$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: ZugNr+lvNzIAux9jLP80jnvMzIdlvhbuSQaXZ9u6Fhk= Subject key identifier: F0:6B:90:BE:0F:EB:C2:A4:01:ED:6A:3D:11:35:9A:84:27:39:79:4D Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 06E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 06D5 Signing time: Sun 02 Nov 2025 22:01:58 +0000 Manifest this update: Sun 02 Nov 2025 22:01:57 +0000 Manifest next update: Sun 09 Nov 2025 22:01:57 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: abhIm1VszGDrvvUzxzs1ZqaH9GMwpUUeA7UUonsbCNg=) 2: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: GbZWi9q6UX7D+oMHHFTd4plXypkHkfSoO+ds1DieM3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Nov 2 22:01:57 2025 GMT Not After : Nov 9 22:01:57 2025 GMT Subject: CN=6907d4d5-d18e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8c:35:c6:74:ce:e3:b5:f6:ad:36:66:db:83: 41:6e:1d:c2:98:af:cb:c3:98:39:2a:44:fc:b1:45: f1:3f:b6:0e:5d:80:45:2b:61:db:3a:b9:6a:7b:b2: db:62:6e:cb:ea:ab:7a:dd:9a:f3:68:ae:bf:1e:23: 10:6a:3a:96:54:0b:df:d1:15:8a:bd:85:c7:61:05: 84:83:94:ec:65:8a:33:5e:83:7e:e9:29:d5:c7:9c: bf:1b:a9:1b:2f:12:06:8b:bf:52:db:b1:00:b0:24: c9:c0:7e:b3:84:bd:fe:a8:92:58:8d:82:6f:ee:a2: d4:d0:96:47:0b:d8:ba:66:fb:fc:c9:53:88:7b:07: 20:eb:13:31:8f:92:a1:cd:0b:22:2e:57:03:0d:72: 0c:b8:86:48:f0:55:f6:50:42:07:32:6f:08:20:9f: 90:54:64:99:e8:29:69:49:1a:c1:e9:e3:4c:c9:ac: 51:0c:4b:b6:80:fa:53:bc:e4:d9:97:35:fc:f7:15: 09:20:42:df:16:f9:4c:f6:21:24:3e:e5:57:74:54: 4b:7d:a2:c1:b3:a8:cd:39:00:7e:26:b8:f6:dd:81: 2c:a4:22:f7:b2:78:d1:c7:b7:52:a7:9d:da:5b:68: 3a:3f:e0:29:90:f5:cc:8a:8c:79:02:cf:07:38:f8: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6B:90:BE:0F:EB:C2:A4:01:ED:6A:3D:11:35:9A:84:27:39:79:4D X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a5:32:1a:46:97:43:8d:b2:c5:27:84:4b:27:d5:c3:3a:52: 08:bf:1d:87:7d:1c:ad:8c:bf:ba:5c:51:c3:f1:4f:d8:1f:9c: 39:23:29:15:86:72:36:d5:7b:07:8f:b8:ab:b1:f8:0f:7d:55: 02:13:64:cc:09:f1:3b:25:28:fc:44:4a:24:0d:2d:c4:5e:c3: 2b:66:5e:17:d8:a9:5f:de:c5:d8:69:85:fb:95:c1:23:1b:d5: ec:11:9b:3e:91:bd:4d:06:9b:9a:b1:1d:23:38:53:92:16:c3: e7:29:81:ac:89:03:bc:5b:00:03:60:94:88:9b:2d:97:85:65: e9:9f:82:69:4b:ba:02:7e:12:ed:69:f1:a1:82:bf:67:a3:2c: 2b:37:42:b6:4e:38:ea:6a:e2:bf:1c:9e:a3:cb:b9:f5:cb:f8: 6f:8e:81:d1:b4:85:fe:13:47:52:79:91:54:e9:1f:a6:bc:81: ea:18:71:db:83:f7:e6:2c:59:ca:73:01:5c:2e:bd:83:bc:93: 89:08:c7:b0:65:59:61:4b:ed:b4:e9:fc:00:95:be:53:49:21: 86:20:3d:7a:46:9b:a8:1d:4f:1a:dc:49:f9:40:ad:c9:01:c3: a0:02:8f:4e:d9:5b:8c:6f:64:2f:90:7b:1e:e7:7c:79:79:23: 6b:af:71:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUxMTAyMjIwMTU3WhcNMjUxMTA5MjIwMTU3WjAYMRYwFAYD VQQDEw02OTA3ZDRkNS1kMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIw1xnTO47X2rTZm24NBbh3CmK/Lw5g5KkT8sUXxP7YOXYBFK2HbOrlqe7Lb Ym7L6qt63ZrzaK6/HiMQajqWVAvf0RWKvYXHYQWEg5TsZYozXoN+6SnVx5y/G6kb LxIGi79S27EAsCTJwH6zhL3+qJJYjYJv7qLU0JZHC9i6Zvv8yVOIewcg6xMxj5Kh zQsiLlcDDXIMuIZI8FX2UEIHMm8IIJ+QVGSZ6ClpSRrB6eNMyaxRDEu2gPpTvOTZ lzX89xUJIELfFvlM9iEkPuVXdFRLfaLBs6jNOQB+Jrj23YEspCL3snjRx7dSp53a W2g6P+ApkPXMiox5As8HOPhHBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBrkL4P 68KkAe1qPRE1moQnOXlNMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBppTIaRpdDjbLFJ4RLJ9XDOlIIvx2HfRytjL+6XFHD8U/YH5w5IykV hnI21XsHj7irsfgPfVUCE2TMCfE7JSj8REokDS3EXsMrZl4X2Klf3sXYaYX7lcEj G9XsEZs+kb1NBpuasR0jOFOSFsPnKYGsiQO8WwADYJSImy2XhWXpn4JpS7oCfhLt afGhgr9noywrN0K2TjjqauK/HJ6jy7n1y/hvjoHRtIX+E0dSeZFU6R+mvIHqGHHb g/fmLFnKcwFcLr2DvJOJCMewZVlhS+206fwAlb5TSSGGID16RpuoHU8a3En5QK3J AcOgAo9O2VuMb2QvkHse53x5eSNrr3Fm -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:07 2025 by rpki-client