$ rpki-client -vvf rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft File: aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft (raw, json) Hash identifier: lMWc0HNzmEpzUYnClJISkhGieCvUaHyLKXV8iwFAf2k= Subject key identifier: 1B:83:ED:70:B8:57:64:4C:65:12:A5:F8:59:F2:01:34:03:E7:3D:9E Authority key identifier: 68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 Certificate issuer: /CN=A9174125/serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Certificate serial: 14F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft Manifest number: 14F0 Signing time: Mon 20 Oct 2025 17:13:05 +0000 Manifest this update: Mon 20 Oct 2025 17:13:05 +0000 Manifest next update: Mon 27 Oct 2025 17:13:05 +0000 Files and hashes: 1: aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl (hash: 6oDbVbbvaU8M+vMTP7zzviZlfytsA0NB0BSKGEhRKso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5360 (0x14f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174125, serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Validity Not Before: Oct 20 17:13:05 2025 GMT Not After : Oct 27 17:13:05 2025 GMT Subject: CN=68f66da1-46b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:25:ab:a5:ef:b0:14:8c:9f:64:17:42:62:14: ae:a1:24:93:a4:87:b2:59:dd:b2:27:4f:bc:7e:b3: 84:fe:da:d2:89:6d:08:36:a7:bb:c6:77:d5:89:70: 09:09:b9:49:08:de:b7:0b:2c:8e:0d:45:33:2b:e1: 0b:34:80:1d:4b:02:b9:07:7a:05:9a:71:83:1b:fa: 2a:85:c8:20:46:fd:87:b0:66:5c:5a:72:b1:90:f2: 72:ec:83:e4:55:9c:f0:61:d2:4b:f5:d9:62:14:46: 12:b3:73:50:ed:02:9a:91:ea:af:ce:dd:98:40:21: 41:51:ff:40:2b:99:ba:89:8d:3d:d0:64:26:e6:75: 22:8d:51:fc:43:4b:17:be:2b:69:61:f7:e9:f7:3f: 7d:b1:78:a5:74:99:b5:a4:2d:f0:b3:de:4b:51:9d: 49:1c:df:04:36:a0:b9:74:21:d2:3e:9f:74:53:60: ec:31:e5:53:93:76:e9:da:fd:4d:a3:e1:05:cc:3c: c0:a3:17:ac:4d:27:d6:e4:dc:91:bf:17:b8:49:23: fa:f0:dd:8b:b5:00:d6:b3:ce:4b:4e:d4:34:93:9e: a9:46:20:af:9e:ca:81:cb:56:3b:3b:23:9a:72:1a: 29:a1:2e:db:19:bf:a5:23:e4:62:d2:db:c5:00:5c: 94:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:83:ED:70:B8:57:64:4C:65:12:A5:F8:59:F2:01:34:03:E7:3D:9E X509v3 Authority Key Identifier: keyid:68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:9c:d2:53:1a:8a:e7:a7:9b:39:d0:70:aa:4b:bd:32:61:93: 2c:60:d8:cf:56:a6:a5:cb:de:c6:cb:59:5d:10:00:73:2a:ba: ea:f0:72:28:6b:45:7b:b8:57:b5:01:5b:dc:ca:eb:dc:7e:c1: 54:5c:d4:7d:b4:2c:71:a2:0d:dc:a3:0d:62:d5:a7:ad:9d:4b: d3:2a:63:bb:e5:7d:4f:ae:27:d8:5d:29:8d:f6:13:14:3a:a4: 1f:b8:de:43:89:12:af:49:76:11:1f:56:d2:5f:c7:97:d1:32: 84:86:c0:2b:86:40:59:cf:ea:05:a6:d8:fb:ae:55:1b:2a:4a: 54:23:c8:67:49:c7:e8:a0:84:09:a9:1c:29:b2:d2:ef:05:58: 0b:3e:c8:b4:d8:e7:43:38:35:ff:f9:6c:0b:3c:9a:e5:66:6b: 07:c7:f2:9a:66:29:c5:09:78:01:f0:2d:81:f6:2a:a4:48:c2: a3:1e:bf:6e:79:e6:4a:d3:39:4b:70:04:6f:72:28:89:e1:8b: d1:8c:d2:c3:b5:a2:80:1b:93:85:a8:d4:83:ab:7d:a3:eb:87: b2:34:38:22:7b:b8:24:0a:9d:6a:a9:81:cf:70:c2:12:5b:de: 47:77:13:65:df:ab:2a:e2:f7:92:2d:65:a7:b2:7a:84:b9:09: ff:a9:67:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxMjUxMTAvBgNVBAUTKDY4QzYxMTk3RUJBNDFBNjREODVGMjU1OUUxRDQwRDZF NzVGQ0I3MTAwHhcNMjUxMDIwMTcxMzA1WhcNMjUxMDI3MTcxMzA1WjAYMRYwFAYD VQQDEw02OGY2NmRhMS00NmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCWrpe+wFIyfZBdCYhSuoSSTpIeyWd2yJ0+8frOE/trSiW0INqe7xnfViXAJ CblJCN63CyyODUUzK+ELNIAdSwK5B3oFmnGDG/oqhcggRv2HsGZcWnKxkPJy7IPk VZzwYdJL9dliFEYSs3NQ7QKakeqvzt2YQCFBUf9AK5m6iY090GQm5nUijVH8Q0sX vitpYffp9z99sXildJm1pC3ws95LUZ1JHN8ENqC5dCHSPp90U2DsMeVTk3bp2v1N o+EFzDzAoxesTSfW5NyRvxe4SSP68N2LtQDWs85LTtQ0k56pRiCvnsqBy1Y7OyOa chopoS7bGb+lI+Ri0tvFAFyUewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBuD7XC4 V2RMZRKl+FnyATQD5z2eMB8GA1UdIwQYMBaAFGjGEZfrpBpk2F8lWeHUDW51/LcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDEyNS9GQUI2QkU4ODVE NjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dtVFlYeVZaNGRRTmJuWDh0 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNWVJsLXVrR21UWVh5Vlo0ZFFOYm5YOHR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDEyNS9GQUI2QkU4ODVENjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dt VFlYeVZaNGRRTmJuWDh0eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVnNJTGornp5s50HCqS70yYZMsYNjPVqaly97Gy1ldEABzKrrq8HIo a0V7uFe1AVvcyuvcfsFUXNR9tCxxog3cow1i1aetnUvTKmO75X1PrifYXSmN9hMU OqQfuN5DiRKvSXYRH1bSX8eX0TKEhsArhkBZz+oFptj7rlUbKkpUI8hnScfooIQJ qRwpstLvBVgLPsi02OdDODX/+WwLPJrlZmsHx/KaZinFCXgB8C2B9iqkSMKjHr9u eeZK0zlLcARvciiJ4YvRjNLDtaKAG5OFqNSDq32j64eyNDgie7gkCp1qqYHPcMIS W95HdxNl36sq4veSLWWnsnqEuQn/qWcf -----END CERTIFICATE-----Generated at Tue Oct 21 00:09:21 2025 by rpki-client