$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: bQR+nGkIa7gYmLlQpj9DXpxRZqwjMP/YfxH+scGfGEQ= Subject key identifier: 0C:82:A2:37:4B:81:7A:83:71:78:3B:F4:E2:BA:6C:6F:0D:6C:92:4F Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 059C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 06E5 Signing time: Sun 19 Oct 2025 00:51:31 +0000 Manifest this update: Sun 19 Oct 2025 00:51:30 +0000 Manifest next update: Sun 26 Oct 2025 00:51:30 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: 7uOFkU2TItS/crFqJPKy8D3PV/EjYTu/c9emjJnJZjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Oct 19 00:51:30 2025 GMT Not After : Oct 26 00:51:30 2025 GMT Subject: CN=68f43613-15be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:43:fa:68:a7:b6:d0:66:b5:05:9b:9d:10:ee: ff:3b:75:20:e0:41:08:50:0d:23:bd:47:8b:44:cc: be:f2:1a:63:df:ad:44:1d:f7:a6:80:f6:e1:b5:0b: 06:41:bc:be:02:57:34:bd:a1:57:08:28:36:52:16: fc:4a:bb:35:74:e3:0b:dc:52:2d:16:34:b6:bc:07: e8:49:f1:76:b0:4e:fb:ac:01:7b:2b:aa:e0:c4:5f: 5b:68:ee:5e:7b:5b:37:0c:8e:90:57:d4:8b:28:6d: 2f:b9:cb:96:35:22:9c:d8:51:3e:03:1e:c9:2a:83: 2a:60:31:c8:48:72:f8:25:a5:93:91:44:56:0e:a5: 44:d5:74:d9:09:57:0c:9d:06:b1:3d:5d:b6:95:82: 21:7e:fc:09:4d:b7:10:a6:58:6e:4d:5e:cc:76:bd: b4:b2:98:62:9c:32:a0:39:51:e3:41:69:42:56:e3: 8a:0b:cc:55:cd:9f:6d:f7:9c:02:62:17:20:28:60: 4b:0c:28:fa:54:7b:99:2a:94:ef:1a:bb:43:3f:be: c0:d9:c1:2b:5a:e3:cf:52:25:3d:20:16:c5:af:1b: 11:32:55:11:20:73:98:61:4c:4f:6c:7f:1e:cc:14: 53:76:a7:3a:33:f7:c4:fa:db:27:3d:19:b1:43:a2: d4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:82:A2:37:4B:81:7A:83:71:78:3B:F4:E2:BA:6C:6F:0D:6C:92:4F X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:a9:b4:03:a5:58:8e:c9:78:19:01:72:89:a8:fc:39:7a:08: fb:86:67:a4:e5:27:27:ec:68:bb:8a:75:8a:f3:7f:b0:af:1a: 7a:f2:ca:99:de:a9:5c:f8:1d:41:3e:82:b3:bd:11:f5:fd:c1: 1d:a6:d1:df:bf:dc:c0:69:78:f7:fb:26:24:39:f1:62:04:e5: e4:59:10:5d:14:ec:2d:67:71:71:74:be:aa:78:62:d3:d0:cf: ed:db:ea:c3:3a:80:56:2f:ec:6f:8d:2c:2b:c6:c5:b6:44:76: b0:82:91:d0:17:0f:b1:29:a5:40:0b:8b:28:3f:af:fe:93:a7: ea:e9:ac:0b:b4:cb:9d:0a:88:26:45:2b:75:09:2c:43:7b:f0: 2a:a9:8a:40:f2:98:99:e1:ee:bb:e7:f9:c4:96:1c:f0:fc:0a: 5b:53:36:5e:3b:4b:25:34:85:ec:36:3e:28:4c:3f:0d:4e:c3: 26:67:b8:7f:cb:fb:09:00:cd:27:c3:8a:5b:a5:8a:aa:65:a5: df:3b:c9:8b:4b:db:63:df:f3:fc:20:f7:e6:82:1e:50:c2:4d: 1c:6c:7d:4c:80:50:99:86:38:16:43:0b:28:59:0a:ff:78:f7: 50:2d:3a:64:d7:1a:2c:85:d4:87:8e:7b:66:a3:8e:67:bc:2d: 95:bd:f1:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjUxMDE5MDA1MTMwWhcNMjUxMDI2MDA1MTMwWjAYMRYwFAYD VQQDEw02OGY0MzYxMy0xNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kP6aKe20Ga1BZudEO7/O3Ug4EEIUA0jvUeLRMy+8hpj361EHfemgPbhtQsG Qby+Alc0vaFXCCg2Uhb8Srs1dOML3FItFjS2vAfoSfF2sE77rAF7K6rgxF9baO5e e1s3DI6QV9SLKG0vucuWNSKc2FE+Ax7JKoMqYDHISHL4JaWTkURWDqVE1XTZCVcM nQaxPV22lYIhfvwJTbcQplhuTV7Mdr20sphinDKgOVHjQWlCVuOKC8xVzZ9t95wC YhcgKGBLDCj6VHuZKpTvGrtDP77A2cErWuPPUiU9IBbFrxsRMlURIHOYYUxPbH8e zBRTdqc6M/fE+tsnPRmxQ6LU9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyCojdL gXqDcXg79OK6bG8NbJJPMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7qbQDpViOyXgZAXKJqPw5egj7hmek5Scn7Gi7inWK83+wrxp68sqZ 3qlc+B1BPoKzvRH1/cEdptHfv9zAaXj3+yYkOfFiBOXkWRBdFOwtZ3FxdL6qeGLT 0M/t2+rDOoBWL+xvjSwrxsW2RHawgpHQFw+xKaVAC4soP6/+k6fq6awLtMudCogm RSt1CSxDe/AqqYpA8piZ4e675/nElhzw/ApbUzZeO0slNIXsNj4oTD8NTsMmZ7h/ y/sJAM0nw4pbpYqqZaXfO8mLS9tj3/P8IPfmgh5Qwk0cbH1MgFCZhjgWQwsoWQr/ ePdQLTpk1xoshdSHjntmo45nvC2VvfEn -----END CERTIFICATE-----Generated at Mon Oct 20 03:51:44 2025 by rpki-client