$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: /cOREhMU8RmUmUzXUUxo21kGObB7l+tCws0NVpRyLXI= Subject key identifier: 81:EE:A9:35:35:E9:EE:D4:6A:B9:B7:74:E2:F3:96:23:34:54:A6:8D Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 07CC Signing time: Sat 18 Oct 2025 22:29:58 +0000 Manifest this update: Sat 18 Oct 2025 22:29:57 +0000 Manifest next update: Sat 25 Oct 2025 22:29:57 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: TT7s/AL6D7dAGTBaV5wWqJE3hlfOwwWk8UshRdn7BV4=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Oct 18 22:29:57 2025 GMT Not After : Oct 25 22:29:57 2025 GMT Subject: CN=68f414e6-59b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:40:7b:ab:c1:d6:71:e6:a3:7f:8c:d2:0e: 99:0e:87:d4:65:37:4f:fd:83:89:7c:e8:13:06:c5: 5f:62:c1:fb:fa:5e:58:80:0b:7f:4f:9a:8d:96:1f: e6:29:c8:5d:70:4e:80:5c:07:1b:40:d5:20:7e:89: 80:23:b7:38:9a:b1:a4:c2:fb:d5:0e:15:b2:27:e9: 2f:37:46:96:85:a1:5f:71:1d:a7:ec:78:dd:b5:30: ec:24:72:d2:c9:93:96:37:a2:82:59:4d:1a:1e:8c: b9:38:5f:0f:c5:0d:10:25:05:59:2e:c0:d4:3e:b7: ca:a4:5e:ec:7c:ee:99:e2:5b:98:d0:6c:b0:51:3a: 76:aa:97:bb:4b:35:90:72:05:c7:2c:53:d4:e5:27: da:bf:b3:08:d1:37:37:81:a0:72:1a:b6:f6:a1:af: de:00:fd:54:cf:e5:c6:6f:ad:61:72:be:1f:f8:ed: f4:e8:2c:95:52:ab:ba:e1:74:3d:57:d0:86:0d:7f: a0:64:cc:32:71:c6:1f:b1:c3:b2:24:00:12:2e:a7: cc:85:c5:de:a6:c1:2c:8d:70:1f:11:a6:60:6b:74: 27:22:d4:5c:43:6c:ce:ae:fd:7f:45:01:36:08:7c: 93:4c:4b:3b:46:0e:86:0d:17:40:29:0b:94:53:e7: bb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:EE:A9:35:35:E9:EE:D4:6A:B9:B7:74:E2:F3:96:23:34:54:A6:8D X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b8:c7:4c:93:4a:16:a9:89:23:b4:1b:51:a8:89:dc:cc:8c: 3a:51:29:f5:77:89:ce:d3:44:bc:3d:20:36:87:23:c4:41:95: be:2e:99:2d:4b:18:31:d1:f8:b1:25:cc:74:d2:9f:e9:80:4a: 0b:cf:ce:4f:8c:d1:07:d3:5a:04:9c:1e:7a:5b:17:1c:2e:5f: a5:e5:95:ff:19:9a:62:bd:89:9b:5a:18:98:8b:b3:7b:a3:7f: dc:66:1f:7a:04:ef:4c:be:41:9f:1c:27:fb:43:1b:82:05:33: e4:2e:db:f6:bb:af:15:bf:0b:9e:2c:f1:df:38:df:08:2a:da: cf:f5:52:d8:80:e6:91:6d:4e:71:97:75:01:41:2e:0e:69:d1: fb:40:99:90:02:36:1e:a1:86:5d:c1:ee:7d:e5:be:88:40:ea: 8d:7c:a6:ce:93:29:f2:50:5e:4b:1c:91:3d:0a:72:58:c1:6a: 48:c1:ef:46:e8:60:48:9c:6d:3f:f7:5f:4f:21:b0:46:5b:af: a9:d0:2d:ae:4b:43:dc:43:f7:f1:23:25:2a:d2:72:1d:00:35: 52:bb:ca:f2:9a:90:a4:ec:6d:ea:ba:fd:72:83:48:eb:33:a8: 79:e1:47:c6:8a:6d:41:75:99:2c:6b:9d:c8:c2:02:d6:b7:b0: a4:4c:ed:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUxMDE4MjIyOTU3WhcNMjUxMDI1MjIyOTU3WjAYMRYwFAYD VQQDEw02OGY0MTRlNi01OWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhNAe6vB1nHmo3+M0g6ZDofUZTdP/YOJfOgTBsVfYsH7+l5YgAt/T5qNlh/m KchdcE6AXAcbQNUgfomAI7c4mrGkwvvVDhWyJ+kvN0aWhaFfcR2n7HjdtTDsJHLS yZOWN6KCWU0aHoy5OF8PxQ0QJQVZLsDUPrfKpF7sfO6Z4luY0GywUTp2qpe7SzWQ cgXHLFPU5Sfav7MI0Tc3gaByGrb2oa/eAP1Uz+XGb61hcr4f+O306CyVUqu64XQ9 V9CGDX+gZMwyccYfscOyJAASLqfMhcXepsEsjXAfEaZga3QnItRcQ2zOrv1/RQE2 CHyTTEs7Rg6GDRdAKQuUU+e7uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHuqTU1 6e7Uarm3dOLzliM0VKaNMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6uMdMk0oWqYkjtBtRqInczIw6USn1d4nO00S8PSA2hyPEQZW+Lpkt Sxgx0fixJcx00p/pgEoLz85PjNEH01oEnB56WxccLl+l5ZX/GZpivYmbWhiYi7N7 o3/cZh96BO9MvkGfHCf7QxuCBTPkLtv2u68VvwueLPHfON8IKtrP9VLYgOaRbU5x l3UBQS4OadH7QJmQAjYeoYZdwe595b6IQOqNfKbOkynyUF5LHJE9CnJYwWpIwe9G 6GBInG0/919PIbBGW6+p0C2uS0PcQ/fxIyUq0nIdADVSu8rympCk7G3quv1yg0jr M6h54UfGim1BdZksa53IwgLWt7CkTO2M -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:02 2025 by rpki-client