$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: cWR2In1qOuj41lCxv4cfZEViem972Pu9793YKs2NqAc= Subject key identifier: 73:2A:D4:35:15:8A:B7:B7:1B:AD:63:1D:5B:C8:BE:22:B0:C7:80:DC Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 07FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 07F8 Signing time: Tue 04 Nov 2025 21:07:17 +0000 Manifest this update: Tue 04 Nov 2025 21:07:17 +0000 Manifest next update: Tue 11 Nov 2025 21:07:17 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: z9BU2Gc0PRxt12wUdDMbAtrXsDMbGDuyc+HChjSO+fk=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Nov 4 21:07:17 2025 GMT Not After : Nov 11 21:07:17 2025 GMT Subject: CN=690a6b05-a487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:db:2b:80:9d:59:93:92:f8:fd:45:cd:0f: 8b:31:05:70:75:10:f8:84:63:3e:91:ca:54:4a:24: 97:a5:b3:ae:1a:fd:d7:29:0b:38:51:2b:60:13:8a: ac:7c:b2:81:d3:63:33:6c:11:96:cd:04:52:b7:1a: a4:98:70:75:0f:e5:24:8c:28:d2:41:eb:0b:76:b7: 82:77:58:9a:e5:db:b2:bc:fb:db:a5:3d:80:dc:f9: 7b:1c:21:53:b1:36:0e:f6:8c:d2:a0:24:d2:0f:db: ff:b5:df:97:5d:72:98:3f:07:14:87:35:bb:73:a0: 4b:5e:57:09:7c:22:fb:2e:69:c5:3c:48:4a:3e:8a: f2:0e:92:fd:74:9a:7b:e9:22:9d:cd:a0:52:2e:85: fb:22:09:2d:95:8d:b1:88:a1:42:47:70:e5:01:ac: 69:ac:95:33:ad:a4:c5:7b:c7:dc:b0:71:d6:eb:f8: 56:0b:3e:96:64:c0:b9:fa:4e:1b:cc:4e:f9:8a:e6: da:ce:66:8a:f7:97:1b:b4:13:30:d5:e5:4d:ef:c3: 3c:5e:aa:08:10:f6:4f:f4:c8:96:b8:04:2e:4d:e4: bb:b9:c2:54:ac:50:92:b0:eb:04:d9:b5:89:82:80: 65:30:93:54:ea:5a:d8:20:f1:ea:49:4c:01:c1:30: c2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2A:D4:35:15:8A:B7:B7:1B:AD:63:1D:5B:C8:BE:22:B0:C7:80:DC X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:b8:eb:8e:e3:16:56:c4:8d:b8:28:1a:79:95:5f:02:93:e7: 4d:f5:45:52:58:7b:25:ab:70:c0:42:7b:31:cc:31:4e:1c:9b: 0d:91:95:f2:cb:7a:06:5f:aa:61:00:07:fe:ef:61:cf:a2:2d: fa:e8:0f:92:d0:bd:b1:66:86:7f:e1:e4:28:18:2c:63:9b:87: 15:57:a0:c4:e3:e7:cd:d7:d6:5b:6e:47:cf:41:bc:ab:23:02: 9c:b4:f7:ba:5f:1b:42:ff:37:e3:8a:35:68:af:c6:57:77:3c: 20:3b:0c:13:0d:a4:c5:19:4a:04:ef:f4:9e:80:98:c8:28:43: 8d:70:7d:db:9b:c7:51:ca:2b:73:6c:79:c4:c2:76:78:d0:ea: 06:32:e5:4e:fd:84:6e:82:4d:fc:5f:4e:ca:51:ae:11:2d:5f: b0:70:25:77:67:84:29:c5:b2:04:d5:7d:13:ff:16:a9:d8:a2: 75:67:47:03:8b:9b:25:98:e8:86:59:06:26:96:1f:e7:d6:95: 42:c8:11:3f:02:14:2e:3e:a8:9f:ca:67:51:9c:a3:5e:0c:b0: 39:ff:2d:04:23:76:1c:fa:df:23:42:8e:dd:28:b4:d7:74:21: cb:59:97:b5:7c:57:04:57:e3:e9:89:73:46:38:7d:96:8e:9f: c6:bc:26:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUxMTA0MjEwNzE3WhcNMjUxMTExMjEwNzE3WjAYMRYwFAYD VQQDEw02OTBhNmIwNS1hNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkvbK4CdWZOS+P1FzQ+LMQVwdRD4hGM+kcpUSiSXpbOuGv3XKQs4UStgE4qs fLKB02MzbBGWzQRStxqkmHB1D+UkjCjSQesLdreCd1ia5duyvPvbpT2A3Pl7HCFT sTYO9ozSoCTSD9v/td+XXXKYPwcUhzW7c6BLXlcJfCL7LmnFPEhKPoryDpL9dJp7 6SKdzaBSLoX7IgktlY2xiKFCR3DlAaxprJUzraTFe8fcsHHW6/hWCz6WZMC5+k4b zE75iubazmaK95cbtBMw1eVN78M8XqoIEPZP9MiWuAQuTeS7ucJUrFCSsOsE2bWJ goBlMJNU6lrYIPHqSUwBwTDC1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMq1DUV ire3G61jHVvIviKwx4DcMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVuOuO4xZWxI24KBp5lV8Ck+dN9UVSWHslq3DAQnsxzDFOHJsNkZXy y3oGX6phAAf+72HPoi366A+S0L2xZoZ/4eQoGCxjm4cVV6DE4+fN19ZbbkfPQbyr IwKctPe6XxtC/zfjijVor8ZXdzwgOwwTDaTFGUoE7/SegJjIKEONcH3bm8dRyitz bHnEwnZ40OoGMuVO/YRugk38X07KUa4RLV+wcCV3Z4QpxbIE1X0T/xap2KJ1Z0cD i5slmOiGWQYmlh/n1pVCyBE/AhQuPqifymdRnKNeDLA5/y0EI3Yc+t8jQo7dKLTX dCHLWZe1fFcEV+PpiXNGOH2Wjp/GvCa/ -----END CERTIFICATE-----Generated at Wed Nov 5 07:37:33 2025 by rpki-client