$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: pav1xIqcL6QVDC4Pp9FECL0lLg86ganQAevruFN4cRI= Subject key identifier: 17:4D:7B:6A:0B:9A:04:2A:A2:77:E3:46:35:5E:AF:53:9B:88:16:B0 Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 0588 Signing time: Sun 02 Nov 2025 23:13:19 +0000 Manifest this update: Sun 02 Nov 2025 23:13:18 +0000 Manifest next update: Sun 09 Nov 2025 23:13:18 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: /zcbAUsS2tjoup7AdBHi5E2pMZDd14R5PIqLxrEqtVM=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: Nov 2 23:13:18 2025 GMT Not After : Nov 9 23:13:18 2025 GMT Subject: CN=6907e58e-00e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f8:1a:96:52:6b:da:f1:c9:6b:18:b2:9b:22: bf:62:42:6c:fe:9a:80:2c:a0:b0:8c:87:df:fb:04: 9b:b8:72:06:06:7d:4b:ce:e4:3e:e1:35:94:53:0f: 5e:0a:e6:c9:82:f6:a5:2e:a2:4a:a1:d2:75:47:b7: 07:a1:aa:40:01:82:50:94:0d:f8:55:94:03:b1:69: c3:6f:38:9d:ed:87:93:62:a2:0a:98:a5:59:48:40: 4a:78:31:7c:75:a1:3f:2b:98:6b:4d:17:c1:f7:80: 22:f0:29:0d:32:c7:6d:6c:0b:1b:fe:4c:5a:4a:06: ae:b2:ba:62:0f:2e:46:fa:58:16:7b:90:78:5c:ee: 61:fe:fd:4b:2c:05:ed:d7:20:f5:9e:56:87:b1:a6: 10:9a:bb:84:df:37:70:d2:83:e1:fa:d6:7b:90:30: 99:8a:20:e3:07:c1:21:54:39:72:07:66:a9:3b:56: 49:47:a2:03:37:dd:d3:04:ab:66:88:7d:06:84:e5: 5b:0c:2f:e1:ee:98:3c:bd:8e:15:6f:ce:d1:13:f6: 99:a2:ba:04:53:43:38:e8:c2:c1:f1:8d:22:1b:a1: 0d:52:4e:a3:04:69:fa:20:e3:63:da:66:86:02:a4: a8:a0:43:0f:ef:c5:71:19:89:28:7b:ea:47:a0:f8: 27:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4D:7B:6A:0B:9A:04:2A:A2:77:E3:46:35:5E:AF:53:9B:88:16:B0 X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3c:bd:22:46:07:34:43:d6:87:e6:6a:0b:0d:42:aa:bb:7a: 00:86:59:47:19:10:bc:62:e1:c4:74:9a:22:29:4d:16:12:c8: b0:e0:07:e6:19:68:b5:2d:6a:85:da:59:03:48:f0:a4:a5:01: 73:31:f1:a6:85:a0:dd:16:33:bf:50:b3:b5:c1:0c:a0:bc:2e: 70:2c:4b:3b:ec:97:84:03:4a:68:12:57:94:89:f2:91:66:9b: 60:05:f4:44:70:ae:ca:78:7e:f1:b9:53:4d:0a:78:e0:bf:c9: f2:1b:df:71:d6:17:59:53:35:08:3e:c0:6e:6c:6d:4c:9e:6e: 88:6e:81:f2:2a:a8:15:ad:65:c0:89:e2:e0:45:dc:5c:29:65: 8b:d5:61:5c:40:75:4c:a4:50:b5:0a:1f:b9:99:6b:ed:c1:9c: 65:7a:25:15:9c:96:80:cd:27:e1:cb:35:1d:95:b2:43:a6:4e: 7d:b3:b5:a4:33:e0:21:f8:2c:f2:a5:8d:2a:98:b2:47:32:30: 07:0c:03:37:c9:29:15:ce:10:06:0c:4b:7f:95:3b:58:f6:9b: c2:67:5a:c2:de:e0:34:17:7e:d7:71:46:ec:ed:ca:53:9f:78: f2:b9:55:df:d3:e8:23:ab:82:f0:cc:18:9f:72:8a:34:28:e8: ff:7d:05:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUxMTAyMjMxMzE4WhcNMjUxMTA5MjMxMzE4WjAYMRYwFAYD VQQDEw02OTA3ZTU4ZS0wMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PgallJr2vHJaxiymyK/YkJs/pqALKCwjIff+wSbuHIGBn1LzuQ+4TWUUw9e CubJgvalLqJKodJ1R7cHoapAAYJQlA34VZQDsWnDbzid7YeTYqIKmKVZSEBKeDF8 daE/K5hrTRfB94Ai8CkNMsdtbAsb/kxaSgausrpiDy5G+lgWe5B4XO5h/v1LLAXt 1yD1nlaHsaYQmruE3zdw0oPh+tZ7kDCZiiDjB8EhVDlyB2apO1ZJR6IDN93TBKtm iH0GhOVbDC/h7pg8vY4Vb87RE/aZoroEU0M46MLB8Y0iG6ENUk6jBGn6IONj2maG AqSooEMP78VxGYkoe+pHoPgn0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdNe2oL mgQqonfjRjVer1ObiBawMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWPL0iRgc0Q9aH5moLDUKqu3oAhllHGRC8YuHEdJoiKU0WEsiw4Afm GWi1LWqF2lkDSPCkpQFzMfGmhaDdFjO/ULO1wQygvC5wLEs77JeEA0poEleUifKR ZptgBfREcK7KeH7xuVNNCnjgv8nyG99x1hdZUzUIPsBubG1Mnm6IboHyKqgVrWXA ieLgRdxcKWWL1WFcQHVMpFC1Ch+5mWvtwZxleiUVnJaAzSfhyzUdlbJDpk59s7Wk M+Ah+CzypY0qmLJHMjAHDAM3ySkVzhAGDEt/lTtY9pvCZ1rC3uA0F37XcUbs7cpT n3jyuVXf0+gjq4LwzBifcoo0KOj/fQV9 -----END CERTIFICATE-----Generated at Tue Nov 4 08:30:15 2025 by rpki-client