$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft File: 60yRrrkBmKp9PHgiHY4Ytwdd77k.mft (raw, json) Hash identifier: PmVngmuei7t9+FCjOu9cvuwjcXSoSZJB1skYe110EVY= Subject key identifier: 73:A0:05:4A:CC:3F:4F:D5:B6:62:7C:D9:E0:71:10:9B:21:78:C1:EA Authority key identifier: EB:4C:91:AE:B9:01:98:AA:7D:3C:78:22:1D:8E:18:B7:07:5D:EF:B9 Certificate issuer: /CN=A91D0F0F/serialNumber=EB4C91AEB90198AA7D3C78221D8E18B7075DEFB9 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/60yRrrkBmKp9PHgiHY4Ytwdd77k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft Manifest number: 36 Signing time: Sun 19 Oct 2025 11:03:35 +0000 Manifest this update: Sun 19 Oct 2025 11:03:34 +0000 Manifest next update: Sun 26 Oct 2025 11:03:34 +0000 Files and hashes: 1: 60yRrrkBmKp9PHgiHY4Ytwdd77k.crl (hash: xmncWcMjpnDA+FQVXEgk6c1ezY0FFTusEVdz/5cRj2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.crl rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/60yRrrkBmKp9PHgiHY4Ytwdd77k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0F0F, serialNumber=EB4C91AEB90198AA7D3C78221D8E18B7075DEFB9 Validity Not Before: Oct 19 11:03:34 2025 GMT Not After : Oct 26 11:03:34 2025 GMT Subject: CN=68f4c586-f289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:70:71:b0:7f:46:56:a7:a5:27:7e:57:28:b4: 55:6f:91:31:0f:2b:24:dc:1c:87:10:66:d9:bc:38: 7d:85:26:1d:cf:bf:9e:00:e1:d8:85:1d:d9:ec:cd: da:76:ce:82:02:78:9d:e0:b5:db:83:1e:e5:69:b8: 89:79:76:36:ce:8b:5b:d3:8b:68:6e:7c:36:e1:c5: b8:27:07:b1:9b:b0:20:eb:bc:1b:74:79:17:f2:7b: e7:ff:7b:2b:ee:a6:31:fb:7c:5f:d2:e1:e8:16:66: ff:28:6b:f3:ee:45:a5:b4:b6:6b:1c:94:7f:d7:8b: 42:0e:9f:ae:f4:d7:5e:f6:0b:e6:e1:a7:9f:d6:0b: 80:32:46:8a:9b:f3:5e:04:35:d9:5e:ef:62:98:44: 4f:7f:99:dc:d0:7a:b7:a0:4f:dd:c8:1a:c2:33:db: 43:11:f2:2a:72:da:b0:cd:79:c0:c8:9a:4e:b5:ef: fe:33:bf:ab:87:d1:61:c4:96:67:eb:cd:f2:b6:2d: 1a:cb:df:73:6c:8e:9e:c7:c4:07:8d:fa:66:c5:17: 17:4e:36:6a:2d:1c:df:10:26:33:09:3b:a2:f9:15: ab:f7:45:50:1d:fd:07:52:28:62:79:03:fa:0a:be: 84:dd:6b:a3:29:eb:3c:15:04:35:da:ec:30:04:2b: 12:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A0:05:4A:CC:3F:4F:D5:B6:62:7C:D9:E0:71:10:9B:21:78:C1:EA X509v3 Authority Key Identifier: keyid:EB:4C:91:AE:B9:01:98:AA:7D:3C:78:22:1D:8E:18:B7:07:5D:EF:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/60yRrrkBmKp9PHgiHY4Ytwdd77k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c4:44:2d:20:ce:9d:8a:23:60:9a:8c:86:67:11:6e:45:bd: 21:06:09:ae:08:b8:84:9d:43:77:4c:c2:d8:08:a8:db:11:f1: b5:77:09:da:1b:68:98:03:4a:ac:34:9e:0f:9b:6e:91:fa:bb: 51:1e:d7:99:2d:87:fe:2f:7b:93:55:60:8d:6e:3a:b0:30:c1: 34:c4:4f:6b:fa:81:ba:72:e2:10:0c:8e:7b:4f:83:4e:21:4a: 44:dc:cc:1a:37:48:da:98:cf:85:3b:29:28:b2:e4:db:92:ab: 09:ac:23:ee:5a:0e:50:84:43:fb:b7:26:45:12:95:8d:d7:a0: f5:c5:15:40:81:ec:88:e3:97:dc:fc:bf:dd:f6:bb:5a:59:57: d2:b9:47:61:83:29:b2:a9:ed:ea:00:11:24:46:78:26:f9:7a: 7b:85:63:47:1b:7e:03:33:c6:52:d9:72:14:83:f4:36:09:26: 00:b4:76:4f:6d:6c:5d:ee:ec:4d:eb:ba:59:8a:e0:23:2b:19: e1:f3:65:d4:bf:0e:a6:ff:19:19:ae:fe:fa:6a:e0:f7:6b:80: 10:04:49:a4:a4:7e:40:01:16:65:ca:7e:c0:d3:59:c1:7c:8c: 54:ea:29:77:73:99:22:8c:5d:71:10:23:e4:8e:91:b2:69:af: 02:b9:1b:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEYwRjExMC8GA1UEBRMoRUI0QzkxQUVCOTAxOThBQTdEM0M3ODIyMUQ4RTE4Qjcw NzVERUZCOTAeFw0yNTEwMTkxMTAzMzRaFw0yNTEwMjYxMTAzMzRaMBgxFjAUBgNV BAMTDTY4ZjRjNTg2LWYyODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDocHGwf0ZWp6UnflcotFVvkTEPKyTcHIcQZtm8OH2FJh3Pv54A4diFHdnszdp2 zoICeJ3gtduDHuVpuIl5djbOi1vTi2hufDbhxbgnB7GbsCDrvBt0eRfye+f/eyvu pjH7fF/S4egWZv8oa/PuRaW0tmsclH/Xi0IOn6701172C+bhp5/WC4AyRoqb814E Ndle72KYRE9/mdzQeregT93IGsIz20MR8ipy2rDNecDImk617/4zv6uH0WHElmfr zfK2LRrL33Nsjp7HxAeN+mbFFxdONmotHN8QJjMJO6L5Fav3RVAd/QdSKGJ5A/oK voTda6Mp6zwVBDXa7DAEKxInAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc6AFSsw/ T9W2YnzZ4HEQmyF4weowHwYDVR0jBBgwFoAU60yRrrkBmKp9PHgiHY4Ytwdd77kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRjBGLzUyREZGQzlFNURF NzExRjBBODY3OTE0RUM0RjlBRTAyLzYweVJycmtCbUtwOVBIZ2lIWTRZdHdkZDc3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjB5UnJya0JtS3A5UEhnaUhZNFl0d2RkNzdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RjBGLzUyREZGQzlFNURFNzExRjBBODY3OTE0RUM0RjlBRTAyLzYweVJycmtCbUtw OVBIZ2lIWTRZdHdkZDc3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALHERC0gzp2KI2CajIZnEW5FvSEGCa4IuISdQ3dMwtgIqNsR8bV3Cdob aJgDSqw0ng+bbpH6u1Ee15kth/4ve5NVYI1uOrAwwTTET2v6gbpy4hAMjntPg04h SkTczBo3SNqYz4U7KSiy5NuSqwmsI+5aDlCEQ/u3JkUSlY3XoPXFFUCB7Ijjl9z8 v932u1pZV9K5R2GDKbKp7eoAESRGeCb5enuFY0cbfgMzxlLZchSD9DYJJgC0dk9t bF3u7E3rulmK4CMrGeHzZdS/Dqb/GRmu/vpq4PdrgBAESaSkfkABFmXKfsDTWcF8 jFTqKXdzmSKMXXEQI+SOkbJprwK5G64= -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:59 2025 by rpki-client