$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: vU++mlFhUeyw8kiHe/qStZtdrDGUVkowAr0gVsvV6pw= Subject key identifier: E8:DC:42:44:0D:F5:06:94:FF:A5:0A:D2:A6:AE:4D:A7:DE:48:C5:9A Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 0566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0558 Signing time: Tue 04 Nov 2025 23:31:05 +0000 Manifest this update: Tue 04 Nov 2025 23:31:05 +0000 Manifest next update: Tue 11 Nov 2025 23:31:05 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: UeRQbe9YxhVrAmH5txLs8IZFMO18gR2n+JbT+w56SLA=) 2: 3A549A1EB00211F0A3A86535C4F9AE02.roa (hash: O1i4s2Zr51Hi0mPfbBoKpN4N/jUayIwH+cV3RnZNMM4=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: knZ5ekXVEf4sYcirbL+CCT4b4jXdUdcrAEg+dwXTAho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Nov 4 23:31:05 2025 GMT Not After : Nov 11 23:31:05 2025 GMT Subject: CN=690a8cb9-1d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:58:e5:49:ae:14:bb:14:20:51:49:02:5f: 85:00:c5:c8:f4:35:49:03:81:69:54:60:7f:f0:02: 59:fa:ec:5b:52:b0:3a:1f:51:f6:16:da:f6:34:1e: e1:5c:89:cd:75:8e:78:9e:70:4e:6b:5c:f7:d3:76: 1d:02:ef:e7:19:ef:0a:32:5f:d0:0d:ff:e0:3b:a4: 56:18:35:37:aa:a8:43:23:08:40:06:f5:2b:89:ef: 43:51:c1:fe:02:8c:15:ba:54:d0:33:15:9f:c5:3b: da:30:b7:16:e5:2b:3f:09:98:b2:a5:93:8d:25:da: bf:9f:91:40:cd:bd:d8:c0:d8:33:06:b1:90:bd:7f: b0:32:c0:47:78:12:da:69:30:ad:b0:e2:9b:6d:9a: 72:94:b9:c4:e9:04:76:6e:b4:90:3c:90:69:17:ac: 87:49:3e:d5:2f:1d:2a:6f:92:26:07:5c:13:57:fa: cc:df:2d:e8:45:6b:d5:ce:b6:25:68:50:38:f2:70: c2:bd:0c:57:08:da:ed:5b:06:86:71:3e:60:60:2c: e8:88:54:b5:93:f8:c5:40:58:d5:e2:e1:0e:d4:e9: d1:32:87:8f:5b:c6:81:f1:d9:eb:70:fe:0b:9f:f8: 36:c3:2f:40:91:cd:cf:19:a8:c6:1c:ea:50:40:62: d7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DC:42:44:0D:F5:06:94:FF:A5:0A:D2:A6:AE:4D:A7:DE:48:C5:9A X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:28:ca:7e:3f:de:57:c9:a4:ab:c0:b2:de:92:e8:f9:f3:70: 73:2d:a4:f2:ed:c6:48:e6:01:f1:b8:44:f4:c7:5a:d2:dc:db: d7:ed:3a:2c:76:69:80:cc:92:68:e8:78:74:12:1d:09:7a:a7: f9:e1:3f:a8:9b:4e:be:d2:35:db:66:ed:c6:b2:4e:79:8e:eb: 87:82:83:8e:e2:25:f5:d1:ab:7c:81:66:fb:12:90:14:4f:5c: 34:76:9c:22:b5:7b:2e:d6:f4:2a:f7:87:4d:6d:96:f0:6a:5d: 94:d8:1d:37:d5:bd:6f:ac:23:1b:aa:a6:e5:73:2c:66:e6:f3: 9e:00:78:16:66:f2:48:fb:a6:38:04:06:26:94:30:ea:6a:68: 64:f4:eb:f9:84:c8:91:ef:4e:54:82:b3:1d:a4:17:ce:40:d6: c6:7e:84:c3:0b:47:b7:00:3d:61:d3:8f:e7:f9:36:03:f0:a0: f4:51:26:32:db:c9:81:a2:6d:f5:b8:c6:d1:6f:b4:14:8d:73: 66:f2:78:2e:47:ae:04:85:e9:0e:a2:57:81:73:3a:f3:a1:06: 72:8e:d5:1d:01:cd:96:42:d8:91:9c:c0:f6:ed:92:66:d8:91: ae:77:b5:ab:58:bc:f6:67:2a:78:52:9a:c0:5f:27:a2:ee:14: f3:a2:10:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUxMTA0MjMzMTA1WhcNMjUxMTExMjMzMTA1WjAYMRYwFAYD VQQDEw02OTBhOGNiOS0xZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY9Y5UmuFLsUIFFJAl+FAMXI9DVJA4FpVGB/8AJZ+uxbUrA6H1H2Ftr2NB7h XInNdY54nnBOa1z303YdAu/nGe8KMl/QDf/gO6RWGDU3qqhDIwhABvUrie9DUcH+ AowVulTQMxWfxTvaMLcW5Ss/CZiypZONJdq/n5FAzb3YwNgzBrGQvX+wMsBHeBLa aTCtsOKbbZpylLnE6QR2brSQPJBpF6yHST7VLx0qb5ImB1wTV/rM3y3oRWvVzrYl aFA48nDCvQxXCNrtWwaGcT5gYCzoiFS1k/jFQFjV4uEO1OnRMoePW8aB8dnrcP4L n/g2wy9Akc3PGajGHOpQQGLXLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjcQkQN 9QaU/6UK0qauTafeSMWaMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWKMp+P95XyaSrwLLekuj583BzLaTy7cZI5gHxuET0x1rS3NvX7Tos dmmAzJJo6Hh0Eh0Jeqf54T+om06+0jXbZu3Gsk55juuHgoOO4iX10at8gWb7EpAU T1w0dpwitXsu1vQq94dNbZbwal2U2B031b1vrCMbqqblcyxm5vOeAHgWZvJI+6Y4 BAYmlDDqamhk9Ov5hMiR705UgrMdpBfOQNbGfoTDC0e3AD1h04/n+TYD8KD0USYy 28mBom31uMbRb7QUjXNm8nguR64EhekOoleBczrzoQZyjtUdAc2WQtiRnMD27ZJm 2JGud7WrWLz2Zyp4UprAXyei7hTzohAC -----END CERTIFICATE-----Generated at Wed Nov 5 19:22:58 2025 by rpki-client