$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: 4GhW1ors02gdjA53ZpKvq8BJryQvwW7RVJMoTln07A0= Subject key identifier: 06:8B:D2:AC:CC:AE:54:01:CE:30:E9:C3:6B:7F:C5:B9:8C:37:20:1A Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 06E4 Signing time: Sat 18 Oct 2025 23:24:38 +0000 Manifest this update: Sat 18 Oct 2025 23:24:37 +0000 Manifest next update: Sat 25 Oct 2025 23:24:37 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: WiFH3AttaPJ3l1TOYTqm9TAdhoR2XTWG1QYO1DAbdlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Oct 18 23:24:37 2025 GMT Not After : Oct 25 23:24:37 2025 GMT Subject: CN=68f421b6-4d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:82:2c:94:fd:8c:70:0f:f2:6c:21:3d:5a: c5:c6:62:51:c9:e4:7f:7d:a4:e8:55:d7:41:e1:fc: 33:11:24:ef:7a:c1:bd:f7:31:25:50:8b:52:85:41: 4b:af:90:b1:2d:84:33:0b:41:47:0c:64:c4:39:8f: 95:5e:8d:0a:2b:b0:50:d5:57:00:59:49:d1:3b:fc: 1b:95:d9:0c:0b:8e:f8:13:e7:2d:ec:5e:65:f6:ef: b9:f1:e7:78:35:6a:71:ec:e7:7d:90:aa:af:a3:25: d5:e9:97:6a:cc:20:63:70:67:d2:34:ee:38:3a:30: fc:4f:0d:24:19:25:51:47:16:3d:7f:c5:20:43:1d: d1:09:ba:d8:81:3b:2e:78:f5:87:83:4e:1d:80:ad: 4f:9b:c4:e1:5b:6a:14:41:d1:f0:78:70:3e:70:e9: 71:38:f7:9a:7a:71:cb:75:94:dc:a6:41:84:b2:16: 67:c3:fa:16:e7:55:45:40:10:8e:95:8b:64:cf:5c: d3:92:4a:87:d4:9a:30:ef:2d:cf:9f:36:0a:37:95: 91:32:a9:cc:10:e5:61:b0:ed:2b:9c:08:3c:8a:c1: c4:8e:aa:e6:df:65:d8:5d:81:cb:44:e4:dd:39:f3: dc:16:b3:e9:20:1c:a1:6e:59:03:86:8f:d1:ae:be: 42:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8B:D2:AC:CC:AE:54:01:CE:30:E9:C3:6B:7F:C5:B9:8C:37:20:1A X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b6:50:85:10:bf:f0:ce:40:15:f5:1e:f2:73:71:d8:d5:7b: 4e:ac:8f:fe:f3:cd:75:8f:7a:f8:1d:fe:45:cf:9a:b0:0d:71: 20:3b:67:b3:3f:fd:cb:76:2d:a9:76:a5:42:b5:81:fb:35:dd: 14:ae:e9:1c:b1:05:ec:5e:8f:dc:03:18:76:38:95:4f:83:4f: d2:68:37:a0:f6:17:c8:c2:5a:8e:8d:cd:47:18:15:88:1a:24: f5:06:f9:1c:03:85:95:72:03:33:50:b9:95:a4:89:1e:cd:65: 7f:0d:0d:bf:99:d3:58:22:02:9c:34:12:c0:15:70:29:28:16: 66:5a:a9:fb:ce:33:e4:c2:59:8a:c5:b0:ec:32:bb:89:f1:58: e8:da:ff:c1:78:c6:43:e4:cb:1d:43:ea:38:c9:b5:c0:ce:13: 44:12:25:2c:6f:5d:f6:3b:84:13:11:71:96:a5:69:60:ad:2d: 48:c5:88:b6:ce:6c:12:ce:7c:3e:ad:bc:61:45:f8:8c:0b:e5: c8:6d:f3:71:4f:e2:9c:7a:98:04:9b:1a:69:74:dc:6c:11:d7: b2:7a:ef:a4:22:c9:e9:7e:89:c6:12:e9:43:fa:de:b4:e0:81: 7a:29:7d:f4:d5:d2:af:bc:e4:5a:68:01:11:21:2a:c3:31:c5: f9:ed:a1:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUxMDE4MjMyNDM3WhcNMjUxMDI1MjMyNDM3WjAYMRYwFAYD VQQDEw02OGY0MjFiNi00ZDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2KCLJT9jHAP8mwhPVrFxmJRyeR/faToVddB4fwzESTvesG99zElUItShUFL r5CxLYQzC0FHDGTEOY+VXo0KK7BQ1VcAWUnRO/wbldkMC474E+ct7F5l9u+58ed4 NWpx7Od9kKqvoyXV6ZdqzCBjcGfSNO44OjD8Tw0kGSVRRxY9f8UgQx3RCbrYgTsu ePWHg04dgK1Pm8ThW2oUQdHweHA+cOlxOPeaenHLdZTcpkGEshZnw/oW51VFQBCO lYtkz1zTkkqH1Jow7y3PnzYKN5WRMqnMEOVhsO0rnAg8isHEjqrm32XYXYHLROTd OfPcFrPpIByhblkDho/Rrr5C1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaL0qzM rlQBzjDpw2t/xbmMNyAaMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6tlCFEL/wzkAV9R7yc3HY1XtOrI/+8811j3r4Hf5Fz5qwDXEgO2ez P/3Ldi2pdqVCtYH7Nd0UrukcsQXsXo/cAxh2OJVPg0/SaDeg9hfIwlqOjc1HGBWI GiT1BvkcA4WVcgMzULmVpIkezWV/DQ2/mdNYIgKcNBLAFXApKBZmWqn7zjPkwlmK xbDsMruJ8Vjo2v/BeMZD5MsdQ+o4ybXAzhNEEiUsb132O4QTEXGWpWlgrS1IxYi2 zmwSznw+rbxhRfiMC+XIbfNxT+KcepgEmxppdNxsEdeyeu+kIsnpfonGEulD+t60 4IF6KX301dKvvORaaAERISrDMcX57aEx -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:27 2025 by rpki-client