$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: swe3dUMXnUnoiQe1uUApPx77NBea7DsknNECDelzIy8= Subject key identifier: 62:98:0F:DA:6C:92:E6:4D:FC:3D:52:D8:B1:8E:FA:EF:6B:8A:77:34 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A0A Signing time: Tue 04 Nov 2025 19:55:02 +0000 Manifest this update: Tue 04 Nov 2025 19:55:01 +0000 Manifest next update: Tue 11 Nov 2025 19:55:01 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: kKwN/+Ll/ISz+LXONx2fFD5zpX8JLGJK7IgWMqGqcJ0=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Nov 4 19:55:01 2025 GMT Not After : Nov 11 19:55:01 2025 GMT Subject: CN=690a5a16-0023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1f:de:17:fb:75:ab:b9:b1:76:3d:f8:b7:5f: 90:93:43:bb:2c:bc:bc:60:18:b7:cd:82:01:6c:ac: 35:c3:25:14:38:82:11:8a:ba:0f:26:72:c2:f5:a7: a4:16:d8:24:10:c9:d7:27:c0:89:46:04:52:56:8a: dd:24:65:34:44:51:b4:77:d9:c6:36:0c:91:17:31: ed:c7:ca:62:5d:5e:5e:e2:ad:16:1c:cc:d5:d8:39: bf:1a:a2:5e:1f:cf:49:8e:18:42:48:6d:d8:61:9b: 47:dd:53:00:ac:d8:ad:72:84:3c:2a:e4:c8:20:f0: 71:ad:c8:23:50:ff:2a:a9:0f:73:eb:ef:f0:c8:be: 1d:78:a4:bb:b8:dc:8e:75:8f:90:1c:5d:0a:28:5a: a8:2d:fb:70:7d:67:91:2c:59:70:02:03:df:a9:0b: 96:ff:cb:d7:2d:df:40:fb:f1:68:f4:29:d1:31:ca: 21:3b:6f:fd:a6:d4:63:8c:e5:63:0b:d9:3c:ef:08: 45:38:10:a7:4d:89:cd:47:23:37:4d:31:ec:d9:ec: e4:2b:1e:81:41:e4:82:e2:65:a3:03:44:72:b2:43: ce:92:46:f0:71:53:75:8f:98:b3:10:c0:32:69:72: 22:41:cb:89:2d:48:18:2a:bd:5d:98:16:18:76:cc: df:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:98:0F:DA:6C:92:E6:4D:FC:3D:52:D8:B1:8E:FA:EF:6B:8A:77:34 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:7f:0b:35:d7:a1:c7:af:6c:75:27:e4:9a:78:fc:13:7c:30: d7:24:72:ce:bd:27:2f:01:da:3c:1d:b9:fc:35:fc:b0:59:47: bb:88:8f:bf:cf:f8:5c:38:df:78:b4:c3:cd:0e:2f:65:49:37: ab:60:75:02:b6:be:4d:1a:76:08:b5:78:01:e2:18:61:63:60: 22:4e:3f:c4:c6:78:21:45:94:3d:9d:14:f1:28:54:28:9d:4b: 95:2d:55:3b:7e:a2:5f:2e:52:47:58:c2:a0:07:af:3b:ae:21: 65:ea:b0:4b:d9:c0:a4:fc:da:55:67:53:6c:2f:61:df:f2:a8: ac:2e:e1:55:61:6a:a3:44:18:d6:dc:86:d2:9d:bd:10:b2:03: 7a:42:8e:41:e6:ec:c2:a6:af:50:f6:7d:b3:4b:40:d3:87:88: 0a:36:85:82:34:ec:ba:05:67:69:bc:7c:88:71:b6:53:9c:34: 26:84:e2:91:53:2e:e1:47:97:59:a6:b7:e9:1b:9e:46:50:4b: b4:32:21:89:c5:6e:cf:5f:ad:d9:23:7d:21:64:43:7a:01:a6: 21:65:10:93:15:5f:94:9c:05:cf:69:30:a3:b8:fa:af:47:e3: 69:58:b2:3a:33:6f:b4:1a:7a:a6:cd:f8:30:33:2f:7f:d9:b8: df:98:7f:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUxMTA0MTk1NTAxWhcNMjUxMTExMTk1NTAxWjAYMRYwFAYD VQQDEw02OTBhNWExNi0wMDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2R/eF/t1q7mxdj34t1+Qk0O7LLy8YBi3zYIBbKw1wyUUOIIRiroPJnLC9aek FtgkEMnXJ8CJRgRSVordJGU0RFG0d9nGNgyRFzHtx8piXV5e4q0WHMzV2Dm/GqJe H89JjhhCSG3YYZtH3VMArNitcoQ8KuTIIPBxrcgjUP8qqQ9z6+/wyL4deKS7uNyO dY+QHF0KKFqoLftwfWeRLFlwAgPfqQuW/8vXLd9A+/Fo9CnRMcohO2/9ptRjjOVj C9k87whFOBCnTYnNRyM3TTHs2ezkKx6BQeSC4mWjA0RyskPOkkbwcVN1j5izEMAy aXIiQcuJLUgYKr1dmBYYdszfPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKYD9ps kuZN/D1S2LGO+u9rinc0MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLfws116HHr2x1J+SaePwTfDDXJHLOvScvAdo8Hbn8NfywWUe7iI+/ z/hcON94tMPNDi9lSTerYHUCtr5NGnYItXgB4hhhY2AiTj/ExnghRZQ9nRTxKFQo nUuVLVU7fqJfLlJHWMKgB687riFl6rBL2cCk/NpVZ1NsL2Hf8qisLuFVYWqjRBjW 3IbSnb0QsgN6Qo5B5uzCpq9Q9n2zS0DTh4gKNoWCNOy6BWdpvHyIcbZTnDQmhOKR Uy7hR5dZprfpG55GUEu0MiGJxW7PX63ZI30hZEN6AaYhZRCTFV+UnAXPaTCjuPqv R+NpWLI6M2+0GnqmzfgwMy9/2bjfmH8J -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:30 2025 by rpki-client