$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft File: K6PqbAvX8YRghmD5ogTlEYZaAN0.mft (raw, json) Hash identifier: /31js8mlo6AzsMwfcrHR19PGbk3c1hPnKjx4ZmvKGsI= Subject key identifier: 0A:5E:09:40:7E:CE:02:2B:74:41:D3:E3:B6:A2:D8:E4:6C:45:87:EF Authority key identifier: 2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD Certificate issuer: /CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Certificate serial: 096E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft Manifest number: 0967 Signing time: Tue 04 Nov 2025 20:12:13 +0000 Manifest this update: Tue 04 Nov 2025 20:12:12 +0000 Manifest next update: Tue 11 Nov 2025 20:12:12 +0000 Files and hashes: 1: K6PqbAvX8YRghmD5ogTlEYZaAN0.crl (hash: rSBV26YQDWF1gVPgwyk08eUpP7tlqriFykyIQ1O7m0g=) 2: 33F713A8A3CF11EAA31D8C20C4F9AE02.roa (hash: U+2Kae/qqfcPAGDUNj2rc7ly1La28a/4nOUamtVuvAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2414 (0x96e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1E8B, serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Validity Not Before: Nov 4 20:12:12 2025 GMT Not After : Nov 11 20:12:12 2025 GMT Subject: CN=690a5e1d-e4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:70:31:0e:c2:87:cb:70:c3:af:5d:8d:2f:70: 4d:69:13:b7:e4:f7:53:f9:f7:87:02:ee:53:32:59: d1:61:83:cf:7b:a6:db:1e:29:c4:84:a3:1b:a8:d0: 42:9e:8b:94:50:87:3b:3c:d6:5f:cd:f7:93:df:4f: 31:5a:88:f0:c5:5d:27:16:6d:d2:04:c0:fd:c6:73: 7d:03:66:2c:b1:1f:ef:47:58:42:98:79:14:04:80: db:2d:d5:73:6c:40:4d:a8:f8:51:a2:db:33:5b:73: 0b:02:ab:19:2f:b6:73:b9:ca:91:dc:ee:80:20:84: e5:d6:7d:55:f5:3b:74:62:4d:43:75:27:ab:ec:5d: af:d7:c1:3a:58:f0:66:d9:62:79:a5:58:5c:1a:3b: 13:78:d1:b3:11:3d:06:6d:76:3f:87:29:84:43:20: ea:dc:93:d1:fd:24:e2:4a:71:dc:f9:32:87:29:e3: f0:cb:32:1a:1b:87:8a:c1:1a:0b:91:ce:e4:4d:fc: d8:f3:a4:49:c4:20:fc:f8:4e:53:87:15:a6:b7:09: cb:c4:9d:f0:88:5b:ff:bb:0a:f7:3f:de:99:d5:ec: d3:c9:88:b6:4b:67:ab:76:21:23:21:d4:ed:ed:40: 8a:6f:51:9d:f1:5f:e6:26:ec:87:21:14:b9:d4:c3: ba:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:5E:09:40:7E:CE:02:2B:74:41:D3:E3:B6:A2:D8:E4:6C:45:87:EF X509v3 Authority Key Identifier: keyid:2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:eb:53:c1:85:d4:2b:5f:59:bf:eb:c9:c3:b3:69:4c:f7:bd: d4:b8:4c:71:2d:49:e6:d1:9b:0f:0d:13:87:13:3a:bb:87:fb: 80:a6:c1:16:f9:ae:3d:a6:b8:32:f5:04:8c:09:8d:ac:1d:dd: 2f:23:fa:bf:cc:8a:49:dc:c6:20:4d:7e:a7:ad:e5:eb:3a:95: 3b:40:17:2d:49:86:64:21:56:f0:32:f2:1f:8b:8d:6c:e7:53: af:0b:67:30:ae:17:5d:f5:58:31:c4:4d:db:91:1c:a3:00:96: f8:1b:b0:35:dc:b5:a6:fb:39:f5:08:86:b4:4f:95:ef:76:dd: cb:72:f5:70:85:5c:bd:d4:9f:64:bf:3f:1f:88:d1:cb:a0:10: c2:c5:a0:ba:e5:4f:62:1e:61:87:02:6f:09:00:f5:01:bb:c0: 4f:0f:a0:8c:1e:b8:dc:45:89:bc:ae:dc:97:50:f0:43:e4:62: ba:b9:0b:13:87:ad:1e:e0:a2:3d:db:b8:50:44:e7:47:33:fe: 59:68:07:a0:87:f5:0b:2c:8c:0e:b4:33:ac:24:7f:f5:5b:e6: 93:ce:ac:15:57:32:c3:5e:25:29:60:7d:dd:9b:69:e9:7c:80: 9e:be:d3:c2:d6:59:55:12:83:9d:da:16:b0:1c:bd:93:26:e2: 61:80:2c:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFFOEIxMTAvBgNVBAUTKDJCQTNFQTZDMEJEN0YxODQ2MDg2NjBGOUEyMDRFNTEx ODY1QTAwREQwHhcNMjUxMTA0MjAxMjEyWhcNMjUxMTExMjAxMjEyWjAYMRYwFAYD VQQDEw02OTBhNWUxZC1lNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HAxDsKHy3DDr12NL3BNaRO35PdT+feHAu5TMlnRYYPPe6bbHinEhKMbqNBC nouUUIc7PNZfzfeT308xWojwxV0nFm3SBMD9xnN9A2YssR/vR1hCmHkUBIDbLdVz bEBNqPhRotszW3MLAqsZL7ZzucqR3O6AIITl1n1V9Tt0Yk1DdSer7F2v18E6WPBm 2WJ5pVhcGjsTeNGzET0GbXY/hymEQyDq3JPR/STiSnHc+TKHKePwyzIaG4eKwRoL kc7kTfzY86RJxCD8+E5ThxWmtwnLxJ3wiFv/uwr3P96Z1ezTyYi2S2erdiEjIdTt 7UCKb1Gd8V/mJuyHIRS51MO6cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApeCUB+ zgIrdEHT47ai2ORsRYfvMB8GA1UdIwQYMBaAFCuj6mwL1/GEYIZg+aIE5RGGWgDd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUU4Qi84MDdERkRBMEEz Q0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZUmdobUQ1b2dUbEVZWmFB TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s2UHFiQXZYOFlSZ2htRDVvZ1RsRVlaYUFOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUU4Qi84MDdERkRBMEEzQ0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZ UmdobUQ1b2dUbEVZWmFBTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx61PBhdQrX1m/68nDs2lM973UuExxLUnm0ZsPDROHEzq7h/uApsEW +a49prgy9QSMCY2sHd0vI/q/zIpJ3MYgTX6nreXrOpU7QBctSYZkIVbwMvIfi41s 51OvC2cwrhdd9VgxxE3bkRyjAJb4G7A13LWm+zn1CIa0T5Xvdt3LcvVwhVy91J9k vz8fiNHLoBDCxaC65U9iHmGHAm8JAPUBu8BPD6CMHrjcRYm8rtyXUPBD5GK6uQsT h60e4KI927hQROdHM/5ZaAegh/ULLIwOtDOsJH/1W+aTzqwVVzLDXiUpYH3dm2np fICevtPC1llVEoOd2hawHL2TJuJhgCyB -----END CERTIFICATE-----Generated at Wed Nov 5 18:00:33 2025 by rpki-client