$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: 0/2urAWstpajhowIGLJhLm1YSyaNffq5g+mNVpf9s2M= Subject key identifier: DA:A1:52:BE:EC:D7:58:D4:F8:30:50:AE:E0:D6:08:F7:B8:9F:2F:C2 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 0229 Signing time: Mon 03 Nov 2025 01:59:41 +0000 Manifest this update: Mon 03 Nov 2025 01:59:41 +0000 Manifest next update: Mon 10 Nov 2025 01:59:41 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: HegC/I1lkAE+tlzDgcRGG+fz6WBAn2VH2CX5453PQp8=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: ZxJWdKT+dhhJyfungVSpx3334JD5sGMO+S5A+zHFl74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0, serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: Nov 3 01:59:41 2025 GMT Not After : Nov 10 01:59:41 2025 GMT Subject: CN=69080c8d-84ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:18:c1:b8:ae:67:7a:fe:58:bb:80:c7:8d:24: 1a:f9:09:56:b4:0a:fa:5f:59:02:35:82:cc:c1:dc: 19:fc:44:2c:1f:63:d8:8a:cd:d9:46:4e:ca:83:38: 8a:3b:0c:cb:5a:83:60:d9:e7:da:19:8c:09:17:ff: 77:5a:9a:30:dd:80:fa:4e:e9:4a:1b:9e:13:a0:e7: 13:37:47:05:af:9b:22:bf:cc:c5:e9:f7:39:fe:5a: 57:46:5f:7a:6f:28:91:f3:c2:76:37:41:47:b9:f4: 7b:2c:cd:af:eb:77:7b:ad:03:ef:a0:db:55:b9:e5: 19:f2:2b:ce:ae:fd:b2:fe:1b:05:55:b5:75:5e:ab: f2:65:31:e9:9d:9b:52:35:83:e7:51:04:1a:cc:3c: 64:18:c7:03:f0:df:d0:28:a7:16:fa:37:26:a8:78: 8b:fc:4e:f5:be:63:9c:d1:b5:42:09:8a:ff:cf:06: 24:58:ce:90:8e:b7:ff:c7:27:a1:f0:64:23:37:2f: 0a:0e:a7:b4:dc:17:96:d9:4b:8c:d2:94:90:99:94: be:14:d0:48:a9:67:97:cb:23:72:f1:59:83:e0:f0: a1:17:90:2b:e4:87:a3:f2:e9:0f:27:aa:2b:af:29: 9c:c9:68:c3:ef:7e:17:32:12:9c:d5:25:39:b3:23: 3d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A1:52:BE:EC:D7:58:D4:F8:30:50:AE:E0:D6:08:F7:B8:9F:2F:C2 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d2:9a:34:1d:e9:27:b9:e5:4b:23:b7:6d:51:53:1a:1e:29: 2b:2a:03:d2:eb:8e:21:b1:f7:53:1f:34:41:2f:8f:4d:9f:ff: 84:57:e5:b7:9e:1a:ef:f0:e0:91:2b:2c:fd:c0:b5:2b:10:2b: 13:ef:c2:30:64:91:c9:1f:fe:1c:4a:0e:8a:58:d8:67:96:3b: fe:4e:84:fc:46:1d:20:0d:5b:e6:7f:6e:38:ce:fe:5c:63:45: eb:4a:5f:b3:26:84:08:f5:c1:91:da:80:f8:b7:49:e7:30:3d: b9:bb:32:e7:9e:ad:95:a4:ba:6f:7b:cc:d4:24:77:c1:94:eb: c1:19:bc:7b:39:e0:76:b9:2a:e4:1f:75:c4:72:7b:a0:06:51: 03:4e:af:39:1b:cd:32:aa:f9:2c:06:5c:53:e1:31:6e:c3:dc: fe:ce:12:c5:c1:52:d0:a8:56:7c:2c:5a:76:a8:a6:e4:fc:ae: 25:4c:ff:3a:a4:5e:e1:8b:ed:56:d0:6e:f6:be:ff:04:1a:41: 11:1b:7a:0c:d2:2a:64:5b:f6:76:3c:0b:40:1c:9c:c7:bf:04: a3:09:5f:d1:1e:76:0c:af:b8:36:c3:9f:14:bd:b4:1d:57:57: 18:86:b5:4b:2f:3a:84:d8:e4:5c:ff:97:df:8e:89:90:a3:d3: 0c:71:5f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjUxMTAzMDE1OTQxWhcNMjUxMTEwMDE1OTQxWjAYMRYwFAYD VQQDEw02OTA4MGM4ZC04NGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhjBuK5nev5Yu4DHjSQa+QlWtAr6X1kCNYLMwdwZ/EQsH2PYis3ZRk7KgziK OwzLWoNg2efaGYwJF/93Wpow3YD6TulKG54ToOcTN0cFr5siv8zF6fc5/lpXRl96 byiR88J2N0FHufR7LM2v63d7rQPvoNtVueUZ8ivOrv2y/hsFVbV1XqvyZTHpnZtS NYPnUQQazDxkGMcD8N/QKKcW+jcmqHiL/E71vmOc0bVCCYr/zwYkWM6Qjrf/xyeh 8GQjNy8KDqe03BeW2UuM0pSQmZS+FNBIqWeXyyNy8VmD4PChF5Ar5Iej8ukPJ6or rymcyWjD734XMhKc1SU5syM9/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqhUr7s 11jU+DBQruDWCPe4ny/CMB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE0po0HeknueVLI7dtUVMaHikrKgPS644hsfdTHzRBL49Nn/+EV+W3 nhrv8OCRKyz9wLUrECsT78IwZJHJH/4cSg6KWNhnljv+ToT8Rh0gDVvmf244zv5c Y0XrSl+zJoQI9cGR2oD4t0nnMD25uzLnnq2VpLpve8zUJHfBlOvBGbx7OeB2uSrk H3XEcnugBlEDTq85G80yqvksBlxT4TFuw9z+zhLFwVLQqFZ8LFp2qKbk/K4lTP86 pF7hi+1W0G72vv8EGkERG3oM0ipkW/Z2PAtAHJzHvwSjCV/RHnYMr7g2w58UvbQd V1cYhrVLLzqE2ORc/5ffjomQo9MMcV+2 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:10 2025 by rpki-client