$ rpki-client -vvf rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft File: cRYXAC2fDJ62W07dYfehyR_NuD4.mft (raw, json) Hash identifier: 8MLSbWhv8yz1+qUawOb0BjAqumYqOT4y6F0tAvcbYcw= Subject key identifier: 21:5B:43:1C:3A:41:37:3C:4D:F6:55:B9:13:3D:06:16:7D:64:75:CA Authority key identifier: 71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E Certificate issuer: /CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft Manifest number: E1 Signing time: Mon 27 Oct 2025 07:39:34 +0000 Manifest this update: Mon 27 Oct 2025 07:39:33 +0000 Manifest next update: Mon 03 Nov 2025 07:39:33 +0000 Files and hashes: 1: cRYXAC2fDJ62W07dYfehyR_NuD4.crl (hash: WHR6xOCImF6KfDjI1inBUTHPbzTO24xM7DYWO88qhYM=) 2: D93EF164ABF311F0BBF66516C4F9AE02.roa (hash: NGI5hrHduSRPEthUQK06fSfxELn6PeFYPGY/eePELJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C6E7, serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Validity Not Before: Oct 27 07:39:33 2025 GMT Not After : Nov 3 07:39:33 2025 GMT Subject: CN=68ff21b6-47e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:64:ab:52:f6:e1:ff:74:7c:a4:91:ac:6c:55: ad:b6:77:cd:4b:6c:9c:a0:ab:3c:cf:6f:3b:04:18: 07:f8:c6:61:9f:91:04:d4:6f:cc:52:56:22:71:d8: a6:b2:d1:78:20:b9:84:b5:1a:0a:f9:36:1d:94:58: ae:bb:59:50:f4:be:4a:9e:9f:9c:1b:8b:83:29:d9: 37:5e:c0:67:24:6f:ed:e8:4a:9c:ba:dd:3b:fe:22: 1f:84:40:fd:0e:1c:ac:8d:36:99:84:5e:c0:d5:93: bb:c1:f4:56:1a:29:11:1f:40:a5:c1:b4:4c:22:f8: 7a:b0:9b:b6:bd:d1:d7:be:68:0a:9d:09:de:61:b3: f3:58:ff:85:c7:f7:15:3d:f4:db:80:2d:66:0d:e1: 52:76:e3:7e:6e:48:b9:af:2b:80:44:d2:92:cb:40: d4:c1:17:f5:f1:f2:16:e3:1b:c5:71:62:fd:67:55: 36:c6:fb:33:83:56:25:cb:ca:16:d3:11:ff:7d:78: 20:7d:31:65:9b:0e:ca:6b:4e:f7:a6:f7:bf:82:5a: 2a:cf:52:63:bb:10:f4:74:b7:0e:52:54:55:d4:02: 61:b8:e1:46:db:3b:93:ec:28:e7:20:19:e0:e6:13: 73:76:23:cc:47:ec:fc:61:53:0e:cb:23:6b:3b:18: ac:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5B:43:1C:3A:41:37:3C:4D:F6:55:B9:13:3D:06:16:7D:64:75:CA X509v3 Authority Key Identifier: keyid:71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6e:7f:b5:dc:bb:67:e5:1e:68:3a:05:af:55:73:b1:e2:3b: ed:af:c9:c8:86:96:f9:1d:28:6c:c0:b9:78:f4:92:09:3f:dd: ff:c4:11:e2:0b:fc:44:57:b8:46:9c:67:52:09:01:d7:51:c2: 48:01:f5:d6:2d:e4:a2:8f:83:0e:2d:99:f5:9a:ba:2d:6a:88: 95:db:9f:9d:a7:02:b6:37:dd:d4:d0:03:03:7f:20:b2:20:84: 9d:9b:81:f2:ca:7b:a1:6c:81:a1:36:1f:c3:08:4e:5f:1b:a0: 90:a3:03:fc:4b:96:15:7b:f3:73:14:d8:ca:c5:08:be:f6:a2: a5:31:ff:5d:b5:b3:8e:c5:87:50:ee:81:d5:ab:d3:08:38:39: 6d:0c:52:fe:9d:89:0f:c4:bc:a8:38:07:eb:5c:ec:8b:0c:a0: 88:ff:3b:88:7b:88:7e:73:13:3d:52:15:7f:68:0d:fc:d3:43: 1f:3b:a4:50:96:5c:65:88:11:ef:15:59:2e:6e:d4:86:2c:bb: a5:52:bc:4d:3d:6d:96:e8:4d:d9:ec:05:22:74:1a:68:b6:3f: 65:56:09:42:71:f9:8b:c0:52:f4:f0:ec:58:52:ff:ad:26:22: 29:2f:16:5d:23:18:cb:88:8a:56:c8:ea:00:26:55:cb:c3:73: 3a:41:1e:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM2RTcxMTAvBgNVBAUTKDcxMTYxNzAwMkQ5RjBDOUVCNjVCNEVERDYxRjdBMUM5 MUZDREI4M0UwHhcNMjUxMDI3MDczOTMzWhcNMjUxMTAzMDczOTMzWjAYMRYwFAYD VQQDEw02OGZmMjFiNi00N2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WSrUvbh/3R8pJGsbFWttnfNS2ycoKs8z287BBgH+MZhn5EE1G/MUlYicdim stF4ILmEtRoK+TYdlFiuu1lQ9L5Knp+cG4uDKdk3XsBnJG/t6Eqcut07/iIfhED9 DhysjTaZhF7A1ZO7wfRWGikRH0ClwbRMIvh6sJu2vdHXvmgKnQneYbPzWP+Fx/cV PfTbgC1mDeFSduN+bki5ryuARNKSy0DUwRf18fIW4xvFcWL9Z1U2xvszg1Yly8oW 0xH/fXggfTFlmw7Ka073pve/gloqz1JjuxD0dLcOUlRV1AJhuOFG2zuT7CjnIBng 5hNzdiPMR+z8YVMOyyNrOxis4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFbQxw6 QTc8TfZVuRM9BhZ9ZHXKMB8GA1UdIwQYMBaAFHEWFwAtnwyetltO3WH3ockfzbg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzZFNy9FNEEwQ0NBRTVE REQxMUVGODMwREY1NjFDNEY5QUUwMi9jUllYQUMyZkRKNjJXMDdkWWZlaHlSX051 RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NSWVhBQzJmREo2MlcwN2RZZmVoeVJfTnVENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzZFNy9FNEEwQ0NBRTVEREQxMUVGODMwREY1NjFDNEY5QUUwMi9jUllYQUMyZkRK NjJXMDdkWWZlaHlSX051RDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6bn+13Ltn5R5oOgWvVXOx4jvtr8nIhpb5HShswLl49JIJP93/xBHi C/xEV7hGnGdSCQHXUcJIAfXWLeSij4MOLZn1mrotaoiV25+dpwK2N93U0AMDfyCy IISdm4HyynuhbIGhNh/DCE5fG6CQowP8S5YVe/NzFNjKxQi+9qKlMf9dtbOOxYdQ 7oHVq9MIODltDFL+nYkPxLyoOAfrXOyLDKCI/zuIe4h+cxM9UhV/aA3800MfO6RQ llxliBHvFVkubtSGLLulUrxNPW2W6E3Z7AUidBpotj9lVglCcfmLwFL08OxYUv+t JiIpLxZdIxjLiIpWyOoAJlXLw3M6QR7H -----END CERTIFICATE-----Generated at Tue Oct 28 16:06:37 2025 by rpki-client