$ rpki-client -vvf rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft File: I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft (raw, json) Hash identifier: RkK1BBayw3tCT743sFdcKoHXQOnoOc9sVzIR/oVfJTg= Subject key identifier: 54:5E:B0:B8:BD:E2:49:3F:52:A2:6A:9D:E3:63:C1:7C:89:19:8D:BA Authority key identifier: 23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 Certificate issuer: /CN=A91122B3/serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft Manifest number: E7 Signing time: Mon 03 Nov 2025 05:25:16 +0000 Manifest this update: Mon 03 Nov 2025 05:25:16 +0000 Manifest next update: Mon 10 Nov 2025 05:25:16 +0000 Files and hashes: 1: I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl (hash: z4yIj8PlIQ47e+XUaJP1THo+nK2XkGaTt615DD9lHcA=) 2: 43A05F96ABF111F0AF8F880CC4F9AE02.roa (hash: jHfK6IyCLOgzWRIKFIJt7aRe94FDSOoHp8+mPczDRNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91122B3, serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Validity Not Before: Nov 3 05:25:16 2025 GMT Not After : Nov 10 05:25:16 2025 GMT Subject: CN=69083cbc-7a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:d9:3b:3f:a2:c0:4e:19:0b:d5:43:77:6e: 37:78:18:0a:00:94:4f:63:06:34:8b:24:2b:88:0a: 54:00:63:a3:f2:d3:9b:33:3e:c6:66:ff:ce:da:51: 48:ea:63:2c:f3:d4:67:81:5f:90:da:5a:57:d5:40: fe:19:c9:d1:1e:ed:f5:c8:24:4f:c2:d9:f7:31:70: e4:57:e7:48:17:b5:bf:1e:d8:05:9f:a4:96:98:29: 1c:72:dd:25:cf:b2:e2:3d:cd:a3:3e:e3:d0:16:d5: 23:f6:9f:9c:93:f2:f8:b8:88:25:df:9b:0a:4f:94: 5c:af:1d:0f:f4:4e:2f:8a:48:45:87:a4:1b:73:73: 1c:59:ec:09:a1:ff:69:cb:4b:d6:4d:ce:30:19:48: 14:53:79:1f:06:4a:fa:5d:e0:de:bd:8a:d4:8e:c4: 75:3b:25:96:07:dd:1e:36:34:8a:89:de:7f:c3:8e: d0:55:9f:eb:82:d2:bc:bf:04:ac:4d:fd:37:aa:2b: 1b:a8:4f:1d:33:a8:c3:74:1f:6d:0d:21:73:f7:c1: 15:28:39:a8:46:1f:af:50:d3:9f:30:97:f8:19:67: d8:c3:6e:8d:91:95:de:9d:27:3e:a3:70:ce:51:2f: a5:af:dc:a9:ec:35:cb:17:1a:cd:25:50:4d:fe:3e: 12:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:5E:B0:B8:BD:E2:49:3F:52:A2:6A:9D:E3:63:C1:7C:89:19:8D:BA X509v3 Authority Key Identifier: keyid:23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:8a:91:53:e6:1c:17:3c:09:bf:90:cd:11:0c:ae:13:d5:53: 6a:e9:7c:0d:f1:66:f8:05:7d:7f:e0:c9:2c:74:a0:cc:c5:bc: 34:27:55:58:1d:c4:f1:ce:26:cc:f3:66:a7:b9:3c:dd:a8:c3: 6d:e9:a6:23:0b:a6:88:9c:1e:d1:92:98:3f:28:2c:bf:22:38: 2e:29:6d:50:54:d7:7e:d5:56:e3:63:f7:ab:aa:5d:f1:aa:e8: 88:25:a6:45:1c:12:0c:eb:bf:1a:60:f1:ed:72:93:23:6a:c0: 92:40:9f:96:a1:96:98:e2:0a:39:32:a8:80:4e:76:89:35:95: a4:93:9e:6b:98:6b:c8:dd:88:3d:9b:c0:bd:a1:f3:9e:71:e0: 59:73:bb:16:d9:51:06:0f:c9:87:e9:f2:65:02:a8:1e:89:2e: 5e:5e:90:25:77:96:b1:04:72:a3:27:4a:a4:2b:c2:7f:59:6a: 12:d9:b6:6f:81:ba:96:ff:20:81:6d:57:88:7b:f4:57:d5:ac: 48:2a:86:e2:de:4b:56:54:e9:f0:df:cf:3e:c4:9f:90:47:7b: 7c:9d:d5:85:d8:ef:16:14:29:50:64:3f:ee:99:2e:46:52:2c: 04:7e:1b:fc:f0:c8:f3:fd:b5:8f:b2:02:f1:c9:d2:7e:2c:08: f1:4a:36:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIyQjMxMTAvBgNVBAUTKDIzQzBCMkQ3QUNFMTA5RDNERkU4M0FFQkVGMkVBMzE0 OUM1Q0FDMTcwHhcNMjUxMTAzMDUyNTE2WhcNMjUxMTEwMDUyNTE2WjAYMRYwFAYD VQQDEw02OTA4M2NiYy03YTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v/ZOz+iwE4ZC9VDd243eBgKAJRPYwY0iyQriApUAGOj8tObMz7GZv/O2lFI 6mMs89RngV+Q2lpX1UD+GcnRHu31yCRPwtn3MXDkV+dIF7W/HtgFn6SWmCkcct0l z7LiPc2jPuPQFtUj9p+ck/L4uIgl35sKT5Rcrx0P9E4vikhFh6Qbc3McWewJof9p y0vWTc4wGUgUU3kfBkr6XeDevYrUjsR1OyWWB90eNjSKid5/w47QVZ/rgtK8vwSs Tf03qisbqE8dM6jDdB9tDSFz98EVKDmoRh+vUNOfMJf4GWfYw26NkZXenSc+o3DO US+lr9yp7DXLFxrNJVBN/j4SVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFResLi9 4kk/UqJqneNjwXyJGY26MB8GA1UdIwQYMBaAFCPAstes4QnT3+g66+8uoxScXKwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjJCMy81RTRENDc2MjVC OUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENkUGY2RHJyN3k2akZKeGNy QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4Q3kxNnpoQ2RQZjZEcnI3eTZqRkp4Y3JCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjJCMy81RTRENDc2MjVCOUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENk UGY2RHJyN3k2akZKeGNyQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChipFT5hwXPAm/kM0RDK4T1VNq6XwN8Wb4BX1/4MksdKDMxbw0J1VY HcTxzibM82anuTzdqMNt6aYjC6aInB7Rkpg/KCy/IjguKW1QVNd+1VbjY/erql3x quiIJaZFHBIM678aYPHtcpMjasCSQJ+WoZaY4go5MqiATnaJNZWkk55rmGvI3Yg9 m8C9ofOeceBZc7sW2VEGD8mH6fJlAqgeiS5eXpAld5axBHKjJ0qkK8J/WWoS2bZv gbqW/yCBbVeIe/RX1axIKobi3ktWVOnw388+xJ+QR3t8ndWF2O8WFClQZD/umS5G UiwEfhv88Mjz/bWPsgLxydJ+LAjxSjb5 -----END CERTIFICATE-----Generated at Tue Nov 4 12:38:50 2025 by rpki-client