$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: f8tCkOJ+lVGjjzCFFoxZXjUXZ6+5sI7e43l7666qISA= Subject key identifier: 75:BC:F4:93:B5:13:7F:D1:87:F3:93:4C:35:F7:30:B3:26:3A:0E:8C Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 34CB Signing time: Mon 20 Oct 2025 15:25:13 +0000 Manifest this update: Mon 20 Oct 2025 15:25:13 +0000 Manifest next update: Mon 27 Oct 2025 15:25:13 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: Flt38mJRI7V5mb//exhT/bbJsEcVULqT7gQqW+tJoOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B, serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Oct 20 15:25:13 2025 GMT Not After : Oct 27 15:25:13 2025 GMT Subject: CN=68f65459-c4b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:41:e9:c8:6a:db:f0:a9:2c:44:43:ed:49:3a: 6e:2b:c6:b8:fd:7a:81:2d:1e:12:77:7e:db:e1:3c: 32:9c:87:51:85:98:a3:a4:74:0b:33:18:2a:03:99: 39:5b:bb:34:ef:31:3b:5b:5b:08:8e:71:64:72:44: 65:4f:0c:b5:93:f5:c6:73:4a:8f:5c:f5:0e:aa:14: 70:02:eb:81:68:9e:a5:ed:7b:82:ba:6d:82:86:45: 3c:16:52:cf:33:01:9a:30:bf:1e:42:36:f8:1a:89: 0d:f4:12:eb:de:89:e7:2c:39:10:86:11:a1:2f:1c: e2:dd:34:b7:dc:02:7e:de:01:c2:d0:1d:7d:3d:3c: 73:19:47:8b:ab:ae:7f:83:41:e4:d2:ca:e7:67:d7: 61:ea:58:d0:da:11:96:67:4c:0b:89:48:3e:40:a6: 11:03:0f:65:f3:c5:cd:0a:fd:5d:9d:34:b6:82:26: 05:15:97:83:f6:10:d6:60:90:4c:1f:7c:57:d8:e2: 61:fa:ee:a9:4c:3a:e0:4a:c5:e3:b7:48:13:d3:1a: 11:68:45:72:6d:8f:c4:5a:11:2d:cd:87:28:8d:cf: 68:f8:63:b3:09:59:41:e0:1a:9d:f5:0f:45:bb:c1: e7:05:d6:6f:67:11:a2:09:4d:03:33:52:a5:53:14: 81:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BC:F4:93:B5:13:7F:D1:87:F3:93:4C:35:F7:30:B3:26:3A:0E:8C X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8a:80:61:f9:2b:48:7f:bc:ea:3d:04:d1:05:af:f0:04:c1: e2:ba:9e:ee:a7:91:ef:1f:9b:6a:b0:f5:bc:5b:a8:a0:0c:02: 3c:5f:3e:f7:c1:c5:f4:18:ea:68:b4:d8:01:30:35:41:89:66: e3:99:6d:7f:18:4e:4b:de:44:45:8b:d7:b7:f7:4f:67:38:93: 27:d1:fd:70:6b:e9:72:36:b8:1d:44:50:ab:5d:28:c2:b0:79: 63:7a:ed:62:d6:c7:c5:8f:9e:e5:e2:db:0a:49:b6:cd:29:93: cb:6a:0c:93:29:ab:cc:98:6e:dc:5c:66:23:8e:a6:b9:ce:99: 4e:9d:13:43:03:f2:90:6d:58:7c:e0:0f:42:49:ca:80:b1:c4: 97:23:f5:88:19:7f:8a:e1:92:85:c2:35:1a:7b:bf:1c:9c:7e: 5f:4e:8f:97:79:e5:ab:78:82:6d:da:36:a5:26:52:0c:14:3d: 20:b8:c6:7b:d1:5f:9a:9a:47:97:f5:b9:5a:44:35:a3:90:d8: 24:43:62:e6:91:53:59:24:ee:d0:67:cd:40:f1:ad:f8:8e:09: 5b:c2:26:ef:9e:30:5f:fe:82:49:da:b1:db:93:04:8a:e4:70: 43:9f:26:36:d3:7d:3e:da:f6:39:79:09:03:c8:a8:bf:2b:02: 6a:ea:c5:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjUxMDIwMTUyNTEzWhcNMjUxMDI3MTUyNTEzWjAYMRYwFAYD VQQDEw02OGY2NTQ1OS1jNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0HpyGrb8KksREPtSTpuK8a4/XqBLR4Sd37b4TwynIdRhZijpHQLMxgqA5k5 W7s07zE7W1sIjnFkckRlTwy1k/XGc0qPXPUOqhRwAuuBaJ6l7XuCum2ChkU8FlLP MwGaML8eQjb4GokN9BLr3onnLDkQhhGhLxzi3TS33AJ+3gHC0B19PTxzGUeLq65/ g0Hk0srnZ9dh6ljQ2hGWZ0wLiUg+QKYRAw9l88XNCv1dnTS2giYFFZeD9hDWYJBM H3xX2OJh+u6pTDrgSsXjt0gT0xoRaEVybY/EWhEtzYcojc9o+GOzCVlB4Bqd9Q9F u8HnBdZvZxGiCU0DM1KlUxSB3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW89JO1 E3/Rh/OTTDX3MLMmOg6MMB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbioBh+StIf7zqPQTRBa/wBMHiup7up5HvH5tqsPW8W6igDAI8Xz73 wcX0GOpotNgBMDVBiWbjmW1/GE5L3kRFi9e3909nOJMn0f1wa+lyNrgdRFCrXSjC sHljeu1i1sfFj57l4tsKSbbNKZPLagyTKavMmG7cXGYjjqa5zplOnRNDA/KQbVh8 4A9CScqAscSXI/WIGX+K4ZKFwjUae78cnH5fTo+XeeWreIJt2jalJlIMFD0guMZ7 0V+amkeX9blaRDWjkNgkQ2LmkVNZJO7QZ81A8a34jglbwibvnjBf/oJJ2rHbkwSK 5HBDnyY2030+2vY5eQkDyKi/KwJq6sXm -----END CERTIFICATE-----Generated at Tue Oct 21 00:11:45 2025 by rpki-client