$ rpki-client -vvf rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft File: ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft (raw, json) Hash identifier: 5wy4BHNNeduoNr2ZsfAiGNBzUXZijaRz4MAtp/XUcSA= Subject key identifier: 85:6E:5F:75:62:03:78:A2:06:D3:F3:BE:D0:03:9A:D5:F0:D0:B3:35 Authority key identifier: 6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED Certificate issuer: /CN=A91944AB/serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Certificate serial: 0614 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft Manifest number: 060D Signing time: Sun 19 Oct 2025 00:29:53 +0000 Manifest this update: Sun 19 Oct 2025 00:29:52 +0000 Manifest next update: Sun 26 Oct 2025 00:29:52 +0000 Files and hashes: 1: ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl (hash: XjUbviaEoN7aS3UiwZ9g1PaszGtguWEjGwBfEixfFYs=) 2: BB01CFB0723811EEA39E0042C4F9AE02.roa (hash: 1LEbeB2sOSy0yXmk2wIYI71rgNCCnZow4wFFO18wbUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1556 (0x614) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91944AB, serialNumber=6A1219726D239C82F5A44601127D1AF8725CE0ED Validity Not Before: Oct 19 00:29:52 2025 GMT Not After : Oct 26 00:29:52 2025 GMT Subject: CN=68f43100-b771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:b9:48:25:a8:e0:1d:11:f0:be:40:a0:64: 59:15:04:76:fd:c3:2f:38:90:19:b6:07:e9:a3:4a: 18:79:95:3a:dd:06:27:67:66:f8:1d:ae:c3:ba:33: 62:b4:a7:6d:9e:57:e8:1c:a1:4a:31:16:59:28:10: 9c:a8:3d:21:c8:f9:76:31:1b:39:c1:99:0f:3b:cf: 1a:4a:d0:69:11:ee:a4:e5:cb:3b:09:75:46:49:34: 1f:0b:6e:6e:66:9d:67:f4:44:1e:f9:ad:2b:77:20: 2d:ed:9d:1a:df:05:53:0f:48:e0:c1:1b:ee:d0:55: c3:2c:14:c3:e5:c6:67:1c:36:d2:b9:5e:78:2d:fd: 99:31:fe:4f:a3:77:e8:43:9f:38:18:d8:bd:78:fd: 32:bf:db:27:a6:cc:cb:e4:3e:c5:cd:dc:30:8b:50: b2:ee:44:43:40:87:ee:40:f7:70:ff:76:da:5c:f3: cf:53:1c:f4:0d:a3:2f:c6:a1:e1:89:dd:28:da:b3: b7:68:f9:fa:18:50:b1:14:ad:ed:8d:55:30:ff:7b: e1:56:48:ce:39:85:dd:fb:d5:31:e2:8f:23:00:91: 1d:d1:3d:25:ea:f1:d2:ab:7f:07:41:fd:d7:07:33: 13:aa:91:d2:b3:82:b9:83:03:d5:c6:ba:be:91:6e: 27:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:6E:5F:75:62:03:78:A2:06:D3:F3:BE:D0:03:9A:D5:F0:D0:B3:35 X509v3 Authority Key Identifier: keyid:6A:12:19:72:6D:23:9C:82:F5:A4:46:01:12:7D:1A:F8:72:5C:E0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahIZcm0jnIL1pEYBEn0a-HJc4O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91944AB/6FE306A6C2C811EB98D9DA79C4F9AE02/ahIZcm0jnIL1pEYBEn0a-HJc4O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:b9:38:ae:e5:b6:cf:47:5b:9c:6c:38:93:9a:ff:af:7f:27: 8b:a0:3c:2f:47:62:cc:9a:dd:6e:d7:13:a7:b0:54:1a:12:71: a2:fe:ee:07:fd:56:e5:69:b5:02:86:0b:41:54:81:59:2f:20: 19:44:5b:2f:72:6c:cf:71:df:58:1f:10:52:51:c1:96:16:28: 64:07:53:0a:92:13:ec:cf:89:0a:11:39:3f:56:a4:99:3b:79: 7c:a2:9a:4f:44:7f:14:a3:a5:dd:ca:17:97:78:19:e3:ca:9c: 60:2a:ee:90:67:d6:3c:0c:03:ad:c8:cc:8c:5b:e0:68:63:b4: 08:97:51:bf:33:6c:a0:0e:c0:d7:f2:52:2f:df:48:5c:6d:59: 49:61:10:61:97:19:9b:d6:12:36:49:2e:c0:98:ce:10:d1:a1: 88:4c:1f:fe:a6:69:ed:1e:60:ec:9a:76:0e:ce:81:31:9c:f4: c8:1a:cf:e2:9c:3a:c2:b2:01:15:f7:89:17:14:db:19:3e:43: 48:4a:52:da:e5:88:b8:8c:29:4c:e6:08:d5:2e:5a:91:06:e4: fd:f6:23:e2:36:e6:12:52:db:fa:6a:8f:7d:7a:1f:83:c4:53: 7b:4b:ff:62:63:89:ba:36:99:c8:c1:0b:f6:2a:5b:f6:16:fa: 32:38:24:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ0QUIxMTAvBgNVBAUTKDZBMTIxOTcyNkQyMzlDODJGNUE0NDYwMTEyN0QxQUY4 NzI1Q0UwRUQwHhcNMjUxMDE5MDAyOTUyWhcNMjUxMDI2MDAyOTUyWjAYMRYwFAYD VQQDEw02OGY0MzEwMC1iNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoa5SCWo4B0R8L5AoGRZFQR2/cMvOJAZtgfpo0oYeZU63QYnZ2b4Ha7DujNi tKdtnlfoHKFKMRZZKBCcqD0hyPl2MRs5wZkPO88aStBpEe6k5cs7CXVGSTQfC25u Zp1n9EQe+a0rdyAt7Z0a3wVTD0jgwRvu0FXDLBTD5cZnHDbSuV54Lf2ZMf5Po3fo Q584GNi9eP0yv9snpszL5D7Fzdwwi1Cy7kRDQIfuQPdw/3baXPPPUxz0DaMvxqHh id0o2rO3aPn6GFCxFK3tjVUw/3vhVkjOOYXd+9Ux4o8jAJEd0T0l6vHSq38HQf3X BzMTqpHSs4K5gwPVxrq+kW4n2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVuX3Vi A3iiBtPzvtADmtXw0LM1MB8GA1UdIwQYMBaAFGoSGXJtI5yC9aRGARJ9GvhyXODt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDRBQi82RkUzMDZBNkMy QzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5JTDFwRVlCRW4wYS1ISmM0 TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoSVpjbTBqbklMMXBFWUJFbjBhLUhKYzRPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDRBQi82RkUzMDZBNkMyQzgxMUVCOThEOURBNzlDNEY5QUUwMi9haElaY20wam5J TDFwRVlCRW4wYS1ISmM0TzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFuTiu5bbPR1ucbDiTmv+vfyeLoDwvR2LMmt1u1xOnsFQaEnGi/u4H /VblabUChgtBVIFZLyAZRFsvcmzPcd9YHxBSUcGWFihkB1MKkhPsz4kKETk/VqSZ O3l8oppPRH8Uo6XdyheXeBnjypxgKu6QZ9Y8DAOtyMyMW+BoY7QIl1G/M2ygDsDX 8lIv30hcbVlJYRBhlxmb1hI2SS7AmM4Q0aGITB/+pmntHmDsmnYOzoExnPTIGs/i nDrCsgEV94kXFNsZPkNISlLa5Yi4jClM5gjVLlqRBuT99iPiNuYSUtv6ao99eh+D xFN7S/9iY4m6NpnIwQv2Klv2FvoyOCRR -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:43 2025 by rpki-client