$ rpki-client -vvf rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft File: haOfEGRko23KJ0v8d_uvewMDh24.mft (raw, json) Hash identifier: F9CVuXu4WCWKTvlOadZZgeFmVTh0uqfHceEtmznTOh4= Subject key identifier: 84:D9:A6:8D:CF:C3:DE:7C:AF:73:CA:68:05:1F:78:F6:F8:BE:25:09 Authority key identifier: 85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E Certificate issuer: /CN=A9131181/serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft Manifest number: 6A Signing time: Sun 19 Oct 2025 10:20:33 +0000 Manifest this update: Sun 19 Oct 2025 10:20:32 +0000 Manifest next update: Sun 26 Oct 2025 10:20:32 +0000 Files and hashes: 1: haOfEGRko23KJ0v8d_uvewMDh24.crl (hash: DkdQK+Z6CmF7h9YYmg+wMhSgEnW7+ubHXDBQ7pPI0Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131181, serialNumber=85A39F106464A36DCA274BFC77FBAF7B0303876E Validity Not Before: Oct 19 10:20:32 2025 GMT Not After : Oct 26 10:20:32 2025 GMT Subject: CN=68f4bb71-2974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:33:29:df:25:1b:00:40:e0:8f:71:aa:7c:21: 37:db:57:70:00:3d:7b:1a:e5:3e:88:23:04:75:40: df:d9:ab:38:24:46:8d:eb:76:86:91:86:ca:fc:8d: fb:8b:ea:73:28:81:8d:99:56:ac:7b:e2:b3:34:c7: 53:64:69:07:32:bb:2e:e9:af:8c:c1:5d:a1:21:8f: 3e:0f:5e:24:57:b4:22:52:5b:95:76:2c:7a:8c:53: de:7d:b4:1e:a8:25:fa:53:b0:4a:9d:36:4b:1c:c7: a4:71:5b:8c:a6:97:c3:44:a6:43:71:a1:2d:b8:88: 27:07:c4:0f:c2:5d:02:37:cd:4e:9e:4e:e8:98:a1: 24:fd:a0:8a:01:ea:53:5b:0f:26:73:80:38:9b:b4: 3f:55:55:d3:69:01:03:71:8c:b7:0d:d1:a2:04:57: 12:ac:ab:2d:52:fe:c7:a8:24:5d:0d:4b:b4:aa:b0: 99:39:68:6f:93:15:75:fa:42:8c:d3:ac:5d:12:ef: 3e:8a:f5:9e:b8:b1:83:0b:5e:6d:b3:f7:fd:a5:c9: de:9a:c0:26:94:ff:fb:fa:ef:18:8f:f0:39:86:dd: d0:38:e2:05:6b:7f:f7:b5:a2:eb:23:2e:44:f2:fe: 1c:2d:64:cb:2d:f2:55:54:62:89:03:69:64:12:1b: f0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D9:A6:8D:CF:C3:DE:7C:AF:73:CA:68:05:1F:78:F6:F8:BE:25:09 X509v3 Authority Key Identifier: keyid:85:A3:9F:10:64:64:A3:6D:CA:27:4B:FC:77:FB:AF:7B:03:03:87:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haOfEGRko23KJ0v8d_uvewMDh24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131181/B2E714620B7911F0BB99ED6AC4F9AE02/haOfEGRko23KJ0v8d_uvewMDh24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:e2:6b:3f:d0:3a:1b:e6:5c:87:5a:ce:72:70:4d:b5:c4:5c: bc:93:a4:c0:30:1b:d9:28:fd:74:a8:77:ea:65:32:da:50:38: 47:c5:7f:9b:1a:c8:d5:9b:0e:0f:1b:01:a0:fd:b8:e7:0d:f5: ad:15:41:1b:33:e9:70:7d:c5:b7:2f:c2:cf:56:03:95:91:f5: 61:31:c1:eb:ea:3c:76:2b:0f:cb:58:a8:0c:f6:5f:61:c6:6d: 19:56:04:42:d6:28:b3:85:6c:5c:4d:54:80:85:2a:14:0c:03: 96:03:16:a1:be:72:a7:81:9c:24:13:58:8f:69:74:77:43:5d: 08:4a:1e:30:7a:25:45:8e:7a:53:f7:0a:97:44:ab:e6:5f:1a: 83:6a:be:c6:34:82:c3:9b:e8:39:5c:87:26:eb:cd:14:82:50: 9b:0c:5f:99:15:f0:6d:b9:68:69:d8:24:0c:59:b9:f4:ac:fc: e2:46:5e:57:1a:2a:23:ac:3f:f4:c5:46:da:55:c9:a4:f5:92: 00:22:9e:96:fe:b4:63:8c:aa:cf:ec:c4:bc:11:6d:e2:b2:23: 4b:98:cc:50:f3:92:c3:52:5f:6d:e4:36:d4:5f:da:10:af:8a: 14:2e:65:cf:20:6e:07:8e:e0:ad:bf:a7:45:69:7a:b9:ff:3d: 71:02:3e:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE4MTExMC8GA1UEBRMoODVBMzlGMTA2NDY0QTM2RENBMjc0QkZDNzdGQkFGN0Iw MzAzODc2RTAeFw0yNTEwMTkxMDIwMzJaFw0yNTEwMjYxMDIwMzJaMBgxFjAUBgNV BAMTDTY4ZjRiYjcxLTI5NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTMynfJRsAQOCPcap8ITfbV3AAPXsa5T6IIwR1QN/ZqzgkRo3rdoaRhsr8jfuL 6nMogY2ZVqx74rM0x1NkaQcyuy7pr4zBXaEhjz4PXiRXtCJSW5V2LHqMU959tB6o JfpTsEqdNkscx6RxW4yml8NEpkNxoS24iCcHxA/CXQI3zU6eTuiYoST9oIoB6lNb DyZzgDibtD9VVdNpAQNxjLcN0aIEVxKsqy1S/seoJF0NS7SqsJk5aG+TFXX6QozT rF0S7z6K9Z64sYMLXm2z9/2lyd6awCaU//v67xiP8DmG3dA44gVrf/e1ousjLkTy /hwtZMst8lVUYokDaWQSG/DzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhNmmjc/D 3nyvc8poBR949vi+JQkwHwYDVR0jBBgwFoAUhaOfEGRko23KJ0v8d/uvewMDh24w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTgxL0IyRTcxNDYyMEI3 OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIzS0owdjhkX3V2ZXdNRGgy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGFPZkVHUmtvMjNLSjB2OGRfdXZld01EaDI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMx MTgxL0IyRTcxNDYyMEI3OTExRjBCQjk5RUQ2QUM0RjlBRTAyL2hhT2ZFR1JrbzIz S0owdjhkX3V2ZXdNRGgyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABviaz/QOhvmXIdaznJwTbXEXLyTpMAwG9ko/XSod+plMtpQOEfFf5sa yNWbDg8bAaD9uOcN9a0VQRsz6XB9xbcvws9WA5WR9WExwevqPHYrD8tYqAz2X2HG bRlWBELWKLOFbFxNVICFKhQMA5YDFqG+cqeBnCQTWI9pdHdDXQhKHjB6JUWOelP3 CpdEq+ZfGoNqvsY0gsOb6DlchybrzRSCUJsMX5kV8G25aGnYJAxZufSs/OJGXlca KiOsP/TFRtpVyaT1kgAinpb+tGOMqs/sxLwRbeKyI0uYzFDzksNSX23kNtRf2hCv ihQuZc8gbgeO4K2/p0Vpern/PXECPlI= -----END CERTIFICATE-----Generated at Mon Oct 20 08:56:19 2025 by rpki-client