$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: b4I84FGvr8LI68Z/mTtiz0GwwQ/BPOgrRbxtxYjow2Y= Subject key identifier: AE:04:38:11:C8:71:4A:17:DF:52:3E:1A:FC:31:48:93:F3:17:CA:75 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C83 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C80 Signing time: Mon 20 Oct 2025 14:27:52 +0000 Manifest this update: Mon 20 Oct 2025 14:27:51 +0000 Manifest next update: Mon 27 Oct 2025 14:27:51 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: VUXSCklmF1RtqJlfAQPq7DH1JyhBDDUbR5V80NBgjds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11395 (0x2c83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Oct 20 14:27:51 2025 GMT Not After : Oct 27 14:27:51 2025 GMT Subject: CN=68f646e7-5a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a6:8e:ba:ab:60:ff:5b:a7:fe:4a:a4:fb:25: 55:99:6a:49:12:35:ea:cf:26:6f:6d:05:2b:23:de: d7:fa:1b:03:35:a8:89:30:0e:dc:55:01:54:39:f7: c6:bd:1c:91:de:02:b4:a1:36:e6:d0:72:d5:6e:08: e0:2a:5a:8a:81:58:a9:e5:48:16:5e:8f:63:25:98: 7e:0b:eb:51:a3:5f:b7:6b:35:26:8e:7b:ca:6b:ed: 37:ab:5f:56:d5:6b:78:6f:42:02:fc:ed:ac:f5:40: 27:12:c2:fc:82:09:6e:d0:82:e7:e8:c8:60:d5:9b: c3:1d:0b:8a:2b:2b:52:48:5f:c9:c1:79:d6:0a:2b: 71:46:20:50:27:b1:f3:56:a5:4f:30:65:5d:d5:3e: 30:26:18:8e:14:40:5f:4e:6b:64:59:46:fb:7e:8a: dd:b4:d1:9c:68:f2:22:da:b4:24:9b:b3:d3:37:4f: 08:a1:74:e2:b2:f0:96:e4:10:65:fa:ba:a4:f9:48: ed:57:63:06:8e:29:73:03:62:b8:12:3d:d4:c8:44: 25:f3:50:cb:fd:39:58:50:7a:79:59:86:c9:b2:9f: dd:58:95:1a:09:a4:1f:72:aa:ca:f2:60:e7:c1:09: 5f:d1:88:4b:ef:8f:fd:3f:39:99:18:88:1a:f1:00: d3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:04:38:11:C8:71:4A:17:DF:52:3E:1A:FC:31:48:93:F3:17:CA:75 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:1d:e7:fc:2d:43:be:96:de:40:cc:8c:01:0a:71:c3:90:b4: ae:47:68:83:59:4e:e1:e4:28:e5:00:c5:31:d2:c9:1f:5d:02: 7b:0d:ba:b3:dd:74:4f:19:ba:f5:55:0c:76:d5:6f:4a:6b:7a: ac:35:cf:e5:9f:59:33:6b:36:0b:fb:5e:f1:d1:ac:71:6f:0e: 6e:17:8b:12:65:2b:0c:cc:74:d0:da:4e:c8:08:ea:1b:6a:49: c5:8d:b1:fa:63:b9:3e:74:bf:3a:27:63:79:b0:00:e9:3a:86: fe:e9:af:69:f7:15:c0:9b:9d:dd:d6:8c:f0:64:21:0b:4d:3a: e4:b3:24:cd:51:55:4b:83:b2:e5:09:18:7a:56:36:95:68:6b: ec:5a:a6:79:44:01:a6:95:82:1d:05:18:91:6c:4a:59:2d:eb: 40:f5:f5:20:fc:06:3d:c1:82:09:f4:83:e0:00:51:89:6e:00: 52:11:ae:fd:9e:95:7e:2c:98:39:46:1e:98:d8:87:c7:45:9d: 98:84:65:b7:2f:b9:ea:32:89:a5:ba:77:01:d9:56:5f:45:fb: 32:94:81:1d:7c:06:07:a3:14:bc:f5:f8:b2:2e:cb:13:28:bd: ce:18:07:e5:5d:85:5e:04:f2:79:df:e8:bb:0c:ac:d6:19:ab: 3b:41:e5:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUxMDIwMTQyNzUxWhcNMjUxMDI3MTQyNzUxWjAYMRYwFAYD VQQDEw02OGY2NDZlNy01YTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06aOuqtg/1un/kqk+yVVmWpJEjXqzyZvbQUrI97X+hsDNaiJMA7cVQFUOffG vRyR3gK0oTbm0HLVbgjgKlqKgVip5UgWXo9jJZh+C+tRo1+3azUmjnvKa+03q19W 1Wt4b0IC/O2s9UAnEsL8gglu0ILn6Mhg1ZvDHQuKKytSSF/JwXnWCitxRiBQJ7Hz VqVPMGVd1T4wJhiOFEBfTmtkWUb7fordtNGcaPIi2rQkm7PTN08IoXTisvCW5BBl +rqk+UjtV2MGjilzA2K4Ej3UyEQl81DL/TlYUHp5WYbJsp/dWJUaCaQfcqrK8mDn wQlf0YhL74/9PzmZGIga8QDTxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4EOBHI cUoX31I+GvwxSJPzF8p1MB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzHef8LUO+lt5AzIwBCnHDkLSuR2iDWU7h5CjlAMUx0skfXQJ7Dbqz 3XRPGbr1VQx21W9Ka3qsNc/ln1kzazYL+17x0axxbw5uF4sSZSsMzHTQ2k7ICOob aknFjbH6Y7k+dL86J2N5sADpOob+6a9p9xXAm53d1ozwZCELTTrksyTNUVVLg7Ll CRh6VjaVaGvsWqZ5RAGmlYIdBRiRbEpZLetA9fUg/AY9wYIJ9IPgAFGJbgBSEa79 npV+LJg5Rh6Y2IfHRZ2YhGW3L7nqMomluncB2VZfRfsylIEdfAYHoxS89fiyLssT KL3OGAflXYVeBPJ53+i7DKzWGas7QeUX -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:34 2025 by rpki-client