$ rpki-client -vvf rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft File: DB8k6eYChXae9hTPqBPuUayemP4.mft (raw, json) Hash identifier: xG+oZa7SbpKBsjrFf9znJMkK5EOEDnc1u+mTi1AH8i4= Subject key identifier: 79:CE:C3:10:E1:2F:93:84:4B:F0:C4:7B:F8:C7:D1:D6:9B:E7:8A:3D Authority key identifier: 0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE Certificate issuer: /CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Certificate serial: 06B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft Manifest number: 06AB Signing time: Tue 04 Nov 2025 22:19:55 +0000 Manifest this update: Tue 04 Nov 2025 22:19:54 +0000 Manifest next update: Tue 11 Nov 2025 22:19:54 +0000 Files and hashes: 1: DB8k6eYChXae9hTPqBPuUayemP4.crl (hash: s35tPe65exsl875i3v5LCPi7QfmoXOm7xrdhBdNBIIQ=) 2: 26F67E0A842011EB8A4C635AC4F9AE02.roa (hash: /0E6jZ4+7bqUYrWrcsn+EsmkQL/Ndn9BT+YgQs7TIDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E754F, serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Validity Not Before: Nov 4 22:19:54 2025 GMT Not After : Nov 11 22:19:54 2025 GMT Subject: CN=690a7c0a-dc76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d6:87:3f:6d:2c:88:ca:6b:ae:d9:16:63:dc: 86:c9:95:38:c1:93:d8:7c:2f:ca:56:97:b8:9f:3e: 4f:f6:2c:fb:53:2d:f0:33:f2:3a:56:22:72:eb:bd: 25:e4:cd:e3:19:c2:31:b9:43:5b:42:23:b3:e9:5b: 72:99:51:19:78:85:a4:60:23:30:14:ac:80:e2:1e: 62:57:87:6b:9f:64:49:a4:d5:38:cc:df:36:40:be: 68:a5:57:61:7f:61:3f:89:36:71:7e:d1:47:e6:a3: 8e:c2:3f:f9:90:ff:c7:5b:40:36:b3:c8:9d:86:e6: d2:23:4c:b3:3b:21:01:83:a9:2d:81:e7:7f:1b:fd: b4:e9:b6:46:10:79:6d:ea:dc:67:e2:d7:fd:96:5a: e1:de:00:58:0f:62:60:11:18:97:67:08:b3:fc:43: 2f:63:26:86:8e:79:a5:5f:46:3e:b5:30:c2:0a:2a: 21:37:8b:70:92:17:d6:3d:78:04:04:41:5d:b0:e9: 8e:6e:3a:95:02:75:cc:be:ed:d0:47:cc:bb:fb:70: 85:41:15:b9:4b:92:7e:e3:d7:75:01:74:e2:82:80: d3:82:9b:61:70:01:32:97:9f:44:e8:25:16:9c:8c: d9:0b:10:64:09:b5:97:00:e3:c3:a2:c7:d6:82:8c: ab:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CE:C3:10:E1:2F:93:84:4B:F0:C4:7B:F8:C7:D1:D6:9B:E7:8A:3D X509v3 Authority Key Identifier: keyid:0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:cb:2c:4e:16:36:6d:ee:ea:56:4e:93:d2:a2:ae:6b:35:ab: 88:7e:d7:8f:5f:ff:34:7f:97:a6:35:86:0d:d4:12:f9:38:33: af:f9:3b:2f:45:e2:8c:bb:4f:aa:09:9a:61:54:96:83:00:ba: b3:44:70:58:b4:7f:f8:ea:72:87:e9:77:e4:e6:5a:86:68:67: 5f:ff:c6:20:64:0f:81:10:cf:8a:d2:e0:0c:0f:62:da:94:db: ad:8e:4c:63:0e:50:89:f7:ad:2c:0d:1b:c5:d7:9e:40:48:f5: 92:05:31:19:da:75:40:fe:0a:e5:32:b7:92:e5:a1:33:1b:e8: 4a:98:ea:b6:e9:80:c8:bf:70:14:b4:fa:86:f6:9a:b6:f0:cf: 8d:ba:80:2a:84:67:e9:1d:3c:07:a7:49:85:b4:47:aa:77:27: 32:78:a4:ac:3d:0f:8f:6e:33:d8:07:61:bc:02:9a:fc:70:1e: 0a:89:04:96:28:61:48:86:5b:8c:1f:8e:56:97:83:ec:a9:a5: b5:9d:cb:71:eb:92:b0:df:3c:39:4c:51:64:e1:7e:52:eb:bb: 90:96:b3:a7:b9:1f:c5:b2:c2:ad:11:69:57:8c:ef:9c:73:e8: 59:55:bc:cd:19:9a:84:31:e5:d6:2e:e9:4e:59:86:81:37:c5: 29:28:5d:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NEYxMTAvBgNVBAUTKDBDMUYyNEU5RTYwMjg1NzY5RUY2MTRDRkE4MTNFRTUx QUM5RTk4RkUwHhcNMjUxMTA0MjIxOTU0WhcNMjUxMTExMjIxOTU0WjAYMRYwFAYD VQQDEw02OTBhN2MwYS1kYzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39aHP20siMprrtkWY9yGyZU4wZPYfC/KVpe4nz5P9iz7Uy3wM/I6ViJy670l 5M3jGcIxuUNbQiOz6VtymVEZeIWkYCMwFKyA4h5iV4drn2RJpNU4zN82QL5opVdh f2E/iTZxftFH5qOOwj/5kP/HW0A2s8idhubSI0yzOyEBg6ktged/G/206bZGEHlt 6txn4tf9llrh3gBYD2JgERiXZwiz/EMvYyaGjnmlX0Y+tTDCCiohN4twkhfWPXgE BEFdsOmObjqVAnXMvu3QR8y7+3CFQRW5S5J+49d1AXTigoDTgpthcAEyl59E6CUW nIzZCxBkCbWXAOPDosfWgoyrsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnOwxDh L5OES/DEe/jH0dab54o9MB8GA1UdIwQYMBaAFAwfJOnmAoV2nvYUz6gT7lGsnpj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU0Ri9CNDUyQkY4Qzg0 MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hYYWU5aFRQcUJQdVVheWVt UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RCOGs2ZVlDaFhhZTloVFBxQlB1VWF5ZW1QNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzU0Ri9CNDUyQkY4Qzg0MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hY YWU5aFRQcUJQdVVheWVtUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAByyxOFjZt7upWTpPSoq5rNauIftePX/80f5emNYYN1BL5ODOv+Tsv ReKMu0+qCZphVJaDALqzRHBYtH/46nKH6Xfk5lqGaGdf/8YgZA+BEM+K0uAMD2La lNutjkxjDlCJ960sDRvF155ASPWSBTEZ2nVA/grlMreS5aEzG+hKmOq26YDIv3AU tPqG9pq28M+NuoAqhGfpHTwHp0mFtEeqdycyeKSsPQ+PbjPYB2G8Apr8cB4KiQSW KGFIhluMH45Wl4PsqaW1nctx65Kw3zw5TFFk4X5S67uQlrOnuR/FssKtEWlXjO+c c+hZVbzNGZqEMeXWLulOWYaBN8UpKF1z -----END CERTIFICATE-----Generated at Wed Nov 5 01:27:19 2025 by rpki-client