$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: hxrZXXPre1iE1iWt7yBrTLWddedL5NVX+dWu0AZ4t88= Subject key identifier: 17:55:2B:4B:E3:E6:A0:33:9C:18:A6:00:BB:8E:80:F2:1F:89:F2:FD Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 0454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 043C Signing time: Sun 19 Oct 2025 02:10:12 +0000 Manifest this update: Sun 19 Oct 2025 02:10:12 +0000 Manifest next update: Sun 26 Oct 2025 02:10:12 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: 0cS4OrWCe82Gxq69CkxcX7DuKofBRnjIl31XzF5WA3s=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: m7bVPzA+H6T0BPfqPAwWK53E3FJsQccTswfglW7TmvM=) 3: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: Da11y9sKk3+3GED3RWDHgx+o3Zp2BSYGO+0sW2aJMEM=) 4: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: zk2dr+AUUcgcseaus5ZI0MyjJIW4D1il57/7c0zzcK4=) 5: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: rChmwH90SUuXyk+7yFwvc60l13VLAAHmVFzSZ22IXbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Oct 19 02:10:12 2025 GMT Not After : Oct 26 02:10:12 2025 GMT Subject: CN=68f44884-a581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:64:6f:4c:31:9d:5e:75:5d:a3:59:52:95: d9:0d:76:d0:42:72:ba:12:76:7d:45:f8:80:10:51: 4d:3e:88:e5:5e:25:5c:b6:24:3e:37:a9:38:08:60: fa:f8:f6:31:4a:24:60:10:66:9f:5d:12:1c:aa:c1: 50:e4:bf:d1:c1:4d:e2:cc:92:67:6b:8b:91:62:d2: 67:71:03:79:63:ac:35:4b:6d:e7:0e:91:c0:7a:36: fd:9b:b6:45:57:1e:79:3b:81:b7:99:22:5a:d3:14: 4a:1b:52:3b:42:90:90:9b:d7:d2:36:d3:3f:bd:f9: b7:2b:6d:95:74:e7:ec:dd:eb:c6:64:3c:df:ab:18: c5:e2:a1:78:fa:a6:71:dd:5a:62:bd:ee:e0:f5:e4: b9:7b:86:25:6d:c4:6d:0e:ca:54:1f:d5:df:5f:4b: 9e:7e:e8:e4:84:4b:14:f3:44:f6:c7:c0:0b:9a:a1: 8d:5b:90:3e:a8:db:69:77:fd:6d:cd:42:09:c6:9e: 70:a1:1e:a2:dc:7a:04:eb:2f:6b:21:43:98:c7:37: 72:49:df:72:a5:8e:f2:d9:ae:c6:51:5c:6b:a6:22: c7:8d:bb:fd:e5:53:a4:21:5a:04:96:ac:25:2e:d8: 07:11:14:69:06:0c:7d:87:06:71:8d:42:04:a4:ce: eb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:55:2B:4B:E3:E6:A0:33:9C:18:A6:00:BB:8E:80:F2:1F:89:F2:FD X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7e:4d:b7:d7:93:7b:35:ab:ab:d1:dc:17:e0:f1:f9:5d:fd: ab:95:56:2f:a8:bc:a8:74:08:7d:a4:9e:fa:7a:3b:50:17:2c: 51:ba:14:9b:54:83:e5:b5:45:62:2e:6d:6b:8f:fe:66:71:8a: 07:b7:b1:10:1b:6a:7e:e2:ea:4d:89:cd:87:c3:91:b5:84:9a: 70:1f:75:e5:e4:d5:1d:20:1c:d3:be:53:f9:35:b3:84:d2:30: 5e:01:8a:e4:7a:e9:d3:6a:5d:22:f4:50:68:c8:7a:cb:ca:12: 89:88:bc:b5:08:ab:2a:bb:24:dc:f6:c8:79:f5:44:cb:e5:17: ef:19:71:81:d1:f9:cb:5d:84:80:f9:70:cb:cf:87:45:a3:6f: 99:b5:99:87:ce:2b:f5:22:e2:ef:0a:c2:0d:2c:5a:23:f9:51: 37:28:f8:e0:80:75:0b:98:f6:41:da:96:9f:6e:05:ea:e9:02: 0a:de:58:ef:d9:2b:59:46:50:8d:20:34:b8:82:e4:3c:8b:8c: 7e:f3:78:44:ca:67:53:17:66:6a:41:aa:72:e7:7c:4c:46:9f: fd:cc:a9:38:84:56:89:43:e3:fb:87:d4:a8:9f:42:16:6c:f6: 07:63:d2:e4:dd:ed:a9:db:7c:e0:c3:5f:1b:0a:ff:33:9f:84: 6d:f9:e1:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMDE5MDIxMDEyWhcNMjUxMDI2MDIxMDEyWjAYMRYwFAYD VQQDEw02OGY0NDg4NC1hNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX9kb0wxnV51XaNZUpXZDXbQQnK6EnZ9RfiAEFFNPojlXiVctiQ+N6k4CGD6 +PYxSiRgEGafXRIcqsFQ5L/RwU3izJJna4uRYtJncQN5Y6w1S23nDpHAejb9m7ZF Vx55O4G3mSJa0xRKG1I7QpCQm9fSNtM/vfm3K22VdOfs3evGZDzfqxjF4qF4+qZx 3Vpive7g9eS5e4YlbcRtDspUH9XfX0uefujkhEsU80T2x8ALmqGNW5A+qNtpd/1t zUIJxp5woR6i3HoE6y9rIUOYxzdySd9ypY7y2a7GUVxrpiLHjbv95VOkIVoElqwl LtgHERRpBgx9hwZxjUIEpM7rRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdVK0vj 5qAznBimALuOgPIfifL9MB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3fk2315N7Naur0dwX4PH5Xf2rlVYvqLyodAh9pJ76ejtQFyxRuhSb VIPltUViLm1rj/5mcYoHt7EQG2p+4upNic2Hw5G1hJpwH3Xl5NUdIBzTvlP5NbOE 0jBeAYrkeunTal0i9FBoyHrLyhKJiLy1CKsquyTc9sh59UTL5RfvGXGB0fnLXYSA +XDLz4dFo2+ZtZmHziv1IuLvCsINLFoj+VE3KPjggHULmPZB2pafbgXq6QIK3ljv 2StZRlCNIDS4guQ8i4x+83hEymdTF2ZqQapy53xMRp/9zKk4hFaJQ+P7h9Son0IW bPYHY9Lk3e2p23zgw18bCv8zn4Rt+eGw -----END CERTIFICATE-----Generated at Mon Oct 20 04:19:49 2025 by rpki-client