$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft File: b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json) Hash identifier: IBYiJs2k2uSdEgYHXtQw4lqXhCTIwJA+mWfPRvtGtKs= Subject key identifier: E8:CF:93:80:F9:AF:EC:1B:0E:E4:9B:18:55:B2:90:65:2A:11:B6:5A Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 Certificate issuer: /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft Manifest number: AE Signing time: Sat 25 Oct 2025 09:56:03 +0000 Manifest this update: Sat 25 Oct 2025 09:56:02 +0000 Manifest next update: Sat 01 Nov 2025 09:56:02 +0000 Files and hashes: 1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: 9QtaPYPqCXzJ11lsAOf3hLdbsiMwmO/5o23lvju1GTs=) 2: 31E9AEC6E30411EFBC0C3B2CC4F9AE02.roa (hash: iUCXkP/k8vFDK+xe4w0gGSkxJOnd/FNj32EaA1KJbt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 09:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Validity Not Before: Oct 25 09:56:02 2025 GMT Not After : Nov 1 09:56:02 2025 GMT Subject: CN=68fc9eb2-0bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:54:a2:5b:5f:48:e5:c8:80:38:86:ac:c1:f0: 29:8c:43:7e:36:95:ce:49:e7:73:37:08:bd:fd:0e: f3:15:c3:9f:07:44:ca:17:cb:4f:25:db:6f:3f:f2: 3d:20:2d:17:b1:f0:92:b5:6d:66:9d:91:23:39:37: 63:7e:88:e9:89:cd:f9:13:a5:11:40:fc:49:6b:a9: d5:74:de:7f:73:43:4e:2b:ad:70:b8:cd:7f:23:df: 60:6e:4d:c8:44:90:c9:b4:93:94:cb:a3:3e:57:39: f6:95:a7:a3:99:70:2a:5b:63:2e:ea:39:0d:77:18: 34:f0:18:29:50:d3:c3:8b:a9:10:eb:f7:dc:18:96: 12:50:cf:c5:ce:76:02:e0:ce:01:00:c8:c7:6c:8f: db:13:c7:b9:ab:dc:a4:81:1f:b1:9e:d3:98:71:d6: 77:a9:d5:06:c9:df:9d:83:2d:46:ec:e5:9b:94:7f: a0:20:f3:ff:36:34:44:a2:49:41:35:90:0a:9a:e5: fa:c5:11:2c:39:fc:ed:a6:50:67:b3:84:c0:16:61: 7b:e3:aa:ba:a7:5b:48:3b:4c:9c:48:9b:eb:43:bb: 42:18:13:b6:30:93:47:4b:38:7a:b1:33:b9:46:eb: 3c:b0:ca:f5:84:33:ff:29:51:57:dc:ca:a5:68:9e: ad:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:CF:93:80:F9:AF:EC:1B:0E:E4:9B:18:55:B2:90:65:2A:11:B6:5A X509v3 Authority Key Identifier: keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8f:a7:2f:4f:c6:c8:4f:70:68:ab:ab:c2:54:fc:d4:c0:b2: e9:be:f1:8e:99:35:8e:b8:77:70:5b:12:8f:9e:29:f0:32:4a: 5f:c1:c1:26:54:16:31:7c:89:e6:9f:98:62:96:97:65:70:c0: 79:bf:3e:a6:4f:92:f7:cf:9d:4b:5c:d8:8d:ed:92:35:1b:b5: ed:89:56:3a:54:ce:86:f1:d4:f7:dd:57:3b:d6:32:d3:e6:fb: 07:e9:de:bf:7a:a1:56:05:e2:7b:4f:3d:36:c0:df:31:3c:6e: 1f:b8:2b:45:b5:3a:66:5c:ae:e8:38:96:59:af:9b:42:bd:12: 25:4a:76:61:19:c7:99:15:0d:61:f2:3a:bf:f2:0c:9f:fb:ef: d7:41:12:0d:2e:64:3f:46:d7:a2:69:a7:59:bc:e3:9c:5f:7c: 98:86:7a:e3:17:c1:d7:42:35:73:bc:dd:48:1d:14:06:11:80: 25:1f:ad:06:4f:3a:a3:1c:6c:32:ac:60:ac:37:43:8a:a7:f5: 98:40:51:23:b4:eb:cf:00:ea:0b:6b:11:0d:53:ba:13:40:c3: e1:36:87:bc:9b:7b:d4:03:7b:8b:01:04:73:65:2a:bc:bb:b6: 9e:28:93:aa:64:54:4d:62:5f:60:e9:fb:42:49:a8:78:fe:c0: 59:0b:28:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2RTQxMTAvBgNVBAUTKDZGN0U1OEQwODk2Mzg5RjdFN0ZFNEU4Nzk1QUE1NTVE NUM1NTUxODgwHhcNMjUxMDI1MDk1NjAyWhcNMjUxMTAxMDk1NjAyWjAYMRYwFAYD VQQDEw02OGZjOWViMi0wYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFSiW19I5ciAOIaswfApjEN+NpXOSedzNwi9/Q7zFcOfB0TKF8tPJdtvP/I9 IC0XsfCStW1mnZEjOTdjfojpic35E6URQPxJa6nVdN5/c0NOK61wuM1/I99gbk3I RJDJtJOUy6M+Vzn2laejmXAqW2Mu6jkNdxg08BgpUNPDi6kQ6/fcGJYSUM/FznYC 4M4BAMjHbI/bE8e5q9ykgR+xntOYcdZ3qdUGyd+dgy1G7OWblH+gIPP/NjREoklB NZAKmuX6xREsOfztplBns4TAFmF746q6p1tIO0ycSJvrQ7tCGBO2MJNHSzh6sTO5 Rus8sMr1hDP/KVFX3MqlaJ6tSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjPk4D5 r+wbDuSbGFWykGUqEbZaMB8GA1UdIwQYMBaAFG9+WNCJY4n35/5Oh5WqVV1cVVGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zQUJBODBBQUE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9iMzVZMElsamlmZm5fazZIbGFwVlhWeFZV WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzNVkwSWxqaWZmbl9rNkhsYXBWWFZ4VlVZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zQUJBODBBQUE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9iMzVZMElsamlm Zm5fazZIbGFwVlhWeFZVWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrj6cvT8bIT3Boq6vCVPzUwLLpvvGOmTWOuHdwWxKPninwMkpfwcEm VBYxfInmn5hilpdlcMB5vz6mT5L3z51LXNiN7ZI1G7XtiVY6VM6G8dT33Vc71jLT 5vsH6d6/eqFWBeJ7Tz02wN8xPG4fuCtFtTpmXK7oOJZZr5tCvRIlSnZhGceZFQ1h 8jq/8gyf++/XQRINLmQ/RteiaadZvOOcX3yYhnrjF8HXQjVzvN1IHRQGEYAlH60G TzqjHGwyrGCsN0OKp/WYQFEjtOvPAOoLaxENU7oTQMPhNoe8m3vUA3uLAQRzZSq8 u7aeKJOqZFRNYl9g6ftCSah4/sBZCyiN -----END CERTIFICATE-----Generated at Sun Oct 26 02:54:07 2025 by rpki-client