$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft (raw, json) Hash identifier: vaz219ot4BiiF98aY59qyxlJUoarVvLfjicfXXoQ3w0= Subject key identifier: 21:AA:33:90:2F:44:E1:13:16:10:AF:8E:17:AF:E7:A3:AB:A2:81:73 Authority key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 Certificate issuer: /CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft Manifest number: C3 Signing time: Mon 03 Nov 2025 05:52:08 +0000 Manifest this update: Mon 03 Nov 2025 05:52:08 +0000 Manifest next update: Mon 10 Nov 2025 05:52:08 +0000 Files and hashes: 1: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl (hash: yKTs02gGy4kLXOJisp5jU32VVg1WhBW9Hmufl9tcknE=) 2: 45D37CC28F8111EFB699FB63C4F9AE02.roa (hash: W3ELMdd+4Z64t5VfbCPMdcy4Vijaf3NYkhFRRrOXtfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3 Validity Not Before: Nov 3 05:52:08 2025 GMT Not After : Nov 10 05:52:08 2025 GMT Subject: CN=69084308-9842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:55:88:b9:df:41:41:83:55:c2:30:5b:e8:f7: 2b:25:1c:60:72:4c:9b:11:70:4a:48:05:f7:0c:48: cf:40:ae:c0:05:b2:28:60:15:cb:89:a2:6f:71:b7: 1c:ed:63:eb:21:57:23:ec:4d:3b:c4:8d:b2:8c:c6: 23:eb:2c:10:04:ff:e0:d2:5e:be:dc:9b:e5:5c:cc: 90:5e:51:16:b2:ae:ad:3c:c6:47:20:cc:44:b9:aa: 76:c0:a3:9e:55:e7:9a:c5:df:ed:f2:27:5f:a6:2b: ae:0c:89:49:6d:c4:dd:55:b4:10:26:4e:df:68:a0: 7e:e8:d1:12:28:06:6d:70:80:e7:30:e5:8a:0b:c4: bb:b8:c1:4d:6c:4f:5e:af:9f:ed:4a:52:b6:73:fe: a0:d1:1b:00:39:27:40:ef:93:91:f6:fb:3c:eb:a1: 21:a4:6f:97:e7:dd:67:74:8e:fa:68:3d:21:0f:36: cb:a7:da:ab:3d:1c:a9:b3:30:28:99:97:19:a6:f2: a0:c4:5c:24:6b:6e:b0:f9:f4:20:bc:c6:ac:9d:0c: 3b:87:af:f3:68:7a:65:2f:a9:d6:f9:67:15:8b:67: 7d:da:8e:b3:35:04:a9:ae:f9:55:8c:12:84:c1:85: 64:25:b1:80:c3:21:b5:3b:6b:af:ae:31:2a:86:65: 3f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AA:33:90:2F:44:E1:13:16:10:AF:8E:17:AF:E7:A3:AB:A2:81:73 X509v3 Authority Key Identifier: keyid:ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:38:6a:7d:8c:f0:1e:31:ee:23:ed:cb:04:61:15:0d:39:62: 7b:2e:22:d7:fc:e3:e6:23:25:bf:34:38:a4:a2:a1:94:a1:7c: 55:a8:a9:2a:63:74:c4:7b:de:ce:eb:5d:e9:8a:f9:4a:2b:06: cf:cb:e7:69:32:74:cd:99:6f:a5:e4:c8:38:d7:9c:4a:32:21: 7b:c0:db:51:50:a2:58:35:1d:aa:2c:3d:ef:d3:e0:8f:41:2d: 2c:25:a9:6d:23:5d:ac:f5:31:3c:2c:3f:eb:87:f9:51:88:86: fd:58:b0:3b:a0:c2:aa:63:a3:fa:23:87:86:2c:58:6c:c4:5c: f7:4c:f0:ae:3b:06:de:47:a9:c7:fa:b1:49:bd:e2:99:e5:62: 9e:93:2d:6b:47:29:6f:76:d1:20:02:da:bb:44:ac:39:1c:87: 02:10:68:f0:99:67:1c:70:0d:13:b8:d7:a5:53:f6:a9:fb:b0: c6:5b:0f:c0:41:d2:3c:9d:c8:5e:14:86:20:af:ef:88:57:6f: 50:c1:c6:6f:e5:89:24:1c:9e:16:aa:e7:d0:68:5d:31:88:0e: e9:41:c7:56:71:18:c0:76:b6:b6:f0:d3:ce:0a:b1:8e:ac:39: a9:02:58:08:cb:f6:99:8d:a0:e2:f7:e7:3e:7f:b8:fb:01:74: 8c:a4:0a:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKEVEODJBMkZEN0RFMTQ3NTI3Q0ZDQzQyNDdBMjU2QzFB MEVEQjRFRDMwHhcNMjUxMTAzMDU1MjA4WhcNMjUxMTEwMDU1MjA4WjAYMRYwFAYD VQQDEw02OTA4NDMwOC05ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1WIud9BQYNVwjBb6PcrJRxgckybEXBKSAX3DEjPQK7ABbIoYBXLiaJvcbcc 7WPrIVcj7E07xI2yjMYj6ywQBP/g0l6+3JvlXMyQXlEWsq6tPMZHIMxEuap2wKOe Veeaxd/t8idfpiuuDIlJbcTdVbQQJk7faKB+6NESKAZtcIDnMOWKC8S7uMFNbE9e r5/tSlK2c/6g0RsAOSdA75OR9vs866EhpG+X591ndI76aD0hDzbLp9qrPRypszAo mZcZpvKgxFwka26w+fQgvMasnQw7h6/zaHplL6nW+WcVi2d92o6zNQSprvlVjBKE wYVkJbGAwyG1O2uvrjEqhmU/3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGqM5Av ROETFhCvjhev56OrooFzMB8GA1UdIwQYMBaAFO2Cov194UdSfPzEJHolbBoO207T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yQjFDNDdGRThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gzaFIxSjhfTVFrZWlWc0dnN2JU dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZS2lfWDNoUjFKOF9NUWtlaVZzR2c3YlR0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yQjFDNDdGRThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gzaFIx SjhfTVFrZWlWc0dnN2JUdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEOGp9jPAeMe4j7csEYRUNOWJ7LiLX/OPmIyW/NDikoqGUoXxVqKkq Y3TEe97O613pivlKKwbPy+dpMnTNmW+l5Mg415xKMiF7wNtRUKJYNR2qLD3v0+CP QS0sJaltI12s9TE8LD/rh/lRiIb9WLA7oMKqY6P6I4eGLFhsxFz3TPCuOwbeR6nH +rFJveKZ5WKeky1rRylvdtEgAtq7RKw5HIcCEGjwmWcccA0TuNelU/ap+7DGWw/A QdI8ncheFIYgr++IV29QwcZv5YkkHJ4WqufQaF0xiA7pQcdWcRjAdra28NPOCrGO rDmpAlgIy/aZjaDi9+c+f7j7AXSMpApT -----END CERTIFICATE-----Generated at Tue Nov 4 07:19:20 2025 by rpki-client