$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft File: kMIvc5OFDo7Pa18eMg0HstGs2P0.mft (raw, json) Hash identifier: 9PiRVwYHthGTScT6byM+6+lujKBPeJxkpNqDtGZb81I= Subject key identifier: 16:53:6A:D1:F0:07:5C:EC:B9:72:CB:5F:FB:F6:28:84:A4:76:84:DC Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 182F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft Manifest number: 17BE Signing time: Sat 18 Oct 2025 16:59:24 +0000 Manifest this update: Sat 18 Oct 2025 16:59:23 +0000 Manifest next update: Sat 25 Oct 2025 16:59:23 +0000 Files and hashes: 1: kMIvc5OFDo7Pa18eMg0HstGs2P0.crl (hash: iyVkAqbLjmrsBvDp0T97IS5idUoAZt6j3ueN+17n1iQ=) 2: E8118BFA022C11EBAC47A831C4F9AE02.roa (hash: l9PAtv4FmfKEbsr39kSblkIdk4l36jBShaU/yhiu3EA=) 3: 7E2725DAAC7611EAB766A74CC4F9AE02.roa (hash: pRnYMFn3MsmdKZMCcupGBS8xip66wFsc4Vhu+CVQM8s=) 4: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (hash: Ki+ZYv+WbFodfUBA0Z9kcHIRNA0D2B2/Fqh0gMIddSg=) 5: A2C8B57074B711EB8491BC63C4F9AE02.roa (hash: 1XIBkz1xrsmaIEUuPCKysFF+5jDC/AbJdnY6h8iCmzA=) 6: B04675FC959711EA9F290A33C4F9AE02.roa (hash: hvb2MvDqDZHyf0+HzbtgqnM+oZrlIejX067xarW4vdo=) 7: 694CCE66E53911EF9DD1B90DC4F9AE02.roa (hash: Q50guEdFQrac2WGNIOWOMwAPEusnnVtr+0WbjS+0Iw8=) 8: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (hash: 6dC3vmSVGgmkSh9nUR6cyWb5UZYgtCMEtbXtHWZQ+Ms=) 9: 696975861A3611EEA597E872C4F9AE02.roa (hash: oIGClTM3lHim9PRA3fKoX8EMPndg1+r8p0Zu4BUJRhA=) 10: 4C0C96C6022E11EBA920EA37C4F9AE02.roa (hash: K/ybxERnMroT+/HivxwCKoEx2WZjUMXQikxQf2o4Wtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6191 (0x182f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Oct 18 16:59:23 2025 GMT Not After : Oct 25 16:59:23 2025 GMT Subject: CN=68f3c76b-eef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d9:e0:20:26:71:77:74:02:06:f5:a2:78:1d: 1b:7a:05:5b:0d:f3:b3:41:39:66:f0:a7:be:27:8c: ea:d2:79:9b:d0:5b:0a:a7:b8:b0:a8:7b:27:58:62: 6e:e4:35:28:c5:e5:44:9e:1f:e8:2d:ff:e7:c1:5c: 8a:9d:50:2d:3f:a8:84:98:00:d4:30:67:bf:38:89: ea:58:a1:ed:9a:7a:f3:5b:13:54:10:0c:07:ad:0c: 33:45:55:c3:26:b7:a0:e6:ae:75:bb:69:55:cc:6c: 30:fc:41:87:d0:80:e9:3f:16:f3:3c:7a:8a:5c:c3: 15:15:7c:59:8e:c4:e8:70:16:05:f1:5a:6c:2f:89: ce:e3:c3:de:73:a6:52:74:21:ef:9f:84:7e:91:44: 66:39:95:bf:20:dd:5b:a7:f1:95:41:6f:b7:e8:ab: d9:3f:84:f9:a7:1f:da:28:c6:5d:c2:e9:3f:c3:25: cd:f8:ed:f9:ee:ea:73:a0:0c:8c:43:c1:68:85:5d: 34:7f:3c:21:d3:65:5a:a6:4a:c7:72:6a:c8:62:0a: 43:99:73:f9:0e:93:38:bd:89:b8:96:3a:aa:a9:c8: 8c:42:2f:eb:df:ef:e0:db:d6:20:7f:37:4d:fb:49: c1:40:03:a2:48:b5:a5:cb:52:32:86:44:7e:d6:44: e4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:53:6A:D1:F0:07:5C:EC:B9:72:CB:5F:FB:F6:28:84:A4:76:84:DC X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e6:f3:4c:72:58:ee:61:ba:cd:80:bd:db:75:f0:8d:4d:e9: 50:65:ee:e6:0f:e3:46:2a:83:1a:85:44:01:e1:46:e3:89:c8: e4:91:9c:62:c7:5d:1b:51:71:1b:86:71:29:cb:1d:e8:d5:2b: 46:f8:06:39:01:3d:7d:2e:bd:e5:13:f5:c6:b3:45:07:5c:54: a0:51:43:5f:e6:46:d4:af:75:bf:a1:68:7a:77:cf:b3:6a:72: 09:02:0a:cc:e3:fe:24:be:8b:6d:e8:aa:50:0e:7c:17:75:f5: 45:44:c4:6e:24:59:a4:c6:15:47:49:cc:dd:d5:82:f4:dc:03: 11:59:54:f3:1a:12:3e:9c:b9:b8:80:f7:93:f4:1f:90:6d:8e: 8f:a9:41:fd:4b:d4:04:69:9a:52:5d:ee:07:61:2e:10:5b:d8: d3:fe:d1:fd:6c:2d:d3:ca:fb:a6:99:11:95:48:4c:a3:e3:70: ee:f8:23:59:4b:ea:bd:8f:40:d6:a6:38:b6:a9:54:2f:06:c2: 41:6e:44:a5:0d:a8:56:ae:ee:34:23:ce:f8:c6:c3:8e:66:c3: a5:04:f4:5d:81:1a:5b:62:66:52:59:49:56:89:73:48:e6:7f: d0:e6:5a:fb:a9:d2:de:e0:ad:07:3e:1f:35:4c:ec:ea:6b:92: ac:20:56:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUxMDE4MTY1OTIzWhcNMjUxMDI1MTY1OTIzWjAYMRYwFAYD VQQDEw02OGYzYzc2Yi1lZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dngICZxd3QCBvWieB0begVbDfOzQTlm8Ke+J4zq0nmb0FsKp7iwqHsnWGJu 5DUoxeVEnh/oLf/nwVyKnVAtP6iEmADUMGe/OInqWKHtmnrzWxNUEAwHrQwzRVXD Jreg5q51u2lVzGww/EGH0IDpPxbzPHqKXMMVFXxZjsTocBYF8VpsL4nO48Pec6ZS dCHvn4R+kURmOZW/IN1bp/GVQW+36KvZP4T5px/aKMZdwuk/wyXN+O357upzoAyM Q8FohV00fzwh02VapkrHcmrIYgpDmXP5DpM4vYm4ljqqqciMQi/r3+/g29YgfzdN +0nBQAOiSLWly1IyhkR+1kTk9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZTatHw B1zsuXLLX/v2KISkdoTcMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDk1Ri84NDhDODU3Q0RGRUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRv N1BhMThlTWcwSHN0R3MyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ5vNMcljuYbrNgL3bdfCNTelQZe7mD+NGKoMahUQB4UbjicjkkZxi x10bUXEbhnEpyx3o1StG+AY5AT19Lr3lE/XGs0UHXFSgUUNf5kbUr3W/oWh6d8+z anIJAgrM4/4kvott6KpQDnwXdfVFRMRuJFmkxhVHSczd1YL03AMRWVTzGhI+nLm4 gPeT9B+QbY6PqUH9S9QEaZpSXe4HYS4QW9jT/tH9bC3TyvummRGVSEyj43Du+CNZ S+q9j0DWpji2qVQvBsJBbkSlDahWru40I874xsOOZsOlBPRdgRpbYmZSWUlWiXNI 5n/Q5lr7qdLe4K0HPh81TOzqa5KsIFYI -----END CERTIFICATE-----Generated at Mon Oct 20 00:08:42 2025 by rpki-client