$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: ryzyCdNNL2dXRwj4h+RZrZUtuyAINQgjslVQ+MG8eJw= Subject key identifier: 89:D4:E7:BB:15:9A:93:5A:ED:80:5F:21:74:5A:0F:D8:80:AD:72:44 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 01A9 Signing time: Mon 03 Nov 2025 03:12:12 +0000 Manifest this update: Mon 03 Nov 2025 03:12:11 +0000 Manifest next update: Mon 10 Nov 2025 03:12:11 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: l+ACnteqm2bgOhxg31jFAc2JLcoefPDJa7XXKc8FFjA=) 2: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: X7xyaBh0Wrmfm5LffdWxPUUrmnom17OByzAiI+OrkqU=) 3: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: MWF9yk30FJElBkURG2FIcNXpLWF91bW+ys8O1aYlGaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:12:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644, serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: Nov 3 03:12:11 2025 GMT Not After : Nov 10 03:12:11 2025 GMT Subject: CN=69081d8b-6303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3a:44:4f:51:0f:df:f1:f1:26:c8:da:03:08: be:03:05:85:8d:49:b0:97:69:e1:52:f9:3e:aa:05: bc:21:5b:f6:54:ab:40:e5:12:b7:f4:e5:6f:08:76: ef:dd:c9:03:02:40:6c:f2:7a:9b:cf:ba:da:e8:ec: d6:60:09:04:13:81:71:ed:39:63:f3:2b:3a:62:53: b3:a8:9c:7f:fd:d3:06:0d:1f:bb:12:64:d1:8b:87: 06:78:4a:03:2d:62:e3:a0:53:69:2f:3e:e7:12:8e: da:d2:d3:ad:6a:90:c1:d0:44:68:0a:cd:15:fe:30: 7e:e3:e4:98:f1:e2:f1:01:2a:32:2b:3c:e9:a6:5a: 04:d5:2a:63:d7:a8:fa:7e:05:dd:e3:d6:5c:0d:ab: f7:ff:cd:a7:f8:0c:e9:b3:f4:e6:d3:a1:b8:d8:a9: c0:e7:b4:64:5c:dd:3d:f7:b7:e2:96:77:67:2d:00: 81:7a:cd:5e:fa:77:28:b3:45:66:23:5e:eb:e9:5a: e2:09:f5:c0:53:8b:9a:c2:15:3d:5c:c3:73:f7:a6: 07:ec:4f:28:32:2e:91:04:86:9e:05:d0:12:c5:e4: 11:aa:3a:98:4c:7a:2d:52:cd:6b:d8:15:21:b3:81: 46:da:fd:b7:01:2c:2d:36:40:df:20:6b:a0:34:c8: 9a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D4:E7:BB:15:9A:93:5A:ED:80:5F:21:74:5A:0F:D8:80:AD:72:44 X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:18:c3:c9:47:e2:43:66:93:ea:55:50:3b:36:88:8d:d9:65: 83:e0:2e:39:26:68:9a:cd:03:a8:bc:a4:e2:37:71:01:dc:cf: 61:c3:28:8d:f1:9a:b5:b5:9f:10:0a:39:3c:5c:ab:13:6e:ab: c5:5d:28:51:83:97:52:70:7d:4d:32:0c:c4:87:3d:c3:1b:90: 68:13:48:14:70:e4:7b:03:7d:c6:e1:d4:e0:24:e2:94:6f:28: 54:d1:45:2a:af:4e:e4:f5:9f:35:ee:ae:dd:64:62:d0:c6:5c: 8f:cc:6d:6a:f1:81:f3:f7:61:5f:76:ba:7d:01:31:4d:d3:18: 0d:51:7d:5b:1b:72:f8:48:73:47:49:17:ff:e0:91:45:63:dc: 3e:31:8f:d0:78:92:2d:97:55:ef:1e:b3:93:85:ac:6f:1a:e1: d9:3d:2e:d9:dc:3f:14:c8:56:35:6f:5e:01:11:3c:65:04:e4: c4:cf:83:37:06:b4:6a:7a:ec:70:74:df:78:cf:37:bc:e1:74: 1b:2f:a1:eb:3a:a8:8b:25:67:96:87:c9:c3:9f:ae:d0:fc:77: 6b:bd:8f:63:3b:f3:d6:1f:c2:99:51:a8:b4:5f:15:8b:9a:df: 03:0b:e8:67:00:f7:78:b9:a7:03:f7:d5:6f:a4:81:30:31:78: 50:f3:73:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjUxMTAzMDMxMjExWhcNMjUxMTEwMDMxMjExWjAYMRYwFAYD VQQDEw02OTA4MWQ4Yi02MzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjpET1EP3/HxJsjaAwi+AwWFjUmwl2nhUvk+qgW8IVv2VKtA5RK39OVvCHbv 3ckDAkBs8nqbz7ra6OzWYAkEE4Fx7Tlj8ys6YlOzqJx//dMGDR+7EmTRi4cGeEoD LWLjoFNpLz7nEo7a0tOtapDB0ERoCs0V/jB+4+SY8eLxASoyKzzpploE1Spj16j6 fgXd49ZcDav3/82n+Azps/Tm06G42KnA57RkXN0997filndnLQCBes1e+ncos0Vm I17r6VriCfXAU4uawhU9XMNz96YH7E8oMi6RBIaeBdASxeQRqjqYTHotUs1r2BUh s4FG2v23ASwtNkDfIGugNMiaQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInU57sV mpNa7YBfIXRaD9iArXJEMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDGMPJR+JDZpPqVVA7NoiN2WWD4C45JmiazQOovKTiN3EB3M9hwyiN 8Zq1tZ8QCjk8XKsTbqvFXShRg5dScH1NMgzEhz3DG5BoE0gUcOR7A33G4dTgJOKU byhU0UUqr07k9Z817q7dZGLQxlyPzG1q8YHz92Ffdrp9ATFN0xgNUX1bG3L4SHNH SRf/4JFFY9w+MY/QeJItl1XvHrOThaxvGuHZPS7Z3D8UyFY1b14BETxlBOTEz4M3 BrRqeuxwdN94zze84XQbL6HrOqiLJWeWh8nDn67Q/HdrvY9jO/PWH8KZUai0XxWL mt8DC+hnAPd4uacD99VvpIEwMXhQ83M9 -----END CERTIFICATE-----Generated at Tue Nov 4 16:13:19 2025 by rpki-client