$ rpki-client -vvf rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft File: iavBOYslsdbOj_e_sysS6fCWc_k.mft (raw, json) Hash identifier: FPoZEY1aVraWoOaGJU7I2bP88qBTdH5y5Zvd5XGpvFw= Subject key identifier: FE:7F:3D:1A:5C:8D:D5:F8:4E:86:86:F9:C1:5C:F5:A9:61:0E:22:4F Authority key identifier: 89:AB:C1:39:8B:25:B1:D6:CE:8F:F7:BF:B3:2B:12:E9:F0:96:73:F9 Certificate issuer: /CN=A9143035/serialNumber=89ABC1398B25B1D6CE8FF7BFB32B12E9F09673F9 Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft Manifest number: 04A7 Signing time: Wed 05 Nov 2025 00:02:39 +0000 Manifest this update: Wed 05 Nov 2025 00:02:39 +0000 Manifest next update: Wed 12 Nov 2025 00:02:39 +0000 Files and hashes: 1: iavBOYslsdbOj_e_sysS6fCWc_k.crl (hash: UfOq1dH5+9chvpsF5B3J/4xzr/ABr+0ZRRzbDsLGT8A=) 2: 6B47EC68529E11EC9C7C2081C4F9AE02.roa (hash: RyLNM9Y2xKP2/pPGOLqXFeZG9/xveuZYuPTjdQJUT2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.crl rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143035, serialNumber=89ABC1398B25B1D6CE8FF7BFB32B12E9F09673F9 Validity Not Before: Nov 5 00:02:39 2025 GMT Not After : Nov 12 00:02:39 2025 GMT Subject: CN=690a941f-5f26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b5:5f:07:3f:c4:ab:35:4d:5e:d3:cd:b9:2f: ca:91:9e:11:56:9f:09:2c:c4:a1:49:a8:7f:8c:fd: dc:d4:5c:23:55:8c:1d:8a:c3:6c:48:b1:bc:06:c1: b8:20:b3:a9:bc:69:b7:89:b6:ad:c9:a5:32:55:5d: e8:fe:0d:cb:c6:fa:f0:77:0f:6d:ba:59:1f:af:81: 22:cc:e8:63:df:5e:68:4b:1d:cd:9c:fe:42:01:53: 75:ab:3f:0e:be:c6:5e:3d:5a:15:3f:c2:0d:e3:2f: 7f:f4:b1:c7:e7:90:aa:c3:95:33:a2:ee:ff:21:e8: 8f:55:29:bc:97:02:4e:1b:3d:a1:23:aa:ed:39:46: 03:25:2a:6e:c1:b7:55:a6:6e:2e:79:06:cf:2e:4e: f9:4b:23:bf:0d:6b:df:ef:26:62:63:80:6c:6d:a4: 0f:eb:db:28:8b:81:75:42:76:4b:ae:4b:91:5d:87: ee:db:12:e8:6d:6c:3e:b4:0b:9d:5c:f5:f3:50:6f: 7f:d3:1a:04:6e:88:dd:24:0e:d4:c0:78:10:2e:f3: d0:5a:7f:74:e1:2a:22:4c:4f:bf:0a:b6:11:cc:1e: 2a:ea:73:66:e5:1e:c7:e5:cd:fb:9c:f9:cc:9b:14: b2:d9:d1:6b:0d:98:fa:7d:bd:d3:99:3f:f2:6a:4f: 96:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7F:3D:1A:5C:8D:D5:F8:4E:86:86:F9:C1:5C:F5:A9:61:0E:22:4F X509v3 Authority Key Identifier: keyid:89:AB:C1:39:8B:25:B1:D6:CE:8F:F7:BF:B3:2B:12:E9:F0:96:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iavBOYslsdbOj_e_sysS6fCWc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143035/18C62912529B11EC9A0B0A7DC4F9AE02/iavBOYslsdbOj_e_sysS6fCWc_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d2:12:df:7b:5c:15:f1:2a:4c:40:6b:c6:20:34:23:52:2d: eb:2a:9d:81:7b:54:66:1a:69:01:8a:36:6e:0f:bb:01:7e:c9: dc:59:0f:f3:20:25:cf:1d:5e:58:67:82:c7:56:97:b7:57:84: b7:64:78:65:0b:7c:41:2c:1a:25:9f:0d:69:32:8f:fb:5c:9d: da:9b:b3:16:90:a3:53:fe:db:20:bf:f2:d7:0e:d4:3e:bb:74: 4f:9f:04:77:7c:e1:90:1e:f3:a6:db:d1:1e:c1:39:83:78:82: 9a:49:38:fe:0d:70:6f:ec:47:65:1f:bb:7d:73:93:a4:03:da: fd:db:60:17:ff:92:f5:84:4d:6c:f4:2e:19:80:3f:3e:43:11: 3c:d7:c0:e3:a7:45:de:e4:dc:1f:d7:26:e8:b7:74:f8:07:73: 01:d9:f0:ba:94:76:99:96:eb:7f:b7:19:3c:ce:32:60:83:44: f6:27:0f:31:49:47:79:da:98:3c:25:bb:36:fb:52:b1:d6:fa: 2b:cd:01:b7:67:46:49:68:fc:2c:d1:da:79:5e:e9:ac:13:5b: 45:92:28:bc:3f:11:cb:bc:98:38:2e:e4:d3:44:fd:52:66:3e: d2:63:b4:18:83:1a:a1:bf:16:e7:ab:bd:0d:c4:88:83:1e:7a: fb:89:0f:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMwMzUxMTAvBgNVBAUTKDg5QUJDMTM5OEIyNUIxRDZDRThGRjdCRkIzMkIxMkU5 RjA5NjczRjkwHhcNMjUxMTA1MDAwMjM5WhcNMjUxMTEyMDAwMjM5WjAYMRYwFAYD VQQDEw02OTBhOTQxZi01ZjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbVfBz/EqzVNXtPNuS/KkZ4RVp8JLMShSah/jP3c1FwjVYwdisNsSLG8BsG4 ILOpvGm3ibatyaUyVV3o/g3Lxvrwdw9tulkfr4EizOhj315oSx3NnP5CAVN1qz8O vsZePVoVP8IN4y9/9LHH55Cqw5Uzou7/IeiPVSm8lwJOGz2hI6rtOUYDJSpuwbdV pm4ueQbPLk75SyO/DWvf7yZiY4BsbaQP69soi4F1QnZLrkuRXYfu2xLobWw+tAud XPXzUG9/0xoEbojdJA7UwHgQLvPQWn904SoiTE+/CrYRzB4q6nNm5R7H5c37nPnM mxSy2dFrDZj6fb3TmT/yak+WyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5/PRpc jdX4ToaG+cFc9alhDiJPMB8GA1UdIwQYMBaAFImrwTmLJbHWzo/3v7MrEunwlnP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzAzNS8xOEM2MjkxMjUy OUIxMUVDOUEwQjBBN0RDNEY5QUUwMi9pYXZCT1lzbHNkYk9qX2Vfc3lzUzZmQ1dj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhdkJPWXNsc2RiT2pfZV9zeXNTNmZDV2Nfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzAzNS8xOEM2MjkxMjUyOUIxMUVDOUEwQjBBN0RDNEY5QUUwMi9pYXZCT1lzbHNk Yk9qX2Vfc3lzUzZmQ1djX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH0hLfe1wV8SpMQGvGIDQjUi3rKp2Be1RmGmkBijZuD7sBfsncWQ/z ICXPHV5YZ4LHVpe3V4S3ZHhlC3xBLBolnw1pMo/7XJ3am7MWkKNT/tsgv/LXDtQ+ u3RPnwR3fOGQHvOm29EewTmDeIKaSTj+DXBv7EdlH7t9c5OkA9r922AX/5L1hE1s 9C4ZgD8+QxE818Djp0Xe5Nwf1ybot3T4B3MB2fC6lHaZlut/txk8zjJgg0T2Jw8x SUd52pg8Jbs2+1Kx1vorzQG3Z0ZJaPws0dp5XumsE1tFkii8PxHLvJg4LuTTRP1S Zj7SY7QYgxqhvxbnq70NxIiDHnr7iQ93 -----END CERTIFICATE-----Generated at Wed Nov 5 20:54:23 2025 by rpki-client