$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: d/sQlZoQMxZkdC7Z/gI7PPff6FY/K7XUpYcSD82CCMQ= Subject key identifier: F1:89:80:16:74:59:36:93:45:1C:91:35:43:7E:7B:63:62:28:49:29 Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: 6B Signing time: Sun 19 Oct 2025 10:21:19 +0000 Manifest this update: Sun 19 Oct 2025 10:21:19 +0000 Manifest next update: Sun 26 Oct 2025 10:21:19 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: /uB12vqkhUyOzcZZ8ks41C9g/FvBrNspHXBx+e59/Pk=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: 44vHU0H/9/bs4kOPReZOgC2D0Y7H1F8Nu3vr76cFkxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: Oct 19 10:21:19 2025 GMT Not After : Oct 26 10:21:19 2025 GMT Subject: CN=68f4bb9f-d615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a7:82:a6:77:13:66:ef:2b:06:75:e3:80:83: 24:ba:1f:df:d6:35:a3:ac:dd:15:86:92:14:73:26: 91:5f:60:1f:3d:ee:15:42:08:6a:b6:eb:13:49:37: d7:e8:94:e3:4e:38:b7:d7:28:6c:11:a9:d2:2c:ce: f4:31:71:14:f6:58:37:5f:28:14:47:51:3c:50:2a: 43:f3:38:a5:7c:37:4a:19:38:d5:ef:a0:c4:52:98: 99:b0:91:df:6f:7c:66:da:fb:cc:4f:bf:76:21:9d: f8:0d:a6:93:97:95:f4:c0:7f:00:c1:98:8b:d4:60: 0b:f9:2c:98:38:82:33:42:74:27:4f:c8:a9:50:e0: 93:73:dc:68:fd:88:d0:89:42:d6:b0:b5:e6:65:f7: 5d:29:d8:82:d3:47:bf:97:c1:f0:d7:c5:9d:f7:4c: 4a:eb:65:08:ce:64:ce:57:4d:92:36:24:20:82:1a: 4d:bc:d6:e8:d3:f0:ff:11:d3:57:96:9b:02:32:5b: d1:65:f1:40:c0:14:b4:08:29:36:82:a3:54:be:9a: be:6c:ca:34:48:11:10:ac:9f:88:33:9b:39:d1:cb: 87:57:23:89:18:65:4d:11:5c:c1:5c:11:50:f8:07: ee:0d:e7:d2:eb:79:6f:51:0b:ce:c5:cf:83:a3:7c: 42:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:89:80:16:74:59:36:93:45:1C:91:35:43:7E:7B:63:62:28:49:29 X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0b:a3:43:12:6b:2e:0d:78:58:99:d8:75:7d:76:6d:bb:19: cf:6c:52:aa:3e:76:f5:0a:54:06:6a:dd:0e:a4:d1:c3:8a:2c: d3:92:28:61:86:2d:0f:af:39:7b:5b:70:43:1a:ac:26:ca:74: 75:4d:81:38:ba:b4:30:40:98:a8:db:5e:f6:c9:3a:9a:cc:8e: c3:b7:e4:de:06:3c:a7:2e:5c:63:f6:1a:e3:1e:e2:ba:47:58: 33:e8:9f:41:54:33:22:f5:99:6e:ad:90:32:cb:e1:12:eb:b8: 88:73:11:70:5b:2f:98:6d:0a:7a:dc:20:23:e2:15:29:a5:ad: 85:d9:41:cb:76:5e:1b:e3:31:e5:87:55:88:e3:d8:d4:24:78: b9:a4:a8:c6:8a:d0:52:8a:0d:24:c5:bd:d7:f3:20:ad:2b:d3: 3a:f5:03:60:4d:78:39:55:3f:5f:71:7c:6f:1a:5c:7c:80:91: b1:13:a7:9e:fb:a1:b6:80:01:aa:f9:1c:ed:86:4c:ef:c6:38: ca:f5:dc:dd:e6:70:4b:03:40:ab:cb:cd:6c:40:25:14:c1:7c: 92:ed:ce:69:03:e4:27:01:76:e2:bc:9c:b4:b7:f2:5a:88:c1: 20:fe:24:37:60:78:4c:af:40:40:1a:d7:54:81:a6:2e:5c:6f: cb:0e:0d:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoRTRFNEMyNDI0Nzc4NUMzNDJGRjM1OTA3RjdFMTFDNEFC QjM5OEI4MzAeFw0yNTEwMTkxMDIxMTlaFw0yNTEwMjYxMDIxMTlaMBgxFjAUBgNV BAMTDTY4ZjRiYjlmLWQ2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxp4KmdxNm7ysGdeOAgyS6H9/WNaOs3RWGkhRzJpFfYB897hVCCGq26xNJN9fo lONOOLfXKGwRqdIszvQxcRT2WDdfKBRHUTxQKkPzOKV8N0oZONXvoMRSmJmwkd9v fGba+8xPv3YhnfgNppOXlfTAfwDBmIvUYAv5LJg4gjNCdCdPyKlQ4JNz3Gj9iNCJ QtawteZl910p2ILTR7+XwfDXxZ33TErrZQjOZM5XTZI2JCCCGk281ujT8P8R01eW mwIyW9Fl8UDAFLQIKTaCo1S+mr5syjRIERCsn4gzmznRy4dXI4kYZU0RXMFcEVD4 B+4N59LreW9RC87Fz4OjfEKjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8YmAFnRZ NpNFHJE1Q357Y2IoSSkwHwYDVR0jBBgwFoAU5OTCQkd4XDQv81kH9+EcSrs5i4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzYyMjA2MzNDMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNU9UQ1FrZDRYRFF2ODFrSDktRWNTcnM1aTRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzYyMjA2MzNDMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERR djgxa0g5LUVjU3JzNWk0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGILo0MSay4NeFiZ2HV9dm27Gc9sUqo+dvUKVAZq3Q6k0cOKLNOSKGGG LQ+vOXtbcEMarCbKdHVNgTi6tDBAmKjbXvbJOprMjsO35N4GPKcuXGP2GuMe4rpH WDPon0FUMyL1mW6tkDLL4RLruIhzEXBbL5htCnrcICPiFSmlrYXZQct2XhvjMeWH VYjj2NQkeLmkqMaK0FKKDSTFvdfzIK0r0zr1A2BNeDlVP19xfG8aXHyAkbETp577 obaAAar5HO2GTO/GOMr13N3mcEsDQKvLzWxAJRTBfJLtzmkD5CcBduK8nLS38lqI wSD+JDdgeEyvQEAa11SBpi5cb8sODUk= -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:51 2025 by rpki-client