not After : Nov 10 03:48:41 2025 GMT Subject: CN=69082619-49ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:4b:db:54:dc:9a:35:6a:0a:dc:3e:ce:40: ce:5e:93:73:a3:63:ba:6e:d1:99:6a:91:da:7e:00: 94:de:b6:48:01:ec:32:19:47:96:4c:f3:f4:ea:6a: 0b:43:5c:66:14:e0:27:f1:a4:fa:b2:19:ed:da:cf: 7a:bd:94:d8:6f:36:cf:6d:4f:fc:d3:d6:bd:48:86: 0b:86:28:1c:33:93:84:89:32:5c:f4:68:3f:6f:57: 63:9a:79:ce:e0:61:87:56:64:9b:a8:19:0e:6f:7b: d2:0a:f9:38:f5:5b:be:fb:93:bd:5c:7d:7d:e8:cc: 59:ae:9c:59:f3:2f:89:ba:93:89:b7:0a:a6:69:9b: 3a:12:12:3d:ae:00:cf:8c:c2:12:6b:04:fc:9d:f8: 0f:4f:bc:d7:4b:cd:99:94:92:41:72:fe:d3:41:e7: ce:80:30:6d:38:06:f8:99:ba:54:0c:53:e5:3a:49: c0:c9:21:29:13:5c:13:54:ce:3a:c7:e3:41:b2:b8: f0:b3:aa:2b:78:cd:b5:de:b4:10:a0:b8:4e:c0:17: 0f:76:01:14:e9:e0:9e:99:1a:a6:53:0f:07:5f:61: 66:59:7d:a8:14:0b:1c:19:f5:26:05:68:6c:93:0f: e2:99:15:75:ab:a7:f7:e6:fb:a8:ae:2f:8e:6b:5f: 1f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:A2:17:B9:4B:AC:54:ED:9F:8C:65:A5:A0:33:C8:EA:37:D9:45 X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:30:bc:f2:2f:6b:c1:ba:5f:a4:00:23:cb:3c:1c:6f:24:45: 69:a3:c8:fa:dc:f2:fe:44:85:7e:12:b4:6e:ae:26:34:9f:90: 51:c2:f5:66:be:8c:f4:31:5d:3a:4e:7e:29:11:92:59:49:ea: 5e:d3:ce:6a:8e:ac:33:82:bd:bc:fe:42:70:f3:63:54:af:4c: cd:3a:62:c8:38:56:76:0f:2a:8f:d3:76:f7:a7:14:31:77:df: 75:4f:e8:d0:27:53:ef:d7:01:e6:56:67:64:bd:b8:04:12:01: e7:60:ce:ea:1f:ac:c5:43:78:08:e0:b0:61:49:e3:d3:fc:19: db:24:03:b3:36:55:22:d5:e3:e5:c4:19:04:e9:06:bd:67:13: 48:04:77:84:15:9e:a9:a5:fd:42:18:c5:fc:ca:7a:93:2e:4c: 84:29:89:b0:40:a9:df:cf:78:d4:2d:65:75:94:cd:19:4c:2a: 84:33:14:d5:92:15:06:42:e0:c5:1d:7a:00:4d:55:c1:b6:f6: 8f:9b:5f:cb:2b:24:c4:cb:64:10:6a:f8:c0:15:98:20:87:57: c3:c9:d7:8e:1d:d2:b2:5d:c7:7f:6f:ae:dc:5a:94:f9:7f:bb: 93:21:d0:e4:97:99:34:eb:80:aa:9a:6f:41:c3:5d:39:e2:05: 01:dc:6b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjUxMTAzMDM0ODQxWhcNMjUxMTEwMDM0ODQxWjAYMRYwFAYD VQQDEw02OTA4MjYxOS00OWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJtL21TcmjVqCtw+zkDOXpNzo2O6btGZapHafgCU3rZIAewyGUeWTPP06moL Q1xmFOAn8aT6shnt2s96vZTYbzbPbU/809a9SIYLhigcM5OEiTJc9Gg/b1djmnnO 4GGHVmSbqBkOb3vSCvk49Vu++5O9XH196MxZrpxZ8y+JupOJtwqmaZs6EhI9rgDP jMISawT8nfgPT7zXS82ZlJJBcv7TQefOgDBtOAb4mbpUDFPlOknAySEpE1wTVM46 x+NBsrjws6oreM213rQQoLhOwBcPdgEU6eCemRqmUw8HX2FmWX2oFAscGfUmBWhs kw/imRV1q6f35vuori+Oa18fvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENNohe5 S6xU7Z+MZaWgM8jqN9lFMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7MLzyL2vBul+kACPLPBxvJEVpo8j63PL+RIV+ErRuriY0n5BRwvVm voz0MV06Tn4pEZJZSepe085qjqwzgr28/kJw82NUr0zNOmLIOFZ2DyqP03b3pxQx d991T+jQJ1Pv1wHmVmdkvbgEEgHnYM7qH6zFQ3gI4LBhSePT/BnbJAOzNlUi1ePl xBkE6Qa9ZxNIBHeEFZ6ppf1CGMX8ynqTLkyEKYmwQKnfz3jULWV1lM0ZTCqEMxTV khUGQuDFHXoATVXBtvaPm1/LKyTEy2QQavjAFZggh1fDydeOHdKyXcd/b67cWpT5 f7uTIdDkl5k064Cqmm9Bw1054gUB3Gu/ -----END CERTIFICATE-----Generated at Tue Nov 4 01:03:44 2025 by rpki-client