$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: w9MOdFdts8nsbgOO9v0ysYr1fe1tk433TTt8SUWTpEs= Subject key identifier: AE:A7:20:42:3C:43:47:A5:4B:22:C1:30:B2:1E:FD:86:BD:5B:A2:AF Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: FE Signing time: Wed 05 Nov 2025 05:17:56 +0000 Manifest this update: Wed 05 Nov 2025 05:17:55 +0000 Manifest next update: Wed 12 Nov 2025 05:17:55 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: A5a/zEc1yXcAV57wZC4QzdPzzw0KJHbdQYIAnbTZLjs=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: wZz+OlqUMy/mBTlpV+JPL6/+u7+0FBG8gjwEC4u2wAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Nov 5 05:17:55 2025 GMT Not After : Nov 12 05:17:55 2025 GMT Subject: CN=690ade03-a2d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:cd:a0:65:f6:0c:80:31:f6:2f:da:f7:32: 52:d8:bd:c1:53:37:a2:1d:c6:78:76:fa:82:ab:d5: f6:80:f7:8d:4b:7d:84:ac:02:bd:b7:5e:de:36:22: 0f:df:ec:cb:b5:98:0a:79:d7:f7:54:7b:b3:2c:b4: 48:3b:59:ed:a0:72:be:de:e1:33:ec:f7:af:3b:ab: 89:07:4b:cb:89:fb:47:95:7c:27:46:63:ed:65:5d: 0b:83:11:09:5b:b3:bc:b8:ae:02:bc:69:30:cc:88: 90:20:3d:7c:6a:ed:be:a0:6c:c0:7e:3e:cd:00:eb: 91:9c:fb:2b:af:c4:46:1b:cf:5f:07:12:92:2d:c6: 31:c4:a7:46:52:5a:e8:30:8c:57:89:8e:4d:08:e6: e1:be:cf:c9:e7:65:f2:96:a2:c5:13:c6:0e:08:31: f6:1e:31:26:03:3b:e6:0a:e1:79:86:7b:b1:40:58: de:9c:3d:14:47:fd:ef:8c:34:8a:00:bc:72:77:a6: c6:73:f9:e2:27:5e:7f:57:48:40:cb:4f:c2:95:92: 2c:1a:21:90:30:ee:4c:88:66:4c:a3:be:c9:88:00: 96:4d:61:34:4f:fb:c7:a1:ce:e2:e3:71:cc:68:f7: 9d:16:ca:8c:af:95:28:16:6e:fd:7e:b7:91:e9:7b: 36:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A7:20:42:3C:43:47:A5:4B:22:C1:30:B2:1E:FD:86:BD:5B:A2:AF X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:42:0e:c7:a9:72:bc:d4:07:e5:16:68:d9:34:7a:0d:1c:74: 2d:56:c2:5b:0e:19:d3:e7:d7:13:1e:30:23:21:2b:ff:d9:04: e9:c5:0e:e1:9c:dd:02:74:b1:a0:a9:5c:12:fb:85:60:ee:50: a1:a9:e7:a0:75:4a:b9:aa:d9:64:f7:51:07:a7:10:80:e0:a9: 4b:44:98:83:ef:8c:5c:ce:08:f5:49:39:2e:52:e0:42:20:08: 61:7b:17:9a:ca:4c:ea:e8:81:67:b3:d0:e2:e7:1b:ec:4a:07: b7:01:6f:10:9b:9b:2b:e6:23:15:9c:f0:34:2e:cd:04:e4:43: 4c:09:bb:70:92:38:ff:f2:51:5b:f6:7b:e5:23:5a:86:3a:d1: 7d:43:e9:c4:7b:80:a2:d4:65:78:5f:da:23:1c:3e:9f:65:e0: 15:7d:55:5a:ab:f2:55:10:23:26:c4:4e:5d:14:cb:06:f5:db: e9:71:f2:f1:5d:4f:6a:28:21:ea:85:79:18:9a:99:38:83:e9: 22:3f:46:f5:38:eb:78:6e:46:e8:36:40:90:5b:16:66:ea:f9: ee:fb:71:ec:a8:80:2f:43:e1:73:39:cd:77:02:26:95:9f:9a: 6a:a4:45:88:94:bc:7a:44:6a:d2:fa:64:85:fc:20:4b:c2:84: ff:04:60:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUxMTA1MDUxNzU1WhcNMjUxMTEyMDUxNzU1WjAYMRYwFAYD VQQDEw02OTBhZGUwMy1hMmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6fNoGX2DIAx9i/a9zJS2L3BUzeiHcZ4dvqCq9X2gPeNS32ErAK9t17eNiIP 3+zLtZgKedf3VHuzLLRIO1ntoHK+3uEz7PevO6uJB0vLiftHlXwnRmPtZV0LgxEJ W7O8uK4CvGkwzIiQID18au2+oGzAfj7NAOuRnPsrr8RGG89fBxKSLcYxxKdGUlro MIxXiY5NCObhvs/J52XylqLFE8YOCDH2HjEmAzvmCuF5hnuxQFjenD0UR/3vjDSK ALxyd6bGc/niJ15/V0hAy0/ClZIsGiGQMO5MiGZMo77JiACWTWE0T/vHoc7i43HM aPedFsqMr5UoFm79freR6Xs2pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6nIEI8 Q0elSyLBMLIe/Ya9W6KvMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTQg7HqXK81AflFmjZNHoNHHQtVsJbDhnT59cTHjAjISv/2QTpxQ7h nN0CdLGgqVwS+4Vg7lChqeegdUq5qtlk91EHpxCA4KlLRJiD74xczgj1STkuUuBC IAhhexeaykzq6IFns9Di5xvsSge3AW8Qm5sr5iMVnPA0Ls0E5ENMCbtwkjj/8lFb 9nvlI1qGOtF9Q+nEe4Ci1GV4X9ojHD6fZeAVfVVaq/JVECMmxE5dFMsG9dvpcfLx XU9qKCHqhXkYmpk4g+kiP0b1OOt4bkboNkCQWxZm6vnu+3HsqIAvQ+FzOc13AiaV n5pqpEWIlLx6RGrS+mSF/CBLwoT/BGBO -----END CERTIFICATE-----Generated at Wed Nov 5 10:29:37 2025 by rpki-client