$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: bkJpNhWbxlzE2aFeLpnr47ejYDexB7E9/E7TKBQtN80= Subject key identifier: F6:FB:67:EE:27:E0:5A:5A:98:B7:D8:16:67:A9:A7:E1:76:BA:07:E4 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 06D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 06D5 Signing time: Thu 18 Sep 2025 22:17:35 +0000 Manifest this update: Thu 18 Sep 2025 22:17:34 +0000 Manifest next update: Thu 25 Sep 2025 22:17:34 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: YVqRSzju2GOSWJp2ddT7gfrBhyDN6oE5oZuKij2nx+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Sep 18 22:17:34 2025 GMT Not After : Sep 25 22:17:34 2025 GMT Subject: CN=68cc84ff-4500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b9:c9:d4:55:b6:03:e5:f0:51:32:ff:1e:98: 60:93:4a:0b:98:14:43:b1:c6:97:45:53:d9:d7:4a: f3:ca:b8:65:d9:02:e2:de:aa:81:24:4d:99:b2:4c: 09:ae:b0:ec:2f:31:ff:6d:bc:47:d6:f6:ab:d8:65: aa:70:40:2a:ef:28:9a:4c:3a:73:1a:98:45:10:d0: 86:a5:16:7d:f8:66:36:db:0a:36:ba:55:98:a9:f4: 2a:d1:a3:c3:80:94:28:dd:c6:43:8c:75:d2:ab:d1: 59:98:13:23:f5:57:86:20:70:87:b1:5d:47:9d:8b: 44:ce:34:75:5b:1b:25:43:80:8a:00:d8:87:2c:56: d3:0f:8d:1e:60:00:87:9b:ae:1e:bc:51:11:33:44: 50:ff:c5:8a:07:db:25:26:c3:7f:34:d8:08:f7:ad: e5:13:ab:c3:53:2f:f8:fa:d3:26:c8:23:8e:fb:23: ec:f7:37:3f:93:84:dd:c5:30:10:cb:a2:3e:3e:fd: 33:72:63:fe:65:db:90:df:24:17:f9:f4:cf:e9:fb: f2:3a:dc:0d:4d:8a:ac:7e:38:bb:d8:b7:57:b3:5d: bf:9c:06:c2:f0:1d:54:71:87:8e:2e:2f:7d:bc:7f: 5b:73:24:85:40:38:7b:70:73:bc:c7:3a:30:50:f2: 3d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FB:67:EE:27:E0:5A:5A:98:B7:D8:16:67:A9:A7:E1:76:BA:07:E4 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:2a:92:d8:3f:f5:dc:a3:59:7a:72:c1:7e:63:73:31:6d:bc: 9e:36:b3:c9:df:9a:5b:d2:79:31:5e:e1:ab:08:4b:5e:0b:66: f5:af:c8:d1:af:bd:5e:a7:fb:8e:ff:de:96:05:f3:c1:cb:51: a1:15:12:3d:b9:bb:46:98:48:93:15:b3:5f:ce:46:ff:21:76: 7b:e6:0a:b7:0e:98:f9:57:4d:a6:e6:59:58:fa:6f:9e:01:07: e7:63:8a:c8:bf:5a:01:61:7c:b6:89:b8:fc:b4:db:83:ae:ee: 08:c8:ed:fe:1a:d5:d0:99:51:10:64:c5:fa:49:99:07:4a:c5: 19:51:de:c9:82:13:74:d0:e0:d8:84:d4:2f:fa:8b:0e:40:93: 67:73:4e:8d:54:c9:61:dd:5f:3e:64:da:c6:10:63:eb:2d:29: 6f:e7:59:2b:e0:71:f9:2a:31:f7:a3:ff:72:b3:66:76:06:e6: 60:35:92:75:34:38:21:78:09:0e:0b:5a:5c:3a:ce:64:e6:dd: 24:21:99:2f:68:cc:67:f3:d6:4f:1d:d2:ca:65:8d:77:98:3e: 0a:b7:08:a2:7d:7f:27:75:46:17:81:f9:8a:33:d0:fc:9d:42: aa:e5:f3:a0:00:fe:d5:db:78:61:c3:db:57:17:16:22:56:cf: e3:74:1e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUwOTE4MjIxNzM0WhcNMjUwOTI1MjIxNzM0WjAYMRYwFAYD VQQDEw02OGNjODRmZi00NTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbnJ1FW2A+XwUTL/Hphgk0oLmBRDscaXRVPZ10rzyrhl2QLi3qqBJE2ZskwJ rrDsLzH/bbxH1var2GWqcEAq7yiaTDpzGphFENCGpRZ9+GY22wo2ulWYqfQq0aPD gJQo3cZDjHXSq9FZmBMj9VeGIHCHsV1HnYtEzjR1WxslQ4CKANiHLFbTD40eYACH m64evFERM0RQ/8WKB9slJsN/NNgI963lE6vDUy/4+tMmyCOO+yPs9zc/k4TdxTAQ y6I+Pv0zcmP+ZduQ3yQX+fTP6fvyOtwNTYqsfji72LdXs12/nAbC8B1UcYeOLi99 vH9bcySFQDh7cHO8xzowUPI9SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPb7Z+4n 4FpamLfYFmepp+F2ugfkMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiKpLYP/Xco1l6csF+Y3MxbbyeNrPJ35pb0nkxXuGrCEteC2b1r8jR r71ep/uO/96WBfPBy1GhFRI9ubtGmEiTFbNfzkb/IXZ75gq3Dpj5V02m5llY+m+e AQfnY4rIv1oBYXy2ibj8tNuDru4IyO3+GtXQmVEQZMX6SZkHSsUZUd7JghN00ODY hNQv+osOQJNnc06NVMlh3V8+ZNrGEGPrLSlv51kr4HH5KjH3o/9ys2Z2BuZgNZJ1 NDgheAkOC1pcOs5k5t0kIZkvaMxn89ZPHdLKZY13mD4KtwiifX8ndUYXgfmKM9D8 nUKq5fOgAP7V23hhw9tXFxYiVs/jdB4f -----END CERTIFICATE-----Generated at Fri Sep 19 02:42:14 2025 by rpki-client