$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: ymZMYGkdLT5+o2k03cp9pWYKFA4pYFpt5PeETlnJAzM= Subject key identifier: 2C:11:3C:4B:FB:DD:F1:AB:5F:CF:90:30:17:6C:FF:2F:2D:FA:0B:F9 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 353B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 3512 Signing time: Sun 02 Nov 2025 15:00:51 +0000 Manifest this update: Sun 02 Nov 2025 15:00:51 +0000 Manifest next update: Sun 09 Nov 2025 15:00:51 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: h/Ll0NdoBSFeSghEmIDbBp9nhbbOZVl47jjKIKuzrpo=) 2: 450B9058E3B511EF8A23824BC4F9AE02.roa (hash: zYsWSb6Yl11A1fr48d//3yneCAQxTmVwyPNNY8GXq+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13627 (0x353b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Nov 2 15:00:51 2025 GMT Not After : Nov 9 15:00:51 2025 GMT Subject: CN=69077223-7ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3d:b6:3f:a9:f4:55:af:d6:34:4e:f2:d1:1e: 96:a0:e7:9f:10:f7:72:00:4f:15:eb:00:db:f0:7d: cd:71:d0:8a:cc:11:5f:8d:c8:da:75:70:7e:1f:5e: d0:62:8d:c2:03:13:63:ed:5c:e4:30:6a:c7:ca:12: db:49:60:59:78:d7:11:0f:b7:1e:e4:8c:e1:63:ca: 67:0b:39:73:40:64:71:99:d2:8e:2b:28:a3:3a:01: 51:5c:0e:c0:aa:8a:be:1e:e4:95:ac:68:8f:99:42: 84:8b:bf:ed:90:ea:d2:d5:6d:50:09:d5:58:57:63: 6a:68:f2:9a:f5:4f:64:33:7e:a4:6f:98:58:cf:fb: b4:fe:88:34:63:96:1d:71:5f:8a:a9:5e:b9:ae:68: a3:43:dd:93:1d:92:36:ce:c3:05:3d:c7:c7:7b:86: bf:96:c6:17:b7:22:77:f0:a1:ff:78:6d:a4:5d:91: 0d:b4:8b:ad:11:7b:19:41:7d:db:6f:70:3c:ae:d6: 85:eb:5a:37:61:27:9c:c0:b3:0b:ff:2f:29:92:0d: e7:45:7c:d1:33:0c:fa:d6:91:5f:73:b9:2f:e7:a5: 85:68:74:aa:e4:f0:44:64:64:99:ac:65:55:f2:7a: 9b:12:63:f8:54:84:27:cc:20:c4:ef:cd:54:2f:c4: e3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:11:3C:4B:FB:DD:F1:AB:5F:CF:90:30:17:6C:FF:2F:2D:FA:0B:F9 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c5:01:98:8c:7e:4e:19:6f:e7:fc:b6:8d:bb:a1:7e:62:9b: d2:6a:78:0e:85:e7:74:62:d2:d8:ff:3a:35:6f:a9:12:ef:22: d0:a5:d8:78:59:73:4c:91:f5:97:c2:dc:a9:e7:67:22:52:3e: 5f:a0:25:d5:1e:97:3c:ff:a5:93:df:d7:6d:5b:71:b1:2a:8c: 90:b1:c6:ed:12:5b:1d:cd:02:ee:a2:31:d9:6e:bc:29:a5:0c: 33:4d:a3:a4:b2:6c:c8:72:53:d2:2a:b0:14:20:4b:cc:f5:7e: b0:a4:6c:22:93:1e:32:9c:49:c5:73:cb:b7:b7:b6:be:bd:4f: 3c:c8:4b:97:7b:40:73:7a:e4:a2:e0:4b:89:a8:5a:6f:7c:a3: 16:76:93:ae:94:11:d9:4c:89:8d:87:2a:a8:95:d5:57:fb:d1: 0e:cf:cf:3d:0f:47:27:ca:30:6b:1d:14:7d:13:9d:d5:50:97: f1:54:85:9c:c5:da:cb:20:97:28:2e:e2:ed:ca:78:31:fa:14: cf:ed:e5:eb:51:d1:e2:bf:e7:04:fa:e0:96:59:9e:07:7a:dd: 7f:a3:ea:76:a9:7c:fa:67:01:55:c4:e8:48:35:8d:63:66:49: 1c:78:a8:d1:85:f0:74:4f:7c:b0:ce:c4:7e:cc:d2:0c:7e:d4: 64:48:42:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUxMTAyMTUwMDUxWhcNMjUxMTA5MTUwMDUxWjAYMRYwFAYD VQQDEw02OTA3NzIyMy03Y2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7j22P6n0Va/WNE7y0R6WoOefEPdyAE8V6wDb8H3NcdCKzBFfjcjadXB+H17Q Yo3CAxNj7VzkMGrHyhLbSWBZeNcRD7ce5IzhY8pnCzlzQGRxmdKOKyijOgFRXA7A qoq+HuSVrGiPmUKEi7/tkOrS1W1QCdVYV2NqaPKa9U9kM36kb5hYz/u0/og0Y5Yd cV+KqV65rmijQ92THZI2zsMFPcfHe4a/lsYXtyJ38KH/eG2kXZENtIutEXsZQX3b b3A8rtaF61o3YSecwLML/y8pkg3nRXzRMwz61pFfc7kv56WFaHSq5PBEZGSZrGVV 8nqbEmP4VIQnzCDE781UL8TjQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwRPEv7 3fGrX8+QMBds/y8t+gv5MB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDxQGYjH5OGW/n/LaNu6F+YpvSangOhed0YtLY/zo1b6kS7yLQpdh4 WXNMkfWXwtyp52ciUj5foCXVHpc8/6WT39dtW3GxKoyQscbtElsdzQLuojHZbrwp pQwzTaOksmzIclPSKrAUIEvM9X6wpGwikx4ynEnFc8u3t7a+vU88yEuXe0BzeuSi 4EuJqFpvfKMWdpOulBHZTImNhyqoldVX+9EOz889D0cnyjBrHRR9E53VUJfxVIWc xdrLIJcoLuLtyngx+hTP7eXrUdHiv+cE+uCWWZ4Het1/o+p2qXz6ZwFVxOhINY1j ZkkceKjRhfB0T3ywzsR+zNIMftRkSEKh -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:25 2025 by rpki-client