$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: Yyh7/D0OsmYU7pXjBfKPOO9f8SJitS7lEPu4+Axx0Kc= Subject key identifier: 6F:8B:ED:ED:23:53:B3:00:2F:63:6C:D3:AD:35:AE:AE:C3:FB:C2:42 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 062B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0626 Signing time: Tue 04 Nov 2025 22:51:01 +0000 Manifest this update: Tue 04 Nov 2025 22:51:01 +0000 Manifest next update: Tue 11 Nov 2025 22:51:01 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: 9lxTaNB3Bhdi3avD/YEqTrKK/eHEGKRIWAa+CYZJtLM=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Nov 4 22:51:01 2025 GMT Not After : Nov 11 22:51:01 2025 GMT Subject: CN=690a8355-54cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e1:7a:5f:c6:d9:49:1c:07:c2:d1:10:1a:77: a2:5e:9f:4d:de:ba:1a:47:e1:b0:a1:e7:9a:17:c6: 0b:95:57:4b:10:3e:76:6d:b2:4e:fe:a2:da:66:fe: d4:14:cf:4b:d0:f4:b7:93:6f:72:1a:bb:ab:bc:1e: a5:10:77:bf:5d:a6:36:10:b8:66:66:9e:a6:42:08: f3:ad:90:84:59:2e:28:63:03:2f:11:5d:4c:a4:55: b7:a1:dd:ac:d0:6a:20:34:53:8f:99:89:f7:7f:8b: db:ce:52:cf:19:95:d6:37:81:8b:6e:53:66:a4:2c: 2d:fa:41:0b:b4:f8:bf:1c:71:f6:c9:7a:c7:43:c5: 5c:38:90:44:93:6c:bf:47:9e:86:e6:34:eb:68:1e: 24:46:b4:ea:af:0d:c0:c4:1e:93:e0:ee:f2:24:22: c9:33:45:3c:35:37:68:ca:30:10:43:b4:8e:90:2f: 4d:95:64:82:c9:95:92:88:41:1c:9c:88:8d:5e:89: ec:41:51:97:78:18:7c:02:7c:20:7b:47:38:74:48: 8c:82:30:cd:f5:39:e9:52:48:d6:36:ea:5e:79:8f: f8:f2:ba:71:8e:4b:25:f9:4a:69:a9:7a:e3:07:8b: f8:f8:99:63:f0:49:58:08:64:60:ed:3f:fd:86:da: a2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8B:ED:ED:23:53:B3:00:2F:63:6C:D3:AD:35:AE:AE:C3:FB:C2:42 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:5a:2d:32:0b:73:50:fb:39:aa:2f:18:1c:82:75:2c:c2:19: 27:d1:e7:24:ae:04:36:12:67:e6:83:a6:b6:ca:6f:22:26:61: 70:ba:9a:7a:79:97:3e:80:bc:df:30:16:83:c5:fa:b7:bc:a3: bb:39:90:45:2d:a9:ff:8d:ff:bd:9c:53:fb:db:89:9a:99:67: 80:37:90:c4:1d:b5:bc:ba:b1:e2:f2:69:0a:63:64:6d:5b:6d: 46:33:b5:d8:b8:bc:68:4d:5e:ba:00:d6:c9:88:f1:0a:b1:9b: 83:d3:75:f0:82:c0:82:a1:a7:20:cd:a9:eb:fe:ac:bb:af:b9: f0:0e:d0:02:24:29:a3:7f:0c:9b:aa:bc:92:dd:1a:b2:87:ac: 7e:41:2c:3a:1d:e7:ce:17:73:fc:c9:03:e0:24:d9:f7:94:c7: 2f:e6:3d:81:75:50:5e:62:af:17:7e:56:8c:60:62:5b:f4:2a: 82:9c:20:cc:02:ea:ac:47:32:27:5b:f3:19:85:aa:f1:96:39: 5a:a4:c9:4b:b6:ce:aa:7f:43:fc:85:17:1f:72:47:c9:32:5a: 7b:37:b8:ca:87:4a:93:ac:99:ab:d8:16:f3:40:4f:1d:2e:28: 82:40:5d:f8:35:52:94:12:a0:b0:6e:80:72:35:4d:de:e5:3f: 15:26:6d:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUxMTA0MjI1MTAxWhcNMjUxMTExMjI1MTAxWjAYMRYwFAYD VQQDEw02OTBhODM1NS01NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuF6X8bZSRwHwtEQGneiXp9N3roaR+GwoeeaF8YLlVdLED52bbJO/qLaZv7U FM9L0PS3k29yGrurvB6lEHe/XaY2ELhmZp6mQgjzrZCEWS4oYwMvEV1MpFW3od2s 0GogNFOPmYn3f4vbzlLPGZXWN4GLblNmpCwt+kELtPi/HHH2yXrHQ8VcOJBEk2y/ R56G5jTraB4kRrTqrw3AxB6T4O7yJCLJM0U8NTdoyjAQQ7SOkC9NlWSCyZWSiEEc nIiNXonsQVGXeBh8Anwge0c4dEiMgjDN9TnpUkjWNupeeY/48rpxjksl+UppqXrj B4v4+Jlj8ElYCGRg7T/9htqiywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+L7e0j U7MAL2Ns0601rq7D+8JCMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXWi0yC3NQ+zmqLxgcgnUswhkn0eckrgQ2Emfmg6a2ym8iJmFwupp6 eZc+gLzfMBaDxfq3vKO7OZBFLan/jf+9nFP724mamWeAN5DEHbW8urHi8mkKY2Rt W21GM7XYuLxoTV66ANbJiPEKsZuD03XwgsCCoacgzanr/qy7r7nwDtACJCmjfwyb qryS3Rqyh6x+QSw6HefOF3P8yQPgJNn3lMcv5j2BdVBeYq8XflaMYGJb9CqCnCDM AuqsRzInW/MZharxljlapMlLts6qf0P8hRcfckfJMlp7N7jKh0qTrJmr2BbzQE8d LiiCQF34NVKUEqCwboByNU3e5T8VJm37 -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:45 2025 by rpki-client