$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft File: 66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json) Hash identifier: JQfSfBIoAWhpXUbHorlkpAm1qKToonpWdcv2/WblXBQ= Subject key identifier: 25:9B:FF:6C:BA:02:B9:60:A9:F2:0A:10:A1:51:8B:E7:2A:28:27:3A Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 Certificate issuer: /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft Manifest number: FA Signing time: Thu 23 Oct 2025 07:04:02 +0000 Manifest this update: Thu 23 Oct 2025 07:04:02 +0000 Manifest next update: Thu 30 Oct 2025 07:04:02 +0000 Files and hashes: 1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: sKsNMsVtnuszZ7SlesJlP0bp1RJpNlhN39uweG//jMI=) 2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: 6SVIugHlnaJdlkKtpec/q8AF54HgJPVuchm8bN57MAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91504D6, serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Validity Not Before: Oct 23 07:04:02 2025 GMT Not After : Oct 30 07:04:02 2025 GMT Subject: CN=68f9d362-6550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:00:14:4a:f6:34:89:49:54:99:34:4c:ea:b8: a0:55:06:d3:42:02:d9:0b:1e:a9:52:36:e1:6d:bd: 82:13:eb:62:13:21:96:bb:a4:f3:e1:d9:f8:54:53: ee:db:f3:05:ca:a8:5c:92:c6:a6:38:af:52:50:87: a8:45:b2:3c:20:52:3c:24:56:d9:3b:48:19:fb:03: 59:53:e3:75:4a:1c:cf:aa:89:e8:71:6a:6b:38:73: 5f:ce:d2:1e:19:89:e9:1a:a1:49:93:fd:f4:23:49: e3:b1:f3:01:00:3f:9b:79:d4:a0:42:06:62:32:07: 97:46:f5:54:3e:d1:2d:5c:55:00:ec:b2:c9:dd:b3: 56:eb:bc:55:f2:bf:c3:48:a5:96:07:15:54:d7:6a: 79:82:75:d1:e8:fd:6e:05:97:30:db:84:c2:90:f5: a3:51:19:3e:5e:de:85:d1:53:29:36:40:93:1f:ea: 06:33:80:25:a3:b2:18:9c:cf:fa:cc:3d:8d:65:24: 7e:ad:29:c2:2e:c4:e7:9f:05:a2:bc:c7:ef:0a:77: 51:f4:b3:59:2d:42:60:1f:70:d2:34:1c:61:49:4d: 4b:48:10:06:72:63:c0:42:0d:70:1a:ed:69:70:4d: 1d:1a:99:c5:ed:72:67:ec:53:4c:4a:b3:6f:65:76: 4a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9B:FF:6C:BA:02:B9:60:A9:F2:0A:10:A1:51:8B:E7:2A:28:27:3A X509v3 Authority Key Identifier: keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b5:f3:5a:13:bf:bd:2e:6d:80:05:00:94:7a:f4:6e:f1:ca: 50:b7:d6:e1:a2:ee:a1:b1:96:3e:0e:06:d1:cd:b4:fc:d9:71: 47:9b:98:a6:9d:8e:bc:74:c1:48:b1:54:0a:45:2d:34:2f:b2: 41:75:7d:a3:e6:ae:a4:7a:29:6c:c5:2f:25:ab:84:43:2a:d7: 8f:1c:09:0d:39:e5:8d:50:61:10:f0:bf:0b:df:04:c9:bc:52: 4a:f8:50:f3:9e:44:1e:29:26:8d:a6:7c:d3:7e:20:3d:b0:4e: f7:6a:1b:df:d2:69:8d:ed:88:00:5c:b9:e0:dc:13:8f:47:cd: a6:d7:84:e5:c4:74:98:d1:14:2f:5e:8a:d7:b1:24:71:21:c3: e4:2c:28:67:b9:fc:23:de:d3:25:1e:47:d9:75:62:7f:00:0b: c1:ce:95:b3:3c:c7:3a:bd:24:d8:f1:d0:54:70:70:8d:47:af: 7e:de:70:7b:08:9a:f5:6f:93:03:68:78:cf:ef:fa:d5:28:b2: 2f:b0:34:ac:8c:ce:e0:70:91:6a:14:4c:31:29:89:f7:65:fa: b3:6b:c5:61:f5:b5:61:f7:73:46:4a:ee:62:8c:69:bf:b5:f6: 02:2f:d7:7f:5a:02:54:c3:9b:c3:e1:8b:f9:e0:87:36:31:d1: 2f:f9:49:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA0RDYxMTAvBgNVBAUTKEVCQUE0QzQ0RjI0ODkzNzE0QTFENUIzNjBBMkQ3QjJE ODYwNUIxNjMwHhcNMjUxMDIzMDcwNDAyWhcNMjUxMDMwMDcwNDAyWjAYMRYwFAYD VQQDEw02OGY5ZDM2Mi02NTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAAUSvY0iUlUmTRM6rigVQbTQgLZCx6pUjbhbb2CE+tiEyGWu6Tz4dn4VFPu 2/MFyqhcksamOK9SUIeoRbI8IFI8JFbZO0gZ+wNZU+N1ShzPqonocWprOHNfztIe GYnpGqFJk/30I0njsfMBAD+bedSgQgZiMgeXRvVUPtEtXFUA7LLJ3bNW67xV8r/D SKWWBxVU12p5gnXR6P1uBZcw24TCkPWjURk+Xt6F0VMpNkCTH+oGM4Alo7IYnM/6 zD2NZSR+rSnCLsTnnwWivMfvCndR9LNZLUJgH3DSNBxhSU1LSBAGcmPAQg1wGu1p cE0dGpnF7XJn7FNMSrNvZXZKYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWb/2y6 ArlgqfIKEKFRi+cqKCc6MB8GA1UdIwQYMBaAFOuqTETySJNxSh1bNgotey2GBbFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDRENi9BRDBDQUMxRTMx QTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWszRktIVnMyQ2kxN0xZWUZz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzY2cE1SUEpJazNGS0hWczJDaTE3TFlZRnNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDRENi9BRDBDQUMxRTMxQTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWsz RktIVnMyQ2kxN0xZWUZzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJtfNaE7+9Lm2ABQCUevRu8cpQt9bhou6hsZY+DgbRzbT82XFHm5im nY68dMFIsVQKRS00L7JBdX2j5q6keilsxS8lq4RDKtePHAkNOeWNUGEQ8L8L3wTJ vFJK+FDznkQeKSaNpnzTfiA9sE73ahvf0mmN7YgAXLng3BOPR82m14TlxHSY0RQv XorXsSRxIcPkLChnufwj3tMlHkfZdWJ/AAvBzpWzPMc6vSTY8dBUcHCNR69+3nB7 CJr1b5MDaHjP7/rVKLIvsDSsjM7gcJFqFEwxKYn3Zfqza8Vh9bVh93NGSu5ijGm/ tfYCL9d/WgJUw5vD4Yv54Ic2MdEv+Ult -----END CERTIFICATE-----Generated at Thu Oct 23 20:02:23 2025 by rpki-client