$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: a6dtDut573f/wc02oid8Zkx3N1+hMKGSE9AD/LjwFOE= Subject key identifier: CE:2C:D8:1F:80:B8:6E:03:20:07:3B:AA:BB:81:C7:31:36:FE:2F:3A Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C46 Signing time: Tue 04 Nov 2025 18:47:24 +0000 Manifest this update: Tue 04 Nov 2025 18:47:23 +0000 Manifest next update: Tue 11 Nov 2025 18:47:23 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: kHsue/l7L8PHFzjFLxyoHl6l5dlmCzZygMRH17O0pj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Nov 4 18:47:23 2025 GMT Not After : Nov 11 18:47:23 2025 GMT Subject: CN=690a4a3b-16b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cd:d1:69:d8:c8:a8:06:e7:94:15:9b:f6:3e: e9:3a:f6:bf:60:86:bb:8f:d2:03:90:71:5b:47:46: 06:2b:22:cf:8a:19:7b:79:c5:61:11:d9:c3:1d:5e: 21:f9:d2:c0:22:43:30:56:af:f5:3d:1f:de:e1:44: 9d:bd:f1:b1:7a:f3:90:31:9c:a4:1c:d1:a1:76:ac: 0d:d7:6b:08:b3:54:8e:dd:28:ad:5c:00:ad:58:9b: 49:74:82:1b:76:36:61:3a:9a:1f:b8:7d:d4:74:af: 4a:0d:38:06:b8:85:37:98:10:0b:0f:1f:70:5d:0d: 2d:1c:8f:0a:32:72:f3:ef:c1:be:c5:b5:8d:84:06: 95:57:c4:e2:6b:b1:79:a4:cd:82:e8:69:77:d4:63: 9b:b3:43:b2:9e:c8:11:32:e2:96:8f:e7:a5:01:12: e3:20:60:20:75:cf:b9:56:fe:5e:ea:a9:38:c6:91: f0:0c:ed:0c:e4:0b:97:a5:2f:a6:f9:75:2e:ec:f5: f7:de:54:e5:2f:07:89:fb:52:05:79:8d:8f:8a:8c: f3:6f:09:8a:1d:3a:51:44:17:64:8e:2b:74:54:4d: 84:cd:4c:67:28:cb:d4:33:77:f1:59:ad:07:37:c6: 51:22:e8:20:e0:19:64:26:eb:7c:dd:8a:9a:73:a6: e8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2C:D8:1F:80:B8:6E:03:20:07:3B:AA:BB:81:C7:31:36:FE:2F:3A X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:48:5b:1c:c9:44:26:26:2a:86:30:c5:df:5c:cd:16:8b:99: c6:c7:42:7e:4d:77:6d:74:23:42:e3:f0:b9:c6:ab:d3:42:42: 7c:55:39:d9:32:b6:07:3a:51:72:e9:f3:e4:86:6f:29:c9:f9: a9:b4:74:45:02:9b:c8:81:a1:ff:9d:5b:93:54:4b:f7:1e:59: 77:2e:ef:fe:6a:b0:cc:bf:e5:cc:21:d3:b9:06:22:c0:9f:ab: cc:5e:4b:73:91:d3:07:e0:bb:71:46:49:bd:55:85:bb:22:1b: fe:6f:2e:db:f6:78:37:36:d4:71:d8:a9:08:04:ac:b1:cf:59: fd:15:32:3a:ef:1a:b9:5e:89:31:c5:7a:3d:8e:46:e0:eb:eb: e7:27:b2:3a:42:8e:17:5d:df:2f:90:b0:82:8a:b0:f3:4c:73: 8d:6f:db:05:aa:e5:9a:00:8f:f1:eb:33:87:f3:8a:1d:be:23: 07:22:3d:70:09:cc:45:a5:30:4c:9d:64:e2:52:68:1f:9f:20: 93:a8:07:62:b6:cc:f6:f7:09:85:fe:f5:97:41:4d:42:b2:5d: 89:60:89:d8:75:40:9c:ea:c9:b8:28:5b:ed:e2:49:b4:6d:28: c1:be:1c:cf:32:56:19:48:f3:fe:c5:9c:89:75:62:38:19:46: c1:3c:e7:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUxMTA0MTg0NzIzWhcNMjUxMTExMTg0NzIzWjAYMRYwFAYD VQQDEw02OTBhNGEzYi0xNmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs3RadjIqAbnlBWb9j7pOva/YIa7j9IDkHFbR0YGKyLPihl7ecVhEdnDHV4h +dLAIkMwVq/1PR/e4USdvfGxevOQMZykHNGhdqwN12sIs1SO3SitXACtWJtJdIIb djZhOpofuH3UdK9KDTgGuIU3mBALDx9wXQ0tHI8KMnLz78G+xbWNhAaVV8Tia7F5 pM2C6Gl31GObs0OynsgRMuKWj+elARLjIGAgdc+5Vv5e6qk4xpHwDO0M5AuXpS+m +XUu7PX33lTlLweJ+1IFeY2PiozzbwmKHTpRRBdkjit0VE2EzUxnKMvUM3fxWa0H N8ZRIugg4BlkJut83Yqac6bouwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4s2B+A uG4DIAc7qruBxzE2/i86MB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaSFscyUQmJiqGMMXfXM0Wi5nGx0J+TXdtdCNC4/C5xqvTQkJ8VTnZ MrYHOlFy6fPkhm8pyfmptHRFApvIgaH/nVuTVEv3Hll3Lu/+arDMv+XMIdO5BiLA n6vMXktzkdMH4LtxRkm9VYW7Ihv+by7b9ng3NtRx2KkIBKyxz1n9FTI67xq5Xokx xXo9jkbg6+vnJ7I6Qo4XXd8vkLCCirDzTHONb9sFquWaAI/x6zOH84odviMHIj1w CcxFpTBMnWTiUmgfnyCTqAditsz29wmF/vWXQU1Csl2JYInYdUCc6sm4KFvt4km0 bSjBvhzPMlYZSPP+xZyJdWI4GUbBPOeV -----END CERTIFICATE-----Generated at Wed Nov 5 11:33:46 2025 by rpki-client