$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: IDaSRWVOVISIDCzoNT6PF2c4rBwc8rfNIEoR+M2h41E= Subject key identifier: 62:44:0B:BD:E6:3F:51:99:0B:7C:1F:91:90:A9:3E:8C:A5:82:AA:C9 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 01EA Signing time: Sun 19 Oct 2025 04:58:56 +0000 Manifest this update: Sun 19 Oct 2025 04:58:55 +0000 Manifest next update: Sun 26 Oct 2025 04:58:55 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: 1wrmpYK06ktH4CqVMLKJuK2fb9rRczkwpGTlkWWJSl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Oct 19 04:58:55 2025 GMT Not After : Oct 26 04:58:55 2025 GMT Subject: CN=68f47010-668e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0d:02:3b:4c:2d:db:2e:04:e8:6d:ff:c2:bd: 24:2d:1d:ea:22:01:c6:7a:10:e2:45:b0:28:ba:8c: db:83:e0:a3:97:d4:3b:59:7f:b8:d6:15:1d:54:0f: 87:9a:8d:3f:93:7d:98:7e:10:3e:45:82:28:78:bb: 9a:17:4e:1d:01:9d:11:ca:38:59:7b:4e:ec:c0:6f: 13:b9:e5:1e:de:f2:67:4a:67:dc:29:78:36:8f:07: d1:49:2d:5a:48:7d:53:bf:64:72:f8:9f:ad:a0:05: 72:14:37:12:32:a8:09:94:4b:e2:49:aa:46:f2:b4: f5:46:f6:ba:78:62:ab:9f:12:14:a9:0d:01:d7:68: cc:94:57:cf:80:4e:cb:c1:61:67:db:e4:57:74:5b: 69:94:11:24:8b:2f:b7:e9:11:df:e2:f0:79:e4:ea: 21:ca:5e:90:c5:46:b6:7a:55:51:f4:15:b4:3e:5f: 44:dd:08:6d:db:83:56:17:f6:1f:21:c6:79:d7:30: 74:16:0d:bc:2b:5e:ab:fe:62:86:b9:c3:86:b3:d8: c8:aa:30:ac:88:09:41:f5:65:f2:d6:2f:1a:82:99: 09:76:3b:5f:11:6f:7f:b2:79:2a:99:5c:b9:78:01: 7e:2e:11:6a:51:4f:f2:11:0b:12:36:1f:91:c6:6c: 94:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:44:0B:BD:E6:3F:51:99:0B:7C:1F:91:90:A9:3E:8C:A5:82:AA:C9 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:bd:f6:50:79:00:b9:b3:49:9c:c1:f4:18:b7:3f:cf:02:70: 42:5e:b2:61:48:b7:7d:69:ab:8b:c2:47:ed:29:e1:97:cc:9d: 02:d7:df:7e:ab:ee:19:2f:2f:11:2e:c1:bc:44:96:f3:13:79: 46:63:0a:e5:7d:66:cc:6e:60:32:97:ec:c6:b5:65:5d:0f:dd: 30:78:5c:94:6e:49:f4:68:72:bb:f1:69:04:63:a4:fe:05:2c: bd:0b:44:46:a8:e9:34:50:eb:b3:18:ad:59:c2:91:e1:dc:51: 33:c7:09:c5:d0:a9:a1:35:44:da:4b:5e:7d:0d:07:66:a8:17: be:b8:f5:59:63:29:3c:32:14:2b:01:ed:c5:80:a6:13:a8:ec: 93:8a:83:c0:74:63:f0:86:3c:c2:17:8c:45:30:74:7b:1d:61: 14:38:ea:c5:c9:fe:c0:a2:b3:77:e9:6b:54:01:cc:8f:a2:fa: 11:9e:4e:f9:f0:a5:67:d3:ca:18:a1:09:3f:1f:24:ec:30:49: 38:85:54:a9:58:8d:68:5c:9e:c9:d0:b4:ed:67:4f:c7:a3:34: a1:57:4f:c8:84:94:47:ec:f4:b7:77:87:0e:35:e8:09:b1:d4: ab:f0:d6:ce:d0:09:43:a0:50:99:a4:05:c7:f9:cb:6d:e2:a4: 9f:c8:82:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUxMDE5MDQ1ODU1WhcNMjUxMDI2MDQ1ODU1WjAYMRYwFAYD VQQDEw02OGY0NzAxMC02NjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtg0CO0wt2y4E6G3/wr0kLR3qIgHGehDiRbAouozbg+Cjl9Q7WX+41hUdVA+H mo0/k32YfhA+RYIoeLuaF04dAZ0RyjhZe07swG8TueUe3vJnSmfcKXg2jwfRSS1a SH1Tv2Ry+J+toAVyFDcSMqgJlEviSapG8rT1Rva6eGKrnxIUqQ0B12jMlFfPgE7L wWFn2+RXdFtplBEkiy+36RHf4vB55Oohyl6QxUa2elVR9BW0Pl9E3Qht24NWF/Yf IcZ51zB0Fg28K16r/mKGucOGs9jIqjCsiAlB9WXy1i8agpkJdjtfEW9/snkqmVy5 eAF+LhFqUU/yEQsSNh+RxmyUvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJEC73m P1GZC3wfkZCpPoylgqrJMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtvfZQeQC5s0mcwfQYtz/PAnBCXrJhSLd9aauLwkftKeGXzJ0C199+ q+4ZLy8RLsG8RJbzE3lGYwrlfWbMbmAyl+zGtWVdD90weFyUbkn0aHK78WkEY6T+ BSy9C0RGqOk0UOuzGK1ZwpHh3FEzxwnF0KmhNUTaS159DQdmqBe+uPVZYyk8MhQr Ae3FgKYTqOyTioPAdGPwhjzCF4xFMHR7HWEUOOrFyf7AorN36WtUAcyPovoRnk75 8KVn08oYoQk/HyTsMEk4hVSpWI1oXJ7J0LTtZ0/HozShV0/IhJRH7PS3d4cONegJ sdSr8NbO0AlDoFCZpAXH+ctt4qSfyIKZ -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:25 2025 by rpki-client