$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: JcbiheKsTuagVfAYmumbPGok5iTmYcpkIMnwSTcZvXQ= Subject key identifier: 05:60:2C:E3:F1:5F:2A:5E:02:6E:7A:F4:30:1C:4D:E7:01:34:9C:A9 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A15 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A09 Signing time: Sun 02 Nov 2025 19:47:15 +0000 Manifest this update: Sun 02 Nov 2025 19:47:15 +0000 Manifest next update: Sun 09 Nov 2025 19:47:15 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: 1BDKBk3EoHrVwV+5cxw4fPno1O20PYWGRUxZlcr/9cM=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2581 (0xa15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Nov 2 19:47:15 2025 GMT Not After : Nov 9 19:47:15 2025 GMT Subject: CN=6907b543-ee89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:54:ec:7b:be:09:1a:c2:0c:b0:aa:e0:68:be: da:5b:4f:30:75:0d:3f:9d:c4:0e:de:0a:f4:bb:3c: e7:f7:bc:e7:fd:0a:df:70:23:f9:5f:e6:a4:7c:d4: c8:2e:e2:0b:94:a0:72:fb:db:07:bf:25:26:1c:40: 88:1b:9a:4b:27:df:30:3d:e3:cc:f5:38:bc:02:04: fc:b6:0b:53:ac:63:9d:06:06:ec:75:af:a1:6d:8e: 85:26:dd:a8:9d:f3:9d:56:4a:a4:22:f0:1a:bd:c2: 65:22:f2:59:7b:d1:90:45:ba:08:a8:63:6e:b9:e9: 9d:f2:30:a6:ce:44:51:12:61:0d:05:f8:b5:68:87: 41:9f:99:f5:90:57:fb:b1:a9:c4:4f:6a:d3:4f:8c: a7:63:60:e5:e8:0d:1c:5b:b8:29:5c:46:0b:b8:4d: 6f:d6:f7:39:a8:9e:d4:84:02:0f:bc:01:18:df:5c: 29:64:01:74:50:a7:a0:62:7b:8c:a2:1e:6e:5d:01: b2:36:5b:66:6c:2b:78:0f:9a:16:73:89:20:b0:dc: 55:c4:8c:eb:ad:59:f4:56:c2:46:dc:cb:32:e1:49: 54:f4:d8:b2:85:2b:05:0e:6e:1a:33:fd:33:5e:33: 06:59:ea:84:86:0e:c1:92:cf:ec:ee:6e:29:70:40: c8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:60:2C:E3:F1:5F:2A:5E:02:6E:7A:F4:30:1C:4D:E7:01:34:9C:A9 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:11:d3:58:28:79:39:ad:06:73:3e:55:e4:a3:e5:28:43:83: 42:36:4f:67:25:5a:b6:2e:d2:4d:4c:cc:1d:4a:af:35:59:b4: 70:87:20:f7:b5:d7:76:79:a4:4a:ae:54:f5:b7:2c:1d:f8:01: e7:41:76:cd:4e:d2:a9:c3:87:3f:c6:3d:29:84:a3:89:57:d9: b6:77:1d:02:01:7b:d1:fa:3b:87:92:e2:7e:28:19:7c:16:ad: 21:a1:d3:fc:19:ff:e1:65:cc:8a:17:73:47:43:32:95:95:42: 22:ac:8b:1e:d6:10:d4:56:e7:d2:61:9a:94:41:c4:61:b4:0c: 7e:d2:33:e5:da:1e:75:79:24:5e:13:da:94:be:d1:ec:17:e5: f5:e6:d3:4d:c9:24:2f:65:6b:e1:24:c5:d0:4a:76:29:c7:37: 76:79:9a:ab:12:cd:08:7d:1c:eb:db:79:6f:de:9e:44:0f:95: c1:23:4e:ac:dd:af:01:52:33:39:ec:0e:b6:40:5b:94:e7:02: 62:19:60:3f:8a:0e:43:4a:8f:77:64:e1:9d:61:20:dd:61:35: 8c:b4:47:71:7e:63:2c:51:2d:60:d0:46:df:3a:39:dc:34:a9: 37:33:ed:83:ab:59:3b:24:a4:1b:9f:f9:85:7b:15:7e:ef:32: dc:b3:8e:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUxMTAyMTk0NzE1WhcNMjUxMTA5MTk0NzE1WjAYMRYwFAYD VQQDEw02OTA3YjU0My1lZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulTse74JGsIMsKrgaL7aW08wdQ0/ncQO3gr0uzzn97zn/QrfcCP5X+akfNTI LuILlKBy+9sHvyUmHECIG5pLJ98wPePM9Ti8AgT8tgtTrGOdBgbsda+hbY6FJt2o nfOdVkqkIvAavcJlIvJZe9GQRboIqGNuuemd8jCmzkRREmENBfi1aIdBn5n1kFf7 sanET2rTT4ynY2Dl6A0cW7gpXEYLuE1v1vc5qJ7UhAIPvAEY31wpZAF0UKegYnuM oh5uXQGyNltmbCt4D5oWc4kgsNxVxIzrrVn0VsJG3Msy4UlU9NiyhSsFDm4aM/0z XjMGWeqEhg7Bks/s7m4pcEDI+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVgLOPx XypeAm569DAcTecBNJypMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaEdNYKHk5rQZzPlXko+UoQ4NCNk9nJVq2LtJNTMwdSq81WbRwhyD3 tdd2eaRKrlT1tywd+AHnQXbNTtKpw4c/xj0phKOJV9m2dx0CAXvR+juHkuJ+KBl8 Fq0hodP8Gf/hZcyKF3NHQzKVlUIirIse1hDUVufSYZqUQcRhtAx+0jPl2h51eSRe E9qUvtHsF+X15tNNySQvZWvhJMXQSnYpxzd2eZqrEs0IfRzr23lv3p5ED5XBI06s 3a8BUjM57A62QFuU5wJiGWA/ig5DSo93ZOGdYSDdYTWMtEdxfmMsUS1g0EbfOjnc NKk3M+2Dq1k7JKQbn/mFexV+7zLcs46t -----END CERTIFICATE-----Generated at Tue Nov 4 14:06:07 2025 by rpki-client