$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: Bcwyyfs6gOnGgkcum92NLbCHdRum1mlp1Lb5ULM2v8M= Subject key identifier: 44:1B:B9:93:CF:2D:CB:C6:B5:89:A0:A6:2D:12:C0:94:41:C9:F0:17 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 3520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 34F3 Signing time: Tue 04 Nov 2025 14:19:54 +0000 Manifest this update: Tue 04 Nov 2025 14:19:54 +0000 Manifest next update: Tue 11 Nov 2025 14:19:54 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: zHFSGpjqfYrCekdTXS19anUvvp3kGFzqzuMMBvoc15g=) 2: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: 6C/a3Wj9og9vwBBN5UoCzfPyuDE6Bklz8AODGS07vlI=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: n6cQOr7nMx3ASkXvodDC31C4d5lcr3OKlWkKenjwMWc=) 4: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: Qz5pZ4cV9JQ9lwZlMLRTE2xMp+k9IBDZYYDpMTYk3vI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13600 (0x3520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Nov 4 14:19:54 2025 GMT Not After : Nov 11 14:19:54 2025 GMT Subject: CN=690a0b8a-da0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c0:57:ba:87:be:f7:49:9f:37:6f:b1:97:ce: 05:0f:f0:cc:00:b5:21:26:00:8d:07:80:4c:33:07: 7e:ee:be:64:df:85:95:ae:07:f1:ba:cb:fc:23:da: 19:49:b4:9d:09:dc:73:2a:be:09:c9:ef:34:0f:ce: 5c:46:50:15:4b:8c:81:36:a1:bd:95:97:d3:ee:c8: 3d:d5:11:bd:02:f4:ec:23:4c:d5:45:f7:b0:0d:e3: ed:13:cb:1b:f2:e4:34:d8:52:cc:dc:ba:b1:e7:68: 9a:a9:8d:5d:c1:69:a6:ae:db:85:0c:d5:d5:5c:58: 32:4f:c6:20:46:4a:72:89:df:87:f0:13:37:72:d7: 28:c6:e0:dc:26:de:03:86:14:ea:1e:af:54:95:49: 98:aa:09:34:d3:d9:8d:7e:3a:1c:4a:b3:2c:ce:ce: bc:5d:15:4d:1d:43:70:15:ba:a1:ac:ee:a2:70:84: b7:6a:35:7f:ed:44:af:22:9c:82:d8:e8:c6:f9:18: a0:88:90:c9:11:ad:df:9b:1c:37:18:14:53:00:55: d7:ba:5c:40:1b:bb:88:09:29:94:7e:36:9a:81:e9: 51:d8:87:2d:c4:93:ea:74:4a:a4:5e:bd:77:8a:f6: 3e:69:a5:ad:98:d4:4a:ce:cd:26:d2:3d:b0:9e:9d: 23:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1B:B9:93:CF:2D:CB:C6:B5:89:A0:A6:2D:12:C0:94:41:C9:F0:17 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:10:4d:5a:74:91:a8:3b:67:1a:79:02:33:d5:08:7f:26:69: 62:54:36:23:3e:8f:5c:9d:09:9a:09:bd:33:6f:34:bf:9b:de: 0a:77:c0:75:55:ee:05:cc:47:18:df:3e:4a:70:f4:c2:94:77: f9:7b:59:14:50:b1:e1:3d:85:82:a8:f7:5f:d3:cc:cd:6b:a8: 4c:d7:9c:2f:99:76:1e:db:6a:04:a6:73:c1:dd:ee:cd:6e:33: 1c:a2:94:86:86:10:bb:82:44:a3:c0:72:00:99:5d:8e:95:60: 52:e1:8f:b9:fa:85:dd:90:8f:10:69:5b:ee:18:11:0a:b6:64: 31:1e:f0:1d:f2:5c:d2:98:78:ee:e2:92:d8:01:04:a4:76:01: 5f:5a:37:34:7f:3c:48:a1:9f:bf:c7:20:2a:80:7a:02:b9:40: 86:3b:e7:a1:58:cc:35:bd:3a:71:fb:61:5d:5e:b6:aa:29:68: c9:31:6c:8b:83:38:45:05:0e:d8:4c:3f:c5:30:be:be:84:42: b7:1c:f2:e9:85:95:d1:70:37:d4:93:8d:01:b3:a7:4f:31:f0: df:41:99:af:bf:4b:9a:b1:e7:e5:13:ff:c2:ba:eb:a5:e6:45: 2d:34:b1:0b:d1:08:c7:82:14:44:84:85:59:88:b7:15:f6:03: 21:f2:1b:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUxMTA0MTQxOTU0WhcNMjUxMTExMTQxOTU0WjAYMRYwFAYD VQQDEw02OTBhMGI4YS1kYTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscBXuoe+90mfN2+xl84FD/DMALUhJgCNB4BMMwd+7r5k34WVrgfxusv8I9oZ SbSdCdxzKr4Jye80D85cRlAVS4yBNqG9lZfT7sg91RG9AvTsI0zVRfewDePtE8sb 8uQ02FLM3Lqx52iaqY1dwWmmrtuFDNXVXFgyT8YgRkpyid+H8BM3ctcoxuDcJt4D hhTqHq9UlUmYqgk009mNfjocSrMszs68XRVNHUNwFbqhrO6icIS3ajV/7USvIpyC 2OjG+RigiJDJEa3fmxw3GBRTAFXXulxAG7uICSmUfjaagelR2IctxJPqdEqkXr13 ivY+aaWtmNRKzs0m0j2wnp0jHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQbuZPP LcvGtYmgpi0SwJRByfAXMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSEE1adJGoO2caeQIz1Qh/JmliVDYjPo9cnQmaCb0zbzS/m94Kd8B1 Ve4FzEcY3z5KcPTClHf5e1kUULHhPYWCqPdf08zNa6hM15wvmXYe22oEpnPB3e7N bjMcopSGhhC7gkSjwHIAmV2OlWBS4Y+5+oXdkI8QaVvuGBEKtmQxHvAd8lzSmHju 4pLYAQSkdgFfWjc0fzxIoZ+/xyAqgHoCuUCGO+ehWMw1vTpx+2FdXraqKWjJMWyL gzhFBQ7YTD/FML6+hEK3HPLphZXRcDfUk40Bs6dPMfDfQZmvv0uaseflE//Cuuul 5kUtNLEL0QjHghREhIVZiLcV9gMh8hvc -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:33 2025 by rpki-client