$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft File: 0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft (raw, json) Hash identifier: KKlq522lnsjGzRNZhP4draHnqy56pXRYRt4AreYFxzg= Subject key identifier: 3C:6C:58:F3:9D:46:66:1B:E0:BF:8B:B8:EE:A8:2B:F9:27:D7:CE:7E Authority key identifier: D0:E0:3A:C0:97:DC:00:12:9D:03:25:3F:1C:9D:D7:6D:2A:71:D8:F4 Certificate issuer: /CN=A91EB820/serialNumber=D0E03AC097DC00129D03253F1C9DD76D2A71D8F4 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft Manifest number: 2F Signing time: Sun 19 Oct 2025 11:11:40 +0000 Manifest this update: Sun 19 Oct 2025 11:11:39 +0000 Manifest next update: Sun 26 Oct 2025 11:11:39 +0000 Files and hashes: 1: 0OA6wJfcABKdAyU_HJ3XbSpx2PQ.crl (hash: 8SpqCK+hYd6EBwP7uqaIYKTu3aoO3emplNgmDV4fSb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.crl rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB820, serialNumber=D0E03AC097DC00129D03253F1C9DD76D2A71D8F4 Validity Not Before: Oct 19 11:11:39 2025 GMT Not After : Oct 26 11:11:39 2025 GMT Subject: CN=68f4c76c-e97d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1b:41:90:93:2d:6c:c2:dd:ea:9c:52:24:8f: 7d:bd:2c:7d:c2:00:2a:f1:50:2f:f2:1f:77:12:f6: db:ea:34:f6:c5:54:2f:8a:db:ef:38:a0:42:6d:fe: 46:94:96:2e:e2:7b:43:fa:74:4b:ef:19:53:c3:87: 80:ce:29:a0:b6:a5:b2:7c:48:f5:63:95:ac:4f:0a: 9c:87:09:3c:bc:40:aa:0b:95:85:76:3d:ed:7b:6d: ca:1c:c6:05:f1:66:bf:11:8d:b4:a0:b2:36:3d:c4: 83:49:c0:f8:0c:1e:c1:47:5d:1d:6a:88:24:e9:93: 01:f0:0a:13:45:73:84:65:ac:dd:fa:01:7c:95:cd: 51:4c:df:64:f4:3f:8c:5d:f6:5f:b1:8f:02:62:03: b4:23:b4:35:7e:cf:30:8c:49:45:84:ca:97:f1:38: 3c:26:50:e9:00:e9:77:31:80:8d:0e:a6:f4:6f:0b: 0e:b7:cd:52:03:f4:fd:5b:23:b0:71:37:dc:df:e0: 63:be:af:e2:76:20:76:da:ee:b2:b9:af:a9:bb:30: b4:e2:79:20:b2:6e:16:3f:68:8c:1b:d1:91:f5:df: 3d:4f:95:cf:f9:46:bc:43:2e:65:2f:7e:95:37:a9: ce:69:04:ac:4b:be:28:5c:27:5e:82:69:83:77:3b: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6C:58:F3:9D:46:66:1B:E0:BF:8B:B8:EE:A8:2B:F9:27:D7:CE:7E X509v3 Authority Key Identifier: keyid:D0:E0:3A:C0:97:DC:00:12:9D:03:25:3F:1C:9D:D7:6D:2A:71:D8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a4:6c:d3:96:87:9a:d7:98:4a:1e:b7:12:c3:fd:97:3b:c2: 54:29:7d:2d:de:e1:dc:14:c4:b4:61:59:58:fa:8e:42:5a:f8: a1:95:fe:b5:ba:e7:82:05:7f:4a:16:57:e9:83:dc:a6:e3:a2: 0d:83:d3:9b:06:f0:9c:ae:a8:e5:4d:da:54:70:b5:03:10:d7: 2f:25:be:a2:e0:44:cc:07:f3:56:21:5f:c0:45:fb:bd:2d:b1: c4:b1:9d:7c:81:ce:9c:96:12:fc:38:30:24:e7:97:f1:e8:a7: 3a:fb:06:b1:87:2b:83:36:10:ac:37:c2:f3:a9:df:37:02:14: 18:5f:1c:b2:3e:a6:53:cb:dc:62:ab:36:e9:1b:60:f8:27:d4: 97:3a:ad:9d:d6:10:4e:a4:08:0f:7a:74:a6:57:7e:9b:fe:1e: 28:79:aa:44:a0:b1:e9:3b:23:07:1b:47:18:8f:b5:b9:1c:c6: fd:46:06:77:e7:86:5f:c9:5d:d7:a0:f8:e1:73:89:2a:df:53: ac:67:2f:c1:41:f0:3c:06:d1:c9:33:23:19:fb:54:93:79:5e: c6:df:23:04:21:2d:a8:c4:c8:59:ed:d0:3d:18:c0:aa:a0:d9: d0:92:10:ab:f7:c4:b4:e5:d0:11:79:44:58:15:63:6a:44:45: 36:3b:e7:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjgyMDExMC8GA1UEBRMoRDBFMDNBQzA5N0RDMDAxMjlEMDMyNTNGMUM5REQ3NkQy QTcxRDhGNDAeFw0yNTEwMTkxMTExMzlaFw0yNTEwMjYxMTExMzlaMBgxFjAUBgNV BAMTDTY4ZjRjNzZjLWU5N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAG0GQky1swt3qnFIkj329LH3CACrxUC/yH3cS9tvqNPbFVC+K2+84oEJt/kaU li7ie0P6dEvvGVPDh4DOKaC2pbJ8SPVjlaxPCpyHCTy8QKoLlYV2Pe17bcocxgXx Zr8RjbSgsjY9xINJwPgMHsFHXR1qiCTpkwHwChNFc4RlrN36AXyVzVFM32T0P4xd 9l+xjwJiA7QjtDV+zzCMSUWEypfxODwmUOkA6XcxgI0OpvRvCw63zVID9P1bI7Bx N9zf4GO+r+J2IHba7rK5r6m7MLTieSCybhY/aIwb0ZH13z1Plc/5RrxDLmUvfpU3 qc5pBKxLvihcJ16CaYN3O1UjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPGxY851G Zhvgv4u47qgr+SfXzn4wHwYDVR0jBBgwFoAU0OA6wJfcABKdAyU/HJ3XbSpx2PQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCODIwLzlBMjJERUM0Njg0 MDExRjBBOTQwNDc2QkM0RjlBRTAyLzBPQTZ3SmZjQUJLZEF5VV9ISjNYYlNweDJQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvME9BNndKZmNBQktkQXlVX0hKM1hiU3B4MlBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC ODIwLzlBMjJERUM0Njg0MDExRjBBOTQwNDc2QkM0RjlBRTAyLzBPQTZ3SmZjQUJL ZEF5VV9ISjNYYlNweDJQUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIukbNOWh5rXmEoetxLD/Zc7wlQpfS3e4dwUxLRhWVj6jkJa+KGV/rW6 54IFf0oWV+mD3Kbjog2D05sG8JyuqOVN2lRwtQMQ1y8lvqLgRMwH81YhX8BF+70t scSxnXyBzpyWEvw4MCTnl/Hopzr7BrGHK4M2EKw3wvOp3zcCFBhfHLI+plPL3GKr NukbYPgn1Jc6rZ3WEE6kCA96dKZXfpv+Hih5qkSgsek7IwcbRxiPtbkcxv1GBnfn hl/JXdeg+OFziSrfU6xnL8FB8DwG0ckzIxn7VJN5XsbfIwQhLajEyFnt0D0YwKqg 2dCSEKv3xLTl0BF5RFgVY2pERTY75/o= -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:24 2025 by rpki-client