$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: 1z8rb6Aht2CHXm/uA+qxYKrMxFVBtJFBdYJNSYKKA6k= Subject key identifier: 66:B4:A5:A5:58:9A:FD:EC:4E:24:C5:8F:64:BD:0A:19:B3:D7:07:4A Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 04FC Signing time: Tue 04 Nov 2025 23:45:31 +0000 Manifest this update: Tue 04 Nov 2025 23:45:30 +0000 Manifest next update: Tue 11 Nov 2025 23:45:30 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: /Gdp06su5w2jKrQPuk3rNrGnUAehTuTWYjZoNUjDXp8=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Nov 4 23:45:30 2025 GMT Not After : Nov 11 23:45:30 2025 GMT Subject: CN=690a901a-ae79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9d:00:e9:27:45:8d:34:e2:8e:f8:91:20:0d: 09:15:83:31:e6:dc:0c:92:f8:05:3e:8c:4f:f2:78: 37:84:b6:83:b2:cb:f4:6c:d0:9b:66:8e:05:0a:25: 7f:74:66:2f:da:b9:84:50:d2:93:16:7d:1a:22:23: 7f:58:9e:86:d2:a5:62:a8:92:82:c5:b8:42:79:ab: 40:36:bc:d1:f5:a4:71:15:7e:3c:90:ca:17:31:a9: b3:7a:29:1e:33:95:49:5a:04:3b:13:d3:f8:26:4f: 3f:d7:3b:44:d0:4e:4d:97:4f:99:a7:71:0e:19:d8: f7:31:db:31:19:c6:c2:70:b0:96:f9:cf:06:16:54: 0f:42:bb:47:d6:08:e5:c7:a0:54:87:02:c7:15:f1: 8c:45:35:77:9f:88:c6:dd:f0:7a:0b:f3:c9:c2:2c: 70:f8:5c:a1:c8:2c:b1:88:0c:fa:9a:66:b0:7c:f6: 5b:62:41:bd:24:2a:87:1c:6f:43:f4:5e:aa:39:6d: 35:03:f7:be:4b:ca:d0:d4:0e:69:6b:ea:d2:81:f3: ec:47:16:e9:c6:da:31:55:3b:ba:ad:55:61:b7:4d: ac:e9:b5:41:92:f5:eb:8f:0d:ad:5d:e6:31:8d:ff: 1a:c6:9c:df:83:12:cd:7c:2a:71:b3:44:5e:b2:be: 1b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B4:A5:A5:58:9A:FD:EC:4E:24:C5:8F:64:BD:0A:19:B3:D7:07:4A X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f4:58:a9:e2:53:b7:46:ed:86:d4:53:ef:ca:27:91:f3:a0: a9:41:fc:31:20:b7:2f:69:0d:73:3a:e1:d6:b8:65:71:e5:0f: b8:52:d0:99:81:58:75:aa:3a:01:6f:a5:e3:ae:5c:b4:02:dc: b7:ac:6e:44:d6:1e:e6:99:81:19:80:4f:14:49:4d:d3:d7:e6: 7f:90:4e:13:f7:15:d7:3a:5d:ea:f5:44:0b:5d:55:6e:b7:78: 3c:28:6f:db:0f:f6:fe:07:e0:b9:c8:bd:7f:48:70:9b:39:dc: 96:ec:0f:7e:d5:9f:ee:74:63:43:ee:52:29:c2:17:59:ad:94: db:d8:50:e7:50:6f:0a:5c:91:09:5f:7b:55:d2:8b:e8:9d:92: 84:94:fb:b8:a7:1e:f8:4c:43:31:01:3b:ab:2f:d3:eb:d9:61: 60:2a:42:0e:32:95:0d:85:f0:ee:e4:11:7b:0e:5b:81:d0:ef: 21:ff:d3:a5:b0:cf:72:f4:9b:e5:0a:f2:7d:77:dd:d0:db:dd: 7d:23:11:40:2a:78:7e:5f:6e:f9:c6:ee:ad:c6:de:25:b9:d7: 66:7d:ed:50:51:52:bd:6a:f7:62:ed:9f:b5:2f:60:fd:0d:5f: d8:7b:95:dd:c1:9c:34:e8:13:54:97:d9:dc:02:0c:26:ef:09: c1:a9:d3:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUxMTA0MjM0NTMwWhcNMjUxMTExMjM0NTMwWjAYMRYwFAYD VQQDEw02OTBhOTAxYS1hZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu50A6SdFjTTijviRIA0JFYMx5twMkvgFPoxP8ng3hLaDssv0bNCbZo4FCiV/ dGYv2rmEUNKTFn0aIiN/WJ6G0qViqJKCxbhCeatANrzR9aRxFX48kMoXMamzeike M5VJWgQ7E9P4Jk8/1ztE0E5Nl0+Zp3EOGdj3MdsxGcbCcLCW+c8GFlQPQrtH1gjl x6BUhwLHFfGMRTV3n4jG3fB6C/PJwixw+FyhyCyxiAz6mmawfPZbYkG9JCqHHG9D 9F6qOW01A/e+S8rQ1A5pa+rSgfPsRxbpxtoxVTu6rVVht02s6bVBkvXrjw2tXeYx jf8axpzfgxLNfCpxs0Resr4bDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGa0paVY mv3sTiTFj2S9Chmz1wdKMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk9Fip4lO3Ru2G1FPvyieR86CpQfwxILcvaQ1zOuHWuGVx5Q+4UtCZ gVh1qjoBb6Xjrly0Aty3rG5E1h7mmYEZgE8USU3T1+Z/kE4T9xXXOl3q9UQLXVVu t3g8KG/bD/b+B+C5yL1/SHCbOdyW7A9+1Z/udGND7lIpwhdZrZTb2FDnUG8KXJEJ X3tV0ovonZKElPu4px74TEMxATurL9Pr2WFgKkIOMpUNhfDu5BF7DluB0O8h/9Ol sM9y9JvlCvJ9d93Q2919IxFAKnh+X275xu6txt4luddmfe1QUVK9avdi7Z+1L2D9 DV/Ye5XdwZw06BNUl9ncAgwm7wnBqdPw -----END CERTIFICATE-----Generated at Wed Nov 5 15:05:41 2025 by rpki-client