$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: YJyTaS4nDdD6D9rDca4L6JOHOu2GVxgJn89zLqHBSRA= Subject key identifier: 18:7A:B2:B7:8D:B1:4E:A6:13:CA:87:C5:41:F9:E5:FD:2F:81:F1:AE Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 6B Signing time: Sun 19 Oct 2025 10:21:50 +0000 Manifest this update: Sun 19 Oct 2025 10:21:50 +0000 Manifest next update: Sun 26 Oct 2025 10:21:50 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: 8SIkfIOOrQWCkYXOeUc9LZY76mVPmkk1GmBjiCYKFJw=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: S0xpbapYuUp7EVUcnIqHkGByKZFeAz8MROSbzxDfhw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Oct 19 10:21:50 2025 GMT Not After : Oct 26 10:21:50 2025 GMT Subject: CN=68f4bbbe-5262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:c3:4d:74:7d:0a:cd:d6:7c:d7:d6:7a:d4: ef:ae:14:ee:8d:d6:69:c9:f5:bb:79:89:49:1e:3f: d2:57:fe:38:38:2f:76:3c:6b:07:6a:b1:5b:45:d2: ed:4c:19:2f:bb:39:a7:cf:10:24:a0:34:f5:17:93: bc:b9:66:f2:1b:cb:28:c2:d4:2e:55:25:bb:0b:14: 2b:6d:f4:9b:2b:91:3e:53:37:79:26:f4:f8:6c:9f: ab:8e:78:f9:c1:7b:1e:cc:1b:76:a1:cd:54:26:e8: 87:2f:06:34:a9:3d:2e:15:d4:11:a8:67:35:f3:47: ac:0b:2e:f5:f2:13:d2:7f:ed:62:57:65:4d:fc:2d: 20:38:2f:da:1b:d6:a0:a6:66:79:04:7c:38:e6:97: 09:92:fb:fd:0f:ac:15:92:b0:6c:8d:61:8b:31:f3: 02:f7:89:62:55:cb:0d:d4:18:00:81:eb:19:36:ed: c9:b2:14:36:d5:3c:40:24:73:f8:cb:ff:33:c4:58: 97:bc:ff:bd:c9:d4:3f:a2:6c:35:55:6e:b8:c0:5f: b0:3d:d7:37:2a:bf:f3:95:c3:9d:36:44:9c:ee:97: 69:4e:f6:17:e5:12:2f:70:29:6d:83:2b:c8:77:fc: de:9f:86:d9:a6:72:a7:ba:ad:03:bd:86:a4:a5:63: 69:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7A:B2:B7:8D:B1:4E:A6:13:CA:87:C5:41:F9:E5:FD:2F:81:F1:AE X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:17:d3:a0:27:3f:5f:7a:e0:ff:42:fc:6a:86:48:82:e1:1f: 03:b5:9b:91:24:df:b2:58:92:76:fa:79:ae:0e:a1:5f:9a:78: dd:a7:13:0e:fa:d0:17:ad:b4:4b:7a:a6:d9:58:f4:3a:b8:89: 54:46:9c:cf:7b:5a:8b:7b:44:32:68:71:e9:c4:d9:5b:f8:a3: 1d:c8:79:1f:08:0e:34:e1:9a:ff:b6:2c:72:3d:cc:9b:23:9d: 3f:cd:f8:54:e4:35:d5:50:f1:ea:77:d0:bb:7e:24:e4:ed:99: 08:1a:53:22:41:18:da:f3:e4:c4:6a:f9:78:38:f4:28:31:e1: a5:72:23:7b:2d:da:51:f8:35:6b:15:73:81:5a:ac:64:89:58: 30:28:44:b3:b5:06:10:c2:bb:de:02:18:23:d9:0f:75:12:fb: 1d:5c:d4:49:bb:64:fa:ec:b9:33:ba:3d:32:d3:28:82:15:b9: bf:3a:96:0f:e4:84:bc:f4:6b:a0:31:93:3e:82:d3:98:51:f4: 07:b6:9c:22:05:7a:63:04:cf:e8:6b:c8:67:60:b8:03:42:0e: 91:79:7d:db:5d:41:9f:db:9e:42:b2:99:8a:c9:a3:04:d9:df: 5a:a7:1a:ff:bf:ed:b4:ce:53:42:3d:7e:2d:55:c4:26:cd:d5: a3:d6:48:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTEwMTkxMDIxNTBaFw0yNTEwMjYxMDIxNTBaMBgxFjAUBgNV BAMTDTY4ZjRiYmJlLTUyNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2isNNdH0KzdZ819Z61O+uFO6N1mnJ9bt5iUkeP9JX/jg4L3Y8awdqsVtF0u1M GS+7OafPECSgNPUXk7y5ZvIbyyjC1C5VJbsLFCtt9JsrkT5TN3km9Phsn6uOePnB ex7MG3ahzVQm6IcvBjSpPS4V1BGoZzXzR6wLLvXyE9J/7WJXZU38LSA4L9ob1qCm ZnkEfDjmlwmS+/0PrBWSsGyNYYsx8wL3iWJVyw3UGACB6xk27cmyFDbVPEAkc/jL /zPEWJe8/73J1D+ibDVVbrjAX7A91zcqv/OVw502RJzul2lO9hflEi9wKW2DK8h3 /N6fhtmmcqe6rQO9hqSlY2m3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGHqyt42x TqYTyofFQfnl/S+B8a4wHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGEX06AnP1964P9C/GqGSILhHwO1m5Ek37JYknb6ea4OoV+aeN2nEw76 0BettEt6ptlY9Dq4iVRGnM97Wot7RDJocenE2Vv4ox3IeR8IDjThmv+2LHI9zJsj nT/N+FTkNdVQ8ep30Lt+JOTtmQgaUyJBGNrz5MRq+Xg49Cgx4aVyI3st2lH4NWsV c4FarGSJWDAoRLO1BhDCu94CGCPZD3US+x1c1Em7ZPrsuTO6PTLTKIIVub86lg/k hLz0a6Axkz6C05hR9Ae2nCIFemMEz+hryGdguANCDpF5fdtdQZ/bnkKymYrJowTZ 31qnGv+/7bTOU0I9fi1VxCbN1aPWSMQ= -----END CERTIFICATE-----Generated at Mon Oct 20 21:08:40 2025 by rpki-client