$ rpki-client -vvf rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft File: mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft (raw, json) Hash identifier: 4mHHQpzRAk59SmtPQIHCc7RbHpbg4B7mMzs+Kc+ccqc= Subject key identifier: 2A:37:76:29:E5:EF:C3:80:C5:AD:B5:48:69:E4:2D:7E:49:7A:A6:F2 Authority key identifier: 99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 Certificate issuer: /CN=A914B1DB/serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft Manifest number: EC Signing time: Sun 19 Oct 2025 08:16:56 +0000 Manifest this update: Sun 19 Oct 2025 08:16:56 +0000 Manifest next update: Sun 26 Oct 2025 08:16:56 +0000 Files and hashes: 1: mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl (hash: 4byjV8OHV8xMpd9GgY2AnjRgE9UDhOZw0LzGK2yhX9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B1DB, serialNumber=99C106E87FE1D6411AEC71F80394622C881AAAD9 Validity Not Before: Oct 19 08:16:56 2025 GMT Not After : Oct 26 08:16:56 2025 GMT Subject: CN=68f49e78-9a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cb:08:3c:be:4b:84:cd:5b:db:82:99:e9:72: 97:35:ef:a7:d6:e2:9c:80:ef:db:ba:90:d9:01:3f: 2c:95:75:00:ad:0b:43:a5:65:11:9d:21:6a:c2:8a: 81:a2:a2:85:fa:c8:8f:51:ab:cc:d0:b7:f3:93:76: a2:96:9b:d0:8d:db:28:2a:14:d3:a7:30:25:a6:4d: 5c:e9:ea:2e:0f:97:57:d9:86:bf:5a:51:25:b3:10: d0:28:3a:23:c2:25:a9:8c:23:f4:7d:9b:e9:f1:f6: 51:6b:5d:e8:ef:9f:23:28:c0:02:04:9c:af:33:a7: 0f:6c:03:6e:3e:d8:4a:5d:24:ea:3a:13:6a:39:d1: de:c8:17:96:16:24:f4:15:6e:7c:b7:b0:a2:7f:0e: d9:cb:be:75:78:d0:45:08:f8:52:03:01:6d:f3:a0: 8d:80:2d:cf:cd:69:7e:f0:62:7a:8d:dd:32:57:8e: 49:4b:5b:23:e1:7a:d6:31:e1:97:fb:a3:1c:07:57: 52:45:68:1d:e8:1c:98:6c:2c:51:cb:96:f8:bd:d4: f3:d3:21:66:e7:a1:a5:5b:a8:20:83:41:3d:2a:45: 9b:9c:7f:d5:f6:ae:aa:1a:8e:19:b2:f4:66:a3:e4: 5e:dd:47:bd:b0:5b:70:8f:39:b3:db:8f:55:ad:60: 6a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:37:76:29:E5:EF:C3:80:C5:AD:B5:48:69:E4:2D:7E:49:7A:A6:F2 X509v3 Authority Key Identifier: keyid:99:C1:06:E8:7F:E1:D6:41:1A:EC:71:F8:03:94:62:2C:88:1A:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mcEG6H_h1kEa7HH4A5RiLIgaqtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B1DB/365140EE431011EF868B2B81C4F9AE02/mcEG6H_h1kEa7HH4A5RiLIgaqtk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:bf:17:65:44:00:2a:76:2b:55:8e:a1:cd:a3:b1:89:0f:38: cd:50:b1:a8:0d:d3:b1:5e:17:62:9f:b9:97:97:e8:17:43:47: 37:a5:8e:d7:f3:e8:db:8a:9d:b3:2a:d8:a3:b3:e8:74:66:59: 32:4d:d1:3c:07:90:b7:42:98:7d:73:36:63:26:04:93:22:f3: 7d:99:bd:13:6b:7f:e0:eb:cd:88:67:26:cf:08:fb:7a:3a:4e: 9b:3d:ec:ff:dc:d0:b1:0d:ec:48:8b:9b:2c:85:15:1d:f3:f9: 7c:91:4c:e6:2d:c6:2a:6e:77:ad:31:26:d3:7e:78:32:45:b7: ce:bd:7a:72:6c:e7:07:11:af:92:83:20:e3:a2:dd:8c:e6:5d: d4:cc:64:73:7a:8c:1c:51:e7:22:da:74:be:2c:68:e8:f2:c4: 09:54:2a:ae:fc:02:26:23:fc:fe:2d:0c:51:ac:9b:c1:36:63: bb:ac:76:b2:0d:32:a2:a6:19:4f:fd:32:b4:f1:c6:e0:c3:05: 65:88:45:f4:9f:95:0f:da:88:cf:05:47:52:45:ab:72:a3:8f: a2:65:8b:35:9e:9c:42:97:18:09:47:44:ea:60:1c:99:fe:de: fa:eb:6a:df:ff:f0:58:82:7c:0d:00:44:d3:f4:c9:51:07:bd: 6f:42:c6:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxREIxMTAvBgNVBAUTKDk5QzEwNkU4N0ZFMUQ2NDExQUVDNzFGODAzOTQ2MjJD ODgxQUFBRDkwHhcNMjUxMDE5MDgxNjU2WhcNMjUxMDI2MDgxNjU2WjAYMRYwFAYD VQQDEw02OGY0OWU3OC05YTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5csIPL5LhM1b24KZ6XKXNe+n1uKcgO/bupDZAT8slXUArQtDpWURnSFqwoqB oqKF+siPUavM0Lfzk3ailpvQjdsoKhTTpzAlpk1c6eouD5dX2Ya/WlElsxDQKDoj wiWpjCP0fZvp8fZRa13o758jKMACBJyvM6cPbANuPthKXSTqOhNqOdHeyBeWFiT0 FW58t7Cifw7Zy751eNBFCPhSAwFt86CNgC3PzWl+8GJ6jd0yV45JS1sj4XrWMeGX +6McB1dSRWgd6ByYbCxRy5b4vdTz0yFm56GlW6ggg0E9KkWbnH/V9q6qGo4ZsvRm o+Re3Ue9sFtwjzmz249VrWBqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCo3dinl 78OAxa21SGnkLX5JeqbyMB8GA1UdIwQYMBaAFJnBBuh/4dZBGuxx+AOUYiyIGqrZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjFEQi8zNjUxNDBFRTQz MTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFrRWE3SEg0QTVSaUxJZ2Fx dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21jRUc2SF9oMWtFYTdISDRBNVJpTElnYXF0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjFEQi8zNjUxNDBFRTQzMTAxMUVGODY4QjJCODFDNEY5QUUwMi9tY0VHNkhfaDFr RWE3SEg0QTVSaUxJZ2FxdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmvxdlRAAqditVjqHNo7GJDzjNULGoDdOxXhdin7mXl+gXQ0c3pY7X 8+jbip2zKtijs+h0ZlkyTdE8B5C3Qph9czZjJgSTIvN9mb0Ta3/g682IZybPCPt6 Ok6bPez/3NCxDexIi5sshRUd8/l8kUzmLcYqbnetMSbTfngyRbfOvXpybOcHEa+S gyDjot2M5l3UzGRzeowcUeci2nS+LGjo8sQJVCqu/AImI/z+LQxRrJvBNmO7rHay DTKiphlP/TK08cbgwwVliEX0n5UP2ojPBUdSRatyo4+iZYs1npxClxgJR0TqYByZ /t7662rf//BYgnwNAETT9MlRB71vQsan -----END CERTIFICATE-----Generated at Mon Oct 20 11:39:58 2025 by rpki-client