$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: qrqiaUlwBXpelsuIvNxaHHeTyn/pbCV0zz1AOGM1n6I= Subject key identifier: 62:53:F6:51:0F:74:27:41:38:64:0F:03:2F:34:82:38:98:12:30:7A Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: 0178 Signing time: Mon 03 Nov 2025 03:44:33 +0000 Manifest this update: Mon 03 Nov 2025 03:44:33 +0000 Manifest next update: Mon 10 Nov 2025 03:44:33 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: fuTP8YH/oJAB5JVXZfAPFBGiEB7ucoi5wthTlMHD4aQ=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: UFjrfeuvHWS1oxtfXr6IVRfPvTnGzzV9TdVJHu2o8cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921, serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Nov 3 03:44:33 2025 GMT Not After : Nov 10 03:44:33 2025 GMT Subject: CN=69082521-f03a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:48:fa:e0:d2:a7:f2:8f:90:3b:6a:fd:e8:27: 4b:d1:04:47:17:1a:7f:d3:b5:c7:ed:39:75:a3:34: f4:b0:0e:c4:3c:ea:c6:09:55:f6:01:46:ff:5d:89: 65:ae:da:3f:39:45:86:b8:ec:ae:54:e9:b3:e4:1a: a2:03:cc:db:a0:2e:bb:21:d1:21:05:41:02:62:09: b5:7f:d0:f4:b1:07:d7:67:eb:2a:d9:b1:4a:c0:ba: 23:d2:35:b1:99:a8:dd:31:ac:fd:d3:d3:31:1f:4d: 3d:18:1a:37:3f:b7:22:79:fa:54:4c:15:7d:c6:1b: 21:0e:97:ec:1e:d5:e1:91:bc:f6:58:07:b5:21:e9: fa:ab:2b:6c:9b:63:83:5c:b8:f9:9e:92:56:94:ca: 11:5f:56:ee:a8:4e:91:06:40:4d:ed:27:3e:6b:a8: bd:7c:86:7c:f7:81:83:f1:b7:77:68:23:69:b6:84: c1:b2:31:cc:2a:bd:79:f4:9f:c5:8f:66:10:cb:4e: 0a:1d:96:97:37:ac:87:53:4b:e8:ef:18:f0:e3:c1: 37:de:1b:f2:12:27:2d:64:a4:b3:6e:76:69:56:98: c8:50:fc:a0:42:ea:5b:83:1e:b9:26:2e:53:80:17: ee:eb:6b:b9:bd:79:fb:5c:fe:5d:a0:c1:b2:b2:61: 77:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:53:F6:51:0F:74:27:41:38:64:0F:03:2F:34:82:38:98:12:30:7A X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b3:47:3f:f6:c9:f2:42:cb:f4:56:d5:67:24:1f:fc:46:52: e5:a3:3d:40:a9:ac:ef:f7:93:81:7b:c2:bc:a6:e6:46:aa:37: 42:a0:f0:df:cb:1d:e8:f7:f0:1d:51:8c:49:fa:9c:3b:83:e5: 37:15:df:d2:2e:46:8d:da:93:2e:5b:eb:82:85:4a:1c:97:6a: ff:a5:16:a0:c6:b4:80:ab:75:ea:ca:a8:f4:e4:2c:48:85:68: f3:f1:79:6d:f8:3c:84:e2:24:38:2d:5c:b4:ff:46:9f:46:f7: fd:9b:17:5f:ed:b5:a1:86:e9:3a:37:70:09:60:12:ca:87:c2: 5d:0c:d3:88:62:44:ca:58:8b:7d:eb:dc:7a:21:c8:d2:1f:93: b7:9b:48:72:5a:8e:ea:ae:32:65:bd:4e:2c:53:38:34:71:36: 46:e1:6e:61:cd:43:f5:1d:54:10:e4:8a:c7:9d:1e:ad:58:a3: 34:f4:af:13:66:50:3f:62:6e:3b:78:e5:33:97:a1:6d:9c:71: f2:bf:2b:85:cc:e7:c8:d1:f9:8c:bb:c8:78:7a:08:e3:1e:f3: b3:d3:90:8b:1b:32:79:d3:6d:10:d1:4f:35:e1:4f:38:11:1b: 14:c4:81:d2:c4:25:42:35:ee:98:22:e4:3e:01:db:9b:0a:f9: b7:8d:d7:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjUxMTAzMDM0NDMzWhcNMjUxMTEwMDM0NDMzWjAYMRYwFAYD VQQDEw02OTA4MjUyMS1mMDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkj64NKn8o+QO2r96CdL0QRHFxp/07XH7Tl1ozT0sA7EPOrGCVX2AUb/XYll rto/OUWGuOyuVOmz5BqiA8zboC67IdEhBUECYgm1f9D0sQfXZ+sq2bFKwLoj0jWx majdMaz909MxH009GBo3P7ciefpUTBV9xhshDpfsHtXhkbz2WAe1Ien6qytsm2OD XLj5npJWlMoRX1buqE6RBkBN7Sc+a6i9fIZ894GD8bd3aCNptoTBsjHMKr159J/F j2YQy04KHZaXN6yHU0vo7xjw48E33hvyEictZKSzbnZpVpjIUPygQupbgx65Ji5T gBfu62u5vXn7XP5doMGysmF3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJT9lEP dCdBOGQPAy80gjiYEjB6MB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVs0c/9snyQsv0VtVnJB/8RlLloz1Aqazv95OBe8K8puZGqjdCoPDf yx3o9/AdUYxJ+pw7g+U3Fd/SLkaN2pMuW+uChUocl2r/pRagxrSAq3Xqyqj05CxI hWjz8Xlt+DyE4iQ4LVy0/0afRvf9mxdf7bWhhuk6N3AJYBLKh8JdDNOIYkTKWIt9 69x6IcjSH5O3m0hyWo7qrjJlvU4sUzg0cTZG4W5hzUP1HVQQ5IrHnR6tWKM09K8T ZlA/Ym47eOUzl6FtnHHyvyuFzOfI0fmMu8h4egjjHvOz05CLGzJ5020Q0U814U84 ERsUxIHSxCVCNe6YIuQ+AdubCvm3jddu -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:11 2025 by rpki-client