$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: LHFKGL3hCDrcfIFf05V04FvgRZtfe13Db7zSUUJJldg= Subject key identifier: BD:55:39:96:18:7C:29:FD:95:49:09:09:D4:53:5D:4F:29:EF:B7:6C Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C3D Signing time: Sat 18 Oct 2025 19:29:48 +0000 Manifest this update: Sat 18 Oct 2025 19:29:47 +0000 Manifest next update: Sat 25 Oct 2025 19:29:47 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: l/+a7wWSR7tJ3I2nExOOL35VYaiqYzIN1izJQBvC3l0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Oct 18 19:29:47 2025 GMT Not After : Oct 25 19:29:47 2025 GMT Subject: CN=68f3eaab-038a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7d:48:3e:9d:80:82:ad:11:65:50:73:5e:6a: 5a:36:0a:bf:de:bc:99:94:80:b1:e9:a8:bc:ec:a2: 3c:ef:6c:8d:ce:27:60:e0:83:4b:ed:91:4e:0c:17: 66:b2:77:fa:72:46:fa:5e:b1:64:6b:2e:06:d3:de: c1:b0:4b:84:6e:67:79:c2:d7:c6:e0:e3:a9:c8:01: fd:a5:0c:7e:c5:45:07:5a:26:21:db:17:cb:bf:23: f5:91:f1:7c:16:ce:5c:2a:4e:35:e0:1b:2b:ab:aa: 53:46:40:95:a5:6e:13:66:d8:f2:c6:11:58:86:43: 62:ce:db:3e:c4:2c:66:0a:4a:6f:59:1b:f8:26:87: 91:aa:b2:7c:56:8e:c8:03:88:3e:1d:99:35:b2:4c: ab:e7:99:f9:3d:1b:16:ff:38:c6:d7:0b:91:5b:ab: 5d:c6:18:b5:20:be:8c:af:64:69:60:a5:0a:b7:97: 0e:f0:87:3d:48:97:a8:2c:da:f8:b1:e5:c0:48:8b: e7:e6:49:3a:5e:19:13:fa:d8:aa:c5:28:61:7a:42: 6b:bc:a9:67:37:0b:d7:8f:11:11:f2:60:02:d2:3a: c1:cb:19:7b:04:ea:86:56:47:fb:59:13:07:7d:21: 85:ea:0d:36:88:30:69:68:f2:bb:89:a6:5e:bf:53: 9a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:55:39:96:18:7C:29:FD:95:49:09:09:D4:53:5D:4F:29:EF:B7:6C X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:18:a6:d7:03:22:b8:84:2d:36:4e:09:e5:86:8d:d7:7b:7e: 17:ef:d8:e1:92:01:17:e4:61:3d:8e:b7:49:73:21:79:02:59: 1d:da:c0:34:b1:53:e8:42:c7:2a:1f:8b:ca:4a:07:11:41:ec: 1d:ec:d4:49:94:03:fc:dc:0f:21:57:0a:a9:6d:e5:27:12:74: 21:e3:b9:65:45:00:e2:7e:51:8f:36:25:1f:d4:84:76:13:e6: 99:04:d3:be:03:e0:48:70:8c:87:22:78:25:21:a0:d3:b6:26: db:d0:63:b9:f3:4f:7a:16:f6:a8:5b:76:88:77:6a:a9:ce:2e: ba:48:de:ed:d0:a5:7d:7f:df:84:d6:b0:21:11:6c:3c:da:08: 07:72:68:d6:5c:29:cb:22:b2:65:13:ca:7b:4d:9e:22:37:26: 5d:a5:42:12:3b:ae:a9:62:a9:d8:9a:c2:92:a0:24:68:97:9e: 25:83:f2:c2:28:f9:e9:ad:56:66:1e:85:7a:e5:23:68:b1:47: 76:e8:10:70:73:a3:40:e6:bb:e7:3f:30:31:5a:d6:8b:c9:d9: 3e:4b:00:0c:f0:ae:b4:f3:0e:26:84:7b:e4:57:7b:ea:03:c2: b5:7c:67:04:86:e2:f0:37:b4:ac:b6:12:c7:02:49:6b:3d:54: 97:3c:d6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUxMDE4MTkyOTQ3WhcNMjUxMDI1MTkyOTQ3WjAYMRYwFAYD VQQDEw02OGYzZWFhYi0wMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArX1IPp2Agq0RZVBzXmpaNgq/3ryZlICx6ai87KI872yNzidg4INL7ZFODBdm snf6ckb6XrFkay4G097BsEuEbmd5wtfG4OOpyAH9pQx+xUUHWiYh2xfLvyP1kfF8 Fs5cKk414Bsrq6pTRkCVpW4TZtjyxhFYhkNizts+xCxmCkpvWRv4JoeRqrJ8Vo7I A4g+HZk1skyr55n5PRsW/zjG1wuRW6tdxhi1IL6Mr2RpYKUKt5cO8Ic9SJeoLNr4 seXASIvn5kk6XhkT+tiqxShhekJrvKlnNwvXjxER8mAC0jrByxl7BOqGVkf7WRMH fSGF6g02iDBpaPK7iaZev1OaLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1VOZYY fCn9lUkJCdRTXU8p77dsMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkGKbXAyK4hC02Tgnlho3Xe34X79jhkgEX5GE9jrdJcyF5Alkd2sA0 sVPoQscqH4vKSgcRQewd7NRJlAP83A8hVwqpbeUnEnQh47llRQDiflGPNiUf1IR2 E+aZBNO+A+BIcIyHInglIaDTtibb0GO58096FvaoW3aId2qpzi66SN7t0KV9f9+E 1rAhEWw82ggHcmjWXCnLIrJlE8p7TZ4iNyZdpUISO66pYqnYmsKSoCRol54lg/LC KPnprVZmHoV65SNosUd26BBwc6NA5rvnPzAxWtaLydk+SwAM8K608w4mhHvkV3vq A8K1fGcEhuLwN7SsthLHAklrPVSXPNZd -----END CERTIFICATE-----Generated at Mon Oct 20 07:56:42 2025 by rpki-client