$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft File: A6PIek8tglWUdvcc-u5ST_URNXk.mft (raw, json) Hash identifier: vj0vqXAideQECYODrDvOuU0cBwveSceQU1ah2gCwA6Q= Subject key identifier: 48:06:64:CF:84:91:45:73:75:03:B2:AD:D3:B1:60:E8:F5:AD:9C:87 Authority key identifier: 03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 Certificate issuer: /CN=A91A4CAD/serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Certificate serial: 0B45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft Manifest number: 0B3D Signing time: Sat 18 Oct 2025 20:07:58 +0000 Manifest this update: Sat 18 Oct 2025 20:07:58 +0000 Manifest next update: Sat 25 Oct 2025 20:07:58 +0000 Files and hashes: 1: A6PIek8tglWUdvcc-u5ST_URNXk.crl (hash: DzIw4T5aU8AcYzaFT8gxc7MN72HwUts58v94f6M9E6c=) 2: 6553D6106C2B11EA87ED1160C4F9AE02.roa (hash: BZiEWDD0IL9/iTmQj4cpibFzXusaM/aZuvYBDfGJDK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CAD, serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Validity Not Before: Oct 18 20:07:58 2025 GMT Not After : Oct 25 20:07:58 2025 GMT Subject: CN=68f3f39e-ca4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:82:e3:d8:7a:55:98:2b:99:d9:01:11:ec:72: 7c:7d:6e:0e:2d:ad:f4:f9:d2:77:84:0f:5c:cf:c0: b5:4b:7c:50:d5:9b:29:1f:7e:03:93:92:e7:b2:3b: eb:f0:44:3a:5e:3b:57:d1:8d:3d:93:86:77:c9:5a: 24:60:a9:4d:65:30:11:fa:a9:bf:de:54:ea:10:77: 04:73:8a:9a:ef:52:da:2a:cf:b9:e5:8e:64:92:1f: 84:de:8f:92:d0:ad:d6:76:a3:c6:73:3f:da:c7:03: a7:f7:e9:97:3a:e9:c8:f2:5a:57:4d:90:c8:0c:ab: d6:42:a7:32:6f:f4:9d:c6:2d:33:2b:40:00:c6:7b: e3:c5:49:2b:c1:e3:12:36:ab:b0:8e:f8:49:b3:0b: 75:af:4f:ab:17:67:e7:80:cf:64:5e:d5:c6:63:5f: d5:f6:1b:62:f9:bc:eb:00:af:4d:c7:70:43:fb:24: 29:b6:7e:fa:1f:0e:46:4f:3e:51:68:80:b3:1f:cb: 07:34:00:5b:fa:80:c3:e4:62:bc:96:21:a3:2f:4a: 72:a0:5a:a7:0a:64:4c:d2:be:30:e5:12:b4:db:1a: dd:af:b7:59:eb:aa:94:b5:fd:82:b3:3f:30:db:54: 2d:bc:b8:96:ae:36:fc:9d:c3:75:a7:74:af:ba:54: a0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:06:64:CF:84:91:45:73:75:03:B2:AD:D3:B1:60:E8:F5:AD:9C:87 X509v3 Authority Key Identifier: keyid:03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:07:97:dd:9b:59:d7:e9:df:39:09:3a:f4:a2:ee:95:27:65: e2:b6:5f:d8:f9:19:d9:9d:b9:ac:ca:16:2f:92:08:d0:c3:6e: 1d:11:9e:4b:21:62:1a:60:dd:ef:6b:13:96:6c:f8:eb:40:81: e2:71:1e:8d:d6:84:db:ae:97:f3:5d:06:3e:47:fe:e4:9c:c3: 9e:6b:94:a8:41:62:3d:6c:5a:65:d9:be:4b:52:57:1b:84:b0: f3:98:88:dc:34:9a:ae:cc:97:a1:df:1b:6e:71:8d:00:39:90: 56:2d:15:75:4e:88:ac:f9:35:ab:7e:94:5a:f7:73:7f:c5:7e: 59:51:74:df:ca:b3:99:e3:a8:3c:84:93:b0:51:5b:99:a2:77: 70:eb:4b:86:8d:8c:5d:d0:a1:05:73:23:0b:92:b3:1b:45:20: ce:ad:de:1d:14:7c:73:57:c9:ca:24:2d:03:7b:eb:f1:2a:e6: b6:27:c1:14:b2:36:f6:24:9b:d5:fd:e6:28:ea:de:eb:42:ab: 1a:56:d1:a0:66:4c:98:6c:a7:d0:92:22:8f:9a:a6:2b:59:a1: 10:c8:8a:2b:20:ad:98:94:6d:1d:fc:28:b3:46:e6:26:61:14: e3:b3:ac:3a:72:d1:dd:f7:61:10:35:5f:14:8e:f2:6f:ac:6b: 66:3f:88:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDQUQxMTAvBgNVBAUTKDAzQTNDODdBNEYyRDgyNTU5NDc2RjcxQ0ZBRUU1MjRG RjUxMTM1NzkwHhcNMjUxMDE4MjAwNzU4WhcNMjUxMDI1MjAwNzU4WjAYMRYwFAYD VQQDEw02OGYzZjM5ZS1jYTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoLj2HpVmCuZ2QER7HJ8fW4OLa30+dJ3hA9cz8C1S3xQ1ZspH34Dk5Lnsjvr 8EQ6XjtX0Y09k4Z3yVokYKlNZTAR+qm/3lTqEHcEc4qa71LaKs+55Y5kkh+E3o+S 0K3WdqPGcz/axwOn9+mXOunI8lpXTZDIDKvWQqcyb/Sdxi0zK0AAxnvjxUkrweMS NquwjvhJswt1r0+rF2fngM9kXtXGY1/V9hti+bzrAK9Nx3BD+yQptn76Hw5GTz5R aICzH8sHNABb+oDD5GK8liGjL0pyoFqnCmRM0r4w5RK02xrdr7dZ66qUtf2Csz8w 21QtvLiWrjb8ncN1p3SvulSgQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgGZM+E kUVzdQOyrdOxYOj1rZyHMB8GA1UdIwQYMBaAFAOjyHpPLYJVlHb3HPruUk/1ETV5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNENBRC85RkQ5N0EwODQ1 QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGdsV1VkdmNjLXU1U1RfVVJO WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2UEllazh0Z2xXVWR2Y2MtdTVTVF9VUk5Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NENBRC85RkQ5N0EwODQ1QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGds V1VkdmNjLXU1U1RfVVJOWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHB5fdm1nX6d85CTr0ou6VJ2Xitl/Y+RnZnbmsyhYvkgjQw24dEZ5L IWIaYN3vaxOWbPjrQIHicR6N1oTbrpfzXQY+R/7knMOea5SoQWI9bFpl2b5LUlcb hLDzmIjcNJquzJeh3xtucY0AOZBWLRV1Tois+TWrfpRa93N/xX5ZUXTfyrOZ46g8 hJOwUVuZondw60uGjYxd0KEFcyMLkrMbRSDOrd4dFHxzV8nKJC0De+vxKua2J8EU sjb2JJvV/eYo6t7rQqsaVtGgZkyYbKfQkiKPmqYrWaEQyIorIK2YlG0d/CizRuYm YRTjs6w6ctHd92EQNV8UjvJvrGtmP4jV -----END CERTIFICATE-----Generated at Mon Oct 20 08:02:34 2025 by rpki-client