$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: l7uZ42+D+GAXWmHP0Ydlr3L5/j1YWUK03xr1Niqayx0= Subject key identifier: F0:44:11:FA:45:EF:D3:DF:FB:AB:3A:B8:F9:9E:7E:67:DF:6F:C0:AC Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 0238 Signing time: Mon 03 Nov 2025 01:50:19 +0000 Manifest this update: Mon 03 Nov 2025 01:50:18 +0000 Manifest next update: Mon 10 Nov 2025 01:50:18 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: MsA7Rilvy9ULTFifW4lKcE9iuNeNoZo7xYRtNgpL+Sc=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: i/snzsv5ugVK5M4wkOzh02txTFh9Vl9HyndyddhSqd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: Nov 3 01:50:18 2025 GMT Not After : Nov 10 01:50:18 2025 GMT Subject: CN=69080a5b-afad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0f:d7:53:ba:50:c2:df:71:5c:16:de:4d:6b: bc:9a:4f:c1:d3:f5:87:e0:7f:54:b6:4b:a7:96:c1: 16:d5:9d:ce:44:b1:90:07:a3:b1:e1:15:55:7e:6f: f6:2b:56:5b:02:62:8c:59:80:7d:c8:0b:21:8a:57: f1:d6:13:64:1a:9c:71:7d:de:2b:7b:14:37:c7:08: cd:18:34:82:dd:f7:e1:27:e7:08:56:91:85:83:65: 6c:08:62:73:d4:0d:69:5f:d6:3d:bf:f8:e9:5d:36: 92:ac:43:0e:92:d0:a8:e9:aa:38:4f:03:e9:dd:95: f3:4b:71:cc:ea:c9:65:bd:2d:16:a3:d8:9a:be:5e: 0e:d6:a0:03:2c:e9:ca:06:ac:85:1d:d6:08:ca:ca: 73:35:94:2e:4b:5e:8c:6b:3c:1a:b0:00:19:aa:5f: 31:58:eb:8f:e7:96:c2:c0:a3:a9:ed:e8:e7:1c:93: 68:43:19:42:bc:9e:48:b4:55:aa:f8:13:f4:de:db: 86:5a:fb:4d:5b:be:80:36:12:8a:00:c8:8a:4d:f9: 65:92:3f:6c:a9:dd:bf:02:ed:0e:f9:7a:13:49:41: 50:0e:81:6a:73:4e:67:98:25:da:6c:46:e6:56:c1: ef:11:05:37:9f:af:41:a2:1a:9d:1a:de:26:00:6d: 03:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:44:11:FA:45:EF:D3:DF:FB:AB:3A:B8:F9:9E:7E:67:DF:6F:C0:AC X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:57:b5:23:c0:a8:ba:59:32:63:7a:5a:21:11:96:f1:54:6e: 00:fb:88:c9:fe:69:6b:93:a9:60:6a:94:b3:70:4f:be:26:04: 26:d1:ba:29:c0:0c:69:71:71:88:ae:b4:b4:92:f5:7f:e5:10: cb:ce:e3:0e:d8:95:ae:19:62:f2:0d:6f:16:aa:c1:9a:1d:17: 99:ab:d5:9e:89:26:66:5b:9c:21:7c:37:15:a3:dc:8d:16:10: 4e:02:4c:0b:05:1a:02:6f:94:08:cf:f0:50:8c:f5:43:ac:cf: 97:be:18:4a:30:51:ae:68:5b:fe:b6:f6:30:97:68:04:40:b7: f3:7c:13:14:78:46:0b:48:9d:78:7b:1c:07:31:80:53:9e:81: e1:7b:33:06:b7:38:90:c6:c0:69:34:0d:30:23:26:2c:a6:4d: b2:19:44:bf:06:7f:41:51:94:83:bb:23:91:93:58:dd:dd:38: 61:0d:80:af:ab:e9:38:bf:22:27:98:fa:1d:8a:b2:3b:c5:32: 6e:0e:e8:4a:a3:3c:77:e0:a2:fd:8b:ed:bc:f3:a0:5d:c5:8e: 03:e6:87:92:7f:63:f0:a7:f1:5b:1a:72:c3:c6:cc:a3:f0:e3: 32:fe:d4:95:8a:1b:d3:0c:e0:6d:f5:42:d4:5a:52:61:fb:91: 7e:3a:6c:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjUxMTAzMDE1MDE4WhcNMjUxMTEwMDE1MDE4WjAYMRYwFAYD VQQDEw02OTA4MGE1Yi1hZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzw/XU7pQwt9xXBbeTWu8mk/B0/WH4H9UtkunlsEW1Z3ORLGQB6Ox4RVVfm/2 K1ZbAmKMWYB9yAshilfx1hNkGpxxfd4rexQ3xwjNGDSC3ffhJ+cIVpGFg2VsCGJz 1A1pX9Y9v/jpXTaSrEMOktCo6ao4TwPp3ZXzS3HM6sllvS0Wo9iavl4O1qADLOnK BqyFHdYIyspzNZQuS16MazwasAAZql8xWOuP55bCwKOp7ejnHJNoQxlCvJ5ItFWq +BP03tuGWvtNW76ANhKKAMiKTfllkj9sqd2/Au0O+XoTSUFQDoFqc05nmCXabEbm VsHvEQU3n69BohqdGt4mAG0D+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBEEfpF 79Pf+6s6uPmefmffb8CsMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6V7UjwKi6WTJjelohEZbxVG4A+4jJ/mlrk6lgapSzcE++JgQm0bop wAxpcXGIrrS0kvV/5RDLzuMO2JWuGWLyDW8WqsGaHReZq9WeiSZmW5whfDcVo9yN FhBOAkwLBRoCb5QIz/BQjPVDrM+XvhhKMFGuaFv+tvYwl2gEQLfzfBMUeEYLSJ14 exwHMYBTnoHhezMGtziQxsBpNA0wIyYspk2yGUS/Bn9BUZSDuyORk1jd3ThhDYCv q+k4vyInmPodirI7xTJuDuhKozx34KL9i+2886BdxY4D5oeSf2Pwp/FbGnLDxsyj 8OMy/tSVihvTDOBt9ULUWlJh+5F+Omx4 -----END CERTIFICATE-----Generated at Tue Nov 4 01:06:03 2025 by rpki-client