$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: 0OMxcOnxwoe/7k4ZfN2vsKC3tDeO+jBjt3gPAba420U= Subject key identifier: 93:CA:7F:02:E1:67:93:9A:58:81:FD:0A:86:38:57:24:F3:1B:CA:DD Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 01F6 Signing time: Sun 19 Oct 2025 04:48:17 +0000 Manifest this update: Sun 19 Oct 2025 04:48:17 +0000 Manifest next update: Sun 26 Oct 2025 04:48:17 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: ZETtonPSPRQUZwzsKcfQcSWx6i06K0+kdbl4n4AYHOU=) 2: 11F911FAA8D811ED90192E3CC4F9AE02.roa (hash: 1slDbS6OMsVzRicTRklA2Gp5/wmmSnjZBoyP9DPcUVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Oct 19 04:48:17 2025 GMT Not After : Oct 26 04:48:17 2025 GMT Subject: CN=68f46d91-f71e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:48:8f:bd:12:99:53:92:64:53:05:04:50: 94:a5:a5:a3:fb:72:c6:bd:8e:c3:b4:b7:6d:a8:cd: 73:8f:42:f1:11:1b:64:e3:52:28:11:05:d6:45:6e: 90:79:22:71:41:43:a8:7a:d4:12:08:cf:93:de:0b: d3:97:c0:a7:79:17:f8:b9:47:65:08:04:cb:78:3e: d2:2d:eb:54:d2:ef:22:20:ad:7a:a4:85:32:4f:ab: 80:50:f8:04:39:c1:98:23:20:9e:fb:79:dc:e6:81: 4f:66:76:89:09:ef:c4:d0:7d:6d:79:aa:a0:95:72: 8c:08:99:a0:1b:41:0b:ea:35:19:c2:81:06:ed:2d: 8a:51:b8:39:25:86:91:9b:c2:4e:21:4d:b9:10:00: 1c:4c:dc:f4:29:8a:13:89:f1:9b:02:84:42:18:fc: 0e:68:57:72:88:1e:23:e7:38:76:0d:6e:8e:8c:a2: 8a:de:26:3c:98:a0:79:d3:d7:f0:04:d8:4d:94:cf: 8e:93:af:3b:61:a8:2a:e6:8d:51:b0:8c:30:cb:6f: 32:70:0a:b5:07:ab:4d:68:43:a2:81:b5:7d:35:ef: eb:a6:7b:b1:1c:ad:24:7a:f3:cd:ee:98:ee:10:0a: 03:9e:26:28:37:e1:30:0c:f9:8b:84:6f:4a:a5:11: 68:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CA:7F:02:E1:67:93:9A:58:81:FD:0A:86:38:57:24:F3:1B:CA:DD X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e1:e9:a5:d8:57:1a:7f:2d:65:18:79:60:be:cf:b0:fc:ef: 78:8d:91:de:b6:1d:b1:d8:31:31:75:7d:fc:ac:23:3f:5f:3a: 72:ce:5b:c4:6f:35:66:e1:5f:9d:6b:0b:ca:1e:b9:c4:68:ab: a9:32:75:8f:bf:9c:64:cd:b2:8c:d3:20:08:42:4f:79:42:04: 5c:b3:5f:50:5e:de:af:cf:6f:84:89:94:74:da:3f:16:4a:95: 58:17:b9:81:39:54:96:60:5f:88:15:ac:e7:c9:f5:3a:fd:c8: 6e:ac:a6:7f:ca:17:b4:76:38:d7:c8:1f:cc:b8:93:46:b3:0d: 33:33:d9:4d:17:ad:2c:2f:2e:49:67:5e:7b:0b:49:5e:07:26: c2:13:71:ac:c2:d8:cf:56:8d:2c:ca:33:e2:d9:f8:cd:fb:be: 10:0b:58:51:f4:c0:b4:0e:cc:52:bf:d7:b8:8a:b2:78:ca:78: 1e:a4:63:2c:15:f7:71:1e:ad:57:2c:80:9c:55:e7:8b:2e:97: a6:76:ab:8a:c7:b5:fe:48:24:43:35:33:9b:e8:bb:03:19:18: 9f:e2:6d:9b:b0:a8:54:5a:f8:35:3d:40:84:04:25:34:6d:93: df:57:58:e2:38:44:ac:da:b8:39:a4:a3:c8:15:af:e0:7d:6f: cf:c1:e3:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUxMDE5MDQ0ODE3WhcNMjUxMDI2MDQ0ODE3WjAYMRYwFAYD VQQDEw02OGY0NmQ5MS1mNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb1Ij70SmVOSZFMFBFCUpaWj+3LGvY7DtLdtqM1zj0LxERtk41IoEQXWRW6Q eSJxQUOoetQSCM+T3gvTl8CneRf4uUdlCATLeD7SLetU0u8iIK16pIUyT6uAUPgE OcGYIyCe+3nc5oFPZnaJCe/E0H1teaqglXKMCJmgG0EL6jUZwoEG7S2KUbg5JYaR m8JOIU25EAAcTNz0KYoTifGbAoRCGPwOaFdyiB4j5zh2DW6OjKKK3iY8mKB509fw BNhNlM+Ok687Yagq5o1RsIwwy28ycAq1B6tNaEOigbV9Ne/rpnuxHK0kevPN7pju EAoDniYoN+EwDPmLhG9KpRFoqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPKfwLh Z5OaWIH9CoY4VyTzG8rdMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA34eml2Fcafy1lGHlgvs+w/O94jZHeth2x2DExdX38rCM/XzpyzlvE bzVm4V+dawvKHrnEaKupMnWPv5xkzbKM0yAIQk95QgRcs19QXt6vz2+EiZR02j8W SpVYF7mBOVSWYF+IFaznyfU6/churKZ/yhe0djjXyB/MuJNGsw0zM9lNF60sLy5J Z157C0leBybCE3GswtjPVo0syjPi2fjN+74QC1hR9MC0DsxSv9e4irJ4yngepGMs FfdxHq1XLICcVeeLLpemdquKx7X+SCRDNTOb6LsDGRif4m2bsKhUWvg1PUCEBCU0 bZPfV1jiOESs2rg5pKPIFa/gfW/PweOF -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:13 2025 by rpki-client