$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: ywZ6KcR6z8R8cvOCZLUKB/nVpRgUuZn+7Js2zrkJjwU= Subject key identifier: 14:AA:FB:7A:09:C5:94:E2:47:C8:6A:E5:B3:BD:09:9A:EA:48:87:87 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 06B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 06AE Signing time: Sat 18 Oct 2025 23:39:42 +0000 Manifest this update: Sat 18 Oct 2025 23:39:42 +0000 Manifest next update: Sat 25 Oct 2025 23:39:42 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: 6Pefu4OpM23uv/HYhw3HPRRnl5lRy/rLZetNlcG83e4=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Oct 18 23:39:42 2025 GMT Not After : Oct 25 23:39:42 2025 GMT Subject: CN=68f4253e-d0e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dd:8c:e0:6a:2b:54:47:3b:1a:3c:a1:f5:bc: ac:60:49:ee:3e:06:70:3e:ca:d9:4c:21:79:88:4d: b8:5b:a8:fb:70:92:4f:5c:af:c8:64:5c:14:1a:2d: 0b:22:1e:c6:82:9d:e5:75:ee:fd:c3:a3:64:21:8a: e3:57:ca:39:3e:9a:0d:1c:d6:b0:b4:0b:36:f4:9d: 2f:c8:53:19:b9:12:1b:bd:ec:d8:fe:f1:15:ff:ef: 9c:4e:3a:4c:a3:eb:2d:19:3a:fc:b0:e2:40:69:94: 1d:fb:58:e9:bd:08:0b:56:27:e4:e7:e0:4a:1c:d7: 13:13:78:dc:df:e9:16:5d:4f:6b:81:99:fe:cc:84: 86:d7:5a:30:2a:72:3e:71:33:3d:c8:d0:15:9e:d0: d5:ee:6e:0d:66:5c:38:92:37:1b:86:9d:b0:6b:fe: 6f:cc:87:58:33:21:da:11:78:9d:dd:25:29:42:34: 03:5b:98:01:e9:76:c0:b7:38:6c:0b:2a:a7:d2:b5: dd:34:42:ea:b3:a7:53:8b:2c:7d:d2:c6:55:99:36: 28:b5:64:11:be:d6:93:7c:61:4d:e2:b2:14:83:b4: 26:67:67:56:80:9b:93:6a:ba:b7:29:b6:ce:2b:25: c5:35:dc:df:23:be:0b:a4:83:73:31:93:4f:b7:fc: 84:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AA:FB:7A:09:C5:94:E2:47:C8:6A:E5:B3:BD:09:9A:EA:48:87:87 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:2f:6e:7c:ce:cb:df:4d:b6:55:c3:72:45:2a:cf:08:81:5d: 0d:74:79:f5:23:48:25:31:2b:36:57:8a:d9:35:17:53:88:5e: 4b:43:03:db:3e:86:35:09:b6:32:4f:57:98:61:14:3b:94:08: 32:34:40:58:df:58:a2:1f:c1:fd:1e:c7:51:d1:1e:c9:e8:ff: 1b:15:91:89:76:27:96:53:7e:d0:45:4b:f2:f4:7d:73:7d:1b: 95:6e:2e:81:29:4a:58:dd:51:ef:28:f6:c6:f7:5f:2d:f8:fa: 04:09:21:da:52:58:c6:09:92:c8:f0:c4:ac:33:95:ad:7d:81: bc:b2:68:fc:28:af:9f:87:ba:bd:6b:dc:05:ef:a3:24:31:11: ab:da:84:f1:fd:18:a7:a4:3d:71:46:16:1a:6c:cd:c0:4f:7d: 2a:8c:45:33:54:b4:3a:07:90:90:85:be:50:de:9c:07:11:8e: ab:65:b4:79:79:a0:0a:d1:5f:27:b3:44:d7:5f:b7:3b:c0:53: 00:ac:9d:a0:6e:82:70:db:26:c6:7c:3c:29:bf:d3:db:15:61: 20:37:7f:e5:45:67:a8:ab:6a:ae:eb:6c:eb:82:9b:9e:ac:ce: 2e:53:40:25:ce:22:b6:8c:23:b7:f7:ed:e9:f1:4b:b9:14:82: e3:48:04:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUxMDE4MjMzOTQyWhcNMjUxMDI1MjMzOTQyWjAYMRYwFAYD VQQDEw02OGY0MjUzZS1kMGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl92M4GorVEc7Gjyh9bysYEnuPgZwPsrZTCF5iE24W6j7cJJPXK/IZFwUGi0L Ih7Ggp3lde79w6NkIYrjV8o5PpoNHNawtAs29J0vyFMZuRIbvezY/vEV/++cTjpM o+stGTr8sOJAaZQd+1jpvQgLVifk5+BKHNcTE3jc3+kWXU9rgZn+zISG11owKnI+ cTM9yNAVntDV7m4NZlw4kjcbhp2wa/5vzIdYMyHaEXid3SUpQjQDW5gB6XbAtzhs Cyqn0rXdNELqs6dTiyx90sZVmTYotWQRvtaTfGFN4rIUg7QmZ2dWgJuTarq3KbbO KyXFNdzfI74LpINzMZNPt/yEAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSq+3oJ xZTiR8hq5bO9CZrqSIeHMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsL258zsvfTbZVw3JFKs8IgV0NdHn1I0glMSs2V4rZNRdTiF5LQwPb PoY1CbYyT1eYYRQ7lAgyNEBY31iiH8H9HsdR0R7J6P8bFZGJdieWU37QRUvy9H1z fRuVbi6BKUpY3VHvKPbG918t+PoECSHaUljGCZLI8MSsM5WtfYG8smj8KK+fh7q9 a9wF76MkMRGr2oTx/RinpD1xRhYabM3AT30qjEUzVLQ6B5CQhb5Q3pwHEY6rZbR5 eaAK0V8ns0TXX7c7wFMArJ2gboJw2ybGfDwpv9PbFWEgN3/lRWeoq2qu62zrgpue rM4uU0AlziK2jCO39+3p8Uu5FILjSATb -----END CERTIFICATE-----Generated at Mon Oct 20 08:22:54 2025 by rpki-client