$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft File: CmH1ryEJpoNhH7ogbyCM7-NImCE.mft (raw, json) Hash identifier: 9UH+lkiJndA8x8+4l5/BJMj3b9MtAhTzLIOXgcddr5M= Subject key identifier: B7:CB:23:15:92:86:4C:D8:85:8D:F7:EA:3E:D6:FB:42:E7:9C:76:17 Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0AD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft Manifest number: 0B3E Signing time: Sun 02 Nov 2025 19:26:14 +0000 Manifest this update: Sun 02 Nov 2025 19:26:14 +0000 Manifest next update: Sun 09 Nov 2025 19:26:14 +0000 Files and hashes: 1: CmH1ryEJpoNhH7ogbyCM7-NImCE.crl (hash: 0/vHr+gq2DpVfs3oVp8oUF+darhzWani5JO4NdB9r/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2777 (0xad9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC, serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: Nov 2 19:26:14 2025 GMT Not After : Nov 9 19:26:14 2025 GMT Subject: CN=6907b056-1d35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d6:85:65:50:a5:ba:11:3a:43:3c:3f:89:81: d2:43:9b:cf:93:6b:c5:5d:b7:b3:56:5c:43:0e:5b: 1e:09:b4:35:9e:cf:10:c8:15:53:fe:1f:d4:5d:36: 25:8b:6f:27:fe:44:f4:b9:b7:10:18:4e:d7:74:09: f5:89:02:62:96:35:c0:97:74:15:3b:eb:f1:d9:40: c7:fc:a1:79:46:73:1a:6a:66:c8:47:80:6d:67:47: 12:6b:1c:bf:25:4d:75:54:c1:09:29:99:ba:ba:d1: 30:04:88:37:6b:e7:66:6f:9a:01:1a:41:91:11:0c: dc:02:6e:ee:52:75:a1:b5:58:3c:3d:c3:1d:5e:60: e4:87:96:90:ac:3f:dc:06:eb:3d:f6:94:dd:ec:e4: c5:23:a0:b8:2d:20:aa:82:2b:ae:57:7f:26:1e:14: 5d:b4:ab:07:d1:92:ea:e2:79:30:75:95:ff:c6:07: 70:af:e9:d4:c5:b3:9e:fa:8f:0b:ca:2d:16:7e:ce: a5:d9:72:10:fb:3d:c1:29:0c:ef:77:2c:4e:ff:d7: f8:8b:ef:e4:cc:26:2b:e7:d9:0a:2e:2b:69:82:69: 0e:de:c4:af:33:5e:85:b2:3b:89:f5:2b:49:de:9d: 97:80:36:4f:f4:a4:14:fd:f4:42:d5:a3:03:6f:ab: be:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CB:23:15:92:86:4C:D8:85:8D:F7:EA:3E:D6:FB:42:E7:9C:76:17 X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:63:61:48:96:64:35:9d:3d:20:33:34:35:85:c4:c5:a1:c4: 0f:26:9c:95:af:cf:c3:03:30:70:3a:4c:32:1c:de:ce:d5:59: 11:86:93:eb:58:d4:19:cf:5b:f1:ad:72:ad:58:18:6e:fc:bb: fc:cc:a5:1c:3f:cb:c2:ae:3b:1d:8f:c0:9b:65:b8:92:c4:35: 15:98:21:e2:d4:da:5d:cc:f9:7a:c9:40:c4:95:02:bd:2f:f6: 36:b9:a3:d1:70:1f:bb:15:88:9f:11:41:78:3f:b6:31:1a:78: f3:7e:82:8f:cf:3b:c6:fe:f6:17:ab:af:10:36:1f:e7:11:ab: 05:82:df:4f:22:0c:f0:c4:ba:b8:19:4c:82:77:d9:c7:3f:19: 90:9e:cb:c5:17:e0:e0:fd:d7:7f:58:29:e8:e4:0e:e7:31:8d: 27:15:56:90:b1:66:4b:e8:c8:fe:ca:62:d4:9a:b0:54:03:9b: 8b:8f:5c:00:bc:04:11:c1:73:2b:98:22:b3:37:de:c5:44:54: d6:5a:6b:21:a2:25:63:76:3e:6a:08:8c:35:07:54:9d:97:2e: 10:a9:89:6d:cf:57:e7:e9:21:74:dd:fe:17:ae:fc:f5:c6:d4: d5:56:3e:3c:cb:5c:85:81:6c:f5:0e:15:a9:0c:74:d3:94:89: 31:ef:80:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjUxMTAyMTkyNjE0WhcNMjUxMTA5MTkyNjE0WjAYMRYwFAYD VQQDEw02OTA3YjA1Ni0xZDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0taFZVCluhE6Qzw/iYHSQ5vPk2vFXbezVlxDDlseCbQ1ns8QyBVT/h/UXTYl i28n/kT0ubcQGE7XdAn1iQJiljXAl3QVO+vx2UDH/KF5RnMaambIR4BtZ0cSaxy/ JU11VMEJKZm6utEwBIg3a+dmb5oBGkGREQzcAm7uUnWhtVg8PcMdXmDkh5aQrD/c Bus99pTd7OTFI6C4LSCqgiuuV38mHhRdtKsH0ZLq4nkwdZX/xgdwr+nUxbOe+o8L yi0Wfs6l2XIQ+z3BKQzvdyxO/9f4i+/kzCYr59kKLitpgmkO3sSvM16FsjuJ9StJ 3p2XgDZP9KQU/fRC1aMDb6u+uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfLIxWS hkzYhY336j7W+0LnnHYXMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTlBQy9DMDYxMzUxNjVGOEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBv TmhIN29nYnlDTTctTkltQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Y2FIlmQ1nT0gMzQ1hcTFocQPJpyVr8/DAzBwOkwyHN7O1VkRhpPr WNQZz1vxrXKtWBhu/Lv8zKUcP8vCrjsdj8CbZbiSxDUVmCHi1NpdzPl6yUDElQK9 L/Y2uaPRcB+7FYifEUF4P7YxGnjzfoKPzzvG/vYXq68QNh/nEasFgt9PIgzwxLq4 GUyCd9nHPxmQnsvFF+Dg/dd/WCno5A7nMY0nFVaQsWZL6Mj+ymLUmrBUA5uLj1wA vAQRwXMrmCKzN97FRFTWWmshoiVjdj5qCIw1B1Sdly4QqYltz1fn6SF03f4Xrvz1 xtTVVj48y1yFgWz1DhWpDHTTlIkx74Bv -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:02 2025 by rpki-client