$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: yiEli4mZnLOzrmvyp2PV0cV/V/f3hoI6dGEI3qSQ2ZE= Subject key identifier: 42:AD:84:9A:0C:67:C2:C7:7C:A2:09:CC:38:12:75:24:2C:5A:DB:84 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0AAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A98 Signing time: Sun 26 Oct 2025 20:05:59 +0000 Manifest this update: Sun 26 Oct 2025 20:05:58 +0000 Manifest next update: Sun 02 Nov 2025 20:05:58 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: NaWj1WBShP4iPXUXOCFaseAyM6pEMzJTHLrpQjGubMw=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2733 (0xaad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Oct 26 20:05:58 2025 GMT Not After : Nov 2 20:05:58 2025 GMT Subject: CN=68fe7f27-ef2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:02:97:16:19:91:cf:77:d4:86:5e:b4:29:4a: ac:15:73:85:ff:5c:65:bf:22:a4:fb:d0:ca:d8:ff: 3b:48:90:cb:81:96:49:40:89:5a:78:3d:9d:26:b6: 58:83:bc:b8:43:0e:05:1d:69:4a:2f:93:a1:5a:aa: 13:11:1d:a9:62:e9:2d:48:ab:cd:3e:53:57:94:b4: f5:63:41:18:37:db:ee:7d:35:be:65:a4:e1:4a:16: 41:56:d3:e5:41:06:7d:e3:d4:5e:91:5c:66:50:6f: 31:da:36:85:12:cb:a5:8d:81:60:26:e5:60:3a:c7: 8e:ad:4a:22:c2:8b:1a:dc:5f:0f:28:02:1b:74:48: 54:13:8b:db:a2:16:2b:af:f1:bd:d8:64:7d:c8:ab: 06:cd:5b:b6:41:00:da:ff:48:21:b0:e2:60:85:9e: 8f:03:35:a2:b2:d6:cd:46:c8:07:86:38:ae:c0:ef: 70:e8:76:8d:33:4d:a5:db:a9:d6:eb:6f:21:e0:ca: 76:52:05:97:1e:d9:74:89:84:8d:a4:06:2c:99:c8: ee:40:7c:ca:ba:77:a7:66:50:62:04:c3:52:e1:b4: 8a:a6:6c:e5:ed:e0:07:9b:ba:6b:d2:ed:94:ad:06: be:3e:a5:95:05:cf:45:18:73:a2:5b:55:88:d1:e2: 9c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AD:84:9A:0C:67:C2:C7:7C:A2:09:CC:38:12:75:24:2C:5A:DB:84 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:aa:16:a1:f5:82:87:3c:7e:f3:7a:df:fd:cf:7f:52:7d:55: dc:fa:f8:26:de:fd:27:59:fd:14:b4:fb:57:3f:d8:d3:78:a5: 05:87:a2:c6:28:85:c2:23:61:e6:47:4b:cb:b7:37:9d:59:a0: d2:7b:3c:f5:5a:05:fa:60:58:47:13:47:30:d6:99:76:1a:8e: 7f:8a:85:51:cb:f2:e6:69:eb:05:ea:97:e9:39:a0:d8:ce:1f: 0c:c6:bd:21:df:ae:e7:81:8c:80:e8:01:b5:fa:c1:d1:c9:ff: a5:76:c3:2f:63:f5:fd:f9:36:38:99:37:95:94:fb:3c:b2:d9: bc:21:b0:e9:18:25:30:14:62:7d:64:92:13:c1:5b:0a:0e:a2: 72:c3:0c:c6:27:44:6a:16:c5:3f:93:f1:20:e3:a6:95:14:2e: f0:41:28:e6:26:81:e6:3f:ac:f7:a4:9c:02:cb:cb:de:be:0d: 0a:8b:36:7c:c4:b7:af:4d:a8:89:0b:c1:72:4d:30:0d:cf:ca: c0:14:2b:62:03:fe:60:1d:a9:26:72:ff:2a:ee:14:ea:2a:c1: ac:1d:b1:16:cd:db:35:62:1c:37:fa:cd:37:f1:a6:9d:7a:f3: 33:52:eb:6d:b6:aa:44:8f:e4:0d:23:fe:c7:42:0e:07:a0:3b: 67:10:77:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUxMDI2MjAwNTU4WhcNMjUxMTAyMjAwNTU4WjAYMRYwFAYD VQQDEw02OGZlN2YyNy1lZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AKXFhmRz3fUhl60KUqsFXOF/1xlvyKk+9DK2P87SJDLgZZJQIlaeD2dJrZY g7y4Qw4FHWlKL5OhWqoTER2pYuktSKvNPlNXlLT1Y0EYN9vufTW+ZaThShZBVtPl QQZ949RekVxmUG8x2jaFEsuljYFgJuVgOseOrUoiwosa3F8PKAIbdEhUE4vbohYr r/G92GR9yKsGzVu2QQDa/0ghsOJghZ6PAzWistbNRsgHhjiuwO9w6HaNM02l26nW 628h4Mp2UgWXHtl0iYSNpAYsmcjuQHzKunenZlBiBMNS4bSKpmzl7eAHm7pr0u2U rQa+PqWVBc9FGHOiW1WI0eKchwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKthJoM Z8LHfKIJzDgSdSQsWtuEMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9qhah9YKHPH7zet/9z39SfVXc+vgm3v0nWf0UtPtXP9jTeKUFh6LG KIXCI2HmR0vLtzedWaDSezz1WgX6YFhHE0cw1pl2Go5/ioVRy/LmaesF6pfpOaDY zh8Mxr0h367ngYyA6AG1+sHRyf+ldsMvY/X9+TY4mTeVlPs8stm8IbDpGCUwFGJ9 ZJITwVsKDqJywwzGJ0RqFsU/k/Eg46aVFC7wQSjmJoHmP6z3pJwCy8vevg0KizZ8 xLevTaiJC8FyTTANz8rAFCtiA/5gHakmcv8q7hTqKsGsHbEWzds1Yhw3+s038aad evMzUutttqpEj+QNI/7HQg4HoDtnEHfB -----END CERTIFICATE-----Generated at Mon Oct 27 18:00:46 2025 by rpki-client