$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: dGAHd4azPFhBpO3e3iCHs2zeeYaft+Wm0zPhDT7pnCs= Subject key identifier: 48:1F:61:02:BD:3E:35:6B:33:15:E6:96:57:C7:48:4B:62:87:E9:F0 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 0619 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 0613 Signing time: Tue 04 Nov 2025 22:56:11 +0000 Manifest this update: Tue 04 Nov 2025 22:56:11 +0000 Manifest next update: Tue 11 Nov 2025 22:56:11 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: vGKNvGYsGhf3dhjfSAP9eMbAlGwcCVcmaehjBTK/Fws=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Nov 4 22:56:11 2025 GMT Not After : Nov 11 22:56:11 2025 GMT Subject: CN=690a848b-eb85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:84:6e:7c:c5:95:9e:54:8e:00:a7:19:39:53: 60:7c:00:05:97:eb:d0:85:44:84:80:d0:91:ec:0c: 86:38:1f:b4:29:d2:56:61:40:94:8d:5c:4f:4d:f0: df:93:96:99:97:32:e4:b3:e2:f9:9e:6f:74:d8:ed: c0:da:3e:e2:f6:60:d6:80:65:f7:b8:33:59:17:88: d3:db:e7:47:a6:7e:61:07:3c:b0:22:ec:c6:54:69: 2e:ef:19:da:cf:f2:2c:af:72:86:92:69:42:42:69: a3:4d:95:e2:10:a4:0c:e0:ab:ed:87:d9:73:54:ef: 78:a6:fa:d9:91:1f:a5:16:a2:6a:66:6d:8f:f1:0e: 66:c1:16:9e:57:a2:62:3c:0f:d4:e2:57:aa:55:89: 57:af:26:94:95:af:38:f0:bc:72:0c:d9:b4:0e:85: dc:b0:13:20:b1:44:42:c1:67:cf:ea:88:bf:57:d3: 1f:da:60:04:4b:5a:96:a6:84:4d:67:2f:54:b8:8b: 02:aa:b7:e8:a4:ab:ab:a1:d5:27:e6:c1:cb:fd:a2: 40:9a:0f:d3:92:4b:ca:75:31:99:07:a4:d4:10:df: 11:05:a2:58:58:b5:c8:f6:09:7c:d4:1e:46:bc:a2: ec:78:c4:30:83:da:c8:9c:38:00:ac:aa:45:b5:33: 01:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1F:61:02:BD:3E:35:6B:33:15:E6:96:57:C7:48:4B:62:87:E9:F0 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:14:03:02:33:47:1c:5b:44:b3:4f:c7:86:32:05:d9:17:26: 96:50:1e:1d:bb:01:08:c1:ae:3d:c8:13:ea:3c:a9:56:32:0a: f9:c4:7a:14:22:d5:87:43:49:ab:2a:b4:5a:41:21:a2:51:2f: 25:a8:bb:8d:80:df:b0:ed:cb:0d:14:11:a4:cf:d5:1a:13:f2: de:28:f5:78:3f:2b:4b:7f:fe:31:0b:36:87:fd:90:bb:7d:21: 6c:4b:dc:cc:50:e6:e0:8a:75:86:44:27:d7:1e:47:f4:43:2e: 30:a9:20:76:57:e2:e7:af:d1:65:6c:a2:33:fd:44:35:fb:e1: 1d:b4:6d:8f:5c:29:d1:c7:f4:dc:fd:49:2c:d1:14:54:1f:4c: b8:8a:d6:72:33:13:96:3e:59:49:88:48:6b:b7:71:ae:a4:99: 4f:81:3d:10:50:1c:24:02:32:a2:5b:e3:dc:0e:78:30:8a:f0: 30:34:4e:18:1d:a3:dc:1f:dc:dc:23:fd:f3:98:a2:9d:4c:be: 14:33:a8:dd:04:11:aa:c0:fa:9a:ae:23:f0:e3:97:f7:4b:0b: 46:d1:06:85:f8:11:79:85:a1:04:ef:c7:14:91:20:39:9f:38: 4f:6c:4a:e8:a1:19:95:c2:01:84:9a:7f:c2:4c:d5:41:68:86: 8f:af:42:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUxMTA0MjI1NjExWhcNMjUxMTExMjI1NjExWjAYMRYwFAYD VQQDEw02OTBhODQ4Yi1lYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4RufMWVnlSOAKcZOVNgfAAFl+vQhUSEgNCR7AyGOB+0KdJWYUCUjVxPTfDf k5aZlzLks+L5nm902O3A2j7i9mDWgGX3uDNZF4jT2+dHpn5hBzywIuzGVGku7xna z/Isr3KGkmlCQmmjTZXiEKQM4Kvth9lzVO94pvrZkR+lFqJqZm2P8Q5mwRaeV6Ji PA/U4leqVYlXryaUla848LxyDNm0DoXcsBMgsURCwWfP6oi/V9Mf2mAES1qWpoRN Zy9UuIsCqrfopKurodUn5sHL/aJAmg/TkkvKdTGZB6TUEN8RBaJYWLXI9gl81B5G vKLseMQwg9rInDgArKpFtTMBSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgfYQK9 PjVrMxXmllfHSEtih+nwMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuFAMCM0ccW0SzT8eGMgXZFyaWUB4duwEIwa49yBPqPKlWMgr5xHoU ItWHQ0mrKrRaQSGiUS8lqLuNgN+w7csNFBGkz9UaE/LeKPV4PytLf/4xCzaH/ZC7 fSFsS9zMUObginWGRCfXHkf0Qy4wqSB2V+Lnr9FlbKIz/UQ1++EdtG2PXCnRx/Tc /Uks0RRUH0y4itZyMxOWPllJiEhrt3GupJlPgT0QUBwkAjKiW+PcDngwivAwNE4Y HaPcH9zcI/3zmKKdTL4UM6jdBBGqwPqariPw45f3SwtG0QaF+BF5haEE78cUkSA5 nzhPbErooRmVwgGEmn/CTNVBaIaPr0JA -----END CERTIFICATE-----Generated at Wed Nov 5 02:45:37 2025 by rpki-client