$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft File: IHRtqWxsk0jpS7t03MtZAcbst7M.mft (raw, json) Hash identifier: ru7dyF0HlXKOjkOrMz9sbgGo6RZel+DAqxkkaABLETE= Subject key identifier: 21:DB:C3:3F:FA:A7:E3:43:EC:24:AC:55:49:99:98:A5:08:4D:E7:53 Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 03F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft Manifest number: 03EF Signing time: Sun 19 Oct 2025 02:28:26 +0000 Manifest this update: Sun 19 Oct 2025 02:28:25 +0000 Manifest next update: Sun 26 Oct 2025 02:28:25 +0000 Files and hashes: 1: IHRtqWxsk0jpS7t03MtZAcbst7M.crl (hash: M7LdoAChwh2B+rhumBWJZkuz/irJLfrofsjTj90hN+E=) 2: FC11F400240611EFA8F45A54C4F9AE02.roa (hash: o33RNCZroDwsAJGcMgsni5M3q2cYV8AkaewWNhrky5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A, serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Oct 19 02:28:25 2025 GMT Not After : Oct 26 02:28:25 2025 GMT Subject: CN=68f44cca-49ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7f:9e:cf:83:6d:42:d8:a8:5c:2e:61:78:c0: 36:fb:17:80:05:6c:46:68:81:67:53:c2:40:22:f6: 5e:d3:c4:c5:1e:bb:94:44:d4:86:2a:9c:51:a8:81: c4:b0:44:f3:c5:ed:31:0f:26:6b:a5:4e:fa:26:70: db:e5:d6:fe:71:97:18:2e:53:ee:4d:08:5f:be:be: 4e:d7:12:2f:e3:de:eb:40:63:b0:5d:a4:f4:6b:4f: 7a:70:54:bb:af:f8:b2:9d:f4:d2:56:c8:71:10:cf: 9e:e6:47:be:6f:b8:cc:c7:64:77:24:5b:9a:0e:c4: 0b:dc:5b:80:0d:d3:77:96:06:3a:8b:72:81:f4:66: 1c:e6:a2:5a:ef:8f:33:98:46:8b:1f:68:3a:5f:af: 08:ed:a8:7b:41:cf:c2:2f:af:07:61:5a:90:76:d1: 74:e3:be:87:ef:4a:2c:24:4d:06:07:a0:f0:de:7b: b5:ab:65:10:42:b3:d9:f6:8b:dd:01:d0:ee:8e:1c: 2b:01:84:b4:aa:16:51:8d:8c:ec:6c:bf:70:7a:f6: 9e:85:be:7b:3d:95:d4:e2:a6:f2:71:a9:c3:fe:85: 3a:91:4e:38:34:a1:b9:4f:98:8a:08:2a:c0:88:81: d7:3d:d9:80:79:d1:ed:45:f7:d0:c1:2b:57:15:9e: 96:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DB:C3:3F:FA:A7:E3:43:EC:24:AC:55:49:99:98:A5:08:4D:E7:53 X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:20:0b:33:c2:c8:61:50:e4:a0:b3:cf:22:1d:86:bf:e4:ee: fd:93:67:da:5d:1d:4a:67:2e:9b:c9:62:0d:2b:7b:57:66:2d: 8a:ad:94:53:9a:57:ee:ad:ba:0f:9f:d1:15:63:f4:89:0b:0c: 4d:f7:a1:ed:be:04:f4:ff:91:8b:5f:6e:49:99:70:9e:31:d3: 49:e4:d6:98:00:ab:ad:7e:30:0f:ad:27:13:71:94:93:6a:59: 8b:2c:e8:65:c5:15:1d:cd:e4:cf:2a:dc:5c:04:84:09:d2:a6: bf:90:49:32:ec:4f:57:19:d3:9a:25:da:06:4e:aa:39:9d:97: 54:46:e4:04:6e:93:0c:81:22:2b:24:fe:b6:72:89:23:c1:bc: 08:ed:30:07:4e:b9:53:e2:a3:84:39:66:9c:86:83:37:7f:c0: ae:bc:3d:bd:a4:24:fa:27:0d:4a:39:8c:fc:45:f1:63:5d:e2: 57:39:70:67:61:10:a6:70:4b:08:ea:7e:99:c0:af:c2:66:88: 09:a0:83:ab:62:ee:92:96:80:a8:35:50:2a:c1:fc:9f:2d:0c: f3:cd:a8:f7:bd:80:b4:ef:f8:6b:07:84:07:3f:fb:04:cc:6f: 6c:5f:f6:12:e7:7b:d6:2d:03:d4:22:9a:77:d3:77:0d:6e:b8: 13:e3:a2:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjUxMDE5MDIyODI1WhcNMjUxMDI2MDIyODI1WjAYMRYwFAYD VQQDEw02OGY0NGNjYS00OWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArH+ez4NtQtioXC5heMA2+xeABWxGaIFnU8JAIvZe08TFHruURNSGKpxRqIHE sETzxe0xDyZrpU76JnDb5db+cZcYLlPuTQhfvr5O1xIv497rQGOwXaT0a096cFS7 r/iynfTSVshxEM+e5ke+b7jMx2R3JFuaDsQL3FuADdN3lgY6i3KB9GYc5qJa748z mEaLH2g6X68I7ah7Qc/CL68HYVqQdtF0476H70osJE0GB6Dw3nu1q2UQQrPZ9ovd AdDujhwrAYS0qhZRjYzsbL9wevaehb57PZXU4qbycanD/oU6kU44NKG5T5iKCCrA iIHXPdmAedHtRffQwStXFZ6WzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHbwz/6 p+ND7CSsVUmZmKUITedTMB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkQxQS80QzZFQUJFODk5RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2sw anBTN3QwM010WkFjYnN0N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPIAszwshhUOSgs88iHYa/5O79k2faXR1KZy6byWINK3tXZi2KrZRT mlfurboPn9EVY/SJCwxN96HtvgT0/5GLX25JmXCeMdNJ5NaYAKutfjAPrScTcZST almLLOhlxRUdzeTPKtxcBIQJ0qa/kEky7E9XGdOaJdoGTqo5nZdURuQEbpMMgSIr JP62cokjwbwI7TAHTrlT4qOEOWachoM3f8CuvD29pCT6Jw1KOYz8RfFjXeJXOXBn YRCmcEsI6n6ZwK/CZogJoIOrYu6SloCoNVAqwfyfLQzzzaj3vYC07/hrB4QHP/sE zG9sX/YS53vWLQPUIpp303cNbrgT46K4 -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:04 2025 by rpki-client