$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: qmnPxNR/18MPcbmxtSqFBhXchDKu7s5mwqLgeuDhqCA= Subject key identifier: F0:D7:01:0D:C2:29:D5:E1:D4:E9:8E:43:17:03:81:BF:F3:2D:45:28 Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2D23 Signing time: Sat 18 Oct 2025 16:47:49 +0000 Manifest this update: Sat 18 Oct 2025 16:47:49 +0000 Manifest next update: Sat 25 Oct 2025 16:47:49 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: oYHbKs+KPq5HGLz2jvzvjQ/ZOK7WPlVkdWqL4lBjNv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Oct 18 16:47:49 2025 GMT Not After : Oct 25 16:47:49 2025 GMT Subject: CN=68f3c4b5-cf64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2f:60:68:fb:71:b6:71:2b:23:a1:81:25:fc: 4d:67:dd:ac:0b:0a:20:33:90:4c:ac:0f:91:7d:5b: 4f:b5:57:3d:7e:05:f9:f4:03:d6:1c:ae:f3:aa:02: af:3b:da:d2:4f:bb:34:7f:d8:20:25:a4:67:a9:18: 33:c1:a1:8d:ca:85:27:db:09:d3:27:57:f5:82:06: 29:41:db:f1:85:94:a0:42:68:94:9c:52:56:82:73: e7:ce:38:e6:9b:05:d7:23:35:cf:71:65:5a:a4:3c: 8b:89:ac:df:cb:dc:1d:7f:f9:08:c6:cf:9a:b0:f7: 83:08:fa:87:5b:45:65:ff:fc:93:ec:b7:98:af:9b: 31:b2:95:72:d7:47:8c:27:b8:d9:bc:b1:03:67:71: 22:28:76:42:2d:74:17:a7:22:9c:d5:2d:27:31:02: 91:ca:40:ca:94:21:c5:c3:5f:f5:21:34:57:4e:23: 86:47:3e:88:aa:d0:9e:98:37:1b:b8:5e:d7:2f:e8: bb:5e:53:4f:9f:59:70:8d:f9:e6:26:5f:81:24:d7: 6e:17:c3:57:d9:0c:52:af:c7:30:a7:4b:e7:7c:16: 84:f9:c8:6c:82:ec:e7:4f:3a:9e:4d:4f:7e:c1:63: 41:8d:33:89:55:4f:26:b6:cd:8d:68:53:a8:cb:95: 1b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D7:01:0D:C2:29:D5:E1:D4:E9:8E:43:17:03:81:BF:F3:2D:45:28 X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:51:5a:64:72:7a:dd:f7:76:81:40:89:f8:e2:cb:c6:f0:05: 23:95:b5:3d:ff:ea:03:14:37:b4:c7:39:ba:1f:e7:32:f4:11: fb:2a:ee:a9:39:60:c0:08:68:2f:a3:5f:26:22:20:34:f1:e5: bf:e9:c4:7d:f5:7d:6c:77:eb:db:3b:57:50:f9:6d:6c:16:d6: be:c8:dc:ea:c0:28:0c:dc:9c:e8:81:42:1c:bb:e4:b9:f3:ed: 13:f0:42:fe:65:80:86:5f:0a:ed:7b:eb:43:20:42:fd:95:f0: 21:2a:31:5f:94:ad:fc:35:df:8a:50:3e:8a:8c:cd:8e:fb:14: 13:00:bc:69:56:b0:47:b0:3a:1d:45:35:04:7a:1b:e6:d2:28: 59:a1:de:1b:47:a0:37:ff:f6:a9:2c:83:66:8a:4b:f5:9b:28: 61:2a:af:1c:ff:86:2d:0e:d8:a3:1d:c5:fe:9d:87:a4:7f:d2: f6:d7:99:98:6c:70:d5:01:ae:88:62:f5:0c:ee:c5:12:85:5f: de:cc:61:41:a6:80:2b:6a:fc:2a:d3:f8:60:3b:52:4f:66:1a: 21:c9:81:7c:15:54:a7:8c:9b:bc:3c:ef:5a:ec:f6:63:3d:a1: 03:e6:a2:05:b2:22:b9:8e:3e:e3:66:1a:91:81:5c:17:9f:d0: a6:d3:4c:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUxMDE4MTY0NzQ5WhcNMjUxMDI1MTY0NzQ5WjAYMRYwFAYD VQQDEw02OGYzYzRiNS1jZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7y9gaPtxtnErI6GBJfxNZ92sCwogM5BMrA+RfVtPtVc9fgX59APWHK7zqgKv O9rST7s0f9ggJaRnqRgzwaGNyoUn2wnTJ1f1ggYpQdvxhZSgQmiUnFJWgnPnzjjm mwXXIzXPcWVapDyLiazfy9wdf/kIxs+asPeDCPqHW0Vl//yT7LeYr5sxspVy10eM J7jZvLEDZ3EiKHZCLXQXpyKc1S0nMQKRykDKlCHFw1/1ITRXTiOGRz6IqtCemDcb uF7XL+i7XlNPn1lwjfnmJl+BJNduF8NX2QxSr8cwp0vnfBaE+chsguznTzqeTU9+ wWNBjTOJVU8mts2NaFOoy5UbKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDXAQ3C KdXh1OmOQxcDgb/zLUUoMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYUVpkcnrd93aBQIn44svG8AUjlbU9/+oDFDe0xzm6H+cy9BH7Ku6p OWDACGgvo18mIiA08eW/6cR99X1sd+vbO1dQ+W1sFta+yNzqwCgM3JzogUIcu+S5 8+0T8EL+ZYCGXwrte+tDIEL9lfAhKjFflK38Nd+KUD6KjM2O+xQTALxpVrBHsDod RTUEehvm0ihZod4bR6A3//apLINmikv1myhhKq8c/4YtDtijHcX+nYekf9L215mY bHDVAa6IYvUM7sUShV/ezGFBpoAravwq0/hgO1JPZhohyYF8FVSnjJu8PO9a7PZj PaED5qIFsiK5jj7jZhqRgVwXn9Cm00z8 -----END CERTIFICATE-----Generated at Mon Oct 20 04:25:21 2025 by rpki-client