$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: WvZYd22XKfA7RW6fgolySRd+a7KrCMCTnrNt2WQflLU= Subject key identifier: CB:E3:97:D0:44:B3:AD:A4:D9:D0:5A:39:D4:12:76:BD:5A:73:AB:29 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 069D Signing time: Sat 18 Oct 2025 23:48:26 +0000 Manifest this update: Sat 18 Oct 2025 23:48:25 +0000 Manifest next update: Sat 25 Oct 2025 23:48:25 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: 68Mg6HjPU7Doz9Y+Ko5z1C0LCL2TePSvDVcoy/e3B7c=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Oct 18 23:48:25 2025 GMT Not After : Oct 25 23:48:25 2025 GMT Subject: CN=68f42749-3dd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6d:c4:27:52:7c:b8:6b:da:f7:24:4d:92:c7: 5c:55:fb:1e:41:29:8e:74:f6:b4:3f:c8:c7:54:9c: 54:eb:62:4c:aa:11:3b:80:7d:45:64:cd:7f:5b:4c: 21:08:11:31:6c:da:1d:d6:a0:02:11:aa:e4:ce:44: d1:3d:a1:70:6f:0c:00:9d:51:75:37:fa:10:bb:87: 26:79:b7:a0:69:13:c6:f7:3e:3c:05:63:fe:9e:45: 1a:ec:11:b6:fe:b0:be:5a:76:0a:c6:bf:3c:99:45: e0:73:f9:ff:60:76:45:97:a3:f1:19:e2:de:3a:cc: 23:30:57:9a:84:da:88:88:be:dd:09:af:87:58:98: 8d:49:49:0d:93:be:13:90:0c:92:fb:77:39:3d:58: 5c:0b:7f:dd:7c:75:51:5b:db:d6:67:5f:eb:a1:43: 2d:76:b3:da:76:1b:e6:96:98:af:62:22:71:80:76: a1:1d:25:fc:b3:2a:89:d5:8e:37:07:68:f8:02:2f: ae:1d:cc:80:03:b8:2b:87:05:f7:ce:b5:7b:5e:ee: 62:5f:66:24:3c:20:18:04:da:3d:61:b4:14:7c:24: 90:6a:1a:4c:1e:10:99:1e:3b:54:eb:2a:da:2d:c8: 8f:d7:f3:b6:ea:b5:8a:8f:7b:f8:a1:d5:9f:9a:a5: 6c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:E3:97:D0:44:B3:AD:A4:D9:D0:5A:39:D4:12:76:BD:5A:73:AB:29 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:3d:0a:07:ff:59:e8:fc:cb:51:6a:dd:67:e5:6a:e6:ff:bf: 8d:42:2e:d7:1f:d2:f7:e2:4a:ab:c3:c0:fb:ee:4f:39:05:25: 5f:aa:3c:14:65:f6:f5:10:7b:3a:03:33:fd:8b:b2:62:3c:27: 8a:86:bc:c6:48:b2:aa:5f:40:c2:21:83:a6:e1:b3:b4:a5:57: 97:0d:18:31:a2:83:cd:94:4b:9c:fd:03:29:52:19:c1:f4:12: 97:63:f7:50:0e:02:53:a1:23:fe:a4:36:8a:b5:36:d7:d9:b9: 3f:e2:69:e0:ea:59:b6:f6:bf:40:02:f8:8f:bb:bd:c6:cc:88: f5:10:1a:23:af:ca:21:a8:f7:c3:47:2d:bd:35:53:4c:b8:80: df:5b:2e:06:3b:7c:10:f9:aa:52:01:78:1a:84:a3:24:dd:7b: 58:c3:e4:da:dd:18:dd:ae:81:7d:2e:3f:e5:e7:78:23:6b:4e: 2a:55:f9:1f:b8:c2:1c:00:5e:ec:20:b7:9a:dd:76:d8:ac:92: 06:42:23:5c:f8:6a:95:b7:de:22:a4:2d:78:bc:a6:26:29:55: 27:d8:9d:38:b7:f1:96:90:ab:f6:c0:d6:56:c1:6a:29:82:fd: 9e:22:a2:9a:e7:3a:5a:99:03:f3:a4:73:ad:42:bc:ae:ae:59: f7:ca:08:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUxMDE4MjM0ODI1WhcNMjUxMDI1MjM0ODI1WjAYMRYwFAYD VQQDEw02OGY0Mjc0OS0zZGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW3EJ1J8uGva9yRNksdcVfseQSmOdPa0P8jHVJxU62JMqhE7gH1FZM1/W0wh CBExbNod1qACEarkzkTRPaFwbwwAnVF1N/oQu4cmebegaRPG9z48BWP+nkUa7BG2 /rC+WnYKxr88mUXgc/n/YHZFl6PxGeLeOswjMFeahNqIiL7dCa+HWJiNSUkNk74T kAyS+3c5PVhcC3/dfHVRW9vWZ1/roUMtdrPadhvmlpivYiJxgHahHSX8syqJ1Y43 B2j4Ai+uHcyAA7grhwX3zrV7Xu5iX2YkPCAYBNo9YbQUfCSQahpMHhCZHjtU6yra LciP1/O26rWKj3v4odWfmqVslQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvjl9BE s62k2dBaOdQSdr1ac6spMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwPQoH/1no/MtRat1n5Wrm/7+NQi7XH9L34kqrw8D77k85BSVfqjwU Zfb1EHs6AzP9i7JiPCeKhrzGSLKqX0DCIYOm4bO0pVeXDRgxooPNlEuc/QMpUhnB 9BKXY/dQDgJToSP+pDaKtTbX2bk/4mng6lm29r9AAviPu73GzIj1EBojr8ohqPfD Ry29NVNMuIDfWy4GO3wQ+apSAXgahKMk3XtYw+Ta3RjdroF9Lj/l53gja04qVfkf uMIcAF7sILea3XbYrJIGQiNc+GqVt94ipC14vKYmKVUn2J04t/GWkKv2wNZWwWop gv2eIqKa5zpamQPzpHOtQryurln3yghS -----END CERTIFICATE-----Generated at Mon Oct 20 23:35:28 2025 by rpki-client