$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: viT7HCKxRNOf7imcCJIK9SAd+0BMtE8Si9a6cV4tAnw= Subject key identifier: DD:5F:2D:B8:B7:47:F4:BC:89:B7:7E:98:0B:33:6C:DB:87:88:89:F5 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0418 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 0405 Signing time: Sun 19 Oct 2025 02:23:57 +0000 Manifest this update: Sun 19 Oct 2025 02:23:56 +0000 Manifest next update: Sun 26 Oct 2025 02:23:56 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: sR7GIsWuMfE10hTxPXmianKT8JMdWmQIup4fFDBtjms=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Oct 19 02:23:56 2025 GMT Not After : Oct 26 02:23:56 2025 GMT Subject: CN=68f44bbd-b227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:0e:92:d3:95:77:2c:25:a9:42:cb:a1:0a: d7:24:b4:b4:f7:51:fa:aa:97:80:13:2f:ee:b5:a6: 26:f4:e5:52:cb:12:2a:7a:f9:c5:02:89:9f:17:44: 24:28:dd:4a:22:31:e6:d8:d2:a3:7b:ae:47:e9:e5: 8e:cc:7a:6d:e1:82:cb:94:3b:8e:70:71:9a:4b:63: 69:b8:dc:a1:03:7a:bf:1b:be:55:4a:81:23:6f:92: 37:34:6f:b3:e8:35:f9:bb:05:8c:76:ff:2d:6c:96: da:68:e1:fe:32:e5:77:20:2b:5f:cf:3c:0d:7a:78: 8d:8d:31:98:d0:7b:62:8a:8c:62:20:1d:35:c1:07: 0a:03:26:9a:75:32:10:04:c6:3c:43:ca:be:a1:85: aa:57:4c:b2:fd:7b:96:22:28:be:07:95:5d:5b:62: 31:6e:e6:5d:9b:b8:41:8f:7f:b9:0f:91:ff:65:53: ce:51:90:bb:b9:cf:e3:62:1f:b9:e4:33:56:35:48: b6:64:e0:28:d3:28:9e:ff:ce:e5:bc:ad:bf:4d:fd: 25:de:4a:e9:64:d2:b5:44:1d:e9:eb:d1:e4:9c:50: 6b:c6:44:2b:5b:2a:3c:15:a6:2a:ef:07:58:20:5a: 8c:54:e3:3b:0c:2d:6a:84:7f:59:2e:12:a1:f9:54: e8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5F:2D:B8:B7:47:F4:BC:89:B7:7E:98:0B:33:6C:DB:87:88:89:F5 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:9a:ed:b9:44:1f:23:bf:2d:5b:c0:ab:41:8c:d0:20:ee:61: 0e:0f:59:45:b4:9a:02:a8:1b:de:90:df:a9:f1:23:27:e9:50: 38:cf:6c:b6:d8:bb:c7:c1:d3:b7:28:10:24:45:9d:b0:a7:9f: 4b:30:2e:4e:6b:c2:9a:67:36:a5:51:69:f2:ee:9a:39:08:84: 58:70:23:52:5d:17:5f:d0:94:62:a8:75:fa:e0:46:27:e5:a5: bd:82:6f:48:19:5c:b6:62:7f:c8:07:65:34:8c:0b:e5:d6:9d: a5:03:99:b5:5d:77:51:a6:6d:25:5d:86:4e:72:53:91:bc:82: bb:dc:ea:0b:77:0f:88:44:3e:c5:29:de:be:b0:f9:d2:f9:07: 70:31:f2:c7:74:92:eb:e6:1e:28:d2:6a:d1:2a:e8:a5:3e:00: a0:54:77:85:60:4f:d9:9e:0d:85:d6:ab:da:c1:74:76:17:8b: 49:54:9e:c4:42:32:dd:e7:b4:ba:ab:af:2e:3b:58:55:fa:e2: 8e:2e:7b:43:c8:82:60:af:dd:91:24:ec:a5:8d:64:dc:20:a6: d1:0a:50:0e:fa:86:4c:4c:e3:61:fa:f0:43:a0:8f:b9:c1:1a: da:67:cb:1e:9c:b8:62:7a:eb:75:b0:5b:9e:12:aa:21:53:c5: 8f:6e:9a:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUxMDE5MDIyMzU2WhcNMjUxMDI2MDIyMzU2WjAYMRYwFAYD VQQDEw02OGY0NGJiZC1iMjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMIOktOVdywlqULLoQrXJLS091H6qpeAEy/utaYm9OVSyxIqevnFAomfF0Qk KN1KIjHm2NKje65H6eWOzHpt4YLLlDuOcHGaS2NpuNyhA3q/G75VSoEjb5I3NG+z 6DX5uwWMdv8tbJbaaOH+MuV3ICtfzzwNeniNjTGY0HtiioxiIB01wQcKAyaadTIQ BMY8Q8q+oYWqV0yy/XuWIii+B5VdW2IxbuZdm7hBj3+5D5H/ZVPOUZC7uc/jYh+5 5DNWNUi2ZOAo0yie/87lvK2/Tf0l3krpZNK1RB3p69HknFBrxkQrWyo8FaYq7wdY IFqMVOM7DC1qhH9ZLhKh+VTomQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1fLbi3 R/S8ibd+mAszbNuHiIn1MB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJmu25RB8jvy1bwKtBjNAg7mEOD1lFtJoCqBvekN+p8SMn6VA4z2y2 2LvHwdO3KBAkRZ2wp59LMC5Oa8KaZzalUWny7po5CIRYcCNSXRdf0JRiqHX64EYn 5aW9gm9IGVy2Yn/IB2U0jAvl1p2lA5m1XXdRpm0lXYZOclORvIK73OoLdw+IRD7F Kd6+sPnS+QdwMfLHdJLr5h4o0mrRKuilPgCgVHeFYE/Zng2F1qvawXR2F4tJVJ7E QjLd57S6q68uO1hV+uKOLntDyIJgr92RJOyljWTcIKbRClAO+oZMTONh+vBDoI+5 wRraZ8senLhieut1sFueEqohU8WPbpoK -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:35 2025 by rpki-client