$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: sVD9EDj/zzA/vf2+e8gKhyCRRGuTEZik5+gOXLxihh4= Subject key identifier: 50:5D:C7:52:F8:B3:7A:77:49:03:E2:79:C5:65:7A:EB:F8:A3:4C:87 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 3508 Signing time: Sat 18 Oct 2025 15:08:33 +0000 Manifest this update: Sat 18 Oct 2025 15:08:32 +0000 Manifest next update: Sat 25 Oct 2025 15:08:32 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: /hsNKPvN4ygJEPm3c/Bs3PTJBASIMY/CdMT62ycNR/M=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: jHkcfalYid0QP9eeZkeB1oxoL2f9nvRDwAus7bRovCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13616 (0x3530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Oct 18 15:08:32 2025 GMT Not After : Oct 25 15:08:32 2025 GMT Subject: CN=68f3ad71-b1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e8:e2:ba:ba:3b:88:b4:40:d9:9e:fd:0c:f4: 3a:e0:8b:52:f0:22:1a:f2:79:77:d2:4d:53:88:9a: 17:96:73:d0:c7:b9:be:5d:72:17:7b:7d:1f:87:9e: 94:76:02:f5:c4:58:6c:29:53:47:49:a3:30:25:98: ba:78:30:1b:a9:f7:3f:a6:cc:9f:ed:fc:3f:f1:ef: 2c:1b:32:b8:33:3e:54:85:9b:83:1a:df:73:02:18: 8e:7e:94:35:99:50:ed:d0:04:d9:2f:30:5a:78:59: be:dd:cf:1e:21:14:ec:de:fb:66:60:d5:ba:e3:22: 51:66:55:87:1d:f1:65:3a:63:d3:fe:d9:1a:7b:90: f9:b2:b6:aa:b7:57:dd:14:ed:05:4e:3c:f1:dc:ec: 4d:5f:81:72:7e:e2:64:ae:ab:57:5c:64:b8:65:a5: ea:a5:e7:9b:36:c5:00:40:8e:75:60:97:3a:ab:35: 2a:74:a0:39:69:50:58:fa:4f:b8:91:00:cd:f4:42: c6:9d:d2:0f:c8:13:10:84:86:c1:3e:68:77:e4:6c: 9d:11:4e:6c:68:56:30:7c:29:e5:f6:6a:2c:6c:6f: 25:01:7a:dc:21:aa:02:12:f2:47:30:b4:d7:33:d5: 7f:27:34:e5:8f:6e:32:b8:ee:f7:67:22:72:0f:ad: f8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5D:C7:52:F8:B3:7A:77:49:03:E2:79:C5:65:7A:EB:F8:A3:4C:87 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a2:71:5f:1c:9d:b2:2d:e4:59:31:c5:d9:c0:35:69:81:74: 48:ed:a9:a1:af:eb:60:5a:ef:43:47:87:dd:d1:7a:0f:57:97: bd:bd:22:12:a5:49:16:08:18:0b:64:e0:5b:96:be:86:0d:b4: 58:9a:6f:06:31:0b:e3:21:e9:2f:7a:b6:2d:b4:d9:32:ef:41: 51:64:5d:28:9c:07:9c:b3:7c:1b:1a:15:50:74:85:44:2d:35: 29:09:74:8a:61:2f:bc:b0:ea:f7:c0:c7:ed:24:5c:d9:c9:51: fe:59:fb:29:6c:4c:13:96:36:b6:a1:e6:90:5c:0d:06:f3:59: 56:95:4d:01:94:60:43:4d:d0:12:2a:af:79:d0:a4:eb:e8:1e: 15:fc:a9:63:53:59:c4:32:f2:a6:45:26:56:fb:97:4b:e7:ea: 1a:7f:d3:d2:60:9d:cc:21:63:40:09:35:e7:34:22:89:82:83: 63:09:a4:4b:c9:53:a6:5e:1a:be:f4:f3:9d:3a:45:73:8c:37: 6d:f3:23:2c:a4:4a:aa:4e:9d:30:61:d5:ad:c2:d7:64:59:50: fe:3a:23:b4:fc:29:6a:eb:c4:ea:04:19:64:c2:69:fd:68:79: 5f:d9:d1:77:0f:52:24:51:1a:33:3f:65:11:93:5b:6f:9e:74: 5e:25:23:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUxMDE4MTUwODMyWhcNMjUxMDI1MTUwODMyWjAYMRYwFAYD VQQDEw02OGYzYWQ3MS1iMWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyejiuro7iLRA2Z79DPQ64ItS8CIa8nl30k1TiJoXlnPQx7m+XXIXe30fh56U dgL1xFhsKVNHSaMwJZi6eDAbqfc/psyf7fw/8e8sGzK4Mz5UhZuDGt9zAhiOfpQ1 mVDt0ATZLzBaeFm+3c8eIRTs3vtmYNW64yJRZlWHHfFlOmPT/tkae5D5sraqt1fd FO0FTjzx3OxNX4FyfuJkrqtXXGS4ZaXqpeebNsUAQI51YJc6qzUqdKA5aVBY+k+4 kQDN9ELGndIPyBMQhIbBPmh35GydEU5saFYwfCnl9mosbG8lAXrcIaoCEvJHMLTX M9V/JzTlj24yuO73ZyJyD634vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBdx1L4 s3p3SQPiecVleuv4o0yHMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMonFfHJ2yLeRZMcXZwDVpgXRI7amhr+tgWu9DR4fd0XoPV5e9vSIS pUkWCBgLZOBblr6GDbRYmm8GMQvjIekverYttNky70FRZF0onAecs3wbGhVQdIVE LTUpCXSKYS+8sOr3wMftJFzZyVH+WfspbEwTlja2oeaQXA0G81lWlU0BlGBDTdAS Kq950KTr6B4V/KljU1nEMvKmRSZW+5dL5+oaf9PSYJ3MIWNACTXnNCKJgoNjCaRL yVOmXhq+9POdOkVzjDdt8yMspEqqTp0wYdWtwtdkWVD+OiO0/Clq68TqBBlkwmn9 aHlf2dF3D1IkURozP2URk1tvnnReJSP0 -----END CERTIFICATE-----Generated at Mon Oct 20 09:41:35 2025 by rpki-client