$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: F7E36/jk6UUG5ApxTpPbyxner9zIJ92ShA1CWeb0wLk= Subject key identifier: D5:5D:82:CD:D7:DB:7A:2B:79:0D:E2:9E:B6:D0:15:51:5A:30:37:7D Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 0259 Signing time: Wed 05 Nov 2025 01:49:37 +0000 Manifest this update: Wed 05 Nov 2025 01:49:36 +0000 Manifest next update: Wed 12 Nov 2025 01:49:36 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: JyS/b/Wk38LHZ3XjuTZMq5yRkOVmzH+/ni2+Rv7qlfc=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: NR8OS1L1YDEOVGgB6cb2fttAqoXgsKVRMpQfg5GvzjQ=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: U57sQE5yclVx7OH+nAtAbjTBaki6Yvzg4fauYYq6XuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Nov 5 01:49:36 2025 GMT Not After : Nov 12 01:49:36 2025 GMT Subject: CN=690aad30-8309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a2:9d:98:c5:5c:29:e3:1a:3f:27:41:f3:fa: a9:4f:ba:5b:d9:a6:58:a2:98:87:a1:19:98:57:59: 8f:8a:05:e4:76:54:6f:d6:86:0f:9d:35:7c:8c:4c: d0:15:9b:c9:3d:80:cc:48:8a:ab:74:5e:fa:4d:3f: 53:ed:0b:df:29:2d:e6:c9:62:df:d8:9b:23:ad:57: b1:b7:76:71:5e:d7:13:28:5e:98:cc:f2:e4:58:1c: 4a:ad:46:e5:01:b1:65:74:ed:e1:38:8b:1a:5f:0c: f0:c6:78:61:f5:e3:66:03:55:d6:5f:c7:eb:55:7b: 31:c9:b2:b5:55:76:61:d3:6a:24:3d:12:44:cc:0f: 2f:2f:82:29:9b:d9:69:d3:05:f0:97:b8:f7:73:1a: 3a:5e:f8:8b:1d:fb:f5:0a:9f:96:52:c1:01:c5:00: 79:c2:dc:8e:e0:c6:88:8f:22:83:40:65:b3:72:f5: a3:76:ce:e4:5e:fd:fb:12:19:f4:f1:3f:8f:95:61: b0:a2:bd:0a:99:57:e8:8c:b1:a3:19:36:64:02:5b: af:43:99:3e:b8:eb:47:77:b3:3f:44:a2:55:3f:25: 35:87:4c:fc:a8:06:51:49:5c:a4:e0:9a:d5:e4:87: 76:83:65:8a:3a:b8:0d:61:3b:d3:b1:78:87:eb:c0: ee:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5D:82:CD:D7:DB:7A:2B:79:0D:E2:9E:B6:D0:15:51:5A:30:37:7D X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:75:14:7b:93:00:de:a3:dc:9e:0d:8e:41:1f:62:bf:06:45: 14:22:0a:ae:29:16:e7:74:39:7f:4b:d1:e7:79:0d:05:10:de: 3d:64:44:90:76:eb:2a:12:72:53:b8:24:63:2e:d1:0d:6e:21: 64:2a:41:b4:62:de:89:0d:32:0a:03:0b:d7:f0:42:ca:0e:58: d8:d9:62:5a:c2:21:0f:8c:38:0a:7a:bf:03:31:60:bd:ec:f1: 48:72:bd:d2:74:73:53:f2:84:05:2c:c6:1c:1e:9b:25:20:15: eb:67:ca:c7:c2:58:cf:13:9e:5c:f6:ad:18:26:9c:07:ea:01: b2:db:f2:80:08:86:c3:8e:d8:23:1b:bf:a9:3b:66:bf:05:5e: 38:d1:92:33:3e:0c:f1:16:ce:56:e2:25:dd:12:87:a1:3e:e0: 37:8c:03:cb:5d:0f:5e:86:86:72:9f:da:78:a8:ab:f2:9d:db: 2d:f5:44:2c:f6:67:24:e2:55:47:88:44:5e:d9:2f:b9:ce:3f: 0b:8e:98:24:52:3c:fe:88:70:41:c7:9b:21:2b:29:25:d0:81: 6e:e0:4e:bd:49:1b:d7:76:9c:86:b3:17:9b:f2:c9:1c:83:e0: ff:ee:fe:bb:14:de:79:e8:56:45:14:75:07:39:53:63:20:c1: 74:5f:4e:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUxMTA1MDE0OTM2WhcNMjUxMTEyMDE0OTM2WjAYMRYwFAYD VQQDEw02OTBhYWQzMC04MzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqKdmMVcKeMaPydB8/qpT7pb2aZYopiHoRmYV1mPigXkdlRv1oYPnTV8jEzQ FZvJPYDMSIqrdF76TT9T7QvfKS3myWLf2JsjrVext3ZxXtcTKF6YzPLkWBxKrUbl AbFldO3hOIsaXwzwxnhh9eNmA1XWX8frVXsxybK1VXZh02okPRJEzA8vL4Ipm9lp 0wXwl7j3cxo6XviLHfv1Cp+WUsEBxQB5wtyO4MaIjyKDQGWzcvWjds7kXv37Ehn0 8T+PlWGwor0KmVfojLGjGTZkAluvQ5k+uOtHd7M/RKJVPyU1h0z8qAZRSVyk4JrV 5Id2g2WKOrgNYTvTsXiH68DuqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVdgs3X 23oreQ3inrbQFVFaMDd9MB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUdRR7kwDeo9yeDY5BH2K/BkUUIgquKRbndDl/S9HneQ0FEN49ZESQ dusqEnJTuCRjLtENbiFkKkG0Yt6JDTIKAwvX8ELKDljY2WJawiEPjDgKer8DMWC9 7PFIcr3SdHNT8oQFLMYcHpslIBXrZ8rHwljPE55c9q0YJpwH6gGy2/KACIbDjtgj G7+pO2a/BV440ZIzPgzxFs5W4iXdEoehPuA3jAPLXQ9ehoZyn9p4qKvyndst9UQs 9mck4lVHiERe2S+5zj8LjpgkUjz+iHBBx5shKykl0IFu4E69SRvXdpyGsxeb8skc g+D/7v67FN556FZFFHUHOVNjIMF0X07r -----END CERTIFICATE-----Generated at Wed Nov 5 13:10:48 2025 by rpki-client