$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: EkALvu2npkF8Iv6JZV5Raul37Z+4El8lZ59WEILgURU= Subject key identifier: F0:86:A9:25:74:E4:34:75:49:14:0C:3E:E1:13:6A:65:F1:FA:3C:5E Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 6D Signing time: Sun 19 Oct 2025 10:17:51 +0000 Manifest this update: Sun 19 Oct 2025 10:17:50 +0000 Manifest next update: Sun 26 Oct 2025 10:17:50 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: l6waeGl4IqlSrs5NWCgrQxzEfBD0YRdrjIFywIeBCq4=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Oct 19 10:17:50 2025 GMT Not After : Oct 26 10:17:50 2025 GMT Subject: CN=68f4bacf-cbbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:10:4c:21:96:9e:66:02:f5:a0:2e:af:3e:54: fc:96:82:e1:b2:3a:d1:a6:9f:9a:0a:4e:8b:98:9c: d6:03:4d:11:ac:51:0c:6d:f6:9f:97:da:e9:e3:0d: b6:61:c8:75:6c:16:6a:ea:5c:83:7b:a3:16:dd:a7: d0:fa:d3:ae:f2:c6:90:a4:ee:4c:b7:a3:94:cf:44: 63:6b:5e:51:1f:74:3e:3b:41:d2:00:5f:99:1e:de: fa:64:fe:ca:c3:ef:0a:38:37:ef:b9:71:c5:84:84: e1:d7:d7:14:65:af:3f:e7:53:57:da:a9:45:86:7d: c5:ae:fc:0b:d6:c3:99:4d:f1:df:4f:e6:0d:e4:4b: 16:8c:66:24:3c:e7:8b:2f:ad:24:ed:fc:41:4f:3e: 92:5c:da:92:40:eb:fb:fc:56:47:10:11:84:9f:39: 29:f2:39:03:b4:74:27:6b:ca:c4:6f:a2:56:50:52: 8e:e3:ea:77:e5:89:6b:a4:85:75:ae:aa:41:5d:0c: 77:ce:f5:ea:a7:ff:18:ea:1f:a3:69:c4:51:b2:ec: 08:17:60:d3:8a:c2:64:db:05:aa:3e:70:36:ae:48: 21:4b:e2:3e:46:99:e2:8b:3b:c6:23:7a:a1:87:9d: ac:1c:5a:45:0f:b0:5e:56:86:b4:a5:24:a7:75:17: b5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:86:A9:25:74:E4:34:75:49:14:0C:3E:E1:13:6A:65:F1:FA:3C:5E X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:e5:00:89:7c:b1:10:74:5a:5c:c4:81:8e:cb:85:5e:1c:be: 8d:7a:ce:82:b1:f3:69:4f:ef:0a:79:36:92:90:71:01:bb:78: 05:47:ce:4d:54:01:10:87:d8:5f:8b:40:ff:a0:fe:b2:89:23: 30:11:4f:8e:d6:2b:11:bf:29:ba:df:3c:32:9b:75:ef:dc:35: a5:d9:c4:00:d8:e5:89:8c:a9:6e:b2:dd:92:e4:97:07:21:92: 5a:83:9b:ab:94:b7:14:27:71:15:8d:e2:5f:23:3b:de:8d:13: 61:96:c1:3d:c7:d3:18:6a:0f:6b:9d:d1:2b:5d:01:1b:4e:86: dc:75:7d:82:48:3c:09:4f:df:14:74:2b:7b:8b:65:1c:38:16: c2:c4:27:0c:ad:b5:6c:ec:29:b2:30:f3:98:23:a6:b7:90:d6: 81:84:6e:22:60:e3:89:34:48:75:df:db:87:cc:93:ef:59:b8: ae:c2:c4:60:e6:31:0d:b9:45:e8:7d:fb:77:6d:02:a3:8a:cb: d9:d8:d1:56:11:d1:6d:e0:34:f5:00:c5:5e:86:8c:68:6c:07: da:08:ab:a5:74:6f:8f:a3:37:e3:74:56:e8:fb:52:5d:74:24: 25:cd:53:cd:e4:ac:e7:25:fa:38:1e:70:f5:10:bc:98:dd:22: 63:5f:ac:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REJCMDExMC8GA1UEBRMoRkVEODRFOUZFMDE1OUE5OTM3QTIxOTNBMEI3REJBMjNC NkMyNjVCODAeFw0yNTEwMTkxMDE3NTBaFw0yNTEwMjYxMDE3NTBaMBgxFjAUBgNV BAMTDTY4ZjRiYWNmLWNiYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClEEwhlp5mAvWgLq8+VPyWguGyOtGmn5oKTouYnNYDTRGsUQxt9p+X2unjDbZh yHVsFmrqXIN7oxbdp9D6067yxpCk7ky3o5TPRGNrXlEfdD47QdIAX5ke3vpk/srD 7wo4N++5ccWEhOHX1xRlrz/nU1faqUWGfcWu/AvWw5lN8d9P5g3kSxaMZiQ854sv rSTt/EFPPpJc2pJA6/v8VkcQEYSfOSnyOQO0dCdrysRvolZQUo7j6nfliWukhXWu qkFdDHfO9eqn/xjqH6NpxFGy7AgXYNOKwmTbBao+cDauSCFL4j5GmeKLO8YjeqGH nawcWkUPsF5WhrSlJKd1F7UfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8IapJXTk NHVJFAw+4RNqZfH6PF4wHwYDVR0jBBgwFoAU/thOn+AVmpk3ohk6C326I7bCZbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEQkIwL0U2NTNFNTEyMDdF RDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1pi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3RoT24tQVZtcGszb2hrNkMzMjZJN2JDWmJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE QkIwL0U2NTNFNTEyMDdFRDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBr M29oazZDMzI2STdiQ1piZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHLlAIl8sRB0WlzEgY7LhV4cvo16zoKx82lP7wp5NpKQcQG7eAVHzk1U ARCH2F+LQP+g/rKJIzART47WKxG/KbrfPDKbde/cNaXZxADY5YmMqW6y3ZLklwch klqDm6uUtxQncRWN4l8jO96NE2GWwT3H0xhqD2ud0StdARtOhtx1fYJIPAlP3xR0 K3uLZRw4FsLEJwyttWzsKbIw85gjpreQ1oGEbiJg44k0SHXf24fMk+9ZuK7CxGDm MQ25Reh9+3dtAqOKy9nY0VYR0W3gNPUAxV6GjGhsB9oIq6V0b4+jN+N0Vuj7Ul10 JCXNU83krOcl+jgecPUQvJjdImNfrO8= -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:26 2025 by rpki-client