$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft File: ivWYKUtrI6E57fVPJCi8YZZRqhc.mft (raw, json) Hash identifier: sqI7ylgFi8SrbinR6LRM9bQbwPorppKbkDEDPKBlTp8= Subject key identifier: D1:08:05:65:5C:F9:9A:2C:72:6B:75:07:70:95:95:56:14:F6:C2:DB Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft Manifest number: 40 Signing time: Mon 03 Nov 2025 07:25:50 +0000 Manifest this update: Mon 03 Nov 2025 07:25:49 +0000 Manifest next update: Mon 10 Nov 2025 07:25:49 +0000 Files and hashes: 1: ivWYKUtrI6E57fVPJCi8YZZRqhc.crl (hash: /tbe390yG9EqJWxKsTSTNbGfrOCmdRoyyj8btJjvlGI=) 2: 69F70CA058AC11F09233031BC4F9AE02.roa (hash: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Nov 3 07:25:49 2025 GMT Not After : Nov 10 07:25:49 2025 GMT Subject: CN=690858fd-4896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:ed:4b:95:97:b3:e6:8c:b3:54:8c:32:d6: a0:70:96:c3:c0:7b:1a:cc:29:93:0d:b0:ee:25:13: da:48:37:03:4d:49:a3:53:8f:a3:c1:99:39:87:eb: e9:64:0b:6d:c2:d5:ca:3d:6a:4f:df:f3:b4:eb:63: db:67:b3:3e:fa:84:04:90:9c:41:04:d7:03:79:11: 02:f1:52:cf:18:36:43:8c:8b:d6:3c:92:38:d4:23: 15:5f:62:ef:23:cb:da:ee:27:20:9a:36:f3:1b:15: 78:ca:32:f8:88:86:d0:a8:c3:49:b6:57:d8:61:02: 86:b7:dd:e6:59:f5:70:90:6b:75:a2:d4:ad:25:47: ca:80:5f:d7:59:24:c2:ec:90:fe:a2:98:a1:0a:2e: d6:27:2c:e0:1d:66:c7:6e:b3:73:52:47:a4:16:c4: b3:17:13:93:59:7f:05:1a:3d:4c:d7:4a:7d:c7:8b: 45:4f:cc:54:c2:6d:98:bf:f9:9d:24:bb:23:a4:c5: 66:27:d9:f2:e7:88:69:bf:88:d8:c8:36:16:5f:c6: 9d:c2:b4:eb:ba:65:0b:42:c7:ab:90:90:ea:ca:1b: a0:52:2d:c6:82:f4:09:28:5a:d2:d0:e6:52:34:a0: 85:6a:f0:cd:b8:c4:28:f6:7f:72:cc:c8:d7:8f:b0: 58:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:08:05:65:5C:F9:9A:2C:72:6B:75:07:70:95:95:56:14:F6:C2:DB X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:27:b8:bd:24:e6:f7:78:a7:92:f8:e6:55:18:a9:8c:1b:aa: fa:71:f5:62:e3:76:2e:5d:75:82:38:be:42:60:c6:c4:70:b2: 58:cd:b1:34:bf:2a:8c:da:c6:c7:32:16:bb:d3:1a:45:8b:20: 7b:de:e8:77:43:92:14:69:64:3c:e9:a7:5c:c3:cd:7e:b5:28: 65:2d:1d:db:52:f2:38:86:b7:ac:f8:3e:f7:d5:cd:02:e7:d8: 6b:28:1a:c7:95:fe:7c:ef:f6:a9:e2:3a:ec:37:b4:cb:36:60: 19:43:49:c2:6d:b7:fe:61:c1:94:f0:33:8e:e8:88:bb:f0:4b: 73:10:eb:dc:02:e0:7d:7b:3e:1a:00:19:7a:d6:3f:1f:9f:46: 1d:32:6b:c5:52:0b:7e:36:66:d4:b6:81:cd:d0:c4:8a:1d:58: b2:a5:be:db:3e:83:b3:12:e8:4e:70:f8:b8:ec:72:32:40:54: 75:bf:b0:aa:26:f0:9b:43:8a:fd:19:d5:52:6f:6a:82:32:f3: 04:fe:8e:a5:3b:b4:ac:84:58:67:94:93:a4:bd:ae:8b:32:b0: ff:39:9c:4a:32:c5:04:db:b5:39:ba:8e:8d:91:57:39:4a:55: b9:83:16:ad:cf:05:0c:80:58:1c:8f:eb:22:e3:1d:59:02:a6: 29:c4:74:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTExMDMwNzI1NDlaFw0yNTExMTAwNzI1NDlaMBgxFjAUBgNV BAMTDTY5MDg1OGZkLTQ4OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjdu1LlZez5oyzVIwy1qBwlsPAexrMKZMNsO4lE9pINwNNSaNTj6PBmTmH6+lk C23C1co9ak/f87TrY9tnsz76hASQnEEE1wN5EQLxUs8YNkOMi9Y8kjjUIxVfYu8j y9ruJyCaNvMbFXjKMviIhtCow0m2V9hhAoa33eZZ9XCQa3Wi1K0lR8qAX9dZJMLs kP6imKEKLtYnLOAdZsdus3NSR6QWxLMXE5NZfwUaPUzXSn3Hi0VPzFTCbZi/+Z0k uyOkxWYn2fLniGm/iNjINhZfxp3CtOu6ZQtCx6uQkOrKG6BSLcaC9AkoWtLQ5lI0 oIVq8M24xCj2f3LMyNePsFgRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0QgFZVz5 mixya3UHcJWVVhT2wtswHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE Qjc3LzkzNEUzNTYyNThBQTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZF NTdmVlBKQ2k4WVpaUnFoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIEnuL0k5vd4p5L45lUYqYwbqvpx9WLjdi5ddYI4vkJgxsRwsljNsTS/ KozaxscyFrvTGkWLIHve6HdDkhRpZDzpp1zDzX61KGUtHdtS8jiGt6z4PvfVzQLn 2GsoGseV/nzv9qniOuw3tMs2YBlDScJtt/5hwZTwM47oiLvwS3MQ69wC4H17PhoA GXrWPx+fRh0ya8VSC342ZtS2gc3QxIodWLKlvts+g7MS6E5w+LjscjJAVHW/sKom 8JtDiv0Z1VJvaoIy8wT+jqU7tKyEWGeUk6S9rosysP85nEoyxQTbtTm6jo2RVzlK VbmDFq3PBQyAWByP6yLjHVkCpinEdFc= -----END CERTIFICATE-----Generated at Tue Nov 4 12:17:39 2025 by rpki-client