$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft File: CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft (raw, json) Hash identifier: hyN1JKvdQi/uTel5AivaD41EWABVmhMPXQd5XBzaqUw= Subject key identifier: 8A:50:8A:DE:45:9B:0C:AB:DD:D7:2F:8C:D6:C6:BA:32:D8:32:0D:18 Authority key identifier: 08:63:36:A0:C7:E1:BD:E6:78:76:8D:10:C3:0B:EB:7F:2B:DC:E1:27 Certificate issuer: /CN=A9164663/serialNumber=086336A0C7E1BDE678768D10C30BEB7F2BDCE127 Certificate serial: 1290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft Manifest number: 1ACC Signing time: Tue 04 Nov 2025 17:11:03 +0000 Manifest this update: Tue 04 Nov 2025 17:11:02 +0000 Manifest next update: Tue 11 Nov 2025 17:11:02 +0000 Files and hashes: 1: CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl (hash: ateAHrG2ooYjqzB6wu6PuO/y7m+Blro/W4aUj/sUsJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4752 (0x1290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=086336A0C7E1BDE678768D10C30BEB7F2BDCE127 Validity Not Before: Nov 4 17:11:02 2025 GMT Not After : Nov 11 17:11:02 2025 GMT Subject: CN=690a33a6-c9ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8c:67:e8:32:1e:c1:ae:88:08:db:8a:14:ae: 26:e7:f0:00:98:bb:b8:b0:8b:21:eb:93:b5:77:da: e9:08:81:20:28:1d:4b:5d:dc:4c:21:38:d4:91:90: b3:3f:c6:8e:4f:ae:43:d6:da:eb:10:b1:df:35:e1: 5b:e5:07:cd:28:0d:b6:61:9a:fc:d8:ed:e5:8e:32: 45:54:9b:a5:14:d2:e9:ff:c6:80:55:d6:b6:81:6b: 9c:0b:60:52:ca:48:72:ce:50:f5:cc:dd:c5:34:0c: 70:7c:1a:65:b1:9e:7b:96:84:d7:c1:e2:28:cf:35: 7e:db:02:6b:f3:2e:5a:61:8b:a0:b7:5d:70:c1:9b: 81:f3:d2:74:71:b7:71:54:39:d5:30:47:8a:b5:38: bc:d4:77:6a:72:0f:c6:78:d2:c6:84:30:a4:aa:61: 8a:b9:c3:f7:d0:bf:ff:a6:55:d4:21:67:96:ea:53: e0:fb:08:ac:5f:13:80:26:26:1a:bb:55:c5:9c:7e: 53:bc:73:27:3d:3c:b4:38:05:49:d3:0c:59:44:fa: b7:ac:0e:d4:60:af:fc:61:ce:ee:e0:70:63:06:6c: 73:eb:fb:42:3a:34:da:eb:87:ad:9b:c8:7c:5d:8d: 94:d1:7d:2a:6b:99:6c:28:8b:01:d3:86:23:86:8d: 66:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:50:8A:DE:45:9B:0C:AB:DD:D7:2F:8C:D6:C6:BA:32:D8:32:0D:18 X509v3 Authority Key Identifier: keyid:08:63:36:A0:C7:E1:BD:E6:78:76:8D:10:C3:0B:EB:7F:2B:DC:E1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/CGM2oMfhveZ4do0Qwwvrfyvc4Sc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:64:36:47:a6:0d:17:22:77:5b:da:69:a0:83:ac:8a:6b:05: 2d:70:6f:56:c3:4a:18:96:6e:ca:b1:6d:48:9b:26:21:6c:da: 55:f4:5b:9a:df:63:41:de:60:80:95:6e:b0:5a:56:98:b2:fe: 87:25:bb:a6:f8:6b:01:3e:67:bb:b4:2a:b4:10:5b:8d:87:d2: d9:e5:e7:75:cc:5c:12:1b:b9:70:2c:af:9f:b8:10:5b:84:5e: a6:12:a2:6e:34:d4:fa:e6:6c:42:b2:b6:fd:b3:66:89:33:47: f7:09:47:ff:29:da:07:4c:06:2f:c6:fe:01:d2:90:5c:56:c4: ea:b6:00:02:13:80:6b:54:76:8d:a2:54:fc:41:62:a2:59:d6: 9b:de:3d:63:ed:5e:32:dd:bb:84:10:75:6d:6d:7e:65:ae:d3: b7:e4:cc:e4:28:5c:14:ae:64:1d:4b:ee:2b:db:f8:1c:9b:06: 56:c2:46:07:82:31:d6:71:b6:97:e3:85:f9:1c:68:27:ca:72: f5:cc:19:9d:9e:21:35:89:9d:c6:0d:15:da:d1:80:7c:80:9b: 25:26:28:f7:97:f9:c0:d6:e9:08:fb:51:da:fb:e0:8e:95:46: 97:31:4e:e8:47:43:f4:7e:a2:65:0c:75:a4:fb:94:a6:3e:1e: 15:54:72:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKDA4NjMzNkEwQzdFMUJERTY3ODc2OEQxMEMzMEJFQjdG MkJEQ0UxMjcwHhcNMjUxMTA0MTcxMTAyWhcNMjUxMTExMTcxMTAyWjAYMRYwFAYD VQQDEw02OTBhMzNhNi1jOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4xn6DIewa6ICNuKFK4m5/AAmLu4sIsh65O1d9rpCIEgKB1LXdxMITjUkZCz P8aOT65D1trrELHfNeFb5QfNKA22YZr82O3ljjJFVJulFNLp/8aAVda2gWucC2BS ykhyzlD1zN3FNAxwfBplsZ57loTXweIozzV+2wJr8y5aYYugt11wwZuB89J0cbdx VDnVMEeKtTi81Hdqcg/GeNLGhDCkqmGKucP30L//plXUIWeW6lPg+wisXxOAJiYa u1XFnH5TvHMnPTy0OAVJ0wxZRPq3rA7UYK/8Yc7u4HBjBmxz6/tCOjTa64etm8h8 XY2U0X0qa5lsKIsB04Yjho1m5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpQit5F mwyr3dcvjNbGujLYMg0YMB8GA1UdIwQYMBaAFAhjNqDH4b3meHaNEMML638r3OEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi9DR00yb01maHZlWjRkbzBRd3d2cmZ5dmM0 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NHTTJvTWZodmVaNGRvMFF3d3ZyZnl2YzRTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi9DR00yb01maHZl WjRkbzBRd3d2cmZ5dmM0U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPZDZHpg0XIndb2mmgg6yKawUtcG9Ww0oYlm7KsW1ImyYhbNpV9Fua 32NB3mCAlW6wWlaYsv6HJbum+GsBPme7tCq0EFuNh9LZ5ed1zFwSG7lwLK+fuBBb hF6mEqJuNNT65mxCsrb9s2aJM0f3CUf/KdoHTAYvxv4B0pBcVsTqtgACE4BrVHaN olT8QWKiWdab3j1j7V4y3buEEHVtbX5lrtO35MzkKFwUrmQdS+4r2/gcmwZWwkYH gjHWcbaX44X5HGgnynL1zBmdniE1iZ3GDRXa0YB8gJslJij3l/nA1ukI+1Ha++CO lUaXMU7oR0P0fqJlDHWk+5SmPh4VVHJY -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:32 2025 by rpki-client