$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: 5+Dz1ZsDywosWSGn6L/s3yiaFAf1G5k0lGssZGzPDBk= Subject key identifier: 0E:C4:CF:12:D3:39:A8:AB:E2:0B:15:24:82:FE:6D:30:29:66:F7:0D Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C8C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C89 Signing time: Tue 04 Nov 2025 14:27:47 +0000 Manifest this update: Tue 04 Nov 2025 14:27:46 +0000 Manifest next update: Tue 11 Nov 2025 14:27:46 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: S1lm1DPQjoG61LOVd14dGbhe+5hhQnc/ISoVqYWp3vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11404 (0x2c8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Nov 4 14:27:46 2025 GMT Not After : Nov 11 14:27:46 2025 GMT Subject: CN=690a0d63-4706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fa:3a:31:cb:18:ce:39:f7:be:be:09:1a:4e: e3:f0:42:c2:f2:8a:4b:38:bf:06:36:7f:b5:72:ad: 67:70:1b:80:55:a1:2a:1e:c9:02:78:fa:71:9e:6e: 95:ea:a1:26:11:8f:2c:e2:1f:f1:0a:22:31:47:07: 3c:79:d9:a8:4e:61:4b:c1:1e:9e:cb:41:6a:67:de: f3:2e:cf:cd:5b:75:ce:7c:3e:cf:71:fa:30:d8:5d: f6:6b:76:87:63:2c:81:4f:68:5b:75:91:b7:21:5c: 0f:76:24:f9:fc:bc:27:14:4b:e3:7e:42:45:63:96: 11:82:56:84:cc:1e:a4:bc:51:90:1a:67:b8:96:4f: 9b:db:06:02:5a:24:50:6c:69:f1:dc:1a:ea:5f:8a: 03:5d:8d:ef:35:a7:d7:40:0b:51:70:d8:f8:ab:f4: 81:ea:d0:e5:4e:ce:d4:d5:14:ea:30:01:c5:0d:35: 53:18:b8:6c:f5:a9:41:72:ad:f7:85:0f:d7:37:af: ed:85:57:b5:0b:97:d3:a7:53:47:9d:40:72:01:80: db:6e:d9:dd:3a:15:3a:6c:57:4b:7f:20:e2:78:fc: ef:6a:c0:36:09:d6:6b:93:83:f3:d2:44:09:fc:d3: 04:e0:04:61:96:27:a3:55:5f:fd:7a:ea:3b:e7:ce: 51:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C4:CF:12:D3:39:A8:AB:E2:0B:15:24:82:FE:6D:30:29:66:F7:0D X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e0:60:9f:2d:be:57:3e:3b:f8:c5:3b:c0:c7:8e:66:4c:91: 0c:00:61:03:38:7b:ac:e1:16:ce:6e:8d:20:30:c0:3b:ff:ad: 38:7b:1e:07:a1:d8:c8:2c:c7:93:05:c4:c5:51:f3:06:94:85: 5a:c5:38:7a:13:b6:db:c6:5d:2a:19:56:98:e3:ec:82:37:45: e7:97:59:a5:85:cf:7f:30:12:75:1e:19:84:46:5e:eb:d2:72: b0:14:97:15:57:a6:c1:b9:53:cc:62:14:cf:29:81:d6:70:2d: bf:eb:d3:5a:cd:e0:77:77:63:8e:5c:e7:bf:01:5a:0c:ee:b5: 63:9e:fb:8f:e3:89:d5:05:2a:50:be:97:e3:9f:d0:86:e5:54: d0:25:6e:d5:56:de:11:20:68:9e:6c:e8:e7:3e:4e:ee:61:22: 06:34:ed:d2:3a:04:68:22:00:df:c5:36:d6:8a:c0:49:c8:b0: 28:d9:59:03:f2:70:d4:5a:f0:92:63:8a:e6:84:4e:b3:74:23: 5d:80:e6:06:c3:9b:1c:9a:32:09:10:97:2c:e0:a6:e8:9d:e8: bc:f4:e7:bb:d0:fe:b1:5b:8a:d5:31:72:b0:f3:ab:91:c1:11: 3a:ce:b6:5a:46:dd:32:c8:11:53:e4:67:81:ff:fc:5b:b6:a4: fd:14:04:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUxMTA0MTQyNzQ2WhcNMjUxMTExMTQyNzQ2WjAYMRYwFAYD VQQDEw02OTBhMGQ2My00NzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPo6McsYzjn3vr4JGk7j8ELC8opLOL8GNn+1cq1ncBuAVaEqHskCePpxnm6V 6qEmEY8s4h/xCiIxRwc8edmoTmFLwR6ey0FqZ97zLs/NW3XOfD7Pcfow2F32a3aH YyyBT2hbdZG3IVwPdiT5/LwnFEvjfkJFY5YRglaEzB6kvFGQGme4lk+b2wYCWiRQ bGnx3BrqX4oDXY3vNafXQAtRcNj4q/SB6tDlTs7U1RTqMAHFDTVTGLhs9alBcq33 hQ/XN6/thVe1C5fTp1NHnUByAYDbbtndOhU6bFdLfyDiePzvasA2CdZrk4Pz0kQJ /NME4ARhliejVV/9euo7585RLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7EzxLT Oair4gsVJIL+bTApZvcNMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT4GCfLb5XPjv4xTvAx45mTJEMAGEDOHus4RbObo0gMMA7/604ex4H odjILMeTBcTFUfMGlIVaxTh6E7bbxl0qGVaY4+yCN0Xnl1mlhc9/MBJ1HhmERl7r 0nKwFJcVV6bBuVPMYhTPKYHWcC2/69NazeB3d2OOXOe/AVoM7rVjnvuP44nVBSpQ vpfjn9CG5VTQJW7VVt4RIGiebOjnPk7uYSIGNO3SOgRoIgDfxTbWisBJyLAo2VkD 8nDUWvCSY4rmhE6zdCNdgOYGw5scmjIJEJcs4Kbonei89Oe70P6xW4rVMXKw86uR wRE6zrZaRt0yyBFT5GeB//xbtqT9FASH -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:25 2025 by rpki-client