$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: Y9yOj8V8yj/dDw9gOQNbIZ5l1icvWURRL+qZEoUtQYg= Subject key identifier: 93:24:7D:CD:11:7D:31:E1:9A:4C:AB:35:CF:7F:8B:2A:F5:E4:12:A0 Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: AC Signing time: Mon 03 Nov 2025 06:10:37 +0000 Manifest this update: Mon 03 Nov 2025 06:10:37 +0000 Manifest next update: Mon 10 Nov 2025 06:10:37 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: ufTeg9ndjfh6ztYdME4nMZYhPIgSLKEnbS0M87dc+5Y=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Nov 3 06:10:37 2025 GMT Not After : Nov 10 06:10:37 2025 GMT Subject: CN=6908475d-40c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:e5:d3:66:fb:f1:c7:47:07:c7:c0:96:a2: e6:4b:0b:23:41:31:ac:7d:4d:47:8e:55:29:eb:e5: 81:41:5f:7b:ae:96:6c:cb:bf:95:e1:e1:e6:62:58: 11:75:ba:88:e2:a2:5e:f2:a6:44:98:c7:c1:61:39: f6:ca:ce:13:a9:26:9d:c4:68:01:33:0b:f7:f3:75: a1:f4:21:2e:9a:d1:0b:45:0d:bb:c4:d4:d1:25:da: 89:1e:e3:d9:8e:56:39:2b:4f:0b:ed:20:94:a5:8f: f2:d7:1f:b7:9f:dc:0c:70:99:bd:68:e1:af:db:c3: be:70:a1:08:6f:21:fc:22:69:5c:8b:2f:3f:aa:7e: 85:dd:fc:2c:d3:eb:bc:48:28:b1:4e:38:23:a3:7b: 11:c0:d9:03:bb:a8:8c:f4:df:a5:fa:c0:46:34:dc: a0:9c:c6:d9:1b:2c:72:c9:ca:87:d7:ba:1c:05:61: 54:77:a3:34:37:67:32:b6:2d:1f:87:49:4b:f6:1b: a7:84:40:32:ba:d4:a5:a7:25:c7:a3:87:bf:7c:ed: 2b:e4:30:94:2c:00:e7:9a:92:1f:09:8f:d3:45:6d: 0b:dc:9b:c7:15:72:86:81:60:46:90:49:11:5d:d3: 82:33:83:99:c0:68:4d:8b:f6:c9:c1:69:6b:5a:1b: 34:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:24:7D:CD:11:7D:31:E1:9A:4C:AB:35:CF:7F:8B:2A:F5:E4:12:A0 X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:e0:91:b9:f0:0f:b1:e9:95:7c:74:34:0d:d6:b1:ac:01:89: cb:51:54:90:ff:af:70:55:9f:b9:25:ce:19:ea:21:af:01:c2: ea:65:93:0b:96:64:7f:17:33:c1:7c:1a:1b:c7:61:68:4b:9c: 8e:54:b1:fc:4a:b4:37:a2:fe:57:7e:b8:bf:ed:96:21:90:97: 83:59:e8:2d:93:b2:eb:3a:32:e4:48:e3:e4:36:47:fd:9e:ae: a6:b9:e3:0c:4c:74:f9:ec:6a:be:a4:2e:31:72:e8:cb:9b:9b: eb:c1:ea:96:3e:fe:0f:dc:49:15:8c:48:2d:cc:b7:c7:69:eb: 92:21:8f:68:b3:a8:87:93:69:13:66:37:0e:29:2f:6c:aa:86: dc:29:10:c4:74:10:64:6f:7a:05:8f:03:f1:af:79:49:6b:ff: c5:62:c2:b5:9d:54:f3:12:e8:03:13:3e:0c:ac:c5:e4:fe:d4: 1d:4d:57:97:93:d1:78:16:58:a2:27:b6:29:b3:24:6c:b6:f7: f8:5a:05:da:35:f4:53:01:47:e8:a4:51:98:b3:66:80:03:17: 1a:47:18:73:19:8c:bc:ca:ee:83:9f:48:9b:e3:05:02:3c:fe: b7:27:da:60:a7:42:66:3a:7f:d7:35:29:50:2a:5c:3d:61:69: 44:8b:41:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3Q0YxMTAvBgNVBAUTKEVDM0Q4MDdGNzkzQzlDRjVGQ0UzMzVFRTE1RTA5ODQ0 NDlCNDMwOTYwHhcNMjUxMTAzMDYxMDM3WhcNMjUxMTEwMDYxMDM3WjAYMRYwFAYD VQQDEw02OTA4NDc1ZC00MGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1Hl02b78cdHB8fAlqLmSwsjQTGsfU1HjlUp6+WBQV97rpZsy7+V4eHmYlgR dbqI4qJe8qZEmMfBYTn2ys4TqSadxGgBMwv383Wh9CEumtELRQ27xNTRJdqJHuPZ jlY5K08L7SCUpY/y1x+3n9wMcJm9aOGv28O+cKEIbyH8Imlciy8/qn6F3fws0+u8 SCixTjgjo3sRwNkDu6iM9N+l+sBGNNygnMbZGyxyycqH17ocBWFUd6M0N2cyti0f h0lL9hunhEAyutSlpyXHo4e/fO0r5DCULADnmpIfCY/TRW0L3JvHFXKGgWBGkEkR XdOCM4OZwGhNi/bJwWlrWhs0tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMkfc0R fTHhmkyrNc9/iyr15BKgMB8GA1UdIwQYMBaAFOw9gH95PJz1/OM17hXgmERJtDCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTdDRi9CNDE1NTQ1OEIy QzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5QWDg0elh1RmVDWVJFbTBN SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1KWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTdDRi9CNDE1NTQ1OEIyQzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5Q WDg0elh1RmVDWVJFbTBNSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB84JG58A+x6ZV8dDQN1rGsAYnLUVSQ/69wVZ+5Jc4Z6iGvAcLqZZML lmR/FzPBfBobx2FoS5yOVLH8SrQ3ov5Xfri/7ZYhkJeDWegtk7LrOjLkSOPkNkf9 nq6mueMMTHT57Gq+pC4xcujLm5vrweqWPv4P3EkVjEgtzLfHaeuSIY9os6iHk2kT ZjcOKS9sqobcKRDEdBBkb3oFjwPxr3lJa//FYsK1nVTzEugDEz4MrMXk/tQdTVeX k9F4FliiJ7YpsyRstvf4WgXaNfRTAUfopFGYs2aAAxcaRxhzGYy8yu6Dn0ib4wUC PP63J9pgp0JmOn/XNSlQKlw9YWlEi0G7 -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:34 2025 by rpki-client