$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: Bda8lDl5WcbK3syL8JVhUkexPUcr/0rv23rvOguqta4= Subject key identifier: 97:2C:E4:4A:F5:4F:5B:16:5F:FD:18:46:9C:81:DF:07:73:F2:69:05 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0747 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C4D Signing time: Sun 02 Nov 2025 18:32:18 +0000 Manifest this update: Sun 02 Nov 2025 18:32:18 +0000 Manifest next update: Sun 09 Nov 2025 18:32:18 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: mi/cfDI+RxGJRl4ZR4xTWvP6YDB+vCt39R/Oa55SewE=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1863 (0x747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Nov 2 18:32:18 2025 GMT Not After : Nov 9 18:32:18 2025 GMT Subject: CN=6907a3b2-ceb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9e:ce:ff:4d:67:40:4a:46:d0:06:af:d9:30: 09:7e:2a:33:e1:99:c5:9b:4b:ad:30:97:e3:e0:83: 5a:ad:e8:56:a3:87:54:dd:7e:e9:bc:6c:7d:95:d4: da:bc:58:29:06:76:b1:c1:a7:d1:f4:77:34:d2:c5: 42:ec:72:94:39:69:46:75:dd:b2:35:93:b5:3b:4c: 33:94:ff:56:24:0e:ae:c0:04:35:c7:d0:6e:96:be: 24:e0:4a:0e:74:5f:d3:93:16:5c:52:f1:56:dc:65: bb:7e:2b:cb:d5:84:2b:55:f9:98:7d:89:bf:ac:b0: 58:e6:50:67:b6:e3:02:0f:66:f4:b3:1b:77:44:5c: da:67:27:8e:7a:d7:4a:1f:b1:56:e1:f2:3d:fe:16: 2f:e1:f3:68:9e:97:0a:c9:76:52:be:2f:b2:e2:4b: c1:08:cf:0b:6a:7f:cd:b2:59:66:bd:80:b7:23:aa: 07:3e:55:2f:10:37:e6:dd:ad:7a:54:66:7f:48:5d: 2a:52:59:72:71:87:f5:ba:b2:80:e5:c3:a6:20:70: 60:23:58:18:29:d8:92:e1:b7:11:ea:67:90:a8:1a: bd:1a:f8:18:43:7c:9f:1c:ca:d8:c8:33:86:5d:f3: ab:37:27:7e:05:88:41:ee:a8:c6:77:50:be:fc:38: 5c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2C:E4:4A:F5:4F:5B:16:5F:FD:18:46:9C:81:DF:07:73:F2:69:05 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:2c:e0:aa:81:29:29:97:84:9d:e0:1e:f2:80:37:0f:74:57: ee:af:75:d6:31:7e:4f:1e:e5:b5:ba:8b:21:52:49:40:73:6f: f6:10:b4:6c:0e:7c:41:f7:f0:3b:9d:26:df:63:d6:a1:c7:11: 85:48:ca:76:37:10:57:0d:71:81:a9:d2:2b:7b:8f:77:a0:42: 22:8f:4c:db:cb:03:72:8a:4a:bb:3b:31:7f:fc:ef:ab:85:7b: d0:d1:df:63:d4:78:65:30:d6:ff:7b:34:dd:4a:91:59:93:e7: 41:ab:02:ed:ca:0d:1c:3e:98:97:26:d4:e1:97:64:0f:c8:76: d9:6a:86:b0:63:3a:11:bc:55:c7:b6:ac:1f:8f:5c:e6:7e:33: 8e:b9:bc:c4:62:e2:50:ba:b0:ff:eb:68:ab:ac:3d:3f:ec:ea: 3e:ea:a5:7a:95:a9:f2:2f:e0:7c:21:ce:4e:00:d3:7f:1f:94: df:23:19:f0:e4:c3:68:e8:8c:68:57:ef:3d:0e:20:4a:b0:d6: 1a:92:db:e8:a9:71:01:99:f8:32:28:d6:34:2a:a9:b4:41:90: 71:6a:d7:96:37:7e:d5:f4:7e:f4:41:22:ec:d4:2b:d2:f1:89: 74:4e:b3:d1:76:75:3b:30:c9:0c:20:58:ce:21:52:37:00:4b: ee:41:98:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUxMTAyMTgzMjE4WhcNMjUxMTA5MTgzMjE4WjAYMRYwFAYD VQQDEw02OTA3YTNiMi1jZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1J7O/01nQEpG0Aav2TAJfioz4ZnFm0utMJfj4INarehWo4dU3X7pvGx9ldTa vFgpBnaxwafR9Hc00sVC7HKUOWlGdd2yNZO1O0wzlP9WJA6uwAQ1x9Bulr4k4EoO dF/TkxZcUvFW3GW7fivL1YQrVfmYfYm/rLBY5lBntuMCD2b0sxt3RFzaZyeOetdK H7FW4fI9/hYv4fNonpcKyXZSvi+y4kvBCM8Lan/NsllmvYC3I6oHPlUvEDfm3a16 VGZ/SF0qUllycYf1urKA5cOmIHBgI1gYKdiS4bcR6meQqBq9GvgYQ3yfHMrYyDOG XfOrNyd+BYhB7qjGd1C+/DhchwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcs5Er1 T1sWX/0YRpyB3wdz8mkFMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJLOCqgSkpl4Sd4B7ygDcPdFfur3XWMX5PHuW1uoshUklAc2/2ELRs DnxB9/A7nSbfY9ahxxGFSMp2NxBXDXGBqdIre493oEIij0zbywNyikq7OzF//O+r hXvQ0d9j1HhlMNb/ezTdSpFZk+dBqwLtyg0cPpiXJtThl2QPyHbZaoawYzoRvFXH tqwfj1zmfjOOubzEYuJQurD/62irrD0/7Oo+6qV6lanyL+B8Ic5OANN/H5TfIxnw 5MNo6IxoV+89DiBKsNYaktvoqXEBmfgyKNY0Kqm0QZBxateWN37V9H70QSLs1CvS 8Yl0TrPRdnU7MMkMIFjOIVI3AEvuQZhq -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:56 2025 by rpki-client