$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft File: FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft (raw, json) Hash identifier: 2kFW6oO2N2dukl56AYFK6W0K37uRWXQtI4zEPH484zo= Subject key identifier: 8F:0D:47:27:42:3A:70:CB:84:48:88:B4:C7:70:E2:B1:29:C5:9D:14 Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 06C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft Manifest number: 06BC Signing time: Sun 02 Nov 2025 22:07:55 +0000 Manifest this update: Sun 02 Nov 2025 22:07:55 +0000 Manifest next update: Sun 09 Nov 2025 22:07:55 +0000 Files and hashes: 1: FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl (hash: CZyiJ0QLuG+Ylf8qXCHetjPG4I43SYmUB7Un4fXTfHA=) 2: D240E2EE814D11EBB1CE367FC4F9AE02.roa (hash: OcDk0+b+7yUXsyGIwS3/BcoBm4sD7lmajtFFAPMecA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1730 (0x6c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131, serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Validity Not Before: Nov 2 22:07:55 2025 GMT Not After : Nov 9 22:07:55 2025 GMT Subject: CN=6907d63b-0b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1b:97:63:dc:87:30:0d:df:bb:6c:13:17:61: e6:27:be:1c:d2:5f:82:ce:4e:b5:60:69:49:e2:28: d6:da:4c:75:20:eb:58:e9:16:55:45:da:a9:49:cb: c3:36:59:90:69:c3:ab:c1:89:db:4a:40:ca:68:f4: fa:cf:d4:31:78:47:b4:02:14:cd:d6:a1:0f:8f:8e: 18:46:a9:b4:c7:cd:cd:ec:a5:40:b4:bd:dd:15:9c: f8:f8:fa:b2:43:8f:3f:9b:b6:b5:1d:17:06:d5:83: ab:9b:d3:3c:4a:06:36:0a:2c:28:09:cf:8d:63:55: 67:da:8a:66:f3:5b:30:45:06:1e:5f:1a:70:1e:c5: 2e:1b:13:1e:cd:c1:45:e4:c1:24:8a:46:d1:ec:2b: d3:f6:4b:5e:b4:9f:28:3a:54:62:d6:37:a8:da:74: b7:c0:9e:1a:44:b9:93:3b:33:4f:d2:9b:60:58:ca: 2a:4c:48:30:1c:91:91:21:47:62:a9:d2:70:81:6d: af:a7:67:3b:44:8e:52:7a:4c:97:a2:f7:7f:ec:d6: 7c:5f:a7:5c:13:fc:8f:f6:73:9a:32:95:3a:ed:1b: 97:f4:8a:80:17:70:38:e0:57:38:41:0d:01:18:20: de:f8:ed:8e:36:12:ee:8c:e1:0e:04:ce:bd:c2:92: f7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0D:47:27:42:3A:70:CB:84:48:88:B4:C7:70:E2:B1:29:C5:9D:14 X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:76:41:92:8b:c1:b3:66:70:d5:a0:63:67:0e:46:0b:46:17: e8:f5:be:24:c7:55:b6:36:f5:39:30:ea:93:94:7a:97:3e:39: 4a:bb:c4:1e:e2:68:f8:c2:c9:55:0b:da:9f:6d:d2:93:60:24: fe:93:e9:59:93:04:ed:4d:f5:9d:a6:b5:68:bb:4d:87:3c:1c: c7:d3:8b:c5:4f:9a:74:1f:3b:91:ef:85:5e:25:6c:fe:fe:ec: 2c:fb:f9:f8:bf:c0:4d:b9:9c:69:dd:a6:33:ca:65:a8:27:40: 90:63:ef:f0:5d:6d:fa:76:05:75:d3:cc:e6:41:3f:7c:ed:7d: e0:bb:94:b0:ae:99:97:74:72:38:3e:51:c1:12:78:70:6c:1c: 54:4f:3e:c1:7a:6a:df:73:a5:d3:34:17:27:e4:fe:b0:62:d6: eb:36:f0:5e:62:77:06:83:26:c8:df:88:ca:a8:91:35:18:7a: d3:d9:d4:e2:de:d5:6f:99:44:b6:79:d7:14:92:f9:02:9f:fa: 10:bc:4e:11:ca:84:28:1b:a5:9f:ed:b9:43:e9:ba:c0:66:73: 01:ef:8e:40:49:fd:77:d9:12:59:d4:01:e0:ef:fc:d7:ac:ac: 95:0a:5a:82:ec:62:5d:ca:06:69:37:ef:d0:37:28:ac:56:63: 96:cc:77:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjUxMTAyMjIwNzU1WhcNMjUxMTA5MjIwNzU1WjAYMRYwFAYD VQQDEw02OTA3ZDYzYi0wYjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxuXY9yHMA3fu2wTF2HmJ74c0l+Czk61YGlJ4ijW2kx1IOtY6RZVRdqpScvD NlmQacOrwYnbSkDKaPT6z9QxeEe0AhTN1qEPj44YRqm0x83N7KVAtL3dFZz4+Pqy Q48/m7a1HRcG1YOrm9M8SgY2CiwoCc+NY1Vn2opm81swRQYeXxpwHsUuGxMezcFF 5MEkikbR7CvT9ktetJ8oOlRi1jeo2nS3wJ4aRLmTOzNP0ptgWMoqTEgwHJGRIUdi qdJwgW2vp2c7RI5SekyXovd/7NZ8X6dcE/yP9nOaMpU67RuX9IqAF3A44Fc4QQ0B GCDe+O2ONhLujOEOBM69wpL3/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8NRydC OnDLhEiItMdw4rEpxZ0UMB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjEzMS9CRTRBNkNEMDdENzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZp UloyRHc2NjBpTWwxcWNJX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmdkGSi8GzZnDVoGNnDkYLRhfo9b4kx1W2NvU5MOqTlHqXPjlKu8Qe 4mj4wslVC9qfbdKTYCT+k+lZkwTtTfWdprVou02HPBzH04vFT5p0HzuR74VeJWz+ /uws+/n4v8BNuZxp3aYzymWoJ0CQY+/wXW36dgV108zmQT987X3gu5SwrpmXdHI4 PlHBEnhwbBxUTz7Bemrfc6XTNBcn5P6wYtbrNvBeYncGgybI34jKqJE1GHrT2dTi 3tVvmUS2edcUkvkCn/oQvE4RyoQoG6Wf7blD6brAZnMB745ASf132RJZ1AHg7/zX rKyVClqC7GJdygZpN+/QNyisVmOWzHeK -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:12 2025 by rpki-client