$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: iDc7MMh1NBha4hkitO++nSbWyySZdVx2/8ix3UJqFrM= Subject key identifier: FB:AC:11:D0:E8:E0:07:87:92:41:22:A4:70:24:5A:AC:C8:63:05:9B Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 07DC Signing time: Tue 04 Nov 2025 21:15:40 +0000 Manifest this update: Tue 04 Nov 2025 21:15:39 +0000 Manifest next update: Tue 11 Nov 2025 21:15:39 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: IpYYbL0OafznERpCEyXY0prfef2jm3l8CU9nKWSvyG0=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Nov 4 21:15:39 2025 GMT Not After : Nov 11 21:15:39 2025 GMT Subject: CN=690a6cfb-2036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5c:93:f2:d0:da:f7:5d:82:ce:47:45:15:21: a4:5f:ec:f9:31:15:41:c0:42:64:e9:44:a5:14:a6: 23:58:31:69:0b:fb:03:fc:9d:f4:05:4e:61:e5:58: d9:4c:92:b4:30:25:42:ad:00:49:4a:b5:e6:8c:bd: 42:4a:4f:d7:cf:8d:8b:f5:22:3c:51:6f:92:4c:86: 57:b9:74:f4:a4:ba:d5:92:04:c2:c7:a2:00:c0:a0: af:02:90:10:48:52:16:d5:60:f1:14:33:1f:b5:8e: 6e:21:ad:09:0c:e3:1c:a5:c8:f9:bb:a4:8d:50:c5: c5:87:e0:12:70:ac:fe:80:34:6b:4f:64:6a:de:ef: 40:09:8b:26:4a:f6:91:74:e6:3a:da:c0:07:5b:c8: 76:aa:71:eb:ad:55:37:bb:14:68:63:73:f1:78:94: c1:12:54:25:ae:4b:33:91:96:1c:a3:af:ff:89:67: b1:e9:07:33:bd:c3:25:0c:e6:f8:94:7e:04:d9:77: 53:72:99:de:74:5c:fb:f6:8b:53:af:92:da:b4:b7: a5:0f:98:4f:1f:23:7d:00:19:a1:6c:21:2e:05:01: 47:7d:65:dd:49:3c:20:6a:1b:fb:19:95:ef:7e:e0: 96:f6:9e:d9:22:a9:d0:bd:cc:d2:88:97:27:28:26: 9e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AC:11:D0:E8:E0:07:87:92:41:22:A4:70:24:5A:AC:C8:63:05:9B X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:07:c9:fc:da:11:32:c4:b1:e4:01:98:81:79:62:ca:75:ce: 3c:c5:f6:83:04:91:50:3c:08:45:34:d7:0f:ed:0d:76:90:4e: 24:32:b9:82:0a:76:9c:e4:cd:e0:10:fd:09:d3:3e:cc:2b:1e: 73:9c:ab:2d:f6:39:34:50:aa:d4:9f:6b:d6:a4:e4:32:2e:95: a0:9c:c3:ab:72:57:cf:63:b3:1f:de:19:8d:64:4a:60:0b:35: f3:53:4e:e7:c5:c5:b4:79:94:39:73:0f:03:e3:99:ea:1f:9a: 72:85:0c:c1:8e:6a:e2:fb:33:ba:b8:1f:75:78:b7:4e:e2:9d: 5d:62:7d:c4:dc:e9:da:0c:68:93:9a:7b:5b:a3:f4:b7:69:38: a1:da:b9:3b:94:d9:e7:da:5a:f4:2e:fd:b1:bd:c9:2e:6c:d2: 4e:8e:5f:d4:6b:f7:01:6c:45:86:b9:ff:6f:dd:ec:42:26:fe: b8:3d:04:4b:1f:35:7e:37:d7:64:4e:d8:24:46:5b:eb:4b:e3: 65:32:50:78:ac:15:0c:1e:64:6b:94:7b:8d:b7:0b:1e:24:6f: 3b:19:25:13:ee:f0:9b:3d:bd:0c:19:25:d5:99:33:78:c6:2d: cd:0b:ba:33:82:ca:6d:27:04:84:51:7c:de:75:73:2a:d1:58: a4:2b:60:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUxMTA0MjExNTM5WhcNMjUxMTExMjExNTM5WjAYMRYwFAYD VQQDEw02OTBhNmNmYi0yMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VyT8tDa912CzkdFFSGkX+z5MRVBwEJk6USlFKYjWDFpC/sD/J30BU5h5VjZ TJK0MCVCrQBJSrXmjL1CSk/Xz42L9SI8UW+STIZXuXT0pLrVkgTCx6IAwKCvApAQ SFIW1WDxFDMftY5uIa0JDOMcpcj5u6SNUMXFh+AScKz+gDRrT2Rq3u9ACYsmSvaR dOY62sAHW8h2qnHrrVU3uxRoY3PxeJTBElQlrkszkZYco6//iWex6QczvcMlDOb4 lH4E2XdTcpnedFz79otTr5LatLelD5hPHyN9ABmhbCEuBQFHfWXdSTwgahv7GZXv fuCW9p7ZIqnQvczSiJcnKCaeFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPusEdDo 4AeHkkEipHAkWqzIYwWbMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLB8n82hEyxLHkAZiBeWLKdc48xfaDBJFQPAhFNNcP7Q12kE4kMrmC Cnac5M3gEP0J0z7MKx5znKst9jk0UKrUn2vWpOQyLpWgnMOrclfPY7Mf3hmNZEpg CzXzU07nxcW0eZQ5cw8D45nqH5pyhQzBjmri+zO6uB91eLdO4p1dYn3E3OnaDGiT mntbo/S3aTih2rk7lNnn2lr0Lv2xvckubNJOjl/Ua/cBbEWGuf9v3exCJv64PQRL HzV+N9dkTtgkRlvrS+NlMlB4rBUMHmRrlHuNtwseJG87GSUT7vCbPb0MGSXVmTN4 xi3NC7ozgsptJwSEUXzedXMq0VikK2BI -----END CERTIFICATE-----Generated at Wed Nov 5 20:58:25 2025 by rpki-client