$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft File: iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft (raw, json) Hash identifier: F7J5eqLaRckNr97K2YcufyB7YCfjccRCb+Sa+KkrVNE= Subject key identifier: 25:F4:67:70:69:FA:B4:50:EF:EE:83:BF:E1:0B:4B:0C:E7:2B:C3:A1 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft Manifest number: 24 Signing time: Sun 19 Oct 2025 11:17:31 +0000 Manifest this update: Sun 19 Oct 2025 11:17:30 +0000 Manifest next update: Sun 26 Oct 2025 11:17:30 +0000 Files and hashes: 1: iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl (hash: xBrW+HVTI3i6613Vkj/bv/vLRxCd1G4BBhH8dlf7+kA=) 2: 5C7DE69E7EFD11F0827C5F1DC4F9AE02.roa (hash: LhJsIUDxJjf34uwAXx8g7B6lkG4erRS20bGVNhkO1Ek=) 3: 8938B9DA7BF511F0BEBF8326C4F9AE02.roa (hash: vQ9ge67AKzH4HNbVsuxX3Mwi95vAo6POwUTMCo0fB8I=) 4: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (hash: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44=) 5: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (hash: DPudtrZt3zDLn6cOKt8G2uNXGPQUskKpTDxbAvt9zzA=) 6: 8A65797E7BF511F0BEBF8326C4F9AE02.roa (hash: 8VEPDf924YuQ0JrYCDPzrjF2qm9rSo7AZ2xnXGQmqpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Oct 19 11:17:30 2025 GMT Not After : Oct 26 11:17:30 2025 GMT Subject: CN=68f4c8cb-27ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c1:66:20:a7:34:8c:8b:47:b2:67:cc:d3:f9: 11:68:9a:a6:6c:21:c4:09:32:d6:40:55:cd:0e:c6: 60:b9:86:b6:8a:8b:13:a6:c9:be:eb:85:20:eb:fd: b0:b1:e6:c8:ed:bb:48:7b:5a:98:41:da:db:a5:97: fb:bc:fb:1a:7c:43:f4:a3:24:6f:ef:70:95:ed:b8: e5:21:d3:e9:bf:27:fd:27:0b:6c:d4:1f:c8:d4:41: 17:cd:36:63:2c:31:14:c0:2e:d1:a7:5d:a1:b1:f0: 83:e4:bb:6e:38:12:86:25:3e:a8:11:40:d7:07:0b: ed:0b:03:ee:36:49:20:4d:69:c1:b6:72:f0:e0:f1: 01:a3:1c:46:b6:d2:9a:80:c9:91:9c:99:f5:39:15: 90:81:84:98:9c:fd:e3:3e:2e:de:54:f2:48:91:5d: 80:fd:9e:9b:fb:88:2d:17:5d:43:d0:8a:70:4d:68: 5f:9e:5e:81:00:48:26:08:d2:c9:42:a9:5e:df:de: 9c:c9:c5:8f:e8:8b:7d:4e:9e:c9:1a:ab:8b:32:af: f0:86:a3:b0:3a:bb:51:12:32:80:71:16:e3:bc:9b: 43:81:10:0e:3d:73:fa:d7:93:95:cf:4a:28:69:42: 2d:7d:ba:f0:8b:f9:76:2c:5a:e0:c1:ca:6f:cf:4b: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F4:67:70:69:FA:B4:50:EF:EE:83:BF:E1:0B:4B:0C:E7:2B:C3:A1 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c9:74:55:81:b7:5d:56:cc:11:9e:d3:77:c8:05:dc:b4:55: 50:52:fa:6a:3c:a1:13:2c:2a:3b:e0:c9:c8:14:a4:bc:39:96: 12:3f:84:4b:fe:a0:a5:51:f3:d1:8e:49:52:9d:88:4b:ee:6a: bb:e5:6a:c9:35:9c:53:6b:47:41:c8:0c:15:19:ae:f3:53:83: e6:96:5a:48:98:12:5c:e3:1e:8d:30:21:b0:28:8e:a1:59:81: c1:9c:93:9b:ef:67:59:ed:c2:ba:fd:82:fc:89:79:7d:7c:30: dc:3a:ee:08:29:a1:27:fc:92:40:7d:90:b4:4f:a9:57:68:ab: 4b:74:a5:13:4c:8b:f8:93:35:26:c5:03:ae:56:e4:4c:a4:2f: c7:dd:96:3e:83:60:f9:e1:ea:42:a1:da:7a:63:be:69:6c:b1: 59:a8:df:cd:51:33:42:9a:4a:f2:51:6f:53:1c:32:98:6c:9e: 01:bd:fb:e8:cd:a4:b1:e4:4f:b6:1c:8c:73:d6:11:a9:88:07: fd:99:30:2a:c8:a0:72:d3:ea:59:61:28:1b:13:e5:c9:40:21: bb:a8:16:1d:bc:e4:94:4d:f1:34:83:39:fb:96:88:d0:33:0d: 9d:5a:c6:9d:7c:45:2a:89:7d:ec:1a:59:6b:0e:0a:f2:bc:82: 6d:03:27:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTEwMTkxMTE3MzBaFw0yNTEwMjYxMTE3MzBaMBgxFjAUBgNV BAMTDTY4ZjRjOGNiLTI3ZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPwWYgpzSMi0eyZ8zT+RFomqZsIcQJMtZAVc0OxmC5hraKixOmyb7rhSDr/bCx 5sjtu0h7WphB2tull/u8+xp8Q/SjJG/vcJXtuOUh0+m/J/0nC2zUH8jUQRfNNmMs MRTALtGnXaGx8IPku244EoYlPqgRQNcHC+0LA+42SSBNacG2cvDg8QGjHEa20pqA yZGcmfU5FZCBhJic/eM+Lt5U8kiRXYD9npv7iC0XXUPQinBNaF+eXoEASCYI0slC qV7f3pzJxY/oi31Onskaq4syr/CGo7A6u1ESMoBxFuO8m0OBEA49c/rXk5XPSihp Qi19uvCL+XYsWuDBym/PS5KVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJfRncGn6 tFDv7oO/4QtLDOcrw6EwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE NTg4L0JGN0Q1RTc2N0JGMzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJW eDJkVFBsVDlGNEhYZ21wZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABnJdFWBt11WzBGe03fIBdy0VVBS+mo8oRMsKjvgycgUpLw5lhI/hEv+ oKVR89GOSVKdiEvuarvlask1nFNrR0HIDBUZrvNTg+aWWkiYElzjHo0wIbAojqFZ gcGck5vvZ1ntwrr9gvyJeX18MNw67ggpoSf8kkB9kLRPqVdoq0t0pRNMi/iTNSbF A65W5EykL8fdlj6DYPnh6kKh2npjvmlssVmo381RM0KaSvJRb1McMphsngG9++jN pLHkT7YcjHPWEamIB/2ZMCrIoHLT6llhKBsT5clAIbuoFh285JRN8TSDOfuWiNAz DZ1axp18RSqJfewaWWsOCvK8gm0DJ7g= -----END CERTIFICATE-----Generated at Mon Oct 20 17:01:09 2025 by rpki-client