$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft File: Cr_XemhpLv60MkAP_d3XrhsjvCc.mft (raw, json) Hash identifier: JX4avo78ZM9ANtBiFRw1Rrk9PqA3QX2ecynR+YlLNR0= Subject key identifier: A1:3F:3E:74:0E:ED:EC:02:F9:8B:45:DE:9B:31:27:9A:CF:11:F7:5A Authority key identifier: 0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 Certificate issuer: /CN=A9194A8C/serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft Manifest number: 06A3 Signing time: Sun 19 Oct 2025 01:24:15 +0000 Manifest this update: Sun 19 Oct 2025 01:24:14 +0000 Manifest next update: Sun 26 Oct 2025 01:24:14 +0000 Files and hashes: 1: Cr_XemhpLv60MkAP_d3XrhsjvCc.crl (hash: XB++vY7dx6BhPTqZ9UtR0MBCW2m34rhVjGwAv5rmjDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C, serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Validity Not Before: Oct 19 01:24:14 2025 GMT Not After : Oct 26 01:24:14 2025 GMT Subject: CN=68f43dbe-5cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:85:29:70:60:9e:69:fa:b3:d3:a8:6c:b8:6c: dd:40:f8:c6:29:09:fc:a8:2e:13:58:c6:43:77:69: c0:74:2a:b7:c6:06:f1:a9:4b:bd:d6:ee:b9:f5:2f: 12:7e:9f:91:5d:cf:26:4a:1e:19:34:f1:a4:45:61: 38:9e:71:16:a3:84:ed:79:3d:6f:1c:7c:84:a7:57: a0:07:38:99:ca:41:24:ed:08:a8:18:64:63:55:db: 01:31:d7:18:72:de:f6:b3:13:48:e6:56:12:4b:59: 1e:41:fe:00:69:19:35:b7:c0:c2:65:a0:50:ac:c3: f4:9d:0a:5e:be:0b:1b:b1:18:39:f4:45:1a:ba:25: 99:e1:0d:8b:29:54:3e:f6:44:85:56:d6:86:b0:44: e9:7f:7d:b4:15:0a:bc:24:e0:94:1f:df:55:34:ea: 23:e3:f8:54:a0:22:a4:88:7d:04:4b:2a:8e:3b:6e: 5a:92:67:02:ec:4c:f0:14:c4:fe:c7:d4:f0:c4:4a: 9d:f2:ad:08:e9:4f:af:6d:0d:83:f1:e7:93:a9:b9: c9:e5:54:c7:ce:63:13:d0:d8:c8:e8:19:3d:79:3e: 71:b0:d9:52:63:e2:67:76:e9:e1:65:76:92:33:7b: 50:c2:26:20:3e:ac:83:ca:0f:22:b0:23:ab:b1:b2: b0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3F:3E:74:0E:ED:EC:02:F9:8B:45:DE:9B:31:27:9A:CF:11:F7:5A X509v3 Authority Key Identifier: keyid:0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ea:32:a3:45:17:a4:53:b9:3a:10:47:43:70:68:23:6b:29: 51:85:49:72:54:3d:db:c5:33:5c:8f:2c:c4:87:3c:22:bb:35: ce:5d:16:88:3c:9b:d6:15:33:f9:10:6a:0d:b9:5e:7b:fb:2b: f6:6a:57:78:f4:b7:5b:ed:9e:ea:fe:78:c0:81:b2:11:d8:bd: 21:c1:5e:14:db:ff:6c:c0:2e:92:ac:ef:51:d7:42:ff:24:63: 6b:29:f9:e3:d4:a2:c7:dc:49:8e:fc:24:0f:87:93:74:3e:60: 60:19:df:dd:f7:cb:ef:cd:15:e3:69:0e:99:f1:70:d2:85:b4: 07:0f:67:eb:3f:95:81:f9:18:4b:56:52:e0:8c:f3:8a:c7:9a: b5:3d:d8:47:4c:74:e4:e4:24:ac:db:02:89:be:3e:ae:c9:95: b0:20:17:42:c2:2f:28:03:82:c1:6c:32:03:20:a2:6e:68:56: eb:c8:dc:5e:30:17:0c:70:2f:4a:98:8a:40:17:51:a4:e9:50: 60:61:40:fd:87:26:99:3e:8f:43:f5:ff:19:71:1e:0a:f6:76: eb:9a:ac:f7:e5:d0:2d:f2:eb:0d:22:7e:a7:a8:40:9f:d9:9d: 17:e3:b2:8e:6c:78:f4:8d:6f:d8:e5:be:13:e7:d6:ef:fa:42: fc:da:61:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKDBBQkZENzdBNjg2OTJFRkVCNDMyNDAwRkZEREREN0FF MUIyM0JDMjcwHhcNMjUxMDE5MDEyNDE0WhcNMjUxMDI2MDEyNDE0WjAYMRYwFAYD VQQDEw02OGY0M2RiZS01Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIUpcGCeafqz06hsuGzdQPjGKQn8qC4TWMZDd2nAdCq3xgbxqUu91u659S8S fp+RXc8mSh4ZNPGkRWE4nnEWo4TteT1vHHyEp1egBziZykEk7QioGGRjVdsBMdcY ct72sxNI5lYSS1keQf4AaRk1t8DCZaBQrMP0nQpevgsbsRg59EUauiWZ4Q2LKVQ+ 9kSFVtaGsETpf320FQq8JOCUH99VNOoj4/hUoCKkiH0ESyqOO25akmcC7EzwFMT+ x9TwxEqd8q0I6U+vbQ2D8eeTqbnJ5VTHzmMT0NjI6Bk9eT5xsNlSY+JndunhZXaS M3tQwiYgPqyDyg8isCOrsbKwcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE/PnQO 7ewC+YtF3psxJ5rPEfdaMB8GA1UdIwQYMBaAFAq/13poaS7+tDJAD/3d164bI7wn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2NjBNa0FQX2QzWHJoc2p2 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyX1hlbWhwTHY2ME1rQVBfZDNYcmhzanZDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE4Qy85RTY3MTFBNDJCMUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2 NjBNa0FQX2QzWHJoc2p2Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA66jKjRRekU7k6EEdDcGgjaylRhUlyVD3bxTNcjyzEhzwiuzXOXRaI PJvWFTP5EGoNuV57+yv2ald49Ldb7Z7q/njAgbIR2L0hwV4U2/9swC6SrO9R10L/ JGNrKfnj1KLH3EmO/CQPh5N0PmBgGd/d98vvzRXjaQ6Z8XDShbQHD2frP5WB+RhL VlLgjPOKx5q1PdhHTHTk5CSs2wKJvj6uyZWwIBdCwi8oA4LBbDIDIKJuaFbryNxe MBcMcC9KmIpAF1Gk6VBgYUD9hyaZPo9D9f8ZcR4K9nbrmqz35dAt8usNIn6nqECf 2Z0X47KObHj0jW/Y5b4T59bv+kL82mHo -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:28 2025 by rpki-client