$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft File: FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft (raw, json) Hash identifier: LlZDvp3t07Gz7o08sYfeZdkQ4khIz8coMEKfkuUu4B8= Subject key identifier: B1:23:54:D8:38:A6:6B:81:D4:0B:78:C9:C3:53:C2:B6:F3:78:DD:01 Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 06AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft Manifest number: 06A6 Signing time: Thu 18 Sep 2025 22:29:23 +0000 Manifest this update: Thu 18 Sep 2025 22:29:22 +0000 Manifest next update: Thu 25 Sep 2025 22:29:22 +0000 Files and hashes: 1: FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl (hash: EvcecXn7I6BvVTudLTkwFJs+2Cb9/Z2DkSYHsBWZFcU=) 2: D240E2EE814D11EBB1CE367FC4F9AE02.roa (hash: OcDk0+b+7yUXsyGIwS3/BcoBm4sD7lmajtFFAPMecA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131, serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Validity Not Before: Sep 18 22:29:22 2025 GMT Not After : Sep 25 22:29:22 2025 GMT Subject: CN=68cc87c2-03de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2c:be:95:69:08:97:ae:79:eb:c0:c9:63:4e: de:8e:87:5d:5f:b6:85:ba:56:0c:2e:5d:c1:d9:d9: e1:d0:21:0d:66:3d:82:2a:22:97:c7:27:a3:b5:9b: 53:5c:ed:0b:03:b2:f7:c5:18:90:2b:62:d3:a5:b8: c8:4c:13:47:49:24:2b:ef:24:e2:78:81:9f:3f:2d: 89:ce:2c:2e:d2:c4:58:9c:8e:90:af:98:51:55:10: 1e:43:a0:05:ac:cf:42:59:54:c4:ae:08:61:40:7f: d1:80:81:7f:fd:ad:b4:66:86:07:71:f9:6d:b7:39: 7c:b4:e4:d1:a8:f9:66:93:ab:c3:6c:28:44:a1:4a: 34:5c:3d:8b:8a:bd:67:0c:82:bd:53:94:bf:7d:ba: 0c:62:aa:fd:01:3c:ef:fd:43:66:82:3c:57:d1:af: 3f:d6:7b:4b:aa:63:39:d1:e9:48:df:fe:1f:fd:34: f6:f4:86:d4:1f:c6:c0:9f:91:b7:af:3f:cf:16:73: 3b:87:05:59:57:40:6e:17:89:a0:8f:83:de:a7:c6: 35:4e:9b:e4:37:23:fe:f3:2b:7f:2b:65:0f:60:c7: bb:ca:4d:40:bb:c0:4d:55:43:c8:f2:89:85:45:fa: bd:2c:24:ff:94:82:43:8e:32:72:81:fa:df:3c:dc: dd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:23:54:D8:38:A6:6B:81:D4:0B:78:C9:C3:53:C2:B6:F3:78:DD:01 X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:11:68:82:31:ee:42:d8:13:5b:9c:5f:82:68:cd:9d:8e:ab: a0:34:0a:5d:59:52:39:61:2e:71:44:f8:5a:3b:f8:a4:3c:ba: 4f:e0:90:1f:ae:2a:66:75:e9:c0:48:e3:7f:c3:78:6c:c1:d2: 14:60:67:a0:d1:9b:75:09:29:5a:5e:e1:de:1f:73:6c:75:94: 9e:ff:f3:b1:84:9d:94:dc:9e:50:a4:7b:9a:47:b0:b7:82:4f: f4:16:33:a9:91:17:0a:d3:3f:e8:89:17:0b:84:db:c0:8c:93: 51:79:7d:bc:a8:21:43:5a:d7:99:8a:7d:f8:39:9b:88:80:bd: dd:ec:d2:cc:c9:fd:cb:62:4e:a7:48:1f:0a:12:d1:5f:81:2d: 27:d0:46:16:99:76:ea:39:71:db:00:3e:10:a6:ee:77:cb:30: 54:bb:f3:95:78:9d:15:41:5b:46:ae:2c:de:a3:8a:f2:4d:ac: d0:6f:19:75:52:78:74:00:0a:cc:07:85:06:d9:3a:41:9d:d6: 93:94:ed:7d:e5:8f:d4:b4:4a:3b:b4:56:6f:86:bc:b9:d9:09: 0e:4b:0d:a2:5b:c0:1b:f7:5a:02:a9:c2:21:a2:03:25:72:0c: bc:67:5c:55:64:55:9f:58:c2:6a:da:3a:40:99:83:b6:6b:01: d2:ea:a2:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjUwOTE4MjIyOTIyWhcNMjUwOTI1MjIyOTIyWjAYMRYwFAYD VQQDEw02OGNjODdjMi0wM2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Sy+lWkIl65568DJY07ejoddX7aFulYMLl3B2dnh0CENZj2CKiKXxyejtZtT XO0LA7L3xRiQK2LTpbjITBNHSSQr7yTieIGfPy2Jziwu0sRYnI6Qr5hRVRAeQ6AF rM9CWVTErghhQH/RgIF//a20ZoYHcflttzl8tOTRqPlmk6vDbChEoUo0XD2Lir1n DIK9U5S/fboMYqr9ATzv/UNmgjxX0a8/1ntLqmM50elI3/4f/TT29IbUH8bAn5G3 rz/PFnM7hwVZV0BuF4mgj4Pep8Y1TpvkNyP+8yt/K2UPYMe7yk1Au8BNVUPI8omF Rfq9LCT/lIJDjjJygfrfPNzdWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEjVNg4 pmuB1At4ycNTwrbzeN0BMB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjEzMS9CRTRBNkNEMDdENzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZp UloyRHc2NjBpTWwxcWNJX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmEWiCMe5C2BNbnF+CaM2djqugNApdWVI5YS5xRPhaO/ikPLpP4JAf ripmdenASON/w3hswdIUYGeg0Zt1CSlaXuHeH3NsdZSe//OxhJ2U3J5QpHuaR7C3 gk/0FjOpkRcK0z/oiRcLhNvAjJNReX28qCFDWteZin34OZuIgL3d7NLMyf3LYk6n SB8KEtFfgS0n0EYWmXbqOXHbAD4Qpu53yzBUu/OVeJ0VQVtGrizeo4ryTazQbxl1 Unh0AArMB4UG2TpBndaTlO195Y/UtEo7tFZvhry52QkOSw2iW8Ab91oCqcIhogMl cgy8Z1xVZFWfWMJq2jpAmYO2awHS6qLl -----END CERTIFICATE-----Generated at Fri Sep 19 06:50:36 2025 by rpki-client