$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft File: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft (raw, json) Hash identifier: YbRw7kAf/9O3D/ZRW0vhXYy+KH0NCEyEkXDqMM18ouY= Subject key identifier: C9:03:9F:EA:AC:FF:9F:4E:B1:EC:D6:C2:78:B6:3E:DA:D6:29:CA:63 Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft Manifest number: E6 Signing time: Mon 20 Oct 2025 16:39:51 +0000 Manifest this update: Mon 20 Oct 2025 16:39:50 +0000 Manifest next update: Mon 27 Oct 2025 16:39:50 +0000 Files and hashes: 1: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl (hash: S6q3L3xLZzbR0GULoPG3rlatslVKDBVSwxOoehMEYVw=) 2: D5BFBE9E591811EF80AA9F21C4F9AE02.roa (hash: Be1e/Cdz8VdYcqGFGYCyAGRq8xP47qVzQCL7lbjwbsc=) 3: 626CA672591911EFAF1F1D23C4F9AE02.roa (hash: qW4tv57PdJFsLgd8tlpnpMjIsJF0H5vXkIX6yK4Jq7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Validity Not Before: Oct 20 16:39:50 2025 GMT Not After : Oct 27 16:39:50 2025 GMT Subject: CN=68f665d6-e9db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b4:97:69:35:24:3b:cd:2e:50:ec:0b:e2:bc: 46:f0:f0:55:8e:c3:39:fe:4e:0b:12:99:fa:ac:39: d3:da:2f:7f:55:07:0d:e3:41:b8:92:c3:92:9c:69: b3:7a:ba:d5:5b:51:62:a3:01:f8:03:60:e3:1b:ad: d9:63:2b:2e:8e:7d:41:25:15:46:a2:e7:3d:5f:6a: e9:74:63:a7:41:b4:41:24:02:0e:e1:5e:1a:89:11: b2:81:27:3a:b2:77:19:ee:f9:d3:d9:4e:7a:d3:21: 1e:cf:26:bc:c0:57:de:13:79:b8:7e:d3:88:2a:76: b6:d8:26:2e:c2:1b:ac:6c:ed:a1:19:d0:ed:66:b6: f0:d9:d1:4a:ef:59:bf:1e:27:8d:43:21:aa:7b:63: 51:7b:87:dc:a5:6d:86:cb:63:67:08:25:47:eb:46: 3c:ec:bc:fc:88:47:4b:59:ed:6c:cf:18:3d:d8:00: 46:9b:8c:61:9a:a7:51:df:2b:da:49:eb:91:02:23: 29:8c:49:f8:d0:d0:26:b3:a8:b8:0c:27:c8:3e:3c: 51:ab:3a:44:26:da:25:9d:77:e5:ae:8e:93:24:3f: 61:31:eb:2b:af:28:58:e0:95:24:d4:fa:93:35:e8: f8:9e:bd:3d:84:c4:ce:9d:df:1c:bf:67:26:6b:8d: ae:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:03:9F:EA:AC:FF:9F:4E:B1:EC:D6:C2:78:B6:3E:DA:D6:29:CA:63 X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e6:60:49:01:bd:05:a5:99:14:d1:8c:e8:f6:d4:ce:59:74: 81:77:85:52:e3:c1:4c:e8:56:c5:78:0b:3e:8d:8a:76:a4:c2: d3:99:60:b7:93:10:89:98:76:24:17:02:28:b5:0f:b6:bc:24: 43:71:01:04:28:2b:47:43:98:ec:88:87:b6:e1:33:54:4e:3f: cc:9d:33:1f:73:26:40:4f:8b:54:46:8e:c2:84:0e:08:26:e7: 8c:a4:e8:fa:2d:52:3e:0e:40:62:bf:f9:73:b3:7a:a9:c1:67: f2:68:ac:80:40:9c:2d:42:3d:2a:1c:08:49:f1:09:47:54:14: a5:3a:53:bb:bd:19:8e:ba:84:98:15:80:52:07:e4:ba:17:c7: 96:bb:b7:0e:48:7f:fa:7f:4d:25:23:f1:2f:1c:ba:04:db:57: 7d:7d:c3:bc:ac:70:5b:7f:2f:7e:5e:b6:0c:23:ab:cc:5a:bd: 7e:a6:eb:2e:6d:a2:be:9e:13:88:05:c3:9a:1b:54:bb:62:d1: 97:85:11:ff:20:40:4b:e2:79:3b:5a:81:20:f1:ef:fe:85:a6: 13:15:01:5a:82:00:f0:2e:9d:93:82:e8:44:de:47:19:3a:08: d6:0a:65:a4:e4:fc:b6:a9:87:55:c1:ed:ca:4b:87:46:e5:f0: 20:de:9d:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKDBEQUY0RjFBQzU4MTk4OTMxQUQ1QzAwMDdGNTI1NUE3 OUREMEU0QzcwHhcNMjUxMDIwMTYzOTUwWhcNMjUxMDI3MTYzOTUwWjAYMRYwFAYD VQQDEw02OGY2NjVkNi1lOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bSXaTUkO80uUOwL4rxG8PBVjsM5/k4LEpn6rDnT2i9/VQcN40G4ksOSnGmz errVW1FiowH4A2DjG63ZYysujn1BJRVGouc9X2rpdGOnQbRBJAIO4V4aiRGygSc6 sncZ7vnT2U560yEezya8wFfeE3m4ftOIKna22CYuwhusbO2hGdDtZrbw2dFK71m/ HieNQyGqe2NRe4fcpW2Gy2NnCCVH60Y87Lz8iEdLWe1szxg92ABGm4xhmqdR3yva SeuRAiMpjEn40NAms6i4DCfIPjxRqzpEJtolnXflro6TJD9hMesrryhY4JUk1PqT Nej4nr09hMTOnd8cv2cma42ujQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkDn+qs /59OsezWwni2PtrWKcpjMB8GA1UdIwQYMBaAFA2vTxrFgZiTGtXAAH9SVaed0OTH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80RUJBODQ2RTU4 NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi9EYTlQR3NXQm1KTWExY0FBZjFKVnA1M1E1 TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80RUJBODQ2RTU4NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi9EYTlQR3NXQm1K TWExY0FBZjFKVnA1M1E1TWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO5mBJAb0FpZkU0Yzo9tTOWXSBd4VS48FM6FbFeAs+jYp2pMLTmWC3 kxCJmHYkFwIotQ+2vCRDcQEEKCtHQ5jsiIe24TNUTj/MnTMfcyZAT4tURo7ChA4I JueMpOj6LVI+DkBiv/lzs3qpwWfyaKyAQJwtQj0qHAhJ8QlHVBSlOlO7vRmOuoSY FYBSB+S6F8eWu7cOSH/6f00lI/EvHLoE21d9fcO8rHBbfy9+XrYMI6vMWr1+pusu baK+nhOIBcOaG1S7YtGXhRH/IEBL4nk7WoEg8e/+haYTFQFaggDwLp2TguhE3kcZ OgjWCmWk5Py2qYdVwe3KS4dG5fAg3p08 -----END CERTIFICATE-----Generated at Wed Oct 22 12:12:45 2025 by rpki-client