$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: /92Jwgg6ca8Tic9XX3TJ+2AA5mfCJ3P5YbiWTcWSmMc= Subject key identifier: B8:0E:D7:C1:57:50:B2:54:92:26:76:6E:03:E0:D5:86:93:42:2E:2A Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 011E Signing time: Sun 19 Oct 2025 07:45:48 +0000 Manifest this update: Sun 19 Oct 2025 07:45:47 +0000 Manifest next update: Sun 26 Oct 2025 07:45:47 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: Kb3JTKqFQ0NbwnxoWA+QI2LlYjDvsloL2m3509dAOxs=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Oct 19 07:45:47 2025 GMT Not After : Oct 26 07:45:47 2025 GMT Subject: CN=68f4972c-a900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c0:81:80:a9:25:e2:6a:53:d8:aa:18:2e:92: 0e:6d:e4:1b:10:14:62:01:b1:ae:e2:ba:ef:00:5b: 70:0f:92:19:ba:3c:2e:ec:80:c7:f3:e3:d0:da:04: 78:44:59:73:f4:b6:a5:48:2b:c3:cf:f6:a7:85:47: 66:b8:2d:36:72:cd:e1:c7:0b:f8:1e:12:c1:b6:0b: c2:75:36:dc:6b:bb:90:75:e0:2f:7d:73:e3:23:46: f9:2b:78:e6:25:08:2d:8e:83:3c:2c:c4:ca:9a:79: aa:83:58:8f:b5:c2:e5:43:0e:2f:fb:d4:4d:a4:99: 68:8e:2d:e4:84:92:eb:be:36:8b:7c:eb:07:2d:75: 3a:ae:4c:75:8e:9d:1b:1b:90:3f:3d:7e:f1:e8:23: 8b:ff:21:8b:13:34:14:60:70:85:2b:20:a9:e6:e9: f1:e1:82:25:16:7c:2c:e3:ab:6a:b1:a6:05:e3:12: 60:ba:5a:43:ca:fc:0d:a7:56:d4:b4:0c:ea:60:e5: 62:37:fe:14:9f:51:01:e0:c8:8b:9e:f7:11:73:1f: b9:e5:46:ee:24:95:28:f5:5d:34:aa:92:bc:48:1c: 17:92:93:bb:ce:a2:0c:a9:39:7f:68:a7:f6:59:0d: 8b:33:3a:28:59:fd:29:34:50:7d:fa:1a:de:4d:e6: b6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:0E:D7:C1:57:50:B2:54:92:26:76:6E:03:E0:D5:86:93:42:2E:2A X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ba:f8:f1:8d:2d:0b:9e:61:0f:5b:b0:28:f8:e7:13:ca:5d: 2f:a7:f2:10:60:4f:9d:22:45:f5:29:7a:1c:30:3d:60:78:b2: 72:bf:5a:58:85:fa:ab:7e:c5:65:93:fc:8c:4d:1e:c4:58:0a: 25:4c:48:0b:92:57:e2:4f:ca:96:0e:ec:63:93:ea:71:a3:a3: f0:87:4c:5a:0e:14:da:12:43:4b:8b:e5:af:a4:f5:d8:dd:1a: 6e:ec:5e:76:f2:65:58:81:9c:84:b1:16:f8:3d:87:01:74:5a: 0b:97:ba:92:53:65:eb:e5:e1:56:d8:ea:e2:c8:38:5b:92:25: 7a:b1:bd:6f:d9:12:35:dc:49:b9:02:c1:6e:88:b8:4d:0b:48: da:55:5b:27:20:3d:a0:9a:ca:2c:99:3f:40:42:bb:6b:9e:77: 2e:eb:79:41:10:4e:ef:84:be:a2:3b:10:e2:bd:f5:46:39:cb: e9:63:b5:33:fd:97:62:ef:07:65:a4:e6:d4:c3:87:90:31:ae: 7e:80:08:36:21:7c:85:14:e2:af:52:fd:fe:3a:36:08:16:fe: 32:fd:b7:fa:b3:84:28:03:93:ee:35:77:a7:85:37:53:c8:cf: 76:e1:09:b1:7f:fd:e1:f7:00:1b:55:61:fc:47:a9:0b:25:5a: 64:d4:e4:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUxMDE5MDc0NTQ3WhcNMjUxMDI2MDc0NTQ3WjAYMRYwFAYD VQQDEw02OGY0OTcyYy1hOTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MCBgKkl4mpT2KoYLpIObeQbEBRiAbGu4rrvAFtwD5IZujwu7IDH8+PQ2gR4 RFlz9LalSCvDz/anhUdmuC02cs3hxwv4HhLBtgvCdTbca7uQdeAvfXPjI0b5K3jm JQgtjoM8LMTKmnmqg1iPtcLlQw4v+9RNpJloji3khJLrvjaLfOsHLXU6rkx1jp0b G5A/PX7x6COL/yGLEzQUYHCFKyCp5unx4YIlFnws46tqsaYF4xJgulpDyvwNp1bU tAzqYOViN/4Un1EB4MiLnvcRcx+55UbuJJUo9V00qpK8SBwXkpO7zqIMqTl/aKf2 WQ2LMzooWf0pNFB9+hreTea2WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgO18FX ULJUkiZ2bgPg1YaTQi4qMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhuvjxjS0LnmEPW7Ao+OcTyl0vp/IQYE+dIkX1KXocMD1geLJyv1pY hfqrfsVlk/yMTR7EWAolTEgLklfiT8qWDuxjk+pxo6Pwh0xaDhTaEkNLi+WvpPXY 3Rpu7F528mVYgZyEsRb4PYcBdFoLl7qSU2Xr5eFW2OriyDhbkiV6sb1v2RI13Em5 AsFuiLhNC0jaVVsnID2gmsosmT9AQrtrnncu63lBEE7vhL6iOxDivfVGOcvpY7Uz /Zdi7wdlpObUw4eQMa5+gAg2IXyFFOKvUv3+OjYIFv4y/bf6s4QoA5PuNXenhTdT yM924Qmxf/3h9wAbVWH8R6kLJVpk1OTw -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:14 2025 by rpki-client