$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: AZ4MBvQomhYbeM/ONOsuJe40SVr2CEz6z3EyQ1Pnyio= Subject key identifier: 94:53:68:D1:EF:9F:FA:29:AA:0E:F2:50:01:64:D8:7C:52:94:6F:D2 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0397 Signing time: Wed 05 Nov 2025 00:51:26 +0000 Manifest this update: Wed 05 Nov 2025 00:51:25 +0000 Manifest next update: Wed 12 Nov 2025 00:51:25 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: Todl2wWrmVrWyd0BnEwD/QPOWLgb73MPxfugvNOKMMs=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Nov 5 00:51:25 2025 GMT Not After : Nov 12 00:51:25 2025 GMT Subject: CN=690a9f8e-a17b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:00:e2:a5:5c:bd:08:99:e8:1a:50:e6:44:23: 9c:1e:09:a1:d8:f3:60:34:71:c8:6b:01:9e:39:17: c7:ed:80:80:10:1f:bd:f3:a6:27:6e:78:ad:4f:0c: e3:05:60:7b:78:e6:0e:8a:21:62:05:b3:bd:24:b2: 38:6f:f1:54:2e:33:3f:b7:c4:05:4a:c9:1d:f3:f9: 10:7e:c5:ba:59:a9:10:d5:00:5d:41:5c:60:5d:61: 0d:ed:84:d8:6f:d0:f5:92:1a:f7:c7:5b:9f:2e:67: 2b:d5:27:54:c7:42:6e:ea:ca:e1:d8:f9:d9:27:53: 24:2c:05:e3:23:3c:ab:43:29:be:d8:4e:3b:ce:bb: 6a:70:42:f0:7a:ed:29:05:b9:de:e3:1f:9d:f9:5e: a3:39:b0:a6:9a:a8:20:20:9d:bc:a9:6d:e9:de:f2: 8d:ce:e1:40:07:e2:81:61:b6:2b:86:28:bc:33:de: cf:95:04:b3:38:89:f9:41:bf:a2:a5:f6:ce:19:af: 8e:fc:f0:f7:b7:ba:39:f5:a5:08:df:ce:97:87:55: 6a:6f:8d:99:01:b0:d8:13:6e:34:33:14:66:a8:ed: bb:e1:b4:1d:8f:83:58:ec:8c:67:78:12:29:a9:9c: 18:87:97:a4:45:23:3a:53:c3:80:06:0d:e8:76:e1: 65:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:53:68:D1:EF:9F:FA:29:AA:0E:F2:50:01:64:D8:7C:52:94:6F:D2 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c1:e0:5f:c1:17:0b:6c:43:36:9c:bc:92:69:e3:4a:dc:fe: db:ec:a1:75:bb:5e:59:19:ef:d6:66:a4:b4:4c:fd:54:ff:db: 25:4f:c7:dd:97:59:6e:b9:a0:5d:dc:d0:19:86:f5:b1:47:9c: c4:c2:21:fc:dc:13:69:69:00:58:0b:42:c7:41:ce:66:55:e3: a4:dd:84:b6:e9:83:6b:cd:ba:7b:8e:ab:44:49:f6:30:99:4e: 24:84:1d:ba:f8:7f:c8:02:f3:32:e0:b5:ee:34:35:4b:81:5f: 90:2f:b7:20:04:30:4e:93:bc:f4:83:00:19:2d:de:2f:73:6e: ac:0a:59:90:e5:f3:73:ce:80:71:44:f7:36:36:c9:15:f8:f9: 80:eb:6a:40:1c:f2:b3:98:51:42:c6:3e:8f:7b:6f:f0:9c:1c: d5:b6:e0:82:0a:79:36:e8:ed:23:8b:3d:ae:bf:74:83:46:de: 2b:22:87:42:6d:9c:e9:78:5b:22:38:23:0a:6a:67:c3:24:4a: c4:5d:b3:77:0c:07:cb:d5:fd:f4:70:0e:7f:55:6c:1b:69:f9: 8e:ca:ea:4c:78:54:5a:1b:47:ca:87:8a:ac:c1:fc:05:57:da: 93:b3:0e:7f:58:a8:2f:ec:d9:3b:e5:1d:a5:27:47:0c:a3:53: 57:22:de:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUxMTA1MDA1MTI1WhcNMjUxMTEyMDA1MTI1WjAYMRYwFAYD VQQDEw02OTBhOWY4ZS1hMTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gDipVy9CJnoGlDmRCOcHgmh2PNgNHHIawGeORfH7YCAEB+986YnbnitTwzj BWB7eOYOiiFiBbO9JLI4b/FULjM/t8QFSskd8/kQfsW6WakQ1QBdQVxgXWEN7YTY b9D1khr3x1ufLmcr1SdUx0Ju6srh2PnZJ1MkLAXjIzyrQym+2E47zrtqcELweu0p Bbne4x+d+V6jObCmmqggIJ28qW3p3vKNzuFAB+KBYbYrhii8M97PlQSzOIn5Qb+i pfbOGa+O/PD3t7o59aUI386Xh1Vqb42ZAbDYE240MxRmqO274bQdj4NY7IxneBIp qZwYh5ekRSM6U8OABg3oduFlewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRTaNHv n/opqg7yUAFk2HxSlG/SMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKweBfwRcLbEM2nLySaeNK3P7b7KF1u15ZGe/WZqS0TP1U/9slT8fd l1luuaBd3NAZhvWxR5zEwiH83BNpaQBYC0LHQc5mVeOk3YS26YNrzbp7jqtESfYw mU4khB26+H/IAvMy4LXuNDVLgV+QL7cgBDBOk7z0gwAZLd4vc26sClmQ5fNzzoBx RPc2NskV+PmA62pAHPKzmFFCxj6Pe2/wnBzVtuCCCnk26O0jiz2uv3SDRt4rIodC bZzpeFsiOCMKamfDJErEXbN3DAfL1f30cA5/VWwbafmOyupMeFRaG0fKh4qswfwF V9qTsw5/WKgv7Nk75R2lJ0cMo1NXIt4V -----END CERTIFICATE-----Generated at Wed Nov 5 06:33:53 2025 by rpki-client