$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft File: C6HFLWJbsbnkQzglDaPWTYBoego.mft (raw, json) Hash identifier: GCdHLrAWuRa3e5XDj0dA37nzTZLzelXelfEnkqaAfoA= Subject key identifier: F6:43:7D:95:68:FC:6B:94:3C:65:59:33:A5:F2:95:2D:F4:0E:95:1A Authority key identifier: 0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A Certificate issuer: /CN=A9140E48/serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Certificate serial: 058C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft Manifest number: 0586 Signing time: Tue 04 Nov 2025 23:19:45 +0000 Manifest this update: Tue 04 Nov 2025 23:19:45 +0000 Manifest next update: Tue 11 Nov 2025 23:19:45 +0000 Files and hashes: 1: C6HFLWJbsbnkQzglDaPWTYBoego.crl (hash: /aDu0uiv2cdnhxN/YeRvvT0qmFhRY96fr0oq6kyHdzs=) 2: D5FFCB96F9D611EB8A9FCE34C4F9AE02.roa (hash: EHUc5Goa9nVY7SlTfmeqrv5ucf88hUBAHLp60F7iD50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1420 (0x58c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E48, serialNumber=0BA1C52D625BB1B9E44338250DA3D64D80687A0A Validity Not Before: Nov 4 23:19:45 2025 GMT Not After : Nov 11 23:19:45 2025 GMT Subject: CN=690a8a11-222a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:a5:28:bb:8f:67:ed:f1:23:c3:a9:6c:6b: 7e:b0:47:24:34:54:ef:a9:a7:ee:a1:38:7b:78:31: 32:34:b5:76:b3:35:0c:b9:f9:d2:5b:6d:3d:93:b6: 75:f3:2d:19:57:93:d0:a2:61:df:ba:ec:15:9e:cb: 88:01:8f:ee:52:92:b3:46:c5:9d:1a:6a:ea:35:28: de:4b:95:0c:3e:97:8e:fa:22:0d:e3:ec:d2:49:b5: 7f:4f:a0:f2:ca:16:a8:f2:01:91:b5:0e:f7:66:84: b8:3b:9a:43:5d:66:4f:cf:37:99:e8:c0:cf:e0:7e: 7d:2b:4a:2d:90:b0:8c:9e:b8:85:6a:62:6f:0e:4e: 9b:31:cf:61:14:a0:61:99:31:27:c4:2d:ea:02:82: 10:ca:f0:41:90:79:a8:93:9d:e5:98:a0:bd:c5:51: 35:1d:88:b5:b3:85:1c:6b:70:5c:8d:25:f0:80:5e: 07:09:86:e9:be:bc:57:68:0f:f6:11:0a:03:dc:69: 59:18:81:a2:c3:4d:c8:5f:1b:c4:dc:61:66:d1:a1: a7:a5:38:85:76:79:db:80:e6:4b:0b:c0:8c:ec:d2: f7:ae:5e:21:7d:55:f0:bf:5e:d5:c0:84:d8:28:73: fa:90:62:c8:f6:bb:93:c2:89:ed:00:00:fe:9a:3a: 9f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:43:7D:95:68:FC:6B:94:3C:65:59:33:A5:F2:95:2D:F4:0E:95:1A X509v3 Authority Key Identifier: keyid:0B:A1:C5:2D:62:5B:B1:B9:E4:43:38:25:0D:A3:D6:4D:80:68:7A:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6HFLWJbsbnkQzglDaPWTYBoego.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E48/50EFD876F9D411EB97948311C4F9AE02/C6HFLWJbsbnkQzglDaPWTYBoego.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:dd:c2:ed:69:0c:fa:23:e2:1a:d2:bf:11:0b:41:d0:46:b9: 82:d1:2b:42:e8:0d:0e:38:f1:ef:97:b9:91:ce:04:62:c0:a3: 1f:fe:f3:3d:c4:b4:8c:76:e6:32:fd:72:9b:ec:6f:70:8b:62: 37:c0:c7:1b:ae:5b:46:e9:9e:dd:ea:3e:58:e6:ac:67:d7:65: 95:0f:c4:6e:71:1f:f5:0d:e4:0b:c1:47:00:e2:03:16:e7:a0: 1a:d2:d6:21:5c:db:91:a9:b3:83:6b:bf:cb:a6:54:9c:14:7e: 69:36:db:08:92:85:4a:c2:41:95:18:88:46:33:6b:a4:c3:65: 01:47:db:83:bc:4c:e2:86:f7:a8:a5:01:76:d3:1c:79:a3:11: 4d:54:06:cb:10:80:1a:84:2f:46:35:13:b7:97:d8:3c:5c:83: 2f:51:9f:49:db:b9:9b:a7:3a:52:34:d0:9d:4e:2a:30:13:1b: a0:63:a1:37:1b:dc:77:d1:aa:36:bf:09:eb:39:48:cf:94:8c: d0:ef:a4:4f:d1:5f:0a:55:ff:ab:df:dd:1e:e8:ea:07:cc:c6: 75:2c:9d:1a:10:fa:7e:10:1c:f8:5c:51:44:5b:f9:6b:fd:5e: c6:cb:b9:bb:a3:4a:cc:f6:7a:2b:d2:92:e0:6e:c5:5c:e3:d8: a6:f9:b5:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDgxMTAvBgNVBAUTKDBCQTFDNTJENjI1QkIxQjlFNDQzMzgyNTBEQTNENjRE ODA2ODdBMEEwHhcNMjUxMTA0MjMxOTQ1WhcNMjUxMTExMjMxOTQ1WjAYMRYwFAYD VQQDEw02OTBhOGExMS0yMjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGylKLuPZ+3xI8OpbGt+sEckNFTvqafuoTh7eDEyNLV2szUMufnSW209k7Z1 8y0ZV5PQomHfuuwVnsuIAY/uUpKzRsWdGmrqNSjeS5UMPpeO+iIN4+zSSbV/T6Dy yhao8gGRtQ73ZoS4O5pDXWZPzzeZ6MDP4H59K0otkLCMnriFamJvDk6bMc9hFKBh mTEnxC3qAoIQyvBBkHmok53lmKC9xVE1HYi1s4Uca3BcjSXwgF4HCYbpvrxXaA/2 EQoD3GlZGIGiw03IXxvE3GFm0aGnpTiFdnnbgOZLC8CM7NL3rl4hfVXwv17VwITY KHP6kGLI9ruTwontAAD+mjqfsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZDfZVo /GuUPGVZM6XylS30DpUaMB8GA1UdIwQYMBaAFAuhxS1iW7G55EM4JQ2j1k2AaHoK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0OC81MEVGRDg3NkY5 RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNibmtRemdsRGFQV1RZQm9l Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2SEZMV0pic2Jua1F6Z2xEYVBXVFlCb2Vnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0OC81MEVGRDg3NkY5RDQxMUVCOTc5NDgzMTFDNEY5QUUwMi9DNkhGTFdKYnNi bmtRemdsRGFQV1RZQm9lZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi3cLtaQz6I+Ia0r8RC0HQRrmC0StC6A0OOPHvl7mRzgRiwKMf/vM9 xLSMduYy/XKb7G9wi2I3wMcbrltG6Z7d6j5Y5qxn12WVD8RucR/1DeQLwUcA4gMW 56Aa0tYhXNuRqbODa7/LplScFH5pNtsIkoVKwkGVGIhGM2ukw2UBR9uDvEzihveo pQF20xx5oxFNVAbLEIAahC9GNRO3l9g8XIMvUZ9J27mbpzpSNNCdTiowExugY6E3 G9x30ao2vwnrOUjPlIzQ76RP0V8KVf+r390e6OoHzMZ1LJ0aEPp+EBz4XFFEW/lr /V7Gy7m7o0rM9nor0pLgbsVc49im+bXO -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:15 2025 by rpki-client