$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: IKRr5nBBhQTK35U1uLXKunCAbrk1z2Q70l/SQGw8zxA= Subject key identifier: B2:A9:D4:07:E1:DC:15:91:F6:95:A8:24:D2:1C:9C:30:C6:F4:AE:99 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 06DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 06CE Signing time: Sat 18 Oct 2025 23:32:04 +0000 Manifest this update: Sat 18 Oct 2025 23:32:03 +0000 Manifest next update: Sat 25 Oct 2025 23:32:03 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: F1bN+osJYFCmWobKLDPgN0JjR/uec3HSjgW/XWr2F4U=) 2: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: GbZWi9q6UX7D+oMHHFTd4plXypkHkfSoO+ds1DieM3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Oct 18 23:32:03 2025 GMT Not After : Oct 25 23:32:03 2025 GMT Subject: CN=68f42374-62fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:11:25:35:6c:19:12:2a:d6:38:a5:d7:de: bd:f9:22:2f:72:0d:25:1d:d8:ec:16:3a:c8:92:7e: eb:13:e9:32:df:93:98:6e:68:cf:e8:a7:50:3e:f3: 5f:5f:7d:b1:5e:ff:c3:ad:fc:44:a7:6b:94:cc:eb: 09:a3:9e:a4:b6:01:e3:8f:b7:c9:9b:aa:dc:39:0c: ba:5e:5a:c5:32:64:f6:ea:85:55:42:ba:ee:6a:15: cf:9f:d4:d9:27:59:70:5d:dc:74:6c:fa:aa:8b:bf: ef:72:28:42:43:fa:07:d6:91:0f:57:da:b0:da:39: f9:4c:69:3f:53:8e:22:b9:81:c3:49:49:d3:08:d0: aa:f6:75:12:a7:62:8a:cd:75:47:5f:62:cc:86:53: 00:cc:8a:50:71:85:93:09:ce:b0:b2:dd:20:85:25: 45:01:70:5f:fb:67:e4:c2:34:9b:72:88:fe:da:70: d5:fe:8d:93:b3:c5:3d:5c:6c:f1:97:a2:2f:b9:4f: 67:42:70:c5:b6:27:d4:b8:2c:06:e1:00:a3:eb:d0: ca:f2:00:77:de:e9:38:e2:01:ff:54:d9:92:96:e2: 1e:3a:e8:c6:6d:11:75:f2:db:26:5d:d3:d4:bd:63: c1:3c:ed:b2:0c:37:33:da:2e:2e:91:45:ab:0c:10: 45:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A9:D4:07:E1:DC:15:91:F6:95:A8:24:D2:1C:9C:30:C6:F4:AE:99 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:96:8c:a5:94:50:7b:5a:ad:51:d9:24:e9:b4:b2:a2:7e:b1: 53:83:e7:64:60:37:0c:40:5a:72:17:16:d9:4c:15:44:77:dd: da:28:59:b6:c0:f9:dd:06:01:08:2a:96:e1:d6:7b:37:1b:70: 7c:c7:8d:cf:bc:51:9a:7a:bb:9b:c3:4c:6a:9d:ce:32:ca:59: a1:95:a5:45:9b:17:75:eb:89:54:0b:dc:60:ff:02:17:da:d1: c4:aa:5e:53:e9:97:f5:8f:17:80:2e:69:2f:60:84:e1:09:05: 61:3e:5c:28:5c:f0:c5:f4:ce:03:19:7d:8e:93:a6:33:af:9e: 32:03:1b:24:aa:f6:f8:d3:b4:d4:e1:a9:15:1c:91:0d:74:2c: 3e:c7:9a:a7:e8:cc:9a:4e:c5:a1:11:6d:b2:d2:38:dc:c8:30: f3:bf:c8:95:d7:df:82:07:11:df:86:8d:57:ea:cf:55:a1:3e: 3c:e0:ba:2d:cc:9a:01:93:0f:a2:2a:30:6b:c9:b6:f1:1c:e3: 47:5d:15:16:64:79:3a:ac:ec:6c:62:f9:b1:c2:78:da:d2:e3: c6:93:88:6c:3d:2f:a7:0b:18:1e:cc:29:9c:54:4a:65:73:b5: c4:21:77:f3:c3:b3:93:4b:c3:50:53:30:f4:e4:4d:3c:68:1c: 85:29:63:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUxMDE4MjMzMjAzWhcNMjUxMDI1MjMzMjAzWjAYMRYwFAYD VQQDEw02OGY0MjM3NC02MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CwRJTVsGRIq1jil1969+SIvcg0lHdjsFjrIkn7rE+ky35OYbmjP6KdQPvNf X32xXv/DrfxEp2uUzOsJo56ktgHjj7fJm6rcOQy6XlrFMmT26oVVQrruahXPn9TZ J1lwXdx0bPqqi7/vcihCQ/oH1pEPV9qw2jn5TGk/U44iuYHDSUnTCNCq9nUSp2KK zXVHX2LMhlMAzIpQcYWTCc6wst0ghSVFAXBf+2fkwjSbcoj+2nDV/o2Ts8U9XGzx l6IvuU9nQnDFtifUuCwG4QCj69DK8gB33uk44gH/VNmSluIeOujGbRF18tsmXdPU vWPBPO2yDDcz2i4ukUWrDBBFZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKp1Afh 3BWR9pWoJNIcnDDG9K6ZMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5loyllFB7Wq1R2STptLKifrFTg+dkYDcMQFpyFxbZTBVEd93aKFm2 wPndBgEIKpbh1ns3G3B8x43PvFGaerubw0xqnc4yylmhlaVFmxd164lUC9xg/wIX 2tHEql5T6Zf1jxeALmkvYIThCQVhPlwoXPDF9M4DGX2Ok6Yzr54yAxskqvb407TU 4akVHJENdCw+x5qn6MyaTsWhEW2y0jjcyDDzv8iV19+CBxHfho1X6s9VoT484Lot zJoBkw+iKjBrybbxHONHXRUWZHk6rOxsYvmxwnja0uPGk4hsPS+nCxgezCmcVEpl c7XEIXfzw7OTS8NQUzD05E08aByFKWPr -----END CERTIFICATE-----Generated at Tue Oct 21 05:01:31 2025 by rpki-client