$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: dyk0Q/QV9KSwIij1pQ+bpnSNno8hToe9MGMigrer/L8= Subject key identifier: 60:8E:19:3B:AC:9F:10:76:7A:0D:2D:94:9E:9F:D5:5C:F2:61:C3:CC Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 1065 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 1059 Signing time: Wed 22 Oct 2025 17:48:48 +0000 Manifest this update: Wed 22 Oct 2025 17:48:48 +0000 Manifest next update: Wed 29 Oct 2025 17:48:48 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: TtfSySbQQeI0UdlPQkMnBjd716ruT121y49dFBW4DfE=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: SSjTjiJw3UBo/Mme4Kl37l1zxjxnCDkxVmhI1OR3EOw=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: Ls4h/fmzmMgVY9fuRoj+7ux+D5fYwsPV37oBSFEiAic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4197 (0x1065) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: Oct 22 17:48:48 2025 GMT Not After : Oct 29 17:48:48 2025 GMT Subject: CN=68f91900-8620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e6:2f:d9:02:db:e4:f9:77:4d:39:0c:9d:f0: b7:50:98:b9:35:5d:06:4f:0d:00:6e:be:c7:72:f5: a4:46:3b:08:18:a9:38:df:c8:4b:b9:99:73:42:0f: 7d:9e:4a:30:a1:44:a1:a3:15:37:0a:35:bf:dd:d1: dd:3c:18:1f:ab:23:07:3c:ea:cc:fa:ff:69:a0:ca: 01:77:bd:eb:5d:63:14:0d:e6:90:46:96:e4:ce:f4: a2:33:2d:de:e5:36:8a:14:cc:6b:b5:5c:87:58:4b: 44:51:44:77:54:bc:b1:63:f8:7d:b8:a8:40:af:19: 11:53:83:8b:18:1d:a5:63:70:67:93:3a:ab:06:4e: e9:15:0e:10:1c:39:63:78:0f:b8:ab:cc:cb:b5:6d: 70:1d:dc:d7:a6:1f:89:49:60:47:df:69:44:d7:18: 0c:f3:f1:a2:68:e3:02:c2:88:d8:e7:6d:d3:95:00: 26:99:12:dc:8f:4c:4d:c1:bf:90:e2:90:42:bd:73: 7f:7e:92:94:7b:78:d7:77:14:ac:59:da:19:42:43: 4a:1f:64:12:ce:6a:b5:4e:74:7c:92:7e:6c:54:7f: 9b:98:76:6d:11:07:2b:fb:95:77:49:6b:a1:07:9c: eb:bc:83:46:d9:94:e5:32:12:9d:99:4a:c2:9b:b1: ab:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8E:19:3B:AC:9F:10:76:7A:0D:2D:94:9E:9F:D5:5C:F2:61:C3:CC X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:de:d3:8d:54:f1:ab:fa:06:8e:b6:79:44:b6:5c:d7:fd:0d: 0f:4a:26:ee:05:25:29:85:25:4c:de:c7:c0:a0:b0:93:23:9f: 63:54:af:fb:91:9a:c7:fe:c4:c6:96:11:f2:7c:88:ec:20:c6: 05:7a:6c:30:c3:67:aa:a6:5c:35:d3:1a:20:7b:f3:7f:fe:73: 08:d5:73:e2:2d:1a:bd:56:33:78:2f:3b:6e:33:08:b1:f2:1a: 19:f7:53:71:c4:68:ba:20:41:4b:1b:a9:6b:0a:48:bf:6e:33: c7:15:a7:d3:a9:3b:48:3f:38:d1:99:45:1b:93:b4:af:aa:87: 46:dc:f4:2e:d5:cc:f1:cb:50:57:28:66:a8:fc:e0:f1:af:01: ab:44:f8:c8:4f:cf:09:d6:6a:e4:8b:35:b6:68:f2:4d:67:2e: 9d:7e:72:08:aa:1a:97:90:99:0c:21:32:84:0a:9f:1a:c7:97: a6:7d:79:99:c2:b4:f8:62:9d:ee:7d:db:eb:b6:28:a1:62:22: da:ac:1f:26:93:85:19:b0:92:ab:3e:51:44:f9:9d:64:da:c0: 66:02:09:3c:c4:ec:56:42:4a:8a:ab:1a:7c:e7:23:1c:cf:2f: a3:f5:cc:ef:ae:02:d9:d2:bd:6e:a1:e7:b6:bd:eb:c4:05:9d: 48:99:46:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjUxMDIyMTc0ODQ4WhcNMjUxMDI5MTc0ODQ4WjAYMRYwFAYD VQQDEw02OGY5MTkwMC04NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+Yv2QLb5Pl3TTkMnfC3UJi5NV0GTw0Abr7HcvWkRjsIGKk438hLuZlzQg99 nkowoUShoxU3CjW/3dHdPBgfqyMHPOrM+v9poMoBd73rXWMUDeaQRpbkzvSiMy3e 5TaKFMxrtVyHWEtEUUR3VLyxY/h9uKhArxkRU4OLGB2lY3BnkzqrBk7pFQ4QHDlj eA+4q8zLtW1wHdzXph+JSWBH32lE1xgM8/GiaOMCwojY523TlQAmmRLcj0xNwb+Q 4pBCvXN/fpKUe3jXdxSsWdoZQkNKH2QSzmq1TnR8kn5sVH+bmHZtEQcr+5V3SWuh B5zrvING2ZTlMhKdmUrCm7GrvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCOGTus nxB2eg0tlJ6f1VzyYcPMMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/3tONVPGr+gaOtnlEtlzX/Q0PSibuBSUphSVM3sfAoLCTI59jVK/7 kZrH/sTGlhHyfIjsIMYFemwww2eqplw10xoge/N//nMI1XPiLRq9VjN4LztuMwix 8hoZ91NxxGi6IEFLG6lrCki/bjPHFafTqTtIPzjRmUUbk7SvqodG3PQu1czxy1BX KGao/ODxrwGrRPjIT88J1mrkizW2aPJNZy6dfnIIqhqXkJkMITKECp8ax5emfXmZ wrT4Yp3ufdvrtiihYiLarB8mk4UZsJKrPlFE+Z1k2sBmAgk8xOxWQkqKqxp85yMc zy+j9czvrgLZ0r1uoee2vevEBZ1ImUby -----END CERTIFICATE-----Generated at Thu Oct 23 05:26:45 2025 by rpki-client