$ rpki-client -vvf rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft File: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft (raw, json) Hash identifier: r6JcSkih8L4lI7ZC9u40S3Tl5N16ISiezThCXccCA4Y= Subject key identifier: E7:69:35:AB:7C:87:48:62:45:DB:88:66:DC:B8:59:19:2E:5C:A1:B4 Authority key identifier: FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF Certificate issuer: /CN=A91168FD/serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Certificate serial: 21B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft Manifest number: 21B0 Signing time: Tue 04 Nov 2025 16:00:01 +0000 Manifest this update: Tue 04 Nov 2025 16:00:01 +0000 Manifest next update: Tue 11 Nov 2025 16:00:01 +0000 Files and hashes: 1: _7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl (hash: m/nQdJuDeUKbIrmr8Bq/AstAdSiIN0+lyDrEFTP5n58=) 2: D07411B6661211ECBCD61A65C4F9AE02.roa (hash: /mOiRGW1T9qa7YdW+2kPvRZkQyewAraUry397iZAYjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8633 (0x21b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91168FD, serialNumber=FFBC2D41CDD95FFCF8A77E52919E2E6D1BAF02DF Validity Not Before: Nov 4 16:00:01 2025 GMT Not After : Nov 11 16:00:01 2025 GMT Subject: CN=690a2301-a64d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:26:a4:56:6e:cd:49:1c:74:15:02:7a:ea:18: 73:fd:04:d1:fa:25:8a:8f:30:2a:14:ea:c7:fd:6e: 5e:07:76:a9:52:64:b7:00:23:b4:88:34:ea:5d:12: 78:cc:0c:dd:99:8d:8e:b3:5f:e6:de:07:1c:e0:07: d7:28:18:dc:5d:aa:91:a7:14:a1:a1:7b:a2:4d:28: a3:79:ad:30:10:78:b5:1e:74:de:0f:cf:9e:aa:08: ec:78:d2:db:31:2a:72:0e:bb:32:28:c2:c5:97:07: 28:4c:c9:46:4d:7c:ed:a6:f9:f0:20:18:30:8c:67: fb:74:a5:37:93:ab:8d:18:ba:6c:15:ed:6a:55:be: 29:b2:c5:89:80:1d:5e:63:91:c2:fb:6c:f8:65:32: f4:ca:28:8c:66:20:71:da:52:24:68:52:62:c8:ba: 72:07:62:57:c4:cb:19:b8:c0:53:9a:fb:9f:7b:ae: 54:dc:3f:27:82:81:ed:7f:79:00:f0:9d:b1:df:51: b5:7d:07:29:c8:47:8b:05:cd:51:80:05:96:3d:bd: 00:c6:b1:4d:6e:7d:00:cb:39:83:02:38:53:69:1b: 10:3f:29:9a:07:67:00:74:61:73:3b:81:2b:0f:c4: e9:38:d7:65:a6:83:b0:de:76:3c:50:c3:87:60:22: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:69:35:AB:7C:87:48:62:45:DB:88:66:DC:B8:59:19:2E:5C:A1:B4 X509v3 Authority Key Identifier: keyid:FF:BC:2D:41:CD:D9:5F:FC:F8:A7:7E:52:91:9E:2E:6D:1B:AF:02:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91168FD/9A799644E11111E5AB017727C4F9AE02/_7wtQc3ZX_z4p35SkZ4ubRuvAt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:27:69:33:eb:00:63:eb:db:30:35:da:f2:4e:d4:4a:05:74: 14:1c:02:bc:80:98:47:85:d7:3d:5e:6a:81:0a:5b:6b:81:dd: dd:6e:29:d2:04:fa:d0:45:33:96:fc:29:95:7a:ff:d7:65:c5: 88:1a:24:f3:da:a5:21:b0:51:8c:91:85:95:7f:26:aa:8d:92: a0:d6:69:e1:a7:0a:83:38:7a:79:e5:b1:6a:28:46:b6:8c:3a: cb:1b:31:88:8d:35:88:ba:0f:d0:1e:d8:de:df:3b:06:4f:86: da:d1:27:55:f5:d5:be:5d:16:e0:9d:06:43:58:4b:a9:88:6d: c0:5c:1c:48:86:59:40:a2:f3:5d:8f:31:6c:46:a6:7a:6f:03: 69:7e:17:b3:df:b4:5a:5f:f6:66:89:43:31:08:c7:5e:5a:b6: 35:a6:2d:88:e0:a6:27:9c:e4:2f:03:4e:f1:a5:f1:99:57:5b: c3:80:e4:1f:3f:f7:fd:43:20:c9:f4:ed:ca:0c:3b:59:30:0a: c2:9e:ab:36:9b:f6:72:5a:ab:c9:11:38:03:82:c8:9b:a4:2d: 4d:85:4b:28:d8:57:86:7f:d7:0e:7f:b6:18:18:65:61:b7:85: 9d:e4:41:4e:8a:3d:d0:75:6e:9b:d4:8c:33:a0:7d:61:bc:6a: 7f:c8:7c:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4RkQxMTAvBgNVBAUTKEZGQkMyRDQxQ0REOTVGRkNGOEE3N0U1MjkxOUUyRTZE MUJBRjAyREYwHhcNMjUxMTA0MTYwMDAxWhcNMjUxMTExMTYwMDAxWjAYMRYwFAYD VQQDEw02OTBhMjMwMS1hNjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9CakVm7NSRx0FQJ66hhz/QTR+iWKjzAqFOrH/W5eB3apUmS3ACO0iDTqXRJ4 zAzdmY2Os1/m3gcc4AfXKBjcXaqRpxShoXuiTSijea0wEHi1HnTeD8+eqgjseNLb MSpyDrsyKMLFlwcoTMlGTXztpvnwIBgwjGf7dKU3k6uNGLpsFe1qVb4pssWJgB1e Y5HC+2z4ZTL0yiiMZiBx2lIkaFJiyLpyB2JXxMsZuMBTmvufe65U3D8ngoHtf3kA 8J2x31G1fQcpyEeLBc1RgAWWPb0AxrFNbn0AyzmDAjhTaRsQPymaB2cAdGFzO4Er D8TpONdlpoOw3nY8UMOHYCJjUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdpNat8 h0hiRduIZty4WRkuXKG0MB8GA1UdIwQYMBaAFP+8LUHN2V/8+Kd+UpGeLm0brwLf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjhGRC85QTc5OTY0NEUx MTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhfejRwMzVTa1o0dWJSdXZB dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183d3RRYzNaWF96NHAzNVNrWjR1YlJ1dkF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjhGRC85QTc5OTY0NEUxMTExMUU1QUIwMTc3MjdDNEY5QUUwMi9fN3d0UWMzWlhf ejRwMzVTa1o0dWJSdXZBdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJJ2kz6wBj69swNdryTtRKBXQUHAK8gJhHhdc9XmqBCltrgd3dbinS BPrQRTOW/CmVev/XZcWIGiTz2qUhsFGMkYWVfyaqjZKg1mnhpwqDOHp55bFqKEa2 jDrLGzGIjTWIug/QHtje3zsGT4ba0SdV9dW+XRbgnQZDWEupiG3AXBxIhllAovNd jzFsRqZ6bwNpfhez37RaX/ZmiUMxCMdeWrY1pi2I4KYnnOQvA07xpfGZV1vDgOQf P/f9QyDJ9O3KDDtZMArCnqs2m/ZyWqvJETgDgsibpC1NhUso2FeGf9cOf7YYGGVh t4Wd5EFOij3QdW6b1IwzoH1hvGp/yHyZ -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:13 2025 by rpki-client