$ rpki-client -vvf rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft File: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft (raw, json) Hash identifier: D4jv8TgRePrsK9ssF0O9/WvDtoZ6DxvhWtUQQtf2Izw= Subject key identifier: 49:04:50:04:CD:5E:24:AE:5B:2E:79:EB:3F:26:EC:DC:A7:F1:B8:3B Authority key identifier: 22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 Certificate issuer: /CN=A919D539/serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft Manifest number: 0840 Signing time: Sat 18 Oct 2025 21:55:42 +0000 Manifest this update: Sat 18 Oct 2025 21:55:41 +0000 Manifest next update: Sat 25 Oct 2025 21:55:41 +0000 Files and hashes: 1: Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl (hash: b/4dszKwpH+quEpnUMsAf2bIngsar+gSiqVDU6UHKKo=) 2: 903E8812E38A11EAA3B8AE59C4F9AE02.roa (hash: HYLlaeYCfOhwQIw7Fb2O6gPao8D0dgK0DzH31riAA30=) 3: B94BEEA036D811ECB5BD1470C4F9AE02.roa (hash: CYIyqLTD/N7RHKkzVI9yCjfPCRo2bvj5EsxmVhBkQbM=) 4: DA0C233E3EE411ED905A3415C4F9AE02.roa (hash: EAWxypzDCQPQzqcMnvR1K/XDUjaENmu81MPhjQzqwkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D539, serialNumber=221F50143E1D5F93C4CD31C9FEE7A24DE801F2D7 Validity Not Before: Oct 18 21:55:41 2025 GMT Not After : Oct 25 21:55:41 2025 GMT Subject: CN=68f40cdd-913c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4d:87:d5:ef:11:79:a0:41:e5:99:40:ee:80: f2:17:b8:39:71:fd:fc:39:62:4d:3f:22:bd:44:d8: 8f:77:1f:32:31:3b:47:05:fb:81:62:60:d0:51:35: c9:99:b1:5d:ba:22:1f:2a:9e:01:a6:df:40:c0:e9: 36:04:72:04:32:0e:3a:f2:e7:46:c8:f3:2a:93:77: e1:98:ad:47:d7:8d:d7:b4:54:2b:69:17:11:ed:9a: 76:6d:d3:04:42:89:c2:a7:74:1c:3a:6d:fb:c1:e3: 87:af:8f:80:3e:0a:45:d1:70:65:b4:5f:1a:e1:eb: e9:44:64:0c:12:70:1f:14:07:01:15:38:65:6a:ef: cf:81:a6:48:2a:f5:6d:dc:3b:a6:f8:e2:ab:94:b2: 01:90:58:75:35:cf:d3:80:a8:77:60:45:4a:1b:7f: a3:d9:4f:b3:50:89:fb:ec:3e:8d:49:4b:0d:ec:d5: fb:f0:26:d8:44:b8:0a:33:ab:43:b6:2e:44:86:61: 92:09:ee:6c:29:88:51:4b:5d:bd:fb:e4:d0:15:1f: 7b:4a:4d:54:9d:ef:5f:c0:69:dd:85:bd:f1:37:af: 9c:fe:e7:87:c7:14:79:33:d7:61:e1:8f:bb:2e:ac: 8d:a3:3e:b5:78:01:05:a8:9b:64:2e:50:50:6f:d9: 31:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:04:50:04:CD:5E:24:AE:5B:2E:79:EB:3F:26:EC:DC:A7:F1:B8:3B X509v3 Authority Key Identifier: keyid:22:1F:50:14:3E:1D:5F:93:C4:CD:31:C9:FE:E7:A2:4D:E8:01:F2:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D539/C1265DC0E38911EAB73A3659C4F9AE02/Ih9QFD4dX5PEzTHJ_ueiTegB8tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:19:dd:85:b6:29:d5:6d:86:db:2f:6d:2d:de:c3:71:2c:82: a0:ee:a8:45:cc:68:f2:dc:53:9a:66:8f:11:f4:ca:93:23:c6: e9:e9:a3:08:93:d0:df:23:ca:42:9c:03:37:31:96:8b:aa:c6: f0:96:8b:c2:c9:a4:02:cb:fb:5e:6d:71:2a:d2:41:b0:23:4d: 9b:f8:ca:98:ea:f9:2b:81:fa:c6:5c:e4:cb:fc:98:52:ae:f7: d0:2c:fc:72:dd:bb:90:03:f5:39:9d:5b:b9:6b:1b:91:96:d3: f4:3a:8f:ad:de:44:46:f1:0e:81:c2:31:b9:b0:8c:51:5f:a6: bb:09:95:fb:ad:98:7d:28:7d:a0:84:27:83:8f:fe:3f:ce:f2: 51:f8:5c:dd:7b:2e:4c:a3:a1:24:2e:8b:6d:57:a0:ed:f3:21: f9:a0:d6:c6:0a:40:40:a7:1b:e5:8e:73:e6:f6:d0:16:d6:9f: 64:4b:82:41:c8:68:6d:54:b2:18:36:6f:6b:36:cd:a4:7b:c3: 23:d7:f6:8b:5a:59:a1:0a:97:af:31:39:82:04:52:c9:ae:a1: 4c:5f:64:53:9d:10:b9:54:83:ca:8b:3a:10:8e:b9:49:e3:14: cf:01:24:bc:d2:a1:48:9e:68:23:4e:3c:95:70:25:4e:6b:99: ab:0f:04:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1MzkxMTAvBgNVBAUTKDIyMUY1MDE0M0UxRDVGOTNDNENEMzFDOUZFRTdBMjRE RTgwMUYyRDcwHhcNMjUxMDE4MjE1NTQxWhcNMjUxMDI1MjE1NTQxWjAYMRYwFAYD VQQDEw02OGY0MGNkZC05MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsk2H1e8ReaBB5ZlA7oDyF7g5cf38OWJNPyK9RNiPdx8yMTtHBfuBYmDQUTXJ mbFduiIfKp4Bpt9AwOk2BHIEMg468udGyPMqk3fhmK1H143XtFQraRcR7Zp2bdME QonCp3QcOm37weOHr4+APgpF0XBltF8a4evpRGQMEnAfFAcBFThlau/PgaZIKvVt 3Dum+OKrlLIBkFh1Nc/TgKh3YEVKG3+j2U+zUIn77D6NSUsN7NX78CbYRLgKM6tD ti5EhmGSCe5sKYhRS129++TQFR97Sk1Une9fwGndhb3xN6+c/ueHxxR5M9dh4Y+7 LqyNoz61eAEFqJtkLlBQb9kxOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkEUATN XiSuWy556z8m7Nyn8bg7MB8GA1UdIwQYMBaAFCIfUBQ+HV+TxM0xyf7nok3oAfLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDUzOS9DMTI2NURDMEUz ODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1UEV6VEhKX3VlaVRlZ0I4 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loOVFGRDRkWDVQRXpUSEpfdWVpVGVnQjh0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzOS9DMTI2NURDMEUzODkxMUVBQjczQTM2NTlDNEY5QUUwMi9JaDlRRkQ0ZFg1 UEV6VEhKX3VlaVRlZ0I4dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsGd2FtinVbYbbL20t3sNxLIKg7qhFzGjy3FOaZo8R9MqTI8bp6aMI k9DfI8pCnAM3MZaLqsbwlovCyaQCy/tebXEq0kGwI02b+MqY6vkrgfrGXOTL/JhS rvfQLPxy3buQA/U5nVu5axuRltP0Oo+t3kRG8Q6BwjG5sIxRX6a7CZX7rZh9KH2g hCeDj/4/zvJR+Fzdey5Mo6EkLottV6Dt8yH5oNbGCkBApxvljnPm9tAW1p9kS4JB yGhtVLIYNm9rNs2ke8Mj1/aLWlmhCpevMTmCBFLJrqFMX2RTnRC5VIPKizoQjrlJ 4xTPASS80qFInmgjTjyVcCVOa5mrDwT9 -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:50 2025 by rpki-client