$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft File: Cr_XemhpLv60MkAP_d3XrhsjvCc.mft (raw, json) Hash identifier: wCHwVY/iHdjzr0qVwwVDgUkmcw3px9UnXjzuDIR0Fo8= Subject key identifier: FA:55:D7:85:24:19:DE:93:D9:3A:0E:56:4F:9C:D6:5B:C5:22:7B:A6 Authority key identifier: 0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 Certificate issuer: /CN=A9194A8C/serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Certificate serial: 04EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft Manifest number: 0669 Signing time: Fri 22 Aug 2025 23:55:46 +0000 Manifest this update: Fri 22 Aug 2025 23:55:45 +0000 Manifest next update: Fri 29 Aug 2025 23:55:45 +0000 Files and hashes: 1: Cr_XemhpLv60MkAP_d3XrhsjvCc.crl (hash: 6wZ3DnZmz9jy7k0/dAAKeAdixyHBl4hHxWYTSR4M6Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C, serialNumber=0ABFD77A68692EFEB432400FFDDDD7AE1B23BC27 Validity Not Before: Aug 22 23:55:45 2025 GMT Not After : Aug 29 23:55:45 2025 GMT Subject: CN=68a90381-12a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d9:0e:4e:7e:41:37:5e:be:f5:b2:98:df:88: 2f:e5:de:b6:34:79:79:91:5e:ea:1b:5b:11:54:36: b9:de:77:30:ad:cf:1f:30:36:c3:6d:99:b2:9e:30: a1:f6:a9:71:b5:88:53:c7:70:52:5f:dc:3f:1a:19: 2c:9e:bc:7b:3d:d1:56:bf:91:e5:c4:8f:01:c0:20: 52:7d:a3:99:78:b5:99:d5:93:c0:27:dc:f3:25:69: 84:89:bc:08:d8:2f:fa:32:ef:ff:9c:b0:2d:49:47: 36:47:e5:5e:32:8b:f8:1c:90:53:db:cf:d2:b7:01: 84:a0:f2:f3:16:59:ac:7b:bd:76:71:5e:82:53:14: 00:bc:62:62:52:88:2b:1e:b4:24:2d:8f:6e:94:15: 03:ff:cc:f8:f3:2b:05:de:d9:9d:bf:ac:b0:59:fe: 49:18:c5:53:ad:f4:50:32:e5:4b:3b:c9:e4:de:b1: 31:7b:58:70:b9:fe:cc:cf:cd:0e:56:79:26:ff:52: a4:26:c6:16:e7:61:47:2f:35:07:4e:32:b0:05:0e: 9a:e5:30:01:0c:5e:da:49:3c:f8:ce:d1:9c:f2:06: c2:49:f4:77:cc:f8:83:b2:18:a7:85:1f:75:e4:19: 2d:e7:19:59:6f:b5:12:19:9c:16:3b:dc:b2:0f:52: 66:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:55:D7:85:24:19:DE:93:D9:3A:0E:56:4F:9C:D6:5B:C5:22:7B:A6 X509v3 Authority Key Identifier: keyid:0A:BF:D7:7A:68:69:2E:FE:B4:32:40:0F:FD:DD:D7:AE:1B:23:BC:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cr_XemhpLv60MkAP_d3XrhsjvCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/Cr_XemhpLv60MkAP_d3XrhsjvCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:5c:0a:bd:7c:7f:e6:61:2b:81:47:ea:a9:a9:9d:48:d7:8d: 38:fe:e2:bc:1c:23:31:6c:54:86:d0:07:68:31:5b:e7:a5:e4: 52:b1:d2:00:13:3b:00:cd:b9:7b:90:31:b9:3f:7e:11:7d:2b: 89:18:26:04:a3:fe:95:ac:16:86:37:41:c9:a9:1b:b0:21:92: d9:05:0d:0f:a7:e7:5e:fc:4d:29:64:0e:df:2f:48:3a:c6:49: 0f:15:81:9a:8e:db:0d:1d:98:7a:92:03:5d:61:66:96:4f:a1: e4:b7:cc:84:e3:6a:a1:6f:18:41:b4:e4:06:63:33:ed:8d:af: 1d:00:0b:cb:e2:9e:c8:7a:15:4c:bf:1a:09:33:02:1a:40:1c: 7a:0d:37:18:80:38:11:18:80:e3:1d:f4:30:51:cd:80:3b:98: 15:32:15:17:4b:95:15:60:b9:3a:99:3c:0d:47:85:68:9c:76: 92:f0:e5:ad:f4:93:ea:98:7b:2f:cd:a9:bd:9a:6a:d5:25:ba: 34:78:28:1a:d7:79:e4:97:f4:11:76:dd:c8:d5:d8:fd:7c:9f: 7b:16:69:1f:ea:a3:1a:6a:ca:29:01:65:be:3d:79:6b:30:c8: c6:78:a1:00:64:0d:0b:74:49:43:bd:a9:a6:29:0a:f3:2f:c6: e5:bf:2e:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKDBBQkZENzdBNjg2OTJFRkVCNDMyNDAwRkZEREREN0FF MUIyM0JDMjcwHhcNMjUwODIyMjM1NTQ1WhcNMjUwODI5MjM1NTQ1WjAYMRYwFAYD VQQDEw02OGE5MDM4MS0xMmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tkOTn5BN16+9bKY34gv5d62NHl5kV7qG1sRVDa53ncwrc8fMDbDbZmynjCh 9qlxtYhTx3BSX9w/Ghksnrx7PdFWv5HlxI8BwCBSfaOZeLWZ1ZPAJ9zzJWmEibwI 2C/6Mu//nLAtSUc2R+VeMov4HJBT28/StwGEoPLzFlmse712cV6CUxQAvGJiUogr HrQkLY9ulBUD/8z48ysF3tmdv6ywWf5JGMVTrfRQMuVLO8nk3rExe1hwuf7Mz80O Vnkm/1KkJsYW52FHLzUHTjKwBQ6a5TABDF7aSTz4ztGc8gbCSfR3zPiDshinhR91 5Bkt5xlZb7USGZwWO9yyD1JmIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpV14Uk Gd6T2ToOVk+c1lvFInumMB8GA1UdIwQYMBaAFAq/13poaS7+tDJAD/3d164bI7wn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2NjBNa0FQX2QzWHJoc2p2 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyX1hlbWhwTHY2ME1rQVBfZDNYcmhzanZDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE4Qy85RTY3MTFBNDJCMUMxMUVDOTU5OTc0MDlDNEY5QUUwMi9Dcl9YZW1ocEx2 NjBNa0FQX2QzWHJoc2p2Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGXAq9fH/mYSuBR+qpqZ1I1404/uK8HCMxbFSG0AdoMVvnpeRSsdIA EzsAzbl7kDG5P34RfSuJGCYEo/6VrBaGN0HJqRuwIZLZBQ0Pp+de/E0pZA7fL0g6 xkkPFYGajtsNHZh6kgNdYWaWT6Hkt8yE42qhbxhBtOQGYzPtja8dAAvL4p7IehVM vxoJMwIaQBx6DTcYgDgRGIDjHfQwUc2AO5gVMhUXS5UVYLk6mTwNR4VonHaS8OWt 9JPqmHsvzam9mmrVJbo0eCga13nkl/QRdt3I1dj9fJ97Fmkf6qMaasopAWW+PXlr MMjGeKEAZA0LdElDvammKQrzL8blvy5y -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:33 2025 by rpki-client