$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft File: It8xdbHdMjEX4MGfP21qHncfnB8.mft (raw, json) Hash identifier: 3D08JGidn/LCNCcYO/32iszhh3LzkFd1Qs5X6EbPMAI= Subject key identifier: 2A:EF:0C:F0:8D:8F:FE:55:B2:42:F8:5E:36:0E:40:70:DA:17:73:71 Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0C86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft Manifest number: 0C7E Signing time: Tue 04 Nov 2025 18:31:20 +0000 Manifest this update: Tue 04 Nov 2025 18:31:19 +0000 Manifest next update: Tue 11 Nov 2025 18:31:19 +0000 Files and hashes: 1: It8xdbHdMjEX4MGfP21qHncfnB8.crl (hash: P1anLP5G4namr8rZ7hZdW80rdqzs+bFZrSiagTM1b0E=) 2: D725AC5C091411EABBFC8739C4F9AE02.roa (hash: jTKb6UqoxVKwoNueFvf3BZWhxggm3hq3OfDJsuiV3HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3206 (0xc86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B, serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Nov 4 18:31:19 2025 GMT Not After : Nov 11 18:31:19 2025 GMT Subject: CN=690a4678-1c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:15:3a:3b:46:24:5e:09:76:ef:10:d1:5b:eb: db:c9:a1:b4:13:60:95:ce:00:de:2c:dd:5b:ef:f1: f9:61:87:5e:a3:76:72:2c:2a:22:dc:03:fd:d3:4b: 38:43:f3:c9:66:90:7d:01:e7:f1:36:91:58:3b:9f: 91:13:e0:c3:94:84:d9:bd:a0:9d:32:c0:27:02:47: d3:21:fa:c6:6a:17:2e:09:00:24:45:e1:d2:a4:b8: 39:c5:22:1c:f1:55:53:a1:6c:34:80:e9:24:d9:a8: 99:5a:83:8e:01:0f:fa:dc:68:9d:8b:4e:d2:06:56: 36:56:ff:0e:8d:4f:30:df:49:9a:3f:70:8d:5f:de: 75:d4:8b:cb:0f:19:b0:67:17:89:a4:39:cd:4e:23: 20:53:95:b1:54:5d:03:a9:91:d9:d4:39:11:d1:16: 1b:df:91:4f:8a:ef:38:8b:9b:1d:c4:9c:db:a9:35: 44:cb:06:af:96:eb:cc:d4:95:9c:24:f4:20:5b:ce: f5:3d:2a:66:c6:df:18:0e:f7:a4:bb:dc:2b:87:be: e5:94:2e:07:52:70:9a:57:6b:52:59:6b:cd:fd:8c: 97:08:ef:2b:bd:97:32:89:9d:b6:09:8e:b8:a8:ab: 92:07:a2:68:53:2f:19:71:df:62:20:f9:7b:f9:8a: 73:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EF:0C:F0:8D:8F:FE:55:B2:42:F8:5E:36:0E:40:70:DA:17:73:71 X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:d5:38:7f:49:12:58:ec:01:3d:40:1a:ed:79:a1:07:50:38: 29:56:ee:5d:65:d8:07:db:4d:91:80:14:de:da:23:b7:97:c6: 12:81:f1:e5:fb:6c:6b:2e:03:01:16:db:38:1c:29:4f:5f:65: b4:76:0e:d3:f8:7c:b3:54:d9:dd:9f:f4:ba:a9:fc:1b:4a:67: 3f:5f:f3:97:9a:d4:88:a2:7f:50:9d:41:b7:a0:07:f4:41:c7: 43:c3:84:58:c4:5a:1b:38:6a:e8:0f:a6:17:13:6a:7d:48:cd: b5:7a:02:4e:8a:52:c5:1f:cd:4d:2d:50:ea:cf:e3:b7:c0:8b: fb:b9:85:99:2d:02:58:7c:c1:8b:f7:c4:fd:9b:12:92:ad:56: 33:0a:94:34:e8:0c:a9:b8:ea:e2:f1:a0:ce:1c:70:6e:bd:21: db:79:7d:42:dc:f2:57:22:61:9c:7b:7f:bf:b6:ea:e0:35:a7: 46:6c:53:01:44:e1:39:4a:51:60:58:3a:d6:33:b4:4d:2b:65: 16:5d:a5:78:a8:0a:87:47:a2:fb:10:61:75:a5:c8:23:63:26: c7:ad:73:48:cf:06:e1:6f:4a:21:87:6a:50:80:7e:60:c8:11: 45:1b:9a:eb:92:19:7a:ee:2d:90:79:95:cf:8e:94:59:5c:a1: 50:18:4e:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjUxMTA0MTgzMTE5WhcNMjUxMTExMTgzMTE5WjAYMRYwFAYD VQQDEw02OTBhNDY3OC0xYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRU6O0YkXgl27xDRW+vbyaG0E2CVzgDeLN1b7/H5YYdeo3ZyLCoi3AP900s4 Q/PJZpB9AefxNpFYO5+RE+DDlITZvaCdMsAnAkfTIfrGahcuCQAkReHSpLg5xSIc 8VVToWw0gOkk2aiZWoOOAQ/63Gidi07SBlY2Vv8OjU8w30maP3CNX9511IvLDxmw ZxeJpDnNTiMgU5WxVF0DqZHZ1DkR0RYb35FPiu84i5sdxJzbqTVEywavluvM1JWc JPQgW871PSpmxt8YDveku9wrh77llC4HUnCaV2tSWWvN/YyXCO8rvZcyiZ22CY64 qKuSB6JoUy8Zcd9iIPl7+YpzywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrvDPCN j/5VskL4XjYOQHDaF3NxMB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTQ4Qi8wNDk0MTBBRTA5MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1q RVg0TUdmUDIxcUhuY2ZuQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv1Th/SRJY7AE9QBrteaEHUDgpVu5dZdgH202RgBTe2iO3l8YSgfHl +2xrLgMBFts4HClPX2W0dg7T+HyzVNndn/S6qfwbSmc/X/OXmtSIon9QnUG3oAf0 QcdDw4RYxFobOGroD6YXE2p9SM21egJOilLFH81NLVDqz+O3wIv7uYWZLQJYfMGL 98T9mxKSrVYzCpQ06AypuOri8aDOHHBuvSHbeX1C3PJXImGce3+/turgNadGbFMB ROE5SlFgWDrWM7RNK2UWXaV4qAqHR6L7EGF1pcgjYybHrXNIzwbhb0ohh2pQgH5g yBFFG5rrkhl67i2QeZXPjpRZXKFQGE6y -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:13 2025 by rpki-client