$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: KY+k7rU7TBTNk9miDzUS2IQfs/+QBm9lUMJQMDpCAA0= Subject key identifier: 05:F6:55:D3:15:3D:59:DB:71:58:34:F1:BC:73:88:4A:EB:F0:B2:30 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 0456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 043E Signing time: Sat 25 Oct 2025 03:17:33 +0000 Manifest this update: Sat 25 Oct 2025 03:17:32 +0000 Manifest next update: Sat 01 Nov 2025 03:17:32 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: YbnDa+4rmxLBqM0d6sZKtQAMLFoZmFdQ5uQa5rYPXHc=) 2: 4B167396E74111EC80E35542C4F9AE02.roa (hash: m7bVPzA+H6T0BPfqPAwWK53E3FJsQccTswfglW7TmvM=) 3: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: Da11y9sKk3+3GED3RWDHgx+o3Zp2BSYGO+0sW2aJMEM=) 4: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: zk2dr+AUUcgcseaus5ZI0MyjJIW4D1il57/7c0zzcK4=) 5: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: rChmwH90SUuXyk+7yFwvc60l13VLAAHmVFzSZ22IXbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 03:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Oct 25 03:17:32 2025 GMT Not After : Nov 1 03:17:32 2025 GMT Subject: CN=68fc414c-6b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b1:c0:3c:f6:31:28:e2:df:77:be:0d:01:21: 2d:ff:39:8d:c8:5f:f1:e0:eb:d6:75:7a:4d:78:19: 77:0d:41:24:14:05:fa:9d:3a:de:e7:99:bd:37:31: 4c:f6:c0:d6:fa:4e:91:d0:ef:50:b1:ab:e9:7c:9c: 85:ce:e1:d5:bf:00:e3:da:a8:8c:87:10:60:27:07: d4:f3:60:7c:57:da:ce:3a:e5:41:16:e5:dc:c7:8a: 0c:7f:4e:d2:61:da:54:f9:86:b7:51:e0:d5:01:b0: 9a:5a:be:1f:38:96:48:52:fb:59:26:75:e7:67:13: 03:96:30:38:ff:b4:67:e6:b4:66:e9:97:c1:41:37: b7:11:36:7c:87:82:bd:3d:04:cd:7a:ed:d8:d2:59: 48:5d:6a:fc:33:d2:24:3d:53:68:73:2d:3d:65:07: ab:71:d3:2a:09:05:8c:42:5c:d3:4a:f6:95:ee:5c: 92:c9:86:e1:ee:73:4b:81:b5:48:69:d0:83:22:2b: f0:d1:66:61:70:19:89:a7:30:e1:94:b9:f5:ab:20: 76:91:51:3f:28:03:8a:90:f3:e7:b2:37:9a:d9:65: 70:53:9f:56:22:f9:14:de:1e:9a:c2:82:ef:1b:85: 45:5d:83:a5:f7:e9:ab:00:0f:7d:8e:3b:5e:99:0b: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F6:55:D3:15:3D:59:DB:71:58:34:F1:BC:73:88:4A:EB:F0:B2:30 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a6:5c:42:16:92:47:81:c3:a4:0d:f1:35:4b:cd:93:22:0e: 1c:4f:91:f8:ba:85:0b:96:70:7d:86:88:0d:9e:7f:21:88:56: 36:8b:65:9e:e7:44:71:a5:5d:46:b4:7f:f9:01:46:4f:d1:15: d2:54:23:7e:ee:fe:f7:35:53:09:c9:1f:4a:72:58:7d:af:21: 74:2e:b1:9d:c0:ee:78:68:aa:bc:87:d5:54:01:d4:7a:d5:19: cb:df:b7:57:07:19:6d:d1:13:74:89:4f:02:95:f2:28:73:75: 83:46:5e:0d:39:ac:b7:a2:2c:41:77:df:ec:9d:5f:7a:a3:14: 28:a8:b6:34:4d:5c:e8:af:1f:4d:bc:16:a6:e2:f1:e5:49:b4: d9:4b:dd:19:7a:40:e4:7c:d5:09:75:f3:ef:0c:ab:d1:a7:fb: cf:8d:29:23:e0:b2:3b:85:b8:a3:a3:87:47:ee:a1:4a:2b:9e: a9:58:95:a6:f8:32:ef:b0:ea:91:28:69:40:ad:cb:d4:05:c7: cf:15:b8:1c:94:db:75:26:27:89:4b:55:35:e6:b4:f4:23:d8: 9b:82:e8:53:ac:34:1d:e5:0f:5b:c7:9c:9f:86:cb:c3:5d:f5: 6c:d0:1e:63:1f:b5:d1:69:54:71:a6:6f:f0:53:70:94:9e:14: 9f:d4:17:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMDI1MDMxNzMyWhcNMjUxMTAxMDMxNzMyWjAYMRYwFAYD VQQDEw02OGZjNDE0Yy02YjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLHAPPYxKOLfd74NASEt/zmNyF/x4OvWdXpNeBl3DUEkFAX6nTre55m9NzFM 9sDW+k6R0O9QsavpfJyFzuHVvwDj2qiMhxBgJwfU82B8V9rOOuVBFuXcx4oMf07S YdpU+Ya3UeDVAbCaWr4fOJZIUvtZJnXnZxMDljA4/7Rn5rRm6ZfBQTe3ETZ8h4K9 PQTNeu3Y0llIXWr8M9IkPVNocy09ZQercdMqCQWMQlzTSvaV7lySyYbh7nNLgbVI adCDIivw0WZhcBmJpzDhlLn1qyB2kVE/KAOKkPPnsjea2WVwU59WIvkU3h6awoLv G4VFXYOl9+mrAA99jjtemQuu6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAX2VdMV PVnbcVg08bxziErr8LIwMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClplxCFpJHgcOkDfE1S82TIg4cT5H4uoULlnB9hogNnn8hiFY2i2We 50RxpV1GtH/5AUZP0RXSVCN+7v73NVMJyR9Kclh9ryF0LrGdwO54aKq8h9VUAdR6 1RnL37dXBxlt0RN0iU8ClfIoc3WDRl4NOay3oixBd9/snV96oxQoqLY0TVzorx9N vBam4vHlSbTZS90ZekDkfNUJdfPvDKvRp/vPjSkj4LI7hbijo4dH7qFKK56pWJWm +DLvsOqRKGlArcvUBcfPFbgclNt1JieJS1U15rT0I9ibguhTrDQd5Q9bx5yfhsvD XfVs0B5jH7XRaVRxpm/wU3CUnhSf1Bct -----END CERTIFICATE-----Generated at Sun Oct 26 06:33:49 2025 by rpki-client