$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: MdDeOPwHcqxKdnec2ySZcC7TX+HznmHvLmDud4z/oS8= Subject key identifier: F7:07:95:F1:80:CD:4D:57:55:48:CE:F9:F0:4A:0F:D4:1C:25:29:56 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 01F2 Signing time: Wed 05 Nov 2025 02:38:10 +0000 Manifest this update: Wed 05 Nov 2025 02:38:09 +0000 Manifest next update: Wed 12 Nov 2025 02:38:09 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: 9FuX02Hi08SNCxdtUAT9OCkTTPjONd5XFYOzFgu51Nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Nov 5 02:38:09 2025 GMT Not After : Nov 12 02:38:09 2025 GMT Subject: CN=690ab892-8cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:73:c6:37:4a:82:61:79:90:c7:cc:ea:29:6c: 88:cf:0e:95:ed:5b:f6:43:ef:c1:2f:5e:38:80:9c: 47:a9:b0:9c:18:33:c1:c6:5b:f7:d5:4b:e4:47:91: dd:8d:0e:26:9b:a3:07:79:24:7c:76:be:bc:da:0d: 60:c2:f2:bc:9b:93:53:b2:f6:9e:87:22:c1:b7:83: 1f:ce:b7:43:ae:56:30:f1:ff:cf:5e:aa:96:a3:8f: 78:09:e5:2f:10:fb:13:0b:4f:10:ad:54:2f:20:00: 14:2e:a2:4b:da:d2:ed:ef:d4:fe:f7:4d:a3:5e:af: 82:88:97:3b:a0:13:66:99:a2:82:ff:6e:e4:bb:38: 18:fc:c4:c5:9d:62:2b:30:89:75:03:74:e4:98:e4: 9d:43:12:94:cb:14:e4:d9:fd:7b:c2:be:67:36:c9: 05:d6:b6:b2:5d:a7:5f:44:ce:9b:27:58:08:4c:ae: 66:bd:5d:ed:42:82:b0:88:13:a6:6f:6f:22:f7:2f: d0:b5:05:21:73:8a:2d:02:d9:57:c7:aa:20:6c:0c: 4f:17:b7:a7:73:57:5c:cf:05:e6:5e:23:0e:94:c6: 4f:27:d6:f9:aa:0e:f6:b6:0f:12:f0:83:0d:fa:d5: c1:73:59:fd:cf:af:9f:e7:8f:35:ab:51:ca:46:59: 32:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:07:95:F1:80:CD:4D:57:55:48:CE:F9:F0:4A:0F:D4:1C:25:29:56 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:57:1c:32:96:f2:fd:44:eb:16:9b:4e:92:0f:5f:77:35:f9: 56:5f:e3:fc:ce:8c:45:ae:cc:d4:56:6d:68:52:9d:dd:df:a7: f1:52:4a:61:d2:89:f9:fd:f3:83:d4:ab:d3:84:67:18:ae:f4: 36:36:55:2b:a3:d6:40:3f:54:d9:74:22:b2:a5:2f:81:6d:68: 85:4b:ce:93:0c:4b:ab:a6:dc:24:7e:43:a7:72:50:ca:be:5b: 1f:a4:1e:9e:b2:59:f9:43:d0:be:94:00:90:0f:18:3a:b4:70: 53:a7:c9:38:c8:f4:fa:ad:87:8f:7b:1e:96:3c:dd:83:b0:73: 96:91:75:27:2e:f7:dd:73:68:6e:16:e9:23:dd:d0:93:03:70: 4b:b7:31:01:08:35:5d:09:6c:a2:d9:91:9e:81:92:10:47:8a: 83:d1:e4:3d:29:7c:04:c8:a4:87:64:c7:da:3c:2c:c5:ca:2c: d0:cb:ff:ed:92:45:09:31:29:6d:14:43:21:02:6c:93:ae:6d: 8d:0b:99:57:dd:cd:6c:a2:dd:35:4b:fb:ef:a1:b4:e7:c8:59: 17:81:7e:57:98:cf:10:98:d3:f3:ae:e0:f0:5b:42:a9:e9:3b: 9f:12:09:3e:49:9a:53:73:de:13:6c:0b:20:bf:3f:7a:30:e5: 2f:8c:c1:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjUxMTA1MDIzODA5WhcNMjUxMTEyMDIzODA5WjAYMRYwFAYD VQQDEw02OTBhYjg5Mi04Y2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3PGN0qCYXmQx8zqKWyIzw6V7Vv2Q+/BL144gJxHqbCcGDPBxlv31UvkR5Hd jQ4mm6MHeSR8dr682g1gwvK8m5NTsvaehyLBt4MfzrdDrlYw8f/PXqqWo494CeUv EPsTC08QrVQvIAAULqJL2tLt79T+902jXq+CiJc7oBNmmaKC/27kuzgY/MTFnWIr MIl1A3TkmOSdQxKUyxTk2f17wr5nNskF1rayXadfRM6bJ1gITK5mvV3tQoKwiBOm b28i9y/QtQUhc4otAtlXx6ogbAxPF7enc1dczwXmXiMOlMZPJ9b5qg72tg8S8IMN +tXBc1n9z6+f5481q1HKRlkyhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcHlfGA zU1XVUjO+fBKD9QcJSlWMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQVxwylvL9ROsWm06SD193NflWX+P8zoxFrszUVm1oUp3d36fxUkph 0on5/fOD1KvThGcYrvQ2NlUro9ZAP1TZdCKypS+BbWiFS86TDEurptwkfkOnclDK vlsfpB6esln5Q9C+lACQDxg6tHBTp8k4yPT6rYePex6WPN2DsHOWkXUnLvfdc2hu Fukj3dCTA3BLtzEBCDVdCWyi2ZGegZIQR4qD0eQ9KXwEyKSHZMfaPCzFyizQy//t kkUJMSltFEMhAmyTrm2NC5lX3c1sot01S/vvobTnyFkXgX5XmM8QmNPzruDwW0Kp 6TufEgk+SZpTc94TbAsgvz96MOUvjMFP -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:41 2025 by rpki-client