$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: pL876VuKCQy3xJyR3iUZLQgPv3IoamO6c7MsqJ1GGP8= Subject key identifier: 75:C2:D5:37:A7:3D:DB:3D:FA:35:55:0A:5A:22:3A:A5:A2:F1:AE:5F Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C45 Signing time: Sun 02 Nov 2025 18:40:15 +0000 Manifest this update: Sun 02 Nov 2025 18:40:15 +0000 Manifest next update: Sun 09 Nov 2025 18:40:15 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: Jzg2VjMD9XodC+KfzM1vY1utF3W0w51J3xkMLaJMcyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3165 (0xc5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Nov 2 18:40:15 2025 GMT Not After : Nov 9 18:40:15 2025 GMT Subject: CN=6907a58f-b051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cc:83:c9:ea:0b:1c:cc:6a:cd:10:98:80:e4: 9a:d5:d2:95:bd:34:71:d5:15:8c:75:a7:35:1c:c5: b4:0a:c2:f3:cf:85:db:08:ef:0e:fd:4e:20:2e:15: d8:53:4f:75:47:ad:97:60:38:1b:ab:54:6e:85:30: 8c:ca:80:74:3d:81:44:6b:08:68:46:dc:c3:ea:e4: a6:fc:31:16:52:c8:2d:5d:fd:41:3c:ba:8c:cd:e4: c9:83:46:cb:b4:e8:21:e1:57:a2:0c:6a:48:d9:fc: 7b:22:d0:59:71:64:9e:f9:e5:77:75:02:d2:e8:b1: bf:d3:7f:80:77:e4:42:cb:a9:9d:0e:b0:10:20:be: 5b:e2:0b:2c:7f:8e:9c:48:c9:1a:7c:b5:b2:c9:00: ca:56:e6:83:92:c0:e8:5b:b1:5b:7d:b6:76:04:75: 3c:a0:40:5e:3d:d3:30:1b:9d:29:9b:c8:03:f2:7c: f1:8c:6f:a4:b6:f7:a5:0a:a3:51:d5:5b:e2:5f:1a: 9c:db:92:26:1f:da:72:ff:ad:2e:ca:1d:53:6f:d1: bc:e2:4d:d7:c4:09:15:e6:60:2c:63:d3:5f:c9:3f: ec:4e:5b:6b:05:53:f7:c6:da:9b:a3:1f:d8:4d:a1: bb:5a:90:5f:2e:a1:0e:a1:ab:ba:6c:63:b7:cf:48: 0e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C2:D5:37:A7:3D:DB:3D:FA:35:55:0A:5A:22:3A:A5:A2:F1:AE:5F X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:2c:2c:d2:1c:8c:d9:dd:2b:77:1a:7b:28:d1:32:a0:8f:60: 7b:3f:11:85:da:af:c0:b4:d7:2e:da:ab:5b:df:fa:3a:04:a9: a6:53:8b:fc:4d:77:4c:ec:9c:48:43:cf:e9:63:7a:9a:40:ce: f0:ff:9c:aa:1f:ff:f4:4b:2d:d2:f0:04:e4:27:64:fb:f9:cd: b9:61:50:19:e5:9c:e2:32:42:c9:d1:92:65:32:a5:e1:ca:14: ed:5c:fe:a8:b8:a7:2c:21:cb:ab:ff:e8:cf:68:e4:e6:db:c8: 10:38:9e:92:2b:cf:16:81:03:4f:03:f4:a5:8c:f4:36:14:38: 8f:3d:2f:f2:f2:20:b8:74:02:c0:14:8f:9d:bc:ef:bd:29:27: 1e:eb:bb:6f:c0:fe:0d:9c:8f:58:c9:0a:fb:51:6a:c7:e7:15: 00:14:92:6c:11:2f:b3:31:91:6c:db:eb:86:d7:6f:14:55:fa: f6:cd:18:03:af:7d:90:45:77:3e:84:c8:be:00:85:d5:4d:7e: 76:3a:be:3f:53:67:1f:05:46:69:79:bf:e5:15:b5:e1:1d:d1: 33:24:69:64:4d:29:df:a7:03:15:22:ce:fc:26:6f:04:7c:1d: 2d:48:3b:8d:e0:f4:ac:40:7a:62:6e:f2:3f:72:b1:6b:b6:ea: e8:51:54:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUxMTAyMTg0MDE1WhcNMjUxMTA5MTg0MDE1WjAYMRYwFAYD VQQDEw02OTA3YTU4Zi1iMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8yDyeoLHMxqzRCYgOSa1dKVvTRx1RWMdac1HMW0CsLzz4XbCO8O/U4gLhXY U091R62XYDgbq1RuhTCMyoB0PYFEawhoRtzD6uSm/DEWUsgtXf1BPLqMzeTJg0bL tOgh4VeiDGpI2fx7ItBZcWSe+eV3dQLS6LG/03+Ad+RCy6mdDrAQIL5b4gssf46c SMkafLWyyQDKVuaDksDoW7FbfbZ2BHU8oEBePdMwG50pm8gD8nzxjG+ktvelCqNR 1VviXxqc25ImH9py/60uyh1Tb9G84k3XxAkV5mAsY9NfyT/sTltrBVP3xtqbox/Y TaG7WpBfLqEOoau6bGO3z0gOXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXC1Ten Pds9+jVVCloiOqWi8a5fMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4LCzSHIzZ3St3Gnso0TKgj2B7PxGF2q/AtNcu2qtb3/o6BKmmU4v8 TXdM7JxIQ8/pY3qaQM7w/5yqH//0Sy3S8ATkJ2T7+c25YVAZ5ZziMkLJ0ZJlMqXh yhTtXP6ouKcsIcur/+jPaOTm28gQOJ6SK88WgQNPA/SljPQ2FDiPPS/y8iC4dALA FI+dvO+9KSce67tvwP4NnI9YyQr7UWrH5xUAFJJsES+zMZFs2+uG128UVfr2zRgD r32QRXc+hMi+AIXVTX52Or4/U2cfBUZpeb/lFbXhHdEzJGlkTSnfpwMVIs78Jm8E fB0tSDuN4PSsQHpibvI/crFrturoUVQU -----END CERTIFICATE-----Generated at Tue Nov 4 19:12:53 2025 by rpki-client