$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: 7WLy4SNSQDwo1a5wfV5YdPZ8anT86kHC+pRByPM+3D0= Subject key identifier: B4:78:A5:C3:D6:E0:BA:31:33:26:0F:88:43:F0:FF:B7:99:C5:5A:0F Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0623 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 061E Signing time: Sun 19 Oct 2025 00:23:10 +0000 Manifest this update: Sun 19 Oct 2025 00:23:09 +0000 Manifest next update: Sun 26 Oct 2025 00:23:09 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: 96hobqaOEIjJyZSxgRRt82ElYbzpeneRHQWOY4K9sNc=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1571 (0x623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Oct 19 00:23:09 2025 GMT Not After : Oct 26 00:23:09 2025 GMT Subject: CN=68f42f6d-5bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:23:0d:9b:e1:43:6e:4e:fe:be:28:63:e7:fc: ce:b7:15:08:8b:f4:37:6d:6b:e4:bd:72:de:8b:e9: ac:e7:9d:5e:c2:96:a8:d8:b9:93:70:e7:97:14:ea: 91:69:56:f1:48:a2:59:e8:58:a9:fd:1d:21:ab:da: 55:f1:0c:6f:a8:7f:dc:95:53:e3:d0:e9:62:1b:74: be:85:ff:7e:34:86:f4:dd:09:71:81:75:35:ab:24: 06:de:f0:00:0c:47:fc:58:b6:25:ab:0c:9b:14:8a: de:7a:17:73:27:11:2b:1c:58:68:15:23:31:c6:85: d8:f8:30:32:41:b1:98:1c:6f:b2:48:c3:72:0f:ff: 33:5b:21:23:07:28:ef:03:f2:15:d9:1b:f0:e6:3b: ee:79:b1:75:20:42:91:57:2a:2f:e5:54:2e:b1:46: 59:e4:d7:6d:9e:c4:1a:7d:f6:ba:a5:71:49:9a:05: 02:7e:98:d4:dc:c8:bd:25:66:d2:fa:37:ae:97:b7: c0:6c:a0:66:5f:49:73:b4:1e:b1:db:a0:a1:dc:be: ea:f0:17:c4:e7:11:60:29:29:76:13:c5:73:65:b6: 1a:3b:6b:e2:82:0f:11:d4:ce:d7:9f:45:59:83:9d: ad:39:cb:de:23:8d:35:e1:6e:1f:2a:12:e3:c1:33: e6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:78:A5:C3:D6:E0:BA:31:33:26:0F:88:43:F0:FF:B7:99:C5:5A:0F X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:1c:64:d9:f2:d2:b0:1b:17:1f:6b:7c:a0:94:30:86:00:e5: ca:51:f7:2c:9e:73:03:16:6c:7f:b6:f4:cb:72:58:87:3b:8f: 4e:e0:90:f0:38:19:d8:37:65:04:8f:65:e5:21:ee:b3:3d:cd: 68:89:c5:f3:7e:79:c1:68:30:55:02:15:3a:6d:55:fb:dd:f8: 96:53:9e:98:3d:c3:c8:c4:b8:3a:42:2e:fd:86:de:be:d5:c5: fb:a7:28:12:0d:d3:a9:22:32:6d:99:a0:d1:c2:e7:ae:01:7e: 58:94:3c:44:e0:0b:71:06:eb:98:78:9a:75:ea:76:0e:e4:26: c7:28:5a:68:72:95:22:63:59:df:38:f7:e4:a5:4f:12:d5:4e: 7f:8d:be:7f:1e:95:c5:8e:5e:e1:0a:56:8b:3d:db:61:ac:50: 0e:73:88:bc:ae:95:ab:78:ea:2c:2d:97:ec:25:ea:bc:bd:d1: 62:d5:59:18:6a:32:26:a9:14:61:e5:c1:db:2a:39:c9:b3:7e: 38:aa:45:7a:e2:1c:0b:48:64:c2:db:46:51:28:e4:0c:43:51: 26:37:06:b8:91:6b:a0:06:5b:d7:fc:60:f8:8e:88:fc:53:1c: ab:b4:8b:ae:f8:6a:59:ad:ea:85:c4:d1:66:0b:16:4a:2d:bc: 5c:48:d7:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUxMDE5MDAyMzA5WhcNMjUxMDI2MDAyMzA5WjAYMRYwFAYD VQQDEw02OGY0MmY2ZC01YmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yMNm+FDbk7+vihj5/zOtxUIi/Q3bWvkvXLei+ms551ewpao2LmTcOeXFOqR aVbxSKJZ6Fip/R0hq9pV8QxvqH/clVPj0OliG3S+hf9+NIb03QlxgXU1qyQG3vAA DEf8WLYlqwybFIreehdzJxErHFhoFSMxxoXY+DAyQbGYHG+ySMNyD/8zWyEjByjv A/IV2Rvw5jvuebF1IEKRVyov5VQusUZZ5NdtnsQaffa6pXFJmgUCfpjU3Mi9JWbS +jeul7fAbKBmX0lztB6x26Ch3L7q8BfE5xFgKSl2E8VzZbYaO2vigg8R1M7Xn0VZ g52tOcveI4014W4fKhLjwTPmAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLR4pcPW 4LoxMyYPiEPw/7eZxVoPMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuHGTZ8tKwGxcfa3yglDCGAOXKUfcsnnMDFmx/tvTLcliHO49O4JDw OBnYN2UEj2XlIe6zPc1oicXzfnnBaDBVAhU6bVX73fiWU56YPcPIxLg6Qi79ht6+ 1cX7pygSDdOpIjJtmaDRwueuAX5YlDxE4AtxBuuYeJp16nYO5CbHKFpocpUiY1nf OPfkpU8S1U5/jb5/HpXFjl7hClaLPdthrFAOc4i8rpWreOosLZfsJeq8vdFi1VkY ajImqRRh5cHbKjnJs344qkV64hwLSGTC20ZRKOQMQ1EmNwa4kWugBlvX/GD4joj8 UxyrtIuu+GpZreqFxNFmCxZKLbxcSNdW -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:12 2025 by rpki-client