$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: ukNNTT4qtj51VJaKQZQsuwiMtXP/9rHiPLyfefRekz8= Subject key identifier: 0C:24:77:E2:CD:B5:0E:C8:A2:CE:8B:C6:A8:FE:7D:5E:8A:84:16:DF Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 6E Signing time: Mon 27 Oct 2025 09:21:38 +0000 Manifest this update: Mon 27 Oct 2025 09:21:38 +0000 Manifest next update: Mon 03 Nov 2025 09:21:38 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: G+/BAehqIqWPg/n/P1eDD9aUHWqb71BiV4AgXjvBgak=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: S0xpbapYuUp7EVUcnIqHkGByKZFeAz8MROSbzxDfhw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 08:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Oct 27 09:21:38 2025 GMT Not After : Nov 3 09:21:38 2025 GMT Subject: CN=68ff39a2-951f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f5:9b:22:f7:ca:c0:c4:d0:f4:27:53:ec:58: 45:34:00:69:2b:59:a9:6b:76:f6:04:ee:f6:d2:f1: 66:7f:7c:b3:4c:1d:f9:10:df:ea:3c:2e:6f:b8:f4: 2d:2c:34:e5:3e:c3:65:c2:7e:7b:38:1b:a6:53:0f: a6:6e:d9:22:78:9f:a3:c9:38:1a:99:a9:3b:e7:5a: 24:71:2e:99:cc:4b:47:7f:da:0e:04:d0:d7:e5:7d: f7:e9:4b:a8:6f:2b:fa:58:63:fd:9c:52:ed:b7:72: 00:41:f6:6d:87:35:77:0c:97:b9:10:f7:22:37:77: 36:73:a1:77:54:d3:de:dc:b6:37:10:f5:91:3c:a9: 80:ef:3c:89:2b:b4:84:70:6b:17:21:a4:9d:3f:46: b6:25:83:52:1a:49:3f:61:01:ad:19:11:ee:f3:c9: 59:cd:b3:a2:42:f1:17:97:df:36:e0:99:45:4b:c2: 6b:14:69:d0:71:3c:90:e5:5e:8d:d3:17:4f:25:39: 81:3d:d3:3f:4b:99:60:6b:e4:1b:77:ee:65:18:7b: 2c:30:a4:63:01:06:a5:15:0a:49:24:08:4e:96:f0: 05:87:e4:2f:fb:7b:1d:cd:3d:9c:3c:9e:ee:a4:aa: ba:c7:cf:95:36:eb:5a:70:5a:a9:d8:c4:f7:37:f4: f3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:24:77:E2:CD:B5:0E:C8:A2:CE:8B:C6:A8:FE:7D:5E:8A:84:16:DF X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:1d:79:34:a8:99:97:1d:52:ef:1a:f0:eb:7f:e3:fb:8a:e0: e4:b8:f3:c6:9b:10:1f:90:70:c5:3f:c3:d5:66:be:65:78:47: 5b:30:a5:58:59:3b:5f:31:9e:ad:af:65:89:ec:d7:53:35:3f: 87:88:85:af:52:a4:9b:53:8e:50:d1:95:9a:0d:15:0e:42:a4: e0:1e:a9:61:a8:10:d6:10:be:23:e1:a5:c3:a5:7e:f5:ca:7e: fc:9c:bb:14:3b:9a:b4:c6:9a:a0:ee:42:04:7a:0b:c7:7e:90: d7:c7:a0:73:ca:fd:04:2f:fb:bf:db:ce:31:4e:67:ba:ea:08: fa:58:bf:0c:55:27:58:f5:80:9c:4d:97:0b:7d:9b:d9:3c:a7: 0c:db:e5:40:4a:f4:9e:d1:f0:bd:5d:b1:71:eb:28:f6:59:d9: 61:c7:d5:c0:68:25:35:6f:5a:4f:7a:18:98:82:de:7b:0d:0b: ef:6a:52:bc:ae:f8:64:25:7a:4a:b1:61:b5:4f:14:6d:24:86: 33:35:b3:ae:1f:24:cf:b6:e5:eb:70:67:e9:eb:69:7d:59:4e: b3:dc:e6:ce:b9:9f:8a:6a:79:6e:ac:98:81:12:bb:77:ca:cd: 94:1d:98:51:fe:a5:cb:a6:b7:6a:ff:b8:e7:83:f5:24:e4:5b: dc:b0:19:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTEwMjcwOTIxMzhaFw0yNTExMDMwOTIxMzhaMBgxFjAUBgNV BAMTDTY4ZmYzOWEyLTk1MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa9Zsi98rAxND0J1PsWEU0AGkrWalrdvYE7vbS8WZ/fLNMHfkQ3+o8Lm+49C0s NOU+w2XCfns4G6ZTD6Zu2SJ4n6PJOBqZqTvnWiRxLpnMS0d/2g4E0NflfffpS6hv K/pYY/2cUu23cgBB9m2HNXcMl7kQ9yI3dzZzoXdU097ctjcQ9ZE8qYDvPIkrtIRw axchpJ0/RrYlg1IaST9hAa0ZEe7zyVnNs6JC8ReX3zbgmUVLwmsUadBxPJDlXo3T F08lOYE90z9LmWBr5Bt37mUYeywwpGMBBqUVCkkkCE6W8AWH5C/7ex3NPZw8nu6k qrrHz5U261pwWqnYxPc39PMvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDCR34s21 DsiizovGqP59XoqEFt8wHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABcdeTSomZcdUu8a8Ot/4/uK4OS488abEB+QcMU/w9VmvmV4R1swpVhZ O18xnq2vZYns11M1P4eIha9SpJtTjlDRlZoNFQ5CpOAeqWGoENYQviPhpcOlfvXK fvycuxQ7mrTGmqDuQgR6C8d+kNfHoHPK/QQv+7/bzjFOZ7rqCPpYvwxVJ1j1gJxN lwt9m9k8pwzb5UBK9J7R8L1dsXHrKPZZ2WHH1cBoJTVvWk96GJiC3nsNC+9qUryu +GQlekqxYbVPFG0khjM1s64fJM+25etwZ+nraX1ZTrPc5s65n4pqeW6smIESu3fK zZQdmFH+pcumt2r/uOeD9STkW9ywGVk= -----END CERTIFICATE-----Generated at Mon Oct 27 11:56:50 2025 by rpki-client