$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft File: poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft (raw, json) Hash identifier: aqKpBHKLtCdpzglIB+nQrY7hROV/H2ZN9FvuaahI578= Subject key identifier: B2:C0:B6:71:74:B4:F5:AD:4B:86:22:A8:5E:C5:A8:06:6E:80:7B:03 Authority key identifier: A6:85:F5:1A:7D:D3:F0:26:CF:28:E2:1F:03:A1:40:69:9D:B8:FE:8C Certificate issuer: /CN=A918F1EE/serialNumber=A685F51A7DD3F026CF28E21F03A140699DB8FE8C Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft Manifest number: 89 Signing time: Wed 05 Nov 2025 06:46:14 +0000 Manifest this update: Wed 05 Nov 2025 06:46:13 +0000 Manifest next update: Wed 12 Nov 2025 06:46:13 +0000 Files and hashes: 1: poX1Gn3T8CbPKOIfA6FAaZ24_ow.crl (hash: kBl44BGhgI4mmoSASvnC8+Qyyvr+YbnXAdInYf9mkRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.crl rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1EE, serialNumber=A685F51A7DD3F026CF28E21F03A140699DB8FE8C Validity Not Before: Nov 5 06:46:13 2025 GMT Not After : Nov 12 06:46:13 2025 GMT Subject: CN=690af2b6-bb64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1e:e9:07:14:a2:88:d6:7d:15:ed:51:43:a0: 6f:d7:91:20:09:06:f7:d2:0d:bc:0a:1c:a8:18:34: 93:ae:6f:86:be:2e:2d:1f:15:3b:09:db:cc:5f:a4: 7a:8c:29:ee:77:02:ac:9f:48:5a:71:92:ec:b9:32: 49:2e:4b:25:a9:c0:41:31:20:b9:9d:7a:1e:a9:49: fd:34:19:7c:e8:29:39:45:ec:9b:4c:1a:f5:ad:6b: 78:b1:d5:bd:6f:e3:50:05:0d:23:aa:7a:a9:e8:ca: 5f:2a:1a:34:cb:2f:ab:b4:0a:bf:04:18:47:6a:1d: 0d:d6:26:d9:7a:b6:a6:25:67:e1:c0:c7:b1:06:d8: bc:cf:04:02:51:fa:e1:58:48:2a:04:9a:f0:4b:93: 8f:2d:eb:b7:a0:77:50:68:8f:fd:50:0a:28:db:91: b6:18:11:b8:90:0d:8d:69:53:dd:25:df:24:d6:16: 01:5b:55:b4:55:53:fb:55:bb:b1:3d:c0:34:ef:3e: 65:87:84:9c:56:47:c1:fc:3f:c4:f6:cb:2e:40:33: 69:51:9a:32:f2:f4:2e:c4:4d:36:03:bd:c7:b0:c8: 5f:32:f2:4f:79:05:da:b9:28:96:ea:1c:39:51:6a: 9b:91:37:b9:f3:b6:0e:a5:c9:b0:b6:1e:8c:5b:91: 75:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C0:B6:71:74:B4:F5:AD:4B:86:22:A8:5E:C5:A8:06:6E:80:7B:03 X509v3 Authority Key Identifier: keyid:A6:85:F5:1A:7D:D3:F0:26:CF:28:E2:1F:03:A1:40:69:9D:B8:FE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:01:ab:a7:cb:37:08:73:74:e7:c2:3c:71:91:71:a1:e3:93: 10:d9:dc:3a:24:01:9b:c2:c0:d5:68:b4:a2:22:4f:3c:ae:51: cf:af:21:9a:38:a5:2e:86:e8:97:54:16:f6:2d:9f:35:26:0a: fc:31:ee:78:36:08:dd:49:3d:c1:64:4d:dc:b3:8f:6a:73:9a: f5:e3:dc:a4:6d:fc:5f:02:21:7e:02:1e:20:50:c2:83:66:bb: 45:b6:88:76:44:84:57:a9:9a:1e:95:7d:3e:3f:8a:37:2c:4b: b2:78:89:c8:ca:2a:96:e5:6c:9a:a2:78:30:f1:ba:49:a7:aa: 1a:90:91:d5:31:3e:5d:35:6c:19:34:0f:e4:ed:b3:0d:83:f8: f7:c2:a3:20:a1:b3:eb:e6:6a:1a:0a:51:6c:8d:ae:39:d0:02: 39:1c:84:69:84:de:aa:b4:d4:9f:e4:6c:1a:48:86:20:23:93: 54:72:1b:c3:52:eb:1f:90:a4:6e:03:97:a5:67:56:f4:17:5c: 03:bd:e6:08:9f:7d:d7:ed:e4:46:40:23:d1:bd:13:c5:a9:e0: 60:37:13:4a:41:e6:e4:01:6a:d4:6b:ff:69:f9:ad:28:a1:15: 0c:d2:29:c3:af:1b:38:11:76:99:b5:a0:3a:34:10:b1:64:7f: d4:d0:db:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxRUUxMTAvBgNVBAUTKEE2ODVGNTFBN0REM0YwMjZDRjI4RTIxRjAzQTE0MDY5 OURCOEZFOEMwHhcNMjUxMTA1MDY0NjEzWhcNMjUxMTEyMDY0NjEzWjAYMRYwFAYD VQQDEw02OTBhZjJiNi1iYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4R7pBxSiiNZ9Fe1RQ6Bv15EgCQb30g28ChyoGDSTrm+Gvi4tHxU7CdvMX6R6 jCnudwKsn0hacZLsuTJJLkslqcBBMSC5nXoeqUn9NBl86Ck5ReybTBr1rWt4sdW9 b+NQBQ0jqnqp6MpfKho0yy+rtAq/BBhHah0N1ibZeramJWfhwMexBti8zwQCUfrh WEgqBJrwS5OPLeu3oHdQaI/9UAoo25G2GBG4kA2NaVPdJd8k1hYBW1W0VVP7Vbux PcA07z5lh4ScVkfB/D/E9ssuQDNpUZoy8vQuxE02A73HsMhfMvJPeQXauSiW6hw5 UWqbkTe587YOpcmwth6MW5F1JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLAtnF0 tPWtS4YiqF7FqAZugHsDMB8GA1UdIwQYMBaAFKaF9Rp90/AmzyjiHwOhQGmduP6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFFRS9FQjAwQThDOEU3 NTExMUVGQkVEODFCMEVDNEY5QUUwMi9wb1gxR24zVDhDYlBLT0lmQTZGQWFaMjRf b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BvWDFHbjNUOENiUEtPSWZBNkZBYVoyNF9vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFFRS9FQjAwQThDOEU3NTExMUVGQkVEODFCMEVDNEY5QUUwMi9wb1gxR24zVDhD YlBLT0lmQTZGQWFaMjRfb3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACAaunyzcIc3TnwjxxkXGh45MQ2dw6JAGbwsDVaLSiIk88rlHPryGa OKUuhuiXVBb2LZ81Jgr8Me54NgjdST3BZE3cs49qc5r149ykbfxfAiF+Ah4gUMKD ZrtFtoh2RIRXqZoelX0+P4o3LEuyeInIyiqW5Wyaongw8bpJp6oakJHVMT5dNWwZ NA/k7bMNg/j3wqMgobPr5moaClFsja450AI5HIRphN6qtNSf5GwaSIYgI5NUchvD UusfkKRuA5elZ1b0F1wDveYIn33X7eRGQCPRvRPFqeBgNxNKQebkAWrUa/9p+a0o oRUM0inDrxs4EXaZtaA6NBCxZH/U0NtJ -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:22 2025 by rpki-client