$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft File: iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft (raw, json) Hash identifier: uySC0CyE72ZGBshSaqhzn1W0dnj5y51K1EU2KtXslIE= Subject key identifier: A6:4D:1F:CC:4C:F1:46:DA:38:40:7E:C4:97:2B:AC:00:C6:D1:93:63 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft Manifest number: 2B Signing time: Mon 03 Nov 2025 07:39:45 +0000 Manifest this update: Mon 03 Nov 2025 07:39:44 +0000 Manifest next update: Mon 10 Nov 2025 07:39:44 +0000 Files and hashes: 1: iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl (hash: l4idlWQsD+q/OonBAhlFLs0tZMN5L3YEE69bYsLJgkU=) 2: 5C7DE69E7EFD11F0827C5F1DC4F9AE02.roa (hash: LhJsIUDxJjf34uwAXx8g7B6lkG4erRS20bGVNhkO1Ek=) 3: 8938B9DA7BF511F0BEBF8326C4F9AE02.roa (hash: vQ9ge67AKzH4HNbVsuxX3Mwi95vAo6POwUTMCo0fB8I=) 4: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (hash: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44=) 5: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (hash: DPudtrZt3zDLn6cOKt8G2uNXGPQUskKpTDxbAvt9zzA=) 6: 8A65797E7BF511F0BEBF8326C4F9AE02.roa (hash: 8VEPDf924YuQ0JrYCDPzrjF2qm9rSo7AZ2xnXGQmqpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Nov 3 07:39:44 2025 GMT Not After : Nov 10 07:39:44 2025 GMT Subject: CN=69085c40-cc79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5f:44:0f:a4:f2:30:fb:e7:0c:82:bc:5a:98: cd:ef:bf:eb:d4:32:b0:89:47:c3:1c:b1:ac:3d:07: 96:4c:c9:c5:05:64:53:4c:5c:6d:6d:80:c2:55:d6: 9b:f1:9c:09:eb:4a:bc:e5:5a:26:00:5d:82:c5:a9: 4f:a8:da:1f:7f:1b:f9:76:83:78:7b:3f:81:11:2c: d5:98:2f:20:b8:ab:79:e7:c0:8a:9e:77:b4:04:9b: 21:80:f5:54:06:3e:a0:b5:07:3d:c7:09:1c:3c:4b: cc:e6:6b:44:fd:73:79:c7:3a:16:3e:ca:15:b8:47: 06:af:5a:6e:0d:29:e7:40:a4:8a:f4:66:f5:80:72: a1:43:11:35:e7:8b:83:0d:ad:a1:4f:34:ae:7e:00: 06:63:20:2a:fc:1d:ee:55:cc:6b:f5:0a:44:fc:00: 3e:05:76:8d:19:7c:85:b4:47:88:48:15:7b:06:dd: ba:ff:73:94:80:bc:81:99:66:16:11:53:f3:80:fd: 17:c4:b0:97:8b:06:ca:4d:6a:d7:d5:26:f5:81:77: dc:d0:14:d8:7c:86:ea:aa:4f:78:9f:22:1c:6b:81: 52:93:71:a1:3c:bd:28:7e:ac:47:e1:50:e6:ac:c7: a1:07:a4:76:13:4c:16:3a:6c:25:68:d2:dc:62:41: 38:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4D:1F:CC:4C:F1:46:DA:38:40:7E:C4:97:2B:AC:00:C6:D1:93:63 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:a5:c7:90:e7:c9:38:87:d6:0b:1f:6f:e4:79:6b:ae:2f:16: 85:2c:71:b2:e2:93:fd:b9:56:71:1c:17:16:6a:bb:47:01:02: 75:b2:19:2d:8a:cc:46:fa:cc:80:23:ff:44:24:17:b6:f9:60: a6:44:7f:94:72:8b:f1:b6:eb:68:13:41:04:c4:7c:32:7c:4d: 6c:5b:07:57:76:9a:4e:be:d5:7d:c5:8e:9c:ee:22:37:bb:47: fa:e0:eb:b4:99:67:32:72:bd:7e:aa:c3:be:a2:31:41:cc:c4: 2b:34:01:d0:63:a9:72:9d:5d:ec:1e:e9:60:b9:b2:1a:df:8d: e0:ab:3f:46:01:cb:7f:d3:4f:ac:31:5f:06:d4:3a:62:52:bf: a9:13:01:d2:54:54:c1:10:e7:1e:8a:8d:ac:27:fa:74:1f:3c: 27:f5:6e:23:8b:5f:eb:7b:fd:ae:e1:6d:4c:0a:ae:88:ad:1d: 2b:7b:54:0c:23:37:22:df:0f:3a:35:7f:77:c1:d7:dd:3b:07: 1c:84:27:69:c3:59:c5:4c:13:a0:e0:73:f6:79:23:39:d1:89: 9c:9c:2e:b3:7d:9a:a0:06:dc:52:bd:b2:1a:41:2d:cc:53:84: 7e:d2:36:53:86:3d:86:08:cb:5a:f1:f5:39:b8:96:2c:2c:c0: 56:93:e5:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTExMDMwNzM5NDRaFw0yNTExMTAwNzM5NDRaMBgxFjAUBgNV BAMTDTY5MDg1YzQwLWNjNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjX0QPpPIw++cMgrxamM3vv+vUMrCJR8Mcsaw9B5ZMycUFZFNMXG1tgMJV1pvx nAnrSrzlWiYAXYLFqU+o2h9/G/l2g3h7P4ERLNWYLyC4q3nnwIqed7QEmyGA9VQG PqC1Bz3HCRw8S8zma0T9c3nHOhY+yhW4RwavWm4NKedApIr0ZvWAcqFDETXni4MN raFPNK5+AAZjICr8He5VzGv1CkT8AD4Fdo0ZfIW0R4hIFXsG3br/c5SAvIGZZhYR U/OA/RfEsJeLBspNatfVJvWBd9zQFNh8huqqT3ifIhxrgVKTcaE8vSh+rEfhUOas x6EHpHYTTBY6bCVo0txiQThDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpk0fzEzx Rto4QH7ElyusAMbRk2MwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE NTg4L0JGN0Q1RTc2N0JGMzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJW eDJkVFBsVDlGNEhYZ21wZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACOlx5DnyTiH1gsfb+R5a64vFoUscbLik/25VnEcFxZqu0cBAnWyGS2K zEb6zIAj/0QkF7b5YKZEf5Ryi/G262gTQQTEfDJ8TWxbB1d2mk6+1X3FjpzuIje7 R/rg67SZZzJyvX6qw76iMUHMxCs0AdBjqXKdXewe6WC5shrfjeCrP0YBy3/TT6wx XwbUOmJSv6kTAdJUVMEQ5x6Kjawn+nQfPCf1biOLX+t7/a7hbUwKroitHSt7VAwj NyLfDzo1f3fB1907BxyEJ2nDWcVME6Dgc/Z5IznRiZycLrN9mqAG3FK9shpBLcxT hH7SNlOGPYYIy1rx9Tm4liwswFaT5VY= -----END CERTIFICATE-----Generated at Wed Nov 5 07:40:58 2025 by rpki-client