$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: F39Rnhomh28IAZVPKkFPtRy9EjpAngab9eVda6Qwy1U= Subject key identifier: F0:78:75:45:1C:6B:CE:01:32:37:F5:D9:7E:E7:4B:2B:79:CF:F5:D8 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 041F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 040C Signing time: Mon 03 Nov 2025 00:23:52 +0000 Manifest this update: Mon 03 Nov 2025 00:23:51 +0000 Manifest next update: Mon 10 Nov 2025 00:23:51 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: n4FHDxCyKj0fUn3Syt+G6vueBJEtBKDtQK3Lh2S8mEc=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Nov 3 00:23:51 2025 GMT Not After : Nov 10 00:23:51 2025 GMT Subject: CN=6907f617-a0fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:88:ee:11:79:69:46:0f:26:0c:16:a4:d8: 29:dd:ed:5f:11:d8:e5:3d:c1:07:7c:b6:9b:aa:ff: 67:cc:6c:ba:0e:1e:16:ab:dc:ad:a4:30:4a:8a:8b: 09:97:3e:50:c7:cb:d4:34:99:36:c3:48:10:b0:d9: 7e:f6:04:2d:7a:ac:ff:32:e2:55:ea:4d:1a:2f:3d: 6c:f5:1d:32:e6:13:f2:3f:c2:ad:f0:02:21:68:8d: 4f:9b:11:b9:af:97:72:31:99:ad:5e:45:37:dd:fe: 15:6c:2d:ad:73:e0:a0:9f:1d:6b:b6:32:03:f8:f6: 5c:ce:7f:4c:d2:3c:02:b5:8e:55:62:24:37:cb:c1: f1:34:fb:c5:ca:ba:ca:73:61:92:e0:9f:12:de:49: 13:f7:d4:c5:a1:ec:65:f7:4d:81:f5:64:05:2b:39: e2:20:9f:97:f5:03:5e:10:5d:ea:9b:e9:e0:53:cb: 42:bf:fc:34:53:7f:6d:41:a2:46:c5:74:79:69:1f: 0f:d3:56:ed:6e:c4:4e:71:37:1a:b3:7e:e5:ec:d9: 97:55:e2:b3:c5:cb:78:f8:d5:d6:e6:8e:bc:68:dd: 98:16:86:3d:e7:d2:24:99:c1:cc:ec:3f:02:ac:9c: ae:1d:ed:92:83:5c:7d:90:01:29:d3:fd:32:96:92: 22:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:78:75:45:1C:6B:CE:01:32:37:F5:D9:7E:E7:4B:2B:79:CF:F5:D8 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:87:41:b4:95:04:d1:2d:75:c4:ea:37:9c:e0:8c:71:7b:11: 27:5c:fc:21:59:32:94:8e:df:7c:94:35:89:9c:d4:13:9f:2d: 80:f1:ca:11:0b:78:81:9e:12:a5:53:3f:81:a8:6c:e3:be:4a: 9e:60:f5:56:c6:00:b8:85:63:a6:3a:2c:49:b2:6b:80:88:30: f5:b6:f3:fa:1a:c3:fe:0c:1b:43:e0:41:16:b8:02:4c:e5:43: 63:fd:56:9c:22:b4:d5:f8:df:37:b7:44:dc:ef:1a:21:cd:ed: a4:13:9a:70:90:64:f0:53:0f:63:ab:31:97:7f:0d:2f:34:fa: e5:76:c0:5e:6c:6e:d7:90:fc:e4:1e:c8:92:c9:6a:64:b1:6e: cb:f9:b6:c3:fc:5c:ae:6c:aa:99:0a:3e:64:2d:2a:4b:6a:2a: 17:bc:b0:e7:7b:d1:83:8d:b9:cb:51:be:6c:4c:75:10:20:66: 5a:e7:30:2d:ca:76:78:49:62:79:44:98:cc:fb:e0:28:ed:7e: de:58:20:6d:ce:06:ad:81:9e:f3:61:e3:9d:1e:41:c3:b6:f0: ed:cb:f2:07:e8:c4:39:a8:e7:d9:4e:9e:bc:56:46:56:93:15: 9e:7c:7f:92:80:a7:70:c6:ec:38:ec:56:13:ad:61:9a:fc:e2: a4:ce:57:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUxMTAzMDAyMzUxWhcNMjUxMTEwMDAyMzUxWjAYMRYwFAYD VQQDEw02OTA3ZjYxNy1hMGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPKI7hF5aUYPJgwWpNgp3e1fEdjlPcEHfLabqv9nzGy6Dh4Wq9ytpDBKiosJ lz5Qx8vUNJk2w0gQsNl+9gQteqz/MuJV6k0aLz1s9R0y5hPyP8Kt8AIhaI1PmxG5 r5dyMZmtXkU33f4VbC2tc+Cgnx1rtjID+PZczn9M0jwCtY5VYiQ3y8HxNPvFyrrK c2GS4J8S3kkT99TFoexl902B9WQFKzniIJ+X9QNeEF3qm+ngU8tCv/w0U39tQaJG xXR5aR8P01btbsROcTcas37l7NmXVeKzxct4+NXW5o68aN2YFoY959IkmcHM7D8C rJyuHe2Sg1x9kAEp0/0ylpIikwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPB4dUUc a84BMjf12X7nSyt5z/XYMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxh0G0lQTRLXXE6jec4IxxexEnXPwhWTKUjt98lDWJnNQTny2A8coR C3iBnhKlUz+BqGzjvkqeYPVWxgC4hWOmOixJsmuAiDD1tvP6GsP+DBtD4EEWuAJM 5UNj/VacIrTV+N83t0Tc7xohze2kE5pwkGTwUw9jqzGXfw0vNPrldsBebG7XkPzk HsiSyWpksW7L+bbD/FyubKqZCj5kLSpLaioXvLDne9GDjbnLUb5sTHUQIGZa5zAt ynZ4SWJ5RJjM++Ao7X7eWCBtzgatgZ7zYeOdHkHDtvDty/IH6MQ5qOfZTp68VkZW kxWefH+SgKdwxuw47FYTrWGa/OKkzlcH -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:57 2025 by rpki-client