$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft File: iifxtRRZ_TbLLIBghxxVOPnSPX4.mft (raw, json) Hash identifier: oE8+35TYynllK2McJeZBrdrm2NQm4nURem+vhsi8kWI= Subject key identifier: 8E:F6:3F:75:E1:9F:9F:23:5C:B2:25:85:A6:38:E4:9F:17:AE:8C:51 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft Manifest number: 0116 Signing time: Mon 03 Nov 2025 04:54:24 +0000 Manifest this update: Mon 03 Nov 2025 04:54:23 +0000 Manifest next update: Mon 10 Nov 2025 04:54:23 +0000 Files and hashes: 1: iifxtRRZ_TbLLIBghxxVOPnSPX4.crl (hash: zNyECCmj+XSGKF427GK2d7eAzH+6VmfqM8AzhASulnY=) 2: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (hash: 7Ge+Ur1HNSgNTEqBJNH+Y2JY0m3BlGqRwSkervRpW04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD, serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: Nov 3 04:54:23 2025 GMT Not After : Nov 10 04:54:23 2025 GMT Subject: CN=69083580-d740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:df:ee:18:d6:d9:7d:64:1d:38:9f:80:43:a2: 8d:8b:4c:08:98:19:0e:94:4f:ab:f3:a8:da:43:4b: ba:d6:ac:33:51:e5:fd:db:db:95:bc:ef:ad:d1:7b: 99:cc:b0:46:4e:55:cd:d4:1b:6a:16:b8:b6:64:27: f6:6c:64:e0:53:cd:2f:58:f5:9c:56:ba:15:1e:cc: f8:4e:d6:ea:a5:da:8d:af:1c:bd:c7:52:40:09:22: 66:ff:9f:2f:21:83:6f:dc:11:53:98:4f:fc:3c:ef: a3:d6:01:08:d2:8c:20:1b:7d:93:d0:b2:83:d5:b1: 83:7c:16:73:af:62:31:d7:55:78:0a:ed:42:ee:f1: b8:ca:8a:0c:38:cc:83:05:6b:2e:03:7b:89:d6:1c: 9a:e4:a4:24:3f:9f:e2:4c:a7:16:cc:fa:96:d2:ea: 38:cc:d3:ef:7a:d9:68:76:3a:49:a5:7c:9a:b2:ab: f0:06:3c:6e:c1:fb:43:d4:9b:2c:88:bc:3f:79:b1: 3d:3e:ac:4a:68:72:10:1e:f1:64:9f:dc:12:84:0b: 20:5c:fd:a3:e9:6a:58:63:9d:c4:86:dd:5a:d5:a4: 72:dd:6f:d5:ef:ed:c0:9e:a9:f2:2f:78:4e:c1:c3: 64:90:d1:f2:8f:9a:54:c3:6f:b6:c9:8b:c5:1d:0e: b9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F6:3F:75:E1:9F:9F:23:5C:B2:25:85:A6:38:E4:9F:17:AE:8C:51 X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:84:5b:a0:6e:03:de:55:54:89:63:75:34:ac:39:d6:65:32: 16:e1:8d:b4:da:ad:83:4e:3c:ad:a3:c2:ff:24:68:fb:a3:55: d6:df:59:8f:60:35:ee:38:fa:65:fa:48:8c:4a:07:7d:15:1a: e6:1d:83:6d:9f:32:f8:99:6a:df:0a:a0:b2:14:b9:1a:b1:b2: 8d:43:be:2b:e9:cb:3d:6b:04:db:68:d9:2f:8c:04:18:4c:20: c5:24:a3:98:cd:ff:1e:6d:c4:26:b8:af:98:76:60:f9:85:0d: da:22:04:07:27:60:00:40:3a:ee:ac:9d:3d:41:27:31:96:c3: 0d:b2:53:55:95:f1:84:c1:18:e3:61:ee:40:8e:96:81:f6:8b: f7:0e:75:b5:ec:1d:0b:41:c0:14:4d:0d:ad:91:75:7e:69:cb: e3:20:df:1b:65:ab:b4:2f:3e:b8:5c:98:cd:bf:1f:34:07:e5: 46:f7:01:4f:12:88:79:3f:e7:57:2c:72:e3:6e:68:ff:4a:b7: 3b:65:9a:d2:e8:46:9e:df:21:a8:e1:94:cc:98:76:5b:53:84: 6c:6a:5f:e6:0b:da:68:5d:e3:97:59:ac:26:90:0b:78:11:60: c4:10:a0:d4:4c:20:ea:4b:e0:aa:45:2a:8c:f2:46:cc:c2:0a: 40:63:57:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQ0QxMTAvBgNVBAUTKDhBMjdGMUI1MTQ1OUZEMzZDQjJDODA2MDg3MUM1NTM4 RjlEMjNEN0UwHhcNMjUxMTAzMDQ1NDIzWhcNMjUxMTEwMDQ1NDIzWjAYMRYwFAYD VQQDEw02OTA4MzU4MC1kNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1N/uGNbZfWQdOJ+AQ6KNi0wImBkOlE+r86jaQ0u61qwzUeX929uVvO+t0XuZ zLBGTlXN1BtqFri2ZCf2bGTgU80vWPWcVroVHsz4TtbqpdqNrxy9x1JACSJm/58v IYNv3BFTmE/8PO+j1gEI0owgG32T0LKD1bGDfBZzr2Ix11V4Cu1C7vG4yooMOMyD BWsuA3uJ1hya5KQkP5/iTKcWzPqW0uo4zNPvetlodjpJpXyasqvwBjxuwftD1Jss iLw/ebE9PqxKaHIQHvFkn9wShAsgXP2j6WpYY53Eht1a1aRy3W/V7+3AnqnyL3hO wcNkkNHyj5pUw2+2yYvFHQ65OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI72P3Xh n58jXLIlhaY45J8XroxRMB8GA1UdIwQYMBaAFIon8bUUWf02yyyAYIccVTj50j1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFDRC84RUExOUFBMjE5 OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9UYkxMSUJnaHh4Vk9QblNQ WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi9paWZ4dFJSWl9U YkxMSUJnaHh4Vk9QblNQWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQhFugbgPeVVSJY3U0rDnWZTIW4Y202q2DTjyto8L/JGj7o1XW31mP YDXuOPpl+kiMSgd9FRrmHYNtnzL4mWrfCqCyFLkasbKNQ74r6cs9awTbaNkvjAQY TCDFJKOYzf8ebcQmuK+YdmD5hQ3aIgQHJ2AAQDrurJ09QScxlsMNslNVlfGEwRjj Ye5AjpaB9ov3DnW17B0LQcAUTQ2tkXV+acvjIN8bZau0Lz64XJjNvx80B+VG9wFP Eoh5P+dXLHLjbmj/Src7ZZrS6Eae3yGo4ZTMmHZbU4Rsal/mC9poXeOXWawmkAt4 EWDEEKDUTCDqS+CqRSqM8kbMwgpAY1fy -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:13 2025 by rpki-client