$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: OWfI5pOpskQM6i0HnlbFQlESivFZc/4+8bcePloXisU= Subject key identifier: 28:51:4B:28:D9:23:2B:56:14:F3:2A:16:7D:F0:CC:58:38:96:F9:39 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 09DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 09D4 Signing time: Tue 04 Nov 2025 20:03:13 +0000 Manifest this update: Tue 04 Nov 2025 20:03:13 +0000 Manifest next update: Tue 11 Nov 2025 20:03:13 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: yzl707C9UUJeQdHOsef9g66SEsQuDEkBgA8PO2V6ZK0=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2525 (0x9dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Nov 4 20:03:13 2025 GMT Not After : Nov 11 20:03:13 2025 GMT Subject: CN=690a5c01-a521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d4:66:88:63:52:cd:95:77:55:23:02:17:60: 45:34:bf:4e:36:d4:40:f0:04:61:29:58:fc:92:9d: 21:f6:07:a8:46:de:d7:5b:77:0f:ba:4c:43:77:ed: 7f:e4:da:03:07:24:c9:29:f1:b2:63:4b:cd:22:22: e2:ea:34:5a:c0:48:08:08:0a:46:37:b4:cf:6c:30: c7:48:0e:ec:dc:af:c1:f4:96:1a:fe:02:76:b7:49: 24:67:5d:a6:4e:33:80:1e:0c:28:ea:4d:a8:7d:a8: 61:4b:59:25:45:75:eb:dd:fe:bd:60:b4:40:35:3c: 14:aa:73:c3:bc:17:6d:23:f3:5f:d3:92:79:88:74: a2:24:9d:9b:77:ca:c0:e5:9b:76:f8:b1:0b:ee:62: dc:ab:ce:87:c8:fc:5f:fd:4e:1f:8c:66:b4:9c:ab: 65:3b:a7:a9:01:0d:64:ea:97:af:66:6c:7e:26:a7: af:e9:d5:38:71:f4:f5:bf:00:52:f5:3c:62:ba:04: b0:2e:9a:47:bb:5e:73:b2:9f:9f:8c:45:5d:3d:80: 0c:9f:49:d5:0e:2a:99:2d:9f:13:18:cc:c1:ca:fd: 11:3f:cb:de:be:78:b0:26:e4:c7:87:f8:61:34:82: 4a:fa:d5:aa:f9:ad:52:f7:23:f4:6b:ed:e3:73:42: d7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:51:4B:28:D9:23:2B:56:14:F3:2A:16:7D:F0:CC:58:38:96:F9:39 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:30:3d:92:ce:d1:14:17:eb:46:d4:35:dd:14:02:36:ce:7c: 93:3e:ab:09:26:02:4d:4b:06:e1:a1:dd:1e:b8:90:c6:c6:de: fd:d2:4a:1a:0f:c8:af:09:d7:2b:9c:e6:48:03:a4:ba:2b:97: 64:29:44:1b:74:38:48:c3:6a:d4:79:1f:54:63:7d:e1:3c:5e: 70:51:22:3d:32:20:f8:9e:d0:48:b0:d6:ca:d6:54:05:aa:77: c6:1a:2b:94:67:b5:13:43:af:ed:bf:4e:ab:dd:4d:2b:43:07: 32:7a:c9:8a:56:f4:b1:5c:90:bd:af:fc:2f:e9:38:41:9e:88: a2:29:30:08:a7:21:ab:85:02:38:c4:cf:66:07:03:2f:97:d8: 2d:05:cd:56:d5:15:b1:7f:ca:b3:be:00:54:c7:ba:99:83:c1: bd:42:d9:cc:21:c9:67:41:8c:97:27:ee:2b:df:dd:74:a3:5f: 4c:a1:72:f8:1e:86:a0:3f:d6:a4:f1:c3:49:b4:19:12:f1:36: 66:34:6a:f0:9b:86:40:a2:ec:97:10:8d:ad:dd:8a:eb:df:2a: 91:95:4d:bd:53:1c:2b:74:c7:f8:2e:fc:5e:59:4d:83:7b:40: 6f:f8:7f:e2:05:1c:91:9b:22:d8:50:e3:0f:79:bb:db:2a:fe: 61:d3:65:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUxMTA0MjAwMzEzWhcNMjUxMTExMjAwMzEzWjAYMRYwFAYD VQQDEw02OTBhNWMwMS1hNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdRmiGNSzZV3VSMCF2BFNL9ONtRA8ARhKVj8kp0h9geoRt7XW3cPukxDd+1/ 5NoDByTJKfGyY0vNIiLi6jRawEgICApGN7TPbDDHSA7s3K/B9JYa/gJ2t0kkZ12m TjOAHgwo6k2ofahhS1klRXXr3f69YLRANTwUqnPDvBdtI/Nf05J5iHSiJJ2bd8rA 5Zt2+LEL7mLcq86HyPxf/U4fjGa0nKtlO6epAQ1k6pevZmx+Jqev6dU4cfT1vwBS 9TxiugSwLppHu15zsp+fjEVdPYAMn0nVDiqZLZ8TGMzByv0RP8vevniwJuTHh/hh NIJK+tWq+a1S9yP0a+3jc0LX9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChRSyjZ IytWFPMqFn3wzFg4lvk5MB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkMD2SztEUF+tG1DXdFAI2znyTPqsJJgJNSwbhod0euJDGxt790koa D8ivCdcrnOZIA6S6K5dkKUQbdDhIw2rUeR9UY33hPF5wUSI9MiD4ntBIsNbK1lQF qnfGGiuUZ7UTQ6/tv06r3U0rQwcyesmKVvSxXJC9r/wv6ThBnoiiKTAIpyGrhQI4 xM9mBwMvl9gtBc1W1RWxf8qzvgBUx7qZg8G9QtnMIclnQYyXJ+4r3910o19MoXL4 HoagP9ak8cNJtBkS8TZmNGrwm4ZAouyXEI2t3Yrr3yqRlU29UxwrdMf4LvxeWU2D e0Bv+H/iBRyRmyLYUOMPebvbKv5h02V6 -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:32 2025 by rpki-client