$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft File: AXJLovQFMrfgjXIPTAlmQbShyMQ.mft (raw, json) Hash identifier: 1Pj3dRj4daFL3oJU6KbKKD03lrk7dKRScPJlqqiQCnA= Subject key identifier: 4C:2F:D4:5C:69:B7:C8:00:70:CB:39:5D:E0:1F:EF:7D:89:BC:70:43 Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 052A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft Manifest number: 0525 Signing time: Sun 19 Oct 2025 01:17:30 +0000 Manifest this update: Sun 19 Oct 2025 01:17:29 +0000 Manifest next update: Sun 26 Oct 2025 01:17:29 +0000 Files and hashes: 1: AXJLovQFMrfgjXIPTAlmQbShyMQ.crl (hash: 6CVOyEMqPICqjFV8ITkfrVHbTyefV2+BxEkRmMcLog0=) 2: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (hash: gvY7yNXsc8f6BaNnDgo1s6r58BRk/opgVjfKstxIGuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1322 (0x52a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271, serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: Oct 19 01:17:29 2025 GMT Not After : Oct 26 01:17:29 2025 GMT Subject: CN=68f43c29-0c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d6:da:c6:c3:1f:76:85:23:bf:70:ea:94:4e: 40:91:be:f7:86:dd:c0:de:09:91:13:22:8c:0b:17: 65:3f:5b:50:d2:c9:27:3f:37:70:91:56:bb:9b:2e: 75:07:6f:49:66:b0:dc:d2:b2:43:07:ca:9a:5e:4b: 97:5a:54:01:fc:d3:24:d0:7a:39:da:e0:64:48:50: 63:32:44:0f:e8:c7:c6:94:f6:e4:9f:64:d1:9b:fa: 7f:9b:0c:2f:15:c4:1d:f4:08:c7:07:d7:04:03:78: 6a:2b:f0:e2:53:5f:ba:97:3e:3e:c7:ec:23:ff:5b: ad:13:7b:5c:88:78:32:7b:0e:e9:04:1b:b2:ee:81: 25:06:a2:1e:c9:b3:90:44:d3:4e:15:82:d4:c2:3e: a4:ad:69:94:87:26:21:ae:75:a2:d0:c7:6d:61:36: 90:cc:32:5c:86:03:29:5b:b0:09:e1:a2:d5:eb:7e: 5c:78:80:62:ba:08:29:0b:76:90:ac:78:53:64:7d: 52:e6:a4:8f:ea:a2:25:5b:12:52:4a:c6:d8:91:43: 00:5f:92:34:25:74:15:a2:97:36:52:83:02:73:1a: db:0b:07:44:93:93:71:10:e3:81:85:1a:54:0f:b8: de:13:05:21:31:97:07:21:33:82:ce:c3:e9:ab:a1: 93:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2F:D4:5C:69:B7:C8:00:70:CB:39:5D:E0:1F:EF:7D:89:BC:70:43 X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:90:23:e6:65:ec:fc:f0:f4:ba:b4:0c:f6:4b:d0:b2:1b:32: a6:7b:7b:06:0e:f8:b0:8e:c6:89:3f:d0:ed:ea:f3:93:56:6d: ed:ba:57:59:f2:16:b5:32:0f:8f:9d:5d:f5:fd:e2:32:8f:87: 7b:11:8b:f1:08:70:03:cf:df:1b:ed:b7:8f:ac:e2:4d:85:d4: cb:d5:df:e0:2e:a6:1b:c3:3d:26:16:7c:78:81:aa:65:b5:cc: 68:21:88:a8:18:3a:71:69:97:66:06:5c:53:c6:26:47:40:af: 14:47:01:f8:0d:32:be:88:e7:af:02:df:8e:68:2d:9b:e4:07: 12:3e:e6:21:92:98:22:3f:05:1c:43:25:2e:3c:e6:0c:33:fc: 49:99:86:d4:39:07:db:bc:f5:d5:e5:46:6c:42:61:8a:4c:53: d2:c3:82:5f:b5:6b:dd:80:85:dc:11:d6:55:be:a4:ed:ab:8d: d1:f3:e0:b5:80:f5:39:9a:a9:63:da:26:b8:74:90:36:4e:a2: 14:a6:c2:08:8c:86:f0:2b:fe:91:4a:69:09:7a:62:ff:d6:b3: 27:0b:a1:1c:e5:59:19:5d:a6:ea:40:7c:13:cf:59:b4:5c:1d: b3:77:17:7c:3a:6c:ca:48:7f:fd:34:26:e4:8b:29:d0:ad:7a: bc:55:0e:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjUxMDE5MDExNzI5WhcNMjUxMDI2MDExNzI5WjAYMRYwFAYD VQQDEw02OGY0M2MyOS0wYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9baxsMfdoUjv3DqlE5Akb73ht3A3gmREyKMCxdlP1tQ0sknPzdwkVa7my51 B29JZrDc0rJDB8qaXkuXWlQB/NMk0Ho52uBkSFBjMkQP6MfGlPbkn2TRm/p/mwwv FcQd9AjHB9cEA3hqK/DiU1+6lz4+x+wj/1utE3tciHgyew7pBBuy7oElBqIeybOQ RNNOFYLUwj6krWmUhyYhrnWi0MdtYTaQzDJchgMpW7AJ4aLV635ceIBiuggpC3aQ rHhTZH1S5qSP6qIlWxJSSsbYkUMAX5I0JXQVopc2UoMCcxrbCwdEk5NxEOOBhRpU D7jeEwUhMZcHITOCzsPpq6GTNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwv1Fxp t8gAcMs5XeAf732JvHBDMB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODI3MS84MUY5RTJEMDFDNDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1y ZmdqWElQVEFsbVFiU2h5TVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOkCPmZez88PS6tAz2S9CyGzKme3sGDviwjsaJP9Dt6vOTVm3tuldZ 8ha1Mg+PnV31/eIyj4d7EYvxCHADz98b7bePrOJNhdTL1d/gLqYbwz0mFnx4gapl tcxoIYioGDpxaZdmBlxTxiZHQK8URwH4DTK+iOevAt+OaC2b5AcSPuYhkpgiPwUc QyUuPOYMM/xJmYbUOQfbvPXV5UZsQmGKTFPSw4JftWvdgIXcEdZVvqTtq43R8+C1 gPU5mqlj2ia4dJA2TqIUpsIIjIbwK/6RSmkJemL/1rMnC6Ec5VkZXabqQHwTz1m0 XB2zdxd8OmzKSH/9NCbkiynQrXq8VQ7i -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:40 2025 by rpki-client