$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: MVDn/umyyqNwnpoT0jX1UvFUoZPN8csrRMBNCA0qyUk= Subject key identifier: 3B:7C:44:77:08:DA:41:F6:43:C5:7F:36:E2:36:95:DE:F6:CA:3B:09 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: B1 Signing time: Mon 27 Oct 2025 08:28:17 +0000 Manifest this update: Mon 27 Oct 2025 08:28:16 +0000 Manifest next update: Mon 03 Nov 2025 08:28:16 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: KEXrVUtHSSH8SRNgZkDloyzgVBFrfiG10X23sYRY3l0=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: dHwTXNF7nxQj+usP14EJUs8ePEKM62O1dTyVaEZxO3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 08:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Oct 27 08:28:16 2025 GMT Not After : Nov 3 08:28:16 2025 GMT Subject: CN=68ff2d21-26d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:95:d3:74:ba:e3:d4:8a:d5:ed:81:85:ab:a9: 28:bb:1a:ed:08:e0:76:62:64:ea:bf:f9:61:59:9a: 42:a3:a1:6a:14:b7:68:1f:91:20:12:3e:c7:e0:9f: a5:19:46:91:92:66:ef:8f:11:ad:7a:71:0e:2d:3e: 91:de:63:00:94:35:b5:91:6d:88:0d:58:3e:27:61: c3:92:9c:63:1b:18:d3:d1:b6:92:5b:31:38:98:df: 25:8a:c1:f1:81:9f:03:0b:df:17:5b:60:48:c1:b4: 1c:81:39:da:1b:0f:21:32:29:18:91:91:37:a6:14: 95:3e:8c:32:6a:bf:d9:49:be:6a:1f:1b:59:9f:18: bf:45:b3:1f:9e:c2:bc:cd:db:97:46:3e:c9:0d:ca: 8c:dd:aa:cc:3e:45:a8:87:45:ea:1d:79:65:31:25: 99:82:fd:b6:dd:21:72:29:c6:27:13:d4:e8:a9:e6: ff:2e:3e:a0:26:f2:33:b3:c9:d0:c5:95:8b:9f:c6: f6:cb:99:a0:90:51:3b:a0:0d:7a:21:f7:9f:b5:a9: 3c:00:21:23:6f:86:31:a0:34:4d:5a:2a:14:e3:27: 06:68:2f:cd:d6:d7:fc:48:2d:c6:ea:0f:ff:37:24: d6:48:06:44:d6:3d:37:0e:0d:11:0c:60:25:ae:19: 5d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:7C:44:77:08:DA:41:F6:43:C5:7F:36:E2:36:95:DE:F6:CA:3B:09 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:0c:34:7b:0d:35:92:75:ec:3a:84:47:4a:81:dc:14:3e:d9: 80:ee:33:4b:a2:8e:5c:f2:34:63:02:b7:fe:93:9b:64:62:3e: df:15:64:ec:b3:02:82:6a:ae:1c:54:8f:f7:57:95:3c:9f:9a: 7d:fe:cc:51:a1:21:82:93:20:b5:e1:c7:ec:c3:fb:2c:4c:a5: 20:ad:36:27:98:22:8a:1b:5b:dc:5d:37:61:3a:58:77:4d:33: ce:a0:24:e9:0e:11:02:b7:05:e2:20:1a:f8:8f:3f:90:6a:3e: 4f:4f:9a:21:41:17:d8:d6:2c:f7:74:48:d4:b8:f8:0b:62:d3: 47:6c:10:44:c3:48:d1:28:dd:73:ec:73:89:37:24:05:16:9f: f4:e5:a0:c9:8f:4d:56:85:c9:0e:66:12:f9:c5:56:5f:18:47: 63:b2:ac:9f:47:fc:14:01:d7:0d:b1:b4:f7:b8:ac:72:69:d3: 66:1f:a0:61:3a:65:16:7a:33:db:c1:da:a4:e1:1a:fb:4b:d4: 2e:a1:5a:73:b4:20:bf:1a:bf:25:17:ff:83:c2:06:24:47:63: 4a:2b:70:54:83:4a:b3:b1:91:00:08:e4:e2:ea:12:98:b0:78: dc:fa:57:53:25:9e:49:f5:49:57:c3:1d:b0:ab:cb:f3:b2:53: 95:cf:04:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk0RTcxMTAvBgNVBAUTKDg5MUVEOEJBQUMyQzczQkQxM0FEQ0FBMUExNkFBRjAw RDIyNEE4NzcwHhcNMjUxMDI3MDgyODE2WhcNMjUxMTAzMDgyODE2WjAYMRYwFAYD VQQDEw02OGZmMmQyMS0yNmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJXTdLrj1IrV7YGFq6kouxrtCOB2YmTqv/lhWZpCo6FqFLdoH5EgEj7H4J+l GUaRkmbvjxGtenEOLT6R3mMAlDW1kW2IDVg+J2HDkpxjGxjT0baSWzE4mN8lisHx gZ8DC98XW2BIwbQcgTnaGw8hMikYkZE3phSVPowyar/ZSb5qHxtZnxi/RbMfnsK8 zduXRj7JDcqM3arMPkWoh0XqHXllMSWZgv223SFyKcYnE9Toqeb/Lj6gJvIzs8nQ xZWLn8b2y5mgkFE7oA16Ifeftak8ACEjb4YxoDRNWioU4ycGaC/N1tf8SC3G6g// NyTWSAZE1j03Dg0RDGAlrhldIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDt8RHcI 2kH2Q8V/NuI2ld72yjsJMB8GA1UdIwQYMBaAFIke2LqsLHO9E63KoaFqrwDSJKh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTRFNy9GNENGRDFEQUFD NzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3MFRyY3Fob1dxdkFOSWtx SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTRFNy9GNENGRDFEQUFDNzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3 MFRyY3Fob1dxdkFOSWtxSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEDDR7DTWSdew6hEdKgdwUPtmA7jNLoo5c8jRjArf+k5tkYj7fFWTs swKCaq4cVI/3V5U8n5p9/sxRoSGCkyC14cfsw/ssTKUgrTYnmCKKG1vcXTdhOlh3 TTPOoCTpDhECtwXiIBr4jz+Qaj5PT5ohQRfY1iz3dEjUuPgLYtNHbBBEw0jRKN1z 7HOJNyQFFp/05aDJj01WhckOZhL5xVZfGEdjsqyfR/wUAdcNsbT3uKxyadNmH6Bh OmUWejPbwdqk4Rr7S9QuoVpztCC/Gr8lF/+DwgYkR2NKK3BUg0qzsZEACOTi6hKY sHjc+ldTJZ5J9UlXwx2wq8vzslOVzwSd -----END CERTIFICATE-----Generated at Wed Oct 29 05:32:19 2025 by rpki-client