$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: c13GR+khGVcyBMSN23+Eh4z/CKjDfn4w+/vJst0brK8= Subject key identifier: BF:F6:4F:6E:E1:32:52:D6:A9:15:BE:55:FA:66:27:76:EB:0D:3C:6E Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 0231 Signing time: Sun 19 Oct 2025 04:11:07 +0000 Manifest this update: Sun 19 Oct 2025 04:11:06 +0000 Manifest next update: Sun 26 Oct 2025 04:11:06 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: AWfakWXvl5wtYGL2ATjsuKPW3kcxY1jie7yjJWshb2E=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: i/snzsv5ugVK5M4wkOzh02txTFh9Vl9HyndyddhSqd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:11:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: Oct 19 04:11:06 2025 GMT Not After : Oct 26 04:11:06 2025 GMT Subject: CN=68f464da-efba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:de:08:91:b8:35:ba:5d:e8:0b:b2:ad:73: 91:4c:a9:e1:df:0b:3c:66:0c:36:56:d1:87:41:3b: b8:59:d6:ed:71:6b:8f:e7:ed:7e:9e:60:cc:57:b4: f5:a5:1b:0a:0f:9e:e0:e3:27:78:87:81:92:8a:9a: ea:6a:17:30:37:1f:46:a2:f3:4c:9c:d9:d2:4f:be: c4:7f:ec:b6:a1:85:d9:a8:ae:66:4e:81:41:26:79: 16:8b:20:7f:b8:e5:26:cb:1a:1a:80:15:f7:af:e5: 55:31:4f:0f:57:d2:a9:77:75:99:f2:a4:ba:07:be: 38:fb:b2:b8:8a:c3:52:6a:eb:5f:3e:86:95:66:d5: 17:1e:64:35:85:f0:50:75:cd:c3:bf:d0:19:c9:94: c1:ca:69:00:25:89:65:0f:66:c5:10:32:5a:83:fd: 92:1b:4e:f1:c5:44:75:80:4c:fb:39:da:9c:47:e7: 6c:67:fc:3a:8c:c7:a4:d6:44:a8:89:36:b2:1a:74: e9:7c:a5:fc:33:18:92:f1:79:0e:21:08:df:31:ff: ec:fc:2c:16:7c:9d:19:f7:9e:b6:c0:f9:92:ef:84: 62:cd:39:a3:6b:2f:48:91:1b:1b:7f:22:52:d9:0b: b4:46:53:69:f0:34:4b:51:b5:5a:08:ef:2c:1c:f5: a6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F6:4F:6E:E1:32:52:D6:A9:15:BE:55:FA:66:27:76:EB:0D:3C:6E X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2f:05:f4:f8:8a:06:3a:da:60:60:73:fd:8a:6d:9a:68:cd: af:b2:2b:ff:b2:c2:70:a0:6f:85:ee:b6:9a:68:67:f0:cc:25: 57:bf:6b:bc:20:95:9b:8b:c8:72:24:34:e2:b8:ef:1f:1c:31: 0a:5c:16:33:cc:b8:ac:2f:2f:6a:28:33:be:a3:66:fe:29:e4: e3:13:26:ff:eb:87:3d:1d:fb:06:83:e0:d5:a5:7b:90:94:11: a2:83:ce:17:2c:b0:85:49:00:b2:bb:f0:8d:42:b0:3a:3a:9e: 90:37:29:b3:3d:cf:e7:42:77:fa:2a:9f:5f:62:9f:f0:8f:52: 0f:ad:7b:f7:ea:fe:48:97:ce:43:c8:a8:88:22:44:f1:aa:b8: 1d:58:59:d7:02:0c:77:9d:1b:38:91:1d:fd:f7:1d:b1:6e:47: 7c:a8:b7:1b:e3:a5:b9:4c:d2:52:d5:50:69:8f:06:2d:49:e4: 70:8f:e6:b8:d4:51:11:65:74:62:a5:4f:e4:cc:e2:f3:75:4b: 3e:f5:d6:11:18:e1:3d:fa:be:12:79:f9:30:98:de:a9:22:3d: ea:dc:2f:c7:fb:f3:b9:2d:c4:bd:04:c4:e3:73:4a:57:d1:04: 9f:8b:b8:ec:98:a6:95:f4:f2:fd:2c:36:2d:98:f1:21:16:35: 10:a8:04:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjUxMDE5MDQxMTA2WhcNMjUxMDI2MDQxMTA2WjAYMRYwFAYD VQQDEw02OGY0NjRkYS1lZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtN/eCJG4Nbpd6AuyrXORTKnh3ws8Zgw2VtGHQTu4WdbtcWuP5+1+nmDMV7T1 pRsKD57g4yd4h4GSiprqahcwNx9GovNMnNnST77Ef+y2oYXZqK5mToFBJnkWiyB/ uOUmyxoagBX3r+VVMU8PV9Kpd3WZ8qS6B744+7K4isNSautfPoaVZtUXHmQ1hfBQ dc3Dv9AZyZTBymkAJYllD2bFEDJag/2SG07xxUR1gEz7OdqcR+dsZ/w6jMek1kSo iTayGnTpfKX8MxiS8XkOIQjfMf/s/CwWfJ0Z9562wPmS74RizTmjay9IkRsbfyJS 2Qu0RlNp8DRLUbVaCO8sHPWm1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/2T27h MlLWqRW+VfpmJ3brDTxuMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfLwX0+IoGOtpgYHP9im2aaM2vsiv/ssJwoG+F7raaaGfwzCVXv2u8 IJWbi8hyJDTiuO8fHDEKXBYzzLisLy9qKDO+o2b+KeTjEyb/64c9HfsGg+DVpXuQ lBGig84XLLCFSQCyu/CNQrA6Op6QNymzPc/nQnf6Kp9fYp/wj1IPrXv36v5Il85D yKiIIkTxqrgdWFnXAgx3nRs4kR399x2xbkd8qLcb46W5TNJS1VBpjwYtSeRwj+a4 1FERZXRipU/kzOLzdUs+9dYRGOE9+r4SefkwmN6pIj3q3C/H+/O5LcS9BMTjc0pX 0QSfi7jsmKaV9PL9LDYtmPEhFjUQqAQg -----END CERTIFICATE-----Generated at Mon Oct 20 08:36:58 2025 by rpki-client