$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft File: SIcH43YxSt1UXMZgreziKYZME-A.mft (raw, json) Hash identifier: zZWWjLm4rddN3u51Q2Lo0MKzKGWzzUxiNtc/kkcmSzs= Subject key identifier: BB:D6:A6:BF:75:62:7A:D5:27:A6:D6:3A:00:04:2C:9C:3F:8E:44:2F Authority key identifier: 48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 Certificate issuer: /CN=A9193B7A/serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft Manifest number: 20 Signing time: Sun 19 Oct 2025 11:19:57 +0000 Manifest this update: Sun 19 Oct 2025 11:19:56 +0000 Manifest next update: Sun 26 Oct 2025 11:19:56 +0000 Files and hashes: 1: SIcH43YxSt1UXMZgreziKYZME-A.crl (hash: x24Cxw9Ghwhvz3geNxU60sHIixmhqm3/qP8QrjtajHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B7A, serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Validity Not Before: Oct 19 11:19:56 2025 GMT Not After : Oct 26 11:19:56 2025 GMT Subject: CN=68f4c95c-e222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9e:33:b0:e3:99:2e:fd:b8:06:e5:d3:f9:65: 06:20:9b:fa:44:04:dd:32:e1:f5:8d:32:3c:7b:27: 3e:b8:46:eb:9f:8c:7c:33:8b:e8:36:54:18:f5:98: c4:bc:40:dd:b0:97:02:63:a9:bc:e9:f4:43:43:3f: 45:ab:d5:c1:3d:c6:59:99:18:8e:26:d1:d2:2d:ff: 9f:fa:fa:93:0c:da:83:df:56:22:28:c1:3d:29:f5: 1d:9e:13:9c:b5:97:b7:7b:4f:7c:52:24:2e:10:3e: 4e:e4:a8:99:e3:c8:5e:50:a4:e2:06:fa:11:02:ed: fd:d9:62:94:55:e0:de:76:31:2f:ff:6d:0c:6a:79: d6:50:00:47:a5:e2:5c:28:eb:4b:58:f8:80:3f:fb: 47:80:42:c6:0f:df:0b:9f:85:0a:2a:68:c8:32:12: 7c:94:61:bf:e1:e0:d9:61:2d:ee:d8:e4:bc:c7:14: 6d:53:64:33:5a:7e:35:9f:a1:4e:31:4c:53:6b:9f: 1b:94:03:dd:4b:dd:c1:42:0b:0e:e2:d3:a7:bf:0e: 8c:d5:8a:0b:6f:38:11:ab:e1:9e:d6:da:f5:b7:af: 08:f9:85:f6:d4:92:03:0c:83:74:de:87:6c:30:34: 79:86:2b:29:bf:f2:ff:5d:8c:66:4a:4e:a1:ff:35: d9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D6:A6:BF:75:62:7A:D5:27:A6:D6:3A:00:04:2C:9C:3F:8E:44:2F X509v3 Authority Key Identifier: keyid:48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c8:05:4b:93:a1:41:ea:9d:fc:0e:00:27:72:aa:62:00:dc: 55:82:37:a9:4a:4a:11:cd:f0:ef:9f:f7:31:c6:c1:46:17:47: 5b:ce:c1:2f:3a:8b:09:19:9b:06:2e:53:76:d0:86:b8:59:d4: cf:af:c2:cc:3b:4c:c6:b1:af:c9:77:95:c5:a6:54:9b:e0:78: 8e:c6:e4:49:39:f9:bf:d8:76:74:24:7f:57:9b:30:c6:65:25: d4:b1:b0:36:e6:ed:bd:5e:55:fa:91:2f:6e:56:0b:65:41:7f: 12:92:57:5c:cf:44:7b:ce:3e:e3:54:6d:79:87:7c:c7:91:bd: b0:8e:13:47:1f:46:5a:4a:b9:89:92:46:a6:b2:98:cc:05:99: 8d:bb:29:8f:58:70:d4:96:f2:8e:19:93:0d:45:f4:59:dd:68: 75:9c:64:ee:5c:0f:41:29:5b:d3:34:93:5d:70:55:f6:6a:47: 59:b9:89:a7:70:b5:4d:81:f4:ef:94:41:e2:32:fb:35:a8:38: 3a:07:e5:4f:2a:51:eb:70:af:ed:bb:99:79:92:d0:16:af:dd: 41:6e:fb:37:87:57:ff:1e:34:16:28:c0:24:2d:ae:67:d2:28: 4e:df:d2:dd:1a:e6:c5:50:62:b0:bf:c3:54:db:09:06:83:04: d3:c1:fd:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I3QTExMC8GA1UEBRMoNDg4NzA3RTM3NjMxNEFERDU0NUNDNjYwQURFQ0UyMjk4 NjRDMTNFMDAeFw0yNTEwMTkxMTE5NTZaFw0yNTEwMjYxMTE5NTZaMBgxFjAUBgNV BAMTDTY4ZjRjOTVjLWUyMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvnjOw45ku/bgG5dP5ZQYgm/pEBN0y4fWNMjx7Jz64RuufjHwzi+g2VBj1mMS8 QN2wlwJjqbzp9ENDP0Wr1cE9xlmZGI4m0dIt/5/6+pMM2oPfViIowT0p9R2eE5y1 l7d7T3xSJC4QPk7kqJnjyF5QpOIG+hEC7f3ZYpRV4N52MS//bQxqedZQAEel4lwo 60tY+IA/+0eAQsYP3wufhQoqaMgyEnyUYb/h4NlhLe7Y5LzHFG1TZDNafjWfoU4x TFNrnxuUA91L3cFCCw7i06e/DozVigtvOBGr4Z7W2vW3rwj5hfbUkgMMg3Teh2ww NHmGKym/8v9djGZKTqH/Ndk5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu9amv3Vi etUnptY6AAQsnD+ORC8wHwYDVR0jBBgwFoAUSIcH43YxSt1UXMZgreziKYZME+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjdBL0M5OEQ1NUZBN0RC QjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3QxVVhNWmdyZXppS1laTUUt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0ljSDQzWXhTdDFVWE1aZ3JlemlLWVpNRS1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz QjdBL0M5OEQ1NUZBN0RCQjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3Qx VVhNWmdyZXppS1laTUUtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAPIBUuToUHqnfwOACdyqmIA3FWCN6lKShHN8O+f9zHGwUYXR1vOwS86 iwkZmwYuU3bQhrhZ1M+vwsw7TMaxr8l3lcWmVJvgeI7G5Ek5+b/YdnQkf1ebMMZl JdSxsDbm7b1eVfqRL25WC2VBfxKSV1zPRHvOPuNUbXmHfMeRvbCOE0cfRlpKuYmS RqaymMwFmY27KY9YcNSW8o4Zkw1F9FndaHWcZO5cD0EpW9M0k11wVfZqR1m5iadw tU2B9O+UQeIy+zWoODoH5U8qUetwr+27mXmS0Bav3UFu+zeHV/8eNBYowCQtrmfS KE7f0t0a5sVQYrC/w1TbCQaDBNPB/Zw= -----END CERTIFICATE-----Generated at Mon Oct 20 10:48:02 2025 by rpki-client