$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: n1xwtE13sTYyjhvuad+1j60nSbcFWxcpXoySuaqUaZE= Subject key identifier: B6:94:67:32:7E:D1:0E:67:EC:A9:AA:3F:0F:26:04:59:EE:BB:EF:A0 Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 303B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 3016 Signing time: Sun 02 Nov 2025 15:27:47 +0000 Manifest this update: Sun 02 Nov 2025 15:27:47 +0000 Manifest next update: Sun 09 Nov 2025 15:27:47 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: lS8s/uzS70TQG392kRiUgym3GrjNYnHfDcF/F+G2O+Y=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: 2Zr7Hm+ka4YogIeAL8utcPORDLzzcWzkuQ8uJ6QbXYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12347 (0x303b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Nov 2 15:27:47 2025 GMT Not After : Nov 9 15:27:47 2025 GMT Subject: CN=69077873-99c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0b:58:15:69:1c:b1:a2:20:98:ea:9d:6e:34: ca:33:9d:0e:50:6d:41:ae:49:0e:15:b0:8a:14:82: bb:49:59:5d:0b:7f:82:77:80:77:17:ce:03:a8:7e: 79:f3:02:05:1f:7e:62:6f:2b:1f:6a:23:54:bf:e5: 91:ad:a4:2a:22:07:5c:42:d6:6b:c8:f9:a2:14:ef: 12:92:88:2e:c8:85:df:18:1f:dd:ca:a5:4c:85:94: eb:d9:78:b4:ad:5e:59:c7:e0:cd:87:ea:d4:1f:ea: ca:a2:a6:ce:1c:88:b2:63:06:c4:bb:83:4f:70:6c: 98:bf:4a:ae:6f:60:d1:52:7e:38:fa:94:85:ac:6f: 55:7c:e9:69:b7:e1:4e:8a:c1:63:8f:96:8d:bb:bb: 2b:93:35:4a:c4:f0:a4:95:29:fa:0a:00:db:2b:d5: 63:f4:ea:4f:9d:f5:cb:36:f3:4e:21:53:14:c3:55: 6c:50:b7:47:39:e0:5d:d1:5f:21:48:e4:e7:84:c0: 82:9e:86:a1:d7:c7:26:d3:cd:d8:82:63:69:1b:ca: 97:09:25:8f:b2:6d:82:f8:f1:65:dd:66:b6:c1:71: cf:15:62:03:a0:cf:a7:20:d1:2d:07:79:32:2c:1c: b4:bc:ab:a7:9a:82:df:37:be:23:f3:a7:b8:6b:4b: 04:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:94:67:32:7E:D1:0E:67:EC:A9:AA:3F:0F:26:04:59:EE:BB:EF:A0 X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:4e:16:e4:2a:7c:2a:8f:72:38:db:e1:75:95:2b:dc:d5:7c: cc:6d:b9:62:e9:cc:40:36:a6:22:4c:b5:d4:21:1d:44:d0:f5: 96:4f:35:77:cc:c5:e6:47:a7:55:9f:bc:15:90:7a:a0:9a:3d: 05:c2:ed:dd:df:e8:c0:b0:db:50:0c:d7:72:ac:b8:80:5c:fa: 7b:67:db:d4:4c:9f:be:ab:62:93:57:ba:6d:74:18:1a:dc:a3: 7f:6e:c6:e5:d7:af:5c:1f:96:ae:35:7d:a7:a2:a7:5a:13:61: 98:cd:05:ad:4a:e4:ab:99:5e:bd:21:25:7e:44:4c:6d:bf:8d: 51:5b:5a:44:96:c5:40:01:6d:c0:64:55:1b:7f:fd:6f:c1:bc: 6b:ec:a1:79:4a:2b:fa:61:24:d6:ca:1a:07:9f:9b:04:61:f4: 17:e7:06:27:42:68:25:27:9d:33:89:27:e8:b8:ff:3a:2c:36: 8f:ef:6f:33:23:1f:6d:79:4f:a1:0c:8c:9a:71:0e:23:7c:b6: 46:3a:43:fb:80:c4:f0:17:1d:eb:fa:27:24:36:9c:ed:e8:7a: 6b:7d:3f:b1:69:73:ac:6d:ae:bd:4e:e9:21:1d:0c:fe:dc:e8: 55:0c:0f:66:5a:c4:c5:b3:7a:2e:e2:c8:f1:4b:e1:ab:8d:47: 86:b3:b7:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUxMTAyMTUyNzQ3WhcNMjUxMTA5MTUyNzQ3WjAYMRYwFAYD VQQDEw02OTA3Nzg3My05OWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQtYFWkcsaIgmOqdbjTKM50OUG1BrkkOFbCKFIK7SVldC3+Cd4B3F84DqH55 8wIFH35ibysfaiNUv+WRraQqIgdcQtZryPmiFO8SkoguyIXfGB/dyqVMhZTr2Xi0 rV5Zx+DNh+rUH+rKoqbOHIiyYwbEu4NPcGyYv0qub2DRUn44+pSFrG9VfOlpt+FO isFjj5aNu7srkzVKxPCklSn6CgDbK9Vj9OpPnfXLNvNOIVMUw1VsULdHOeBd0V8h SOTnhMCCnoah18cm083YgmNpG8qXCSWPsm2C+PFl3Wa2wXHPFWIDoM+nINEtB3ky LBy0vKunmoLfN74j86e4a0sELwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaUZzJ+ 0Q5n7KmqPw8mBFnuu++gMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1ThbkKnwqj3I42+F1lSvc1XzMbbli6cxANqYiTLXUIR1E0PWWTzV3 zMXmR6dVn7wVkHqgmj0Fwu3d3+jAsNtQDNdyrLiAXPp7Z9vUTJ++q2KTV7ptdBga 3KN/bsbl169cH5auNX2noqdaE2GYzQWtSuSrmV69ISV+RExtv41RW1pElsVAAW3A ZFUbf/1vwbxr7KF5Siv6YSTWyhoHn5sEYfQX5wYnQmglJ50ziSfouP86LDaP728z Ix9teU+hDIyacQ4jfLZGOkP7gMTwFx3r+ickNpzt6HprfT+xaXOsba69TukhHQz+ 3OhVDA9mWsTFs3ou4sjxS+GrjUeGs7fk -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:50 2025 by rpki-client