$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft File: SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft (raw, json) Hash identifier: 4PcPCOu8xQMSk8e+spNYiIkL6ixME+D93q8lzejh8TU= Subject key identifier: A8:02:48:CB:4B:8D:46:39:1B:32:BA:42:45:EE:5E:ED:71:81:E7:22 Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft Manifest number: C6 Signing time: Sun 19 Oct 2025 08:56:25 +0000 Manifest this update: Sun 19 Oct 2025 08:56:24 +0000 Manifest next update: Sun 26 Oct 2025 08:56:24 +0000 Files and hashes: 1: SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl (hash: XdjkOQQjjSbRBt7HEpldjyvvNroJogWN2ayEENbDBHA=) 2: 35525B92845611EFB053C341C4F9AE02.roa (hash: VrKew/904a7WGaHwfTfVmRygoJsUgD+2JGEhLd8TxAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Oct 19 08:56:24 2025 GMT Not After : Oct 26 08:56:24 2025 GMT Subject: CN=68f4a7b9-f080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:12:b3:44:3c:77:0b:87:d8:70:36:3c:83:b6: 56:08:fd:29:37:89:c9:db:25:82:35:b0:1d:fc:ae: 72:2c:ac:f7:7d:bc:ea:bf:3d:0f:9a:bb:bf:c1:dc: 6c:00:ab:ac:38:f8:44:29:bf:69:64:29:9d:5a:cd: d5:ee:3c:37:a2:70:60:97:e1:e4:9c:9c:90:89:ba: ec:a6:23:d0:2c:22:82:c8:a0:af:be:cd:1e:c5:5d: 63:ac:5c:31:3c:cb:69:f3:83:c3:bf:52:74:2f:45: 74:f1:73:e1:09:d6:76:2f:e4:b6:ed:f3:0b:16:80: e8:5d:6e:4c:18:b8:32:7e:24:be:cb:cb:67:49:f2: 4b:63:23:cf:b9:fa:b2:5c:6e:17:d6:69:01:42:a3: fe:ad:6a:d9:76:bb:31:46:6f:b0:67:e1:48:84:17: d1:65:5d:24:24:70:54:1f:22:d0:0e:f3:fb:60:92: 01:34:c7:e0:de:cd:3c:09:53:af:05:74:e6:23:7a: 12:6c:20:e2:9b:27:5b:e5:e9:48:6d:30:52:4a:53: 08:74:1c:38:90:79:ed:19:94:08:bf:f2:c4:2a:3b: 2b:bc:eb:fe:27:dd:f0:7b:d9:ba:5f:d0:ce:16:c6: dc:3c:8b:10:17:31:a9:14:b1:78:a9:4b:f0:0d:1e: f4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:02:48:CB:4B:8D:46:39:1B:32:BA:42:45:EE:5E:ED:71:81:E7:22 X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:cd:cc:0a:61:46:8c:59:5b:97:a1:55:f3:fe:4d:fa:82:27: 95:a9:49:a6:4d:ab:6b:49:9b:05:b3:25:b3:54:66:69:ed:d7: b4:5b:04:8e:cf:d1:ee:d2:49:57:f0:2f:4e:c5:b9:65:15:42: 6c:8b:1b:3a:f9:da:4b:ca:59:f9:a9:1a:66:7f:60:da:54:52: a2:19:34:eb:58:12:06:1a:d9:31:65:f9:7e:ef:87:d3:cd:21: ab:a4:11:fe:f2:e9:ee:43:c4:20:e0:78:cb:66:b5:5c:42:e4: ed:8b:44:a1:e3:bd:37:40:65:2f:4e:9f:d6:7a:dc:0e:cb:8b: 69:d4:59:c3:8c:3c:2a:e3:22:90:57:ce:56:ef:95:76:04:67: 48:34:6d:2f:ed:02:a0:37:3a:67:4d:c3:00:4c:62:9f:75:51: 33:7f:44:96:72:07:65:4e:44:36:53:0d:4c:4e:26:bb:60:6b: e3:bb:51:2b:1d:38:3d:72:c3:bd:ad:1a:bc:bb:8c:9f:a0:34: da:88:f5:05:69:e6:e2:73:aa:bf:95:63:e2:f4:2b:8a:00:41: 5a:cb:32:d2:f9:26:3e:ec:21:32:7c:85:c7:29:63:4c:3f:2c: 90:02:e0:9b:57:32:56:94:d2:e7:4a:00:89:7e:7b:9d:49:f2: 5c:8c:47:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM0RkYxMTAvBgNVBAUTKDQ5NDc1QjU5NzVGMTk3OTg5NUEzQzZFNDQxODNFNEJD QTJFODM0NkYwHhcNMjUxMDE5MDg1NjI0WhcNMjUxMDI2MDg1NjI0WjAYMRYwFAYD VQQDEw02OGY0YTdiOS1mMDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BKzRDx3C4fYcDY8g7ZWCP0pN4nJ2yWCNbAd/K5yLKz3fbzqvz0Pmru/wdxs AKusOPhEKb9pZCmdWs3V7jw3onBgl+HknJyQibrspiPQLCKCyKCvvs0exV1jrFwx PMtp84PDv1J0L0V08XPhCdZ2L+S27fMLFoDoXW5MGLgyfiS+y8tnSfJLYyPPufqy XG4X1mkBQqP+rWrZdrsxRm+wZ+FIhBfRZV0kJHBUHyLQDvP7YJIBNMfg3s08CVOv BXTmI3oSbCDimydb5elIbTBSSlMIdBw4kHntGZQIv/LEKjsrvOv+J93we9m6X9DO FsbcPIsQFzGpFLF4qUvwDR70mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgCSMtL jUY5GzK6QkXuXu1xgeciMB8GA1UdIwQYMBaAFElHW1l18ZeYlaPG5EGD5Lyi6DRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzRGRi85QzU2QkU0Mjg0 NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1aVZvOGJrUVlQa3ZLTG9O RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05HOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzRGRi85QzU2QkU0Mjg0NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi9TVWRiV1hYeGw1 aVZvOGJrUVlQa3ZLTG9ORzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApzcwKYUaMWVuXoVXz/k36gieVqUmmTatrSZsFsyWzVGZp7de0WwSO z9Hu0klX8C9OxbllFUJsixs6+dpLyln5qRpmf2DaVFKiGTTrWBIGGtkxZfl+74fT zSGrpBH+8unuQ8Qg4HjLZrVcQuTti0Sh4703QGUvTp/WetwOy4tp1FnDjDwq4yKQ V85W75V2BGdING0v7QKgNzpnTcMATGKfdVEzf0SWcgdlTkQ2Uw1MTia7YGvju1Er HTg9csO9rRq8u4yfoDTaiPUFaebic6q/lWPi9CuKAEFayzLS+SY+7CEyfIXHKWNM PyyQAuCbVzJWlNLnSgCJfnudSfJcjEd/ -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:16 2025 by rpki-client