$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: RR0xivuXMA2Rmc0i9CCVVyNnWr9T3jvgE7i/DFySl3Y= Subject key identifier: 54:39:EB:23:46:9A:88:E3:12:97:CC:9B:98:EB:6A:8A:58:60:2C:75 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 13C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 1394 Signing time: Tue 04 Nov 2025 17:05:54 +0000 Manifest this update: Tue 04 Nov 2025 17:05:54 +0000 Manifest next update: Tue 11 Nov 2025 17:05:54 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: DcN2c/RespNQD26zHA7CFxkezNU6+Y6vtO76Wv+exs4=) 2: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: Ev9eMpCw/MzuG/D+D40guHshDgyLCaCtAL+5ytANYiw=) 3: AF14F7EC516411F08E03714FC4F9AE02.roa (hash: 96q0yHBSk/Rmlo0qmQ4XhZWgKPNkJp4u/4iyHTCtNz4=) 4: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: GoAy5cjhZ6tHusMFJznhNoSIq/l4hxWlmp0vD6wrtPc=) 5: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: jOCYNbolAoXMHScfQ9iviRSTkspAFWIu2eYuLyyZDaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5064 (0x13c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Nov 4 17:05:54 2025 GMT Not After : Nov 11 17:05:54 2025 GMT Subject: CN=690a3272-9153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:39:ed:45:32:5f:64:f5:d8:2c:7c:85:9f:e7: cc:63:0b:f6:b6:0f:14:a8:5c:dc:8f:85:16:f6:8f: 18:2e:80:cd:c7:df:75:af:ca:28:70:31:11:42:74: b9:40:ab:dd:94:3b:2d:6c:ed:9f:e1:80:2d:64:28: 21:d9:c3:10:52:19:7f:fa:51:aa:df:09:16:4a:8e: 1b:f5:06:4d:68:06:ee:f6:36:2d:df:38:fe:f8:46: f0:56:06:7a:42:8e:e8:bd:70:02:15:f5:dc:4a:32: 77:93:55:a2:29:aa:19:dd:aa:53:d6:23:49:61:68: b3:31:b5:49:fc:88:83:4c:c1:9a:22:81:10:be:66: 0e:b7:75:af:5d:e1:b8:8a:6d:de:bd:74:b9:09:57: 81:bd:c2:95:f8:0c:75:15:69:ce:e8:56:94:b8:26: 09:7f:76:f1:96:e4:bd:bf:03:36:a0:fe:e7:5d:e9: 61:0b:77:5b:db:50:55:36:7b:1d:4b:e1:5d:b9:1c: f8:9e:d7:1c:ff:b8:f6:a2:78:65:68:c6:2e:39:a3: 0c:91:86:24:cd:f7:e7:ea:67:5a:67:9c:d9:86:cf: db:4f:e2:67:bc:54:30:4a:8a:24:a9:13:3c:63:d6: f4:62:6d:6b:28:13:6c:ff:fe:32:6d:4f:cf:ab:cc: fd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:39:EB:23:46:9A:88:E3:12:97:CC:9B:98:EB:6A:8A:58:60:2C:75 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:db:37:85:7b:f0:3d:b2:c1:b5:e8:19:f6:39:3a:03:31:bf: 45:14:d7:8b:d9:b0:13:cc:de:ad:ef:7d:a6:3e:55:c9:7a:a3: 58:3c:a8:29:4c:03:7b:22:14:9d:0b:c7:c7:3b:af:37:47:0f: d8:f2:ec:4d:b9:18:27:e3:dc:66:e8:a7:84:a4:9e:19:3e:88: 80:1d:b5:7b:73:23:f9:94:3f:43:0f:b8:3a:4e:cd:29:0e:c0: af:95:49:89:bd:3f:bf:f7:74:c8:60:fa:04:75:ae:ff:5b:d2: 7e:b0:08:dd:6e:94:c1:e8:30:7d:22:f2:a7:96:fb:eb:a6:85: cf:49:c1:06:d2:07:44:66:a0:7f:4b:99:9c:00:b4:5a:38:72: 10:cb:7f:9e:a6:c5:b8:b1:78:81:f6:55:d6:2b:1e:09:ef:28: 08:83:05:7d:03:85:b6:f0:68:ee:2f:9c:4d:51:2b:b2:54:7b: d9:2a:20:4b:93:a5:67:cc:12:b6:72:3e:ef:c1:a7:cb:cf:90: 94:5a:ba:6b:54:b4:bd:f0:a0:82:50:04:4c:32:f7:b6:9f:4c: de:99:0c:a9:18:2b:1e:d6:a9:44:09:fe:34:a3:43:6b:e4:4d: 98:ee:30:ac:c7:5e:95:bf:9a:30:52:7a:be:6e:42:4e:12:29: f7:7c:ea:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUxMTA0MTcwNTU0WhcNMjUxMTExMTcwNTU0WjAYMRYwFAYD VQQDEw02OTBhMzI3Mi05MTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zntRTJfZPXYLHyFn+fMYwv2tg8UqFzcj4UW9o8YLoDNx991r8oocDERQnS5 QKvdlDstbO2f4YAtZCgh2cMQUhl/+lGq3wkWSo4b9QZNaAbu9jYt3zj++EbwVgZ6 Qo7ovXACFfXcSjJ3k1WiKaoZ3apT1iNJYWizMbVJ/IiDTMGaIoEQvmYOt3WvXeG4 im3evXS5CVeBvcKV+Ax1FWnO6FaUuCYJf3bxluS9vwM2oP7nXelhC3db21BVNnsd S+FduRz4ntcc/7j2onhlaMYuOaMMkYYkzffn6mdaZ5zZhs/bT+JnvFQwSookqRM8 Y9b0Ym1rKBNs//4ybU/Pq8z9awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQ56yNG mojjEpfMm5jraopYYCx1MB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG2zeFe/A9ssG16Bn2OToDMb9FFNeL2bATzN6t732mPlXJeqNYPKgp TAN7IhSdC8fHO683Rw/Y8uxNuRgn49xm6KeEpJ4ZPoiAHbV7cyP5lD9DD7g6Ts0p DsCvlUmJvT+/93TIYPoEda7/W9J+sAjdbpTB6DB9IvKnlvvrpoXPScEG0gdEZqB/ S5mcALRaOHIQy3+epsW4sXiB9lXWKx4J7ygIgwV9A4W28GjuL5xNUSuyVHvZKiBL k6VnzBK2cj7vwafLz5CUWrprVLS98KCCUARMMve2n0zemQypGCse1qlECf40o0Nr 5E2Y7jCsx16Vv5owUnq+bkJOEin3fOpp -----END CERTIFICATE-----Generated at Wed Nov 5 15:16:58 2025 by rpki-client