$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: 3teu/6kFrBlZt2GVOQwKfg4DpZz3QYXYOQ+E3AUExJE= Subject key identifier: 17:77:FA:EA:12:A2:A5:70:DE:E8:FA:9E:73:63:C2:51:9F:E3:09:EA Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 66 Signing time: Sun 19 Oct 2025 10:22:31 +0000 Manifest this update: Sun 19 Oct 2025 10:22:30 +0000 Manifest next update: Sun 26 Oct 2025 10:22:30 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: 0tZPLmCJJmA3OJ84C1cUh2trpWkgzUpDM1WCeB/L6+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Oct 19 10:22:30 2025 GMT Not After : Oct 26 10:22:30 2025 GMT Subject: CN=68f4bbe6-c67c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:16:47:34:c2:11:f8:34:c2:3a:6e:b7:1b:c8: 76:a8:d3:45:d7:4f:fd:88:42:16:8e:b7:11:8a:63: ed:78:38:1b:42:5f:3c:2c:d0:34:90:f5:a2:73:5d: 8e:5d:f3:85:df:c9:0e:a6:2d:25:ff:31:76:ff:c9: 03:1e:a1:55:ef:0d:f5:6f:7b:5d:e5:50:a9:07:df: 81:0d:fc:31:2d:cf:34:d3:13:51:c8:a4:fd:af:f9: 5a:8b:a2:ca:4b:fa:76:36:a0:26:4e:f0:86:58:27: 44:79:c7:4a:d5:d6:24:28:fb:ac:83:31:45:57:9a: 9d:b3:35:28:c3:54:44:b0:5b:6f:8d:20:34:1d:e8: 05:43:71:cd:16:1b:be:04:4a:ad:3d:b8:9a:77:b7: 05:57:d7:66:61:e8:3d:6e:ee:af:7b:a1:5b:dd:cc: 41:c8:e1:39:e3:45:e2:a7:bb:c1:8a:f1:5c:9a:ba: bb:44:52:ac:91:f0:87:ca:29:ae:87:03:d8:16:f6: 75:28:2a:20:96:9d:13:a7:37:ee:df:cb:60:47:20: 32:ae:41:7b:ae:ea:c2:77:d6:81:21:ba:18:b9:5f: 61:2f:e5:21:d9:4a:72:1d:4e:22:04:3b:78:35:48: 3c:0c:4e:4d:b5:ca:7b:18:4e:61:9e:32:18:90:3a: df:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:77:FA:EA:12:A2:A5:70:DE:E8:FA:9E:73:63:C2:51:9F:E3:09:EA X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:f8:bf:2a:c4:24:43:0f:08:ac:d7:d4:47:6b:b6:1b:64:0b: 82:21:bd:d6:fd:18:03:83:a6:bb:2a:58:03:e6:f6:1f:99:79: b4:d8:2e:9d:a8:84:98:7e:e6:88:ee:de:5d:35:70:53:9f:a9: 38:9c:62:fa:9b:bd:b9:4d:f1:98:75:92:1a:39:4f:76:2b:db: 9c:32:90:98:01:b2:d0:a9:c3:ba:b2:21:aa:77:c7:12:38:a3: 3d:75:83:8c:f4:64:da:26:fa:36:56:20:f9:e2:dc:5b:e0:f9: c2:aa:bc:be:c3:58:e9:29:37:92:dc:62:7e:00:60:b9:17:4a: a3:f2:53:26:8d:58:9d:c4:a8:90:35:a2:e0:8e:42:f5:41:8a: 45:49:0c:48:3b:c0:ea:5f:32:b2:16:5e:02:a6:82:f2:b0:36: 77:d5:04:9f:1f:c0:41:e3:4b:6a:cc:5a:74:d3:ad:f8:e5:b8: a5:5c:7b:33:4a:87:d0:30:15:c4:36:b3:74:d4:78:b7:b0:48: 99:ed:c8:b3:56:bd:8d:ec:ec:8c:48:e3:a6:29:82:77:62:bb: 85:4d:ff:96:17:aa:22:7b:38:17:a6:b7:1c:2e:ff:1b:ac:06: d2:12:38:94:35:70:d4:ca:eb:c7:1a:47:65:5b:a9:5a:08:b2: 9b:9c:e1:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTEwMTkxMDIyMzBaFw0yNTEwMjYxMDIyMzBaMBgxFjAUBgNV BAMTDTY4ZjRiYmU2LWM2N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnFkc0whH4NMI6brcbyHao00XXT/2IQhaOtxGKY+14OBtCXzws0DSQ9aJzXY5d 84XfyQ6mLSX/MXb/yQMeoVXvDfVve13lUKkH34EN/DEtzzTTE1HIpP2v+VqLospL +nY2oCZO8IZYJ0R5x0rV1iQo+6yDMUVXmp2zNSjDVESwW2+NIDQd6AVDcc0WG74E Sq09uJp3twVX12Zh6D1u7q97oVvdzEHI4TnjReKnu8GK8VyaurtEUqyR8IfKKa6H A9gW9nUoKiCWnROnN+7fy2BHIDKuQXuu6sJ31oEhuhi5X2Ev5SHZSnIdTiIEO3g1 SDwMTk21ynsYTmGeMhiQOt+VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF3f66hKi pXDe6Pqec2PCUZ/jCeowHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAP4vyrEJEMPCKzX1EdrthtkC4Ihvdb9GAODprsqWAPm9h+ZebTYLp2o hJh+5oju3l01cFOfqTicYvqbvblN8Zh1kho5T3Yr25wykJgBstCpw7qyIap3xxI4 oz11g4z0ZNom+jZWIPni3Fvg+cKqvL7DWOkpN5LcYn4AYLkXSqPyUyaNWJ3EqJA1 ouCOQvVBikVJDEg7wOpfMrIWXgKmgvKwNnfVBJ8fwEHjS2rMWnTTrfjluKVcezNK h9AwFcQ2s3TUeLewSJntyLNWvY3s7IxI46Ypgndiu4VN/5YXqiJ7OBemtxwu/xus BtISOJQ1cNTK68caR2VbqVoIspuc4b4= -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:44 2025 by rpki-client