$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: 3LdYMaEAEyLK+mgHo37GfWKH9/Kf4FcwkZtI5MDThN0= Subject key identifier: A4:30:49:C9:70:48:19:96:93:A7:A5:1A:FB:1C:87:96:B1:D3:60:91 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 06C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 06B6 Signing time: Tue 04 Nov 2025 22:14:40 +0000 Manifest this update: Tue 04 Nov 2025 22:14:39 +0000 Manifest next update: Tue 11 Nov 2025 22:14:39 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: /vKut9Q2ijGwLUtvQdp3uJLyjkK2kP9keSNcV//b32g=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Nov 4 22:14:39 2025 GMT Not After : Nov 11 22:14:39 2025 GMT Subject: CN=690a7ad0-de5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:28:66:cb:44:2d:db:9d:99:66:a5:58:2a: b6:4c:a2:be:f0:a4:52:30:86:a9:da:69:66:4d:64: 75:38:c2:06:b2:0a:11:9d:d4:6c:88:d3:2d:55:83: 36:54:87:4c:22:c0:68:52:a3:8a:1d:c4:dc:ef:68: dc:54:92:22:b2:dc:6f:52:4d:22:49:d2:62:3a:b6: df:b2:05:b1:96:6c:da:b1:87:f9:79:4f:0b:75:d2: bc:cf:44:f0:c0:34:01:d2:df:6e:4d:f5:5c:84:b8: 31:0d:a1:d5:b4:70:87:47:26:c1:01:1d:b3:d9:a6: a5:7a:3d:0a:d0:2a:8c:28:b6:ef:8d:ec:cf:77:6a: be:dc:42:8b:3a:9d:e4:89:d5:94:48:fc:ed:11:62: 74:3d:22:8a:3c:dd:23:58:e3:ac:c6:9d:a4:23:c9: a5:2a:b6:95:3f:0d:df:fa:9f:b9:85:b8:33:70:3a: b1:6f:08:ec:72:e2:ff:97:64:2b:09:83:a4:a8:9a: 2f:03:0e:b0:7b:b7:45:7c:8c:23:e7:1b:40:52:22: 8f:bf:12:5c:23:8c:fc:5f:7c:84:9c:69:9b:02:e1: d0:6f:09:31:ab:6d:7c:e1:8b:4e:4b:7b:c6:66:14: 46:b9:1d:d4:d1:e6:b5:1e:a4:e3:fa:1e:df:a7:09: a2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:30:49:C9:70:48:19:96:93:A7:A5:1A:FB:1C:87:96:B1:D3:60:91 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:6e:22:fb:e1:ee:a8:a0:c5:52:ce:2c:d1:a2:1a:d8:9c:49: a6:c4:df:6d:ed:bd:5d:0d:e1:97:85:86:12:43:61:8e:2b:66: 9c:b1:9a:ee:ee:31:1e:83:14:b4:9b:b0:76:09:a3:76:f4:2e: 40:5b:3e:b5:1e:be:24:a6:c9:bd:04:e9:d6:38:a2:bf:4e:b2: 68:7d:0e:61:63:ae:de:f5:32:05:28:19:cf:a7:cf:19:63:66: db:cf:c7:34:0a:29:da:0c:4f:e1:a7:65:79:62:ea:44:67:38: 0f:6d:d0:46:78:b4:5f:2e:5e:37:e8:35:49:75:7e:a9:49:cb: c8:21:ba:4f:cd:84:7b:51:31:26:21:8f:ed:fe:b8:41:7d:f8: a9:21:16:0e:76:49:c3:45:1a:a2:00:d4:bb:06:19:5c:81:33: d4:90:e1:42:9d:df:84:36:da:b3:6c:c5:0d:4a:af:3e:43:ca: 22:9d:fb:0d:04:46:d1:81:62:d9:05:06:94:fe:78:c9:45:e2: ba:f3:1a:5d:cc:b7:1b:fc:c5:f6:81:3d:b6:94:8d:73:ea:95: 9b:47:71:ec:96:8a:7d:9d:73:11:4f:7e:d4:b9:e9:e4:78:72: 5a:40:2a:ba:ef:1b:15:ae:a4:db:9f:d0:20:16:d6:c6:39:8e: 88:ca:a0:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUxMTA0MjIxNDM5WhcNMjUxMTExMjIxNDM5WjAYMRYwFAYD VQQDEw02OTBhN2FkMC1kZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC4oZstELdudmWalWCq2TKK+8KRSMIap2mlmTWR1OMIGsgoRndRsiNMtVYM2 VIdMIsBoUqOKHcTc72jcVJIistxvUk0iSdJiOrbfsgWxlmzasYf5eU8LddK8z0Tw wDQB0t9uTfVchLgxDaHVtHCHRybBAR2z2aalej0K0CqMKLbvjezPd2q+3EKLOp3k idWUSPztEWJ0PSKKPN0jWOOsxp2kI8mlKraVPw3f+p+5hbgzcDqxbwjscuL/l2Qr CYOkqJovAw6we7dFfIwj5xtAUiKPvxJcI4z8X3yEnGmbAuHQbwkxq2184YtOS3vG ZhRGuR3U0ea1HqTj+h7fpwmiTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQwSclw SBmWk6elGvsch5ax02CRMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYbiL74e6ooMVSzizRohrYnEmmxN9t7b1dDeGXhYYSQ2GOK2acsZru 7jEegxS0m7B2CaN29C5AWz61Hr4kpsm9BOnWOKK/TrJofQ5hY67e9TIFKBnPp88Z Y2bbz8c0CinaDE/hp2V5YupEZzgPbdBGeLRfLl436DVJdX6pScvIIbpPzYR7UTEm IY/t/rhBffipIRYOdknDRRqiANS7BhlcgTPUkOFCnd+ENtqzbMUNSq8+Q8oinfsN BEbRgWLZBQaU/njJReK68xpdzLcb/MX2gT22lI1z6pWbR3Hslop9nXMRT37Uuenk eHJaQCq67xsVrqTbn9AgFtbGOY6IyqAL -----END CERTIFICATE-----Generated at Wed Nov 5 06:01:51 2025 by rpki-client