$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: oVkXzlVGQcoB9K4eQNZFxuHr7TAPLt5xSAdL8gGGE+o= Subject key identifier: A1:2D:FE:21:36:C2:7F:77:A8:CB:80:DE:3C:85:90:4E:13:ED:15:48 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 131B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 1306 Signing time: Sun 02 Nov 2025 17:01:59 +0000 Manifest this update: Sun 02 Nov 2025 17:01:58 +0000 Manifest next update: Sun 09 Nov 2025 17:01:58 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: ah6adHwRxE2xROoLy1EnvzzUJEPA3pQESnfW9ijYGdI=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: F64rTtQK62WkoJ4T7LBeaKOnYlMCrnrGJqKnlzvZNxc=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: V0JrvauXWXNDpsL43DjdmMpgmoTrusHbq711Y8hqbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4891 (0x131b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Nov 2 17:01:58 2025 GMT Not After : Nov 9 17:01:58 2025 GMT Subject: CN=69078e86-ab83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b4:a3:03:0e:02:dc:de:da:29:4a:05:98:f3: 25:56:f3:00:76:57:de:9f:3c:88:23:cc:d2:c7:bf: 74:4c:9e:ee:3d:e4:59:fe:c4:67:41:de:57:6c:03: 6a:55:34:37:41:94:cd:23:19:cd:98:65:dd:f6:16: a9:e8:b1:b8:99:5e:7e:51:3e:d7:8b:0f:5f:ed:c0: 3b:84:2a:f1:87:1c:05:3c:c1:28:67:f6:ea:72:72: f9:ec:9a:f8:20:b5:28:0a:36:0f:0a:eb:e8:bd:24: 16:9d:89:6c:bf:b5:0d:51:95:eb:a2:71:89:58:8a: f7:8a:95:e4:1d:f9:c9:9d:76:46:b0:45:b6:d5:6f: d2:72:ba:99:bb:05:e7:2e:1b:4a:f4:01:9c:93:43: b3:d0:86:88:cc:51:f4:f1:d1:f6:ba:b8:50:71:b8: 11:0f:7a:04:8b:ed:7e:17:f5:2c:a7:73:af:2b:bf: b0:14:eb:44:8d:df:37:61:bf:d1:84:84:5d:5e:a5: 71:cb:98:57:ad:be:47:98:63:fb:05:9c:9e:ce:92: 19:0d:96:e6:f0:2e:9f:72:98:94:a7:0c:6c:f0:32: 06:cb:06:c0:df:f6:ff:f4:48:61:6f:55:3c:8a:33: 78:de:7b:db:d2:13:98:c1:a9:b1:b9:66:12:83:d0: b1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2D:FE:21:36:C2:7F:77:A8:CB:80:DE:3C:85:90:4E:13:ED:15:48 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:17:83:ae:6c:f5:e7:da:20:69:d4:e7:b2:de:6a:3b:c3:4f: 20:11:f2:f6:c4:60:ff:a4:fc:84:55:bd:38:ca:86:12:84:f0: 3a:3e:73:66:59:3b:a4:61:33:d8:04:33:9a:90:e2:22:f9:c0: 8f:f6:2f:26:e5:68:c0:8c:45:e7:43:c1:ab:a6:bf:10:95:d5: 35:0c:79:7d:4e:19:83:95:c3:d2:f9:25:91:f4:11:15:f0:6f: db:68:be:0d:3f:98:c1:8a:11:a1:95:b2:6f:db:fb:68:d9:d0: 0d:d1:f0:d0:0e:d6:ec:47:cb:b9:c6:57:2e:bb:ad:ef:5d:96: fd:24:71:d5:8f:4b:fb:32:15:87:44:2a:f4:68:af:b6:ad:87: 37:bb:ea:a5:08:dd:4b:78:fc:5c:da:cd:8c:05:20:be:4f:6b: 13:83:71:fd:bd:65:73:70:93:09:ac:a8:0f:d4:b6:26:29:36: c7:d7:ac:55:75:4a:15:f6:e9:94:27:7e:59:31:0a:e8:2d:55: e4:a8:2f:22:41:29:35:96:17:71:8c:f0:a9:c8:a9:b3:f9:5f: e3:cc:67:3d:ce:55:05:c8:f0:48:99:9a:2e:9d:c6:fe:fd:7b: 68:03:ff:ac:02:16:87:f7:8f:15:a7:90:83:a5:f5:10:39:5a: d0:ad:8c:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUxMTAyMTcwMTU4WhcNMjUxMTA5MTcwMTU4WjAYMRYwFAYD VQQDEw02OTA3OGU4Ni1hYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrSjAw4C3N7aKUoFmPMlVvMAdlfenzyII8zSx790TJ7uPeRZ/sRnQd5XbANq VTQ3QZTNIxnNmGXd9hap6LG4mV5+UT7Xiw9f7cA7hCrxhxwFPMEoZ/bqcnL57Jr4 ILUoCjYPCuvovSQWnYlsv7UNUZXronGJWIr3ipXkHfnJnXZGsEW21W/ScrqZuwXn LhtK9AGck0Oz0IaIzFH08dH2urhQcbgRD3oEi+1+F/Usp3OvK7+wFOtEjd83Yb/R hIRdXqVxy5hXrb5HmGP7BZyezpIZDZbm8C6fcpiUpwxs8DIGywbA3/b/9Ehhb1U8 ijN43nvb0hOYwamxuWYSg9CxiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEt/iE2 wn93qMuA3jyFkE4T7RVIMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnF4OubPXn2iBp1Oey3mo7w08gEfL2xGD/pPyEVb04yoYShPA6PnNm WTukYTPYBDOakOIi+cCP9i8m5WjAjEXnQ8Grpr8QldU1DHl9ThmDlcPS+SWR9BEV 8G/baL4NP5jBihGhlbJv2/to2dAN0fDQDtbsR8u5xlcuu63vXZb9JHHVj0v7MhWH RCr0aK+2rYc3u+qlCN1LePxc2s2MBSC+T2sTg3H9vWVzcJMJrKgP1LYmKTbH16xV dUoV9umUJ35ZMQroLVXkqC8iQSk1lhdxjPCpyKmz+V/jzGc9zlUFyPBImZouncb+ /XtoA/+sAhaH948Vp5CDpfUQOVrQrYz4 -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:01 2025 by rpki-client