$ rpki-client -vvf rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft File: clTejLmzOZRVQ9h-jrBW8VPVH1A.mft (raw, json) Hash identifier: gLvZh6qTMNXop5VUr3KZn3irDyB2uLsTz3dZJ/p4a/s= Subject key identifier: 75:DF:97:AA:CE:9E:94:CC:00:22:35:DA:1E:A2:CC:31:44:39:06:F3 Authority key identifier: 72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 Certificate issuer: /CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft Manifest number: 023B Signing time: Mon 03 Nov 2025 01:46:18 +0000 Manifest this update: Mon 03 Nov 2025 01:46:17 +0000 Manifest next update: Mon 10 Nov 2025 01:46:17 +0000 Files and hashes: 1: clTejLmzOZRVQ9h-jrBW8VPVH1A.crl (hash: r7p5jv5SPVFu53/3HcsHahsHbpFIvEIyOFqAwrjAxjg=) 2: A968BCA24C8511ED94579477C4F9AE02.roa (hash: IDoZUSrFV6jx6DSWfjQN2kUHclLhHXH1mPFI6HDO2bY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198166, serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Validity Not Before: Nov 3 01:46:17 2025 GMT Not After : Nov 10 01:46:17 2025 GMT Subject: CN=69080969-851e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f3:79:9b:0a:c8:ff:24:e2:c0:1b:cf:f7:c1: 5c:6c:8e:f6:98:82:ae:10:dd:82:fe:f8:c7:34:38: 19:35:49:a2:6c:64:77:3d:14:fa:72:f5:81:17:7d: 02:98:5b:65:f2:13:d2:39:60:14:08:bb:24:fa:c1: 2b:3c:25:2c:a2:1b:1d:47:f6:72:30:6e:45:9d:6a: 35:19:35:b1:f8:e3:ac:30:da:82:0d:52:c0:7a:7b: 9f:ee:c4:8b:c4:21:2e:8d:9d:be:f5:6e:b7:94:c1: d2:e6:37:f5:cb:f6:58:fc:90:f8:12:f5:70:ea:75: 6b:c4:93:dd:a7:c5:ad:a1:00:ff:54:15:d6:51:22: 83:7d:e7:57:08:d9:92:43:c1:73:c5:79:3b:a4:4f: b0:fa:32:d3:e4:e7:f7:11:64:55:b0:2d:b1:56:50: 24:39:91:9a:e3:d4:eb:51:ab:ec:8c:ac:a9:b7:4a: b2:b8:7f:2c:50:78:f9:cf:69:02:5c:6c:f5:9c:4e: d8:62:24:c4:65:57:12:f1:0a:24:89:72:4c:9f:18: 1e:fe:81:e1:d0:17:53:85:8b:28:66:89:3d:89:3b: 0b:ff:eb:d6:75:17:54:1b:32:d3:2c:a3:8c:53:f2: 4d:7e:40:cd:b0:6a:27:8e:32:41:37:71:07:0e:a4: db:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DF:97:AA:CE:9E:94:CC:00:22:35:DA:1E:A2:CC:31:44:39:06:F3 X509v3 Authority Key Identifier: keyid:72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d2:ab:22:98:d4:fd:29:e4:07:5a:e2:e6:46:fd:03:eb:00: 8b:c6:89:53:e4:25:fa:b9:45:fe:2f:f8:52:c2:1f:6e:d3:b0: 8c:a5:10:b7:1e:5b:9e:c5:83:4d:05:cf:4f:d7:e5:8f:2a:99: 23:82:bb:66:d5:11:82:3e:95:53:ee:ef:45:83:18:61:bb:ec: 4a:15:73:68:a0:73:fa:09:11:1a:65:93:78:7c:45:54:be:8f: 61:16:9a:bd:89:d2:2e:9e:c3:0c:c6:32:49:04:f2:77:a2:e2: 5a:71:fe:ba:b1:82:48:86:d6:4c:ea:6e:ce:ef:74:50:e6:05: 19:6d:24:82:3a:05:9f:e7:54:5d:e8:44:92:dd:52:37:16:26: ce:fe:3f:0d:7b:17:43:65:cd:df:5a:4f:85:a5:e4:d4:9b:1b: 89:0d:78:dd:81:8e:91:27:3b:88:ce:30:35:4b:bd:7c:7b:7e: 4d:66:f5:ef:e4:f9:3c:ce:64:59:df:56:e0:8d:08:6e:a0:13: 40:96:6c:25:a2:ce:8a:d4:db:9b:cd:40:ae:8a:d5:e9:31:f6: bd:da:c3:d9:3e:88:63:fa:38:34:28:54:b2:c8:54:66:34:ac: 80:90:ab:78:8f:87:9f:c7:c8:b0:91:24:06:73:ec:7b:7d:e4: b0:19:b8:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgxNjYxMTAvBgNVBAUTKDcyNTRERThDQjlCMzM5OTQ1NTQzRDg3RThFQjA1NkYx NTNENTFGNTAwHhcNMjUxMTAzMDE0NjE3WhcNMjUxMTEwMDE0NjE3WjAYMRYwFAYD VQQDEw02OTA4MDk2OS04NTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vN5mwrI/yTiwBvP98FcbI72mIKuEN2C/vjHNDgZNUmibGR3PRT6cvWBF30C mFtl8hPSOWAUCLsk+sErPCUsohsdR/ZyMG5FnWo1GTWx+OOsMNqCDVLAenuf7sSL xCEujZ2+9W63lMHS5jf1y/ZY/JD4EvVw6nVrxJPdp8WtoQD/VBXWUSKDfedXCNmS Q8FzxXk7pE+w+jLT5Of3EWRVsC2xVlAkOZGa49TrUavsjKypt0qyuH8sUHj5z2kC XGz1nE7YYiTEZVcS8QokiXJMnxge/oHh0BdThYsoZok9iTsL/+vWdRdUGzLTLKOM U/JNfkDNsGonjjJBN3EHDqTbkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXfl6rO npTMACI12h6izDFEOQbzMB8GA1UdIwQYMBaAFHJU3oy5szmUVUPYfo6wVvFT1R9Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE2Ni8zRTYxMjI5NDRD ODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9aUlZROWgtanJCVzhWUFZI MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsVGVqTG16T1pSVlE5aC1qckJXOFZQVkgxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODE2Ni8zRTYxMjI5NDRDODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9a UlZROWgtanJCVzhWUFZIMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd0qsimNT9KeQHWuLmRv0D6wCLxolT5CX6uUX+L/hSwh9u07CMpRC3 HluexYNNBc9P1+WPKpkjgrtm1RGCPpVT7u9Fgxhhu+xKFXNooHP6CREaZZN4fEVU vo9hFpq9idIunsMMxjJJBPJ3ouJacf66sYJIhtZM6m7O73RQ5gUZbSSCOgWf51Rd 6ESS3VI3FibO/j8NexdDZc3fWk+FpeTUmxuJDXjdgY6RJzuIzjA1S718e35NZvXv 5Pk8zmRZ31bgjQhuoBNAlmwlos6K1NubzUCuitXpMfa92sPZPohj+jg0KFSyyFRm NKyAkKt4j4efx8iwkSQGc+x7feSwGbi4 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:28 2025 by rpki-client