$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: 0AsXX6c3KWrCodJ0cG4I+c8hsYE6MNDSNVwZIJFiu3Y= Subject key identifier: A1:B6:A4:C3:A1:77:C6:3C:2D:CE:0E:47:35:3F:F4:BE:90:73:FB:48 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 01DE Signing time: Sun 19 Oct 2025 05:09:03 +0000 Manifest this update: Sun 19 Oct 2025 05:09:03 +0000 Manifest next update: Sun 26 Oct 2025 05:09:03 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: IC+BRPAH9LUyxShVx22SqrvkVV1JT4uKCDrNndpX0MM=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: L3qkCPmXp0iJV192Ab/fphVf55ttABMSsjRwG8i7X3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Oct 19 05:09:03 2025 GMT Not After : Oct 26 05:09:03 2025 GMT Subject: CN=68f4726f-87a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c3:39:5c:93:a5:2c:8f:65:7a:ca:96:85:3e: 8b:60:ad:77:4e:4f:fe:31:cf:52:6f:d7:05:be:67: 95:76:4f:07:49:af:59:5c:3b:b8:31:5a:32:42:5e: cc:a0:13:fc:55:8b:fa:7f:7e:35:fd:77:ec:c6:48: d3:5d:ce:9c:53:4a:c5:52:55:93:67:cc:46:08:89: e0:9a:d8:ef:ca:fd:2f:fe:88:29:f4:1b:28:81:26: 5e:38:67:c8:5c:26:17:62:45:43:a8:0b:12:d1:86: 1a:bd:a7:48:15:2d:62:06:67:04:45:f2:5e:6b:8e: a6:de:bc:a2:93:9d:f5:64:a8:38:01:1f:34:e6:ef: 65:10:65:7a:ce:c4:e3:8a:38:95:44:0f:a9:b7:c6: d2:5d:17:83:80:6f:c4:ea:5b:95:08:97:b2:31:1a: e6:9d:f1:f1:92:92:f2:e3:03:61:98:28:86:31:a7: 70:2a:ca:be:8f:cd:11:08:bf:cd:19:6a:f0:65:81: 74:b9:3a:d6:b6:7e:2b:d1:78:88:24:42:28:ce:2b: 09:1a:cf:3e:78:a9:b4:fb:bc:42:73:5c:ee:56:53: 6b:fd:02:17:8d:33:f2:9c:30:27:0f:c4:25:85:92: 3a:97:c2:5c:e7:70:2d:98:b8:a8:fa:ad:22:7f:e7: 6c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B6:A4:C3:A1:77:C6:3C:2D:CE:0E:47:35:3F:F4:BE:90:73:FB:48 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:cd:35:ea:a1:aa:c8:21:25:80:b9:8c:23:39:23:de:fb:bc: e0:3b:a6:93:70:1f:32:db:9f:a4:54:d5:98:fc:bc:b7:51:ad: 65:15:ab:13:7c:43:23:06:4e:fb:50:d7:82:d5:5b:f3:7b:ba: 42:21:d1:91:d2:84:d0:f2:be:ec:4b:44:71:31:5e:48:b2:e2: 1f:9b:e3:1d:9a:64:f6:8e:2f:f3:16:67:c6:d7:1d:a5:f9:76: 80:70:54:4d:88:cf:a5:19:d8:f3:92:f1:7f:81:83:e4:a5:c6: ba:5a:7d:d4:4d:4c:ea:f8:7d:d9:2e:35:a0:e0:c8:f2:91:3a: 7e:b3:a7:67:e8:9b:76:44:41:0d:41:80:96:c2:6b:b8:b3:39: 02:aa:8e:86:e2:d7:8a:05:93:71:f6:05:90:3c:de:b2:ec:98: 2f:e2:5d:bb:d7:52:8f:22:67:58:3b:b2:39:ad:18:f8:19:48: da:5d:60:dd:ac:c2:d4:e0:5a:a4:d3:25:00:45:21:19:c5:cd: db:8c:da:5f:5e:45:cc:26:5b:ea:51:a4:31:94:e0:fa:1d:9c: d8:16:a6:5f:fc:f3:26:74:1f:6b:c0:a3:68:78:b2:b9:0a:54: d1:10:47:20:23:20:8d:20:77:fb:ca:9b:b8:de:4c:ce:fd:74: 40:8d:8e:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUxMDE5MDUwOTAzWhcNMjUxMDI2MDUwOTAzWjAYMRYwFAYD VQQDEw02OGY0NzI2Zi04N2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cM5XJOlLI9lesqWhT6LYK13Tk/+Mc9Sb9cFvmeVdk8HSa9ZXDu4MVoyQl7M oBP8VYv6f341/XfsxkjTXc6cU0rFUlWTZ8xGCIngmtjvyv0v/ogp9BsogSZeOGfI XCYXYkVDqAsS0YYavadIFS1iBmcERfJea46m3ryik531ZKg4AR805u9lEGV6zsTj ijiVRA+pt8bSXReDgG/E6luVCJeyMRrmnfHxkpLy4wNhmCiGMadwKsq+j80RCL/N GWrwZYF0uTrWtn4r0XiIJEIozisJGs8+eKm0+7xCc1zuVlNr/QIXjTPynDAnD8Ql hZI6l8Jc53AtmLio+q0if+dsFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG2pMOh d8Y8Lc4ORzU/9L6Qc/tIMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAezTXqoarIISWAuYwjOSPe+7zgO6aTcB8y25+kVNWY/Ly3Ua1lFasT fEMjBk77UNeC1Vvze7pCIdGR0oTQ8r7sS0RxMV5IsuIfm+MdmmT2ji/zFmfG1x2l +XaAcFRNiM+lGdjzkvF/gYPkpca6Wn3UTUzq+H3ZLjWg4MjykTp+s6dn6Jt2REEN QYCWwmu4szkCqo6G4teKBZNx9gWQPN6y7Jgv4l2711KPImdYO7I5rRj4GUjaXWDd rMLU4Fqk0yUARSEZxc3bjNpfXkXMJlvqUaQxlOD6HZzYFqZf/PMmdB9rwKNoeLK5 ClTREEcgIyCNIHf7ypu43kzO/XRAjY7z -----END CERTIFICATE-----Generated at Mon Oct 20 06:55:40 2025 by rpki-client