$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: Z0e4md8TB+XqKBheBhMnI6DgaLREioGN7QCc2kgNXrI= Subject key identifier: 2F:C0:7A:CA:45:85:B8:F8:48:C1:7C:CD:61:24:4D:78:E8:63:07:28 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2B3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2B0B Signing time: Sun 26 Oct 2025 15:40:35 +0000 Manifest this update: Sun 26 Oct 2025 15:40:35 +0000 Manifest next update: Sun 02 Nov 2025 15:40:35 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: 6SqlZCmpOkGyNx/WVG/v30Les06X9laF6BI7ixSmGIc=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: +HLe66PXx2PeHfF3w62lv44BzlqBqje8fJ2L8YnpkrU=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: W6zfrwj6/OqirsYiKLU78RB1FM66HD+HpTrmcoXxfW0=) 4: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: JIxsUWoaA8dqs4H846TBR0QXM7ZNHktOJjX2Kny5hR4=) 5: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: Gj/dQfmDGUWDK4XHV01NkbElb3DXkLPBPWk0YD6hwjM=) 6: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: ppGKOWraeOF8KBxlm/qgPAfA6uqwS+C7Tk6GCScwyjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 15:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11066 (0x2b3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Oct 26 15:40:35 2025 GMT Not After : Nov 2 15:40:35 2025 GMT Subject: CN=68fe40f3-fb03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b1:2f:ea:cf:76:7c:13:04:f8:45:8d:37:9d: ea:5c:b7:1e:95:66:78:c1:00:3e:0a:94:77:b5:1d: cf:dd:e2:0d:41:61:19:a6:24:a2:77:9d:01:d5:bb: 46:68:b9:de:b3:30:60:9d:10:5a:90:06:59:e0:e6: 5b:47:89:4d:36:56:9d:23:a1:78:7f:59:d4:35:86: 73:e6:80:75:b8:f1:83:ee:39:03:ab:2a:a0:67:ea: 6d:cf:d7:3b:0f:f1:e4:de:5b:3f:c1:2c:89:fc:c2: b7:53:2c:ab:bb:4e:d6:97:fe:39:b9:69:62:44:d2: 4e:6d:2c:a0:d9:b3:18:83:0b:91:81:68:f1:92:c1: 73:52:9c:5f:38:c6:47:d7:ab:79:3a:53:f3:40:c6: d8:d0:36:72:71:d4:d9:4b:2c:16:9b:e0:c7:78:a3: fc:cf:1f:32:a6:83:42:54:e1:0e:8a:02:23:aa:ad: 6a:e5:b5:e8:54:ea:bf:52:67:53:88:98:b1:57:c9: 32:34:7c:a3:57:ce:10:15:7b:39:89:c4:99:fb:e3: f4:44:05:02:65:ff:64:85:ef:01:18:cc:0f:5f:c6: 39:59:c6:6e:88:bc:22:eb:57:10:d5:8a:43:65:79: b2:4f:4a:0a:e9:07:88:04:9e:ee:7d:e1:a7:af:ea: da:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C0:7A:CA:45:85:B8:F8:48:C1:7C:CD:61:24:4D:78:E8:63:07:28 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4a:1e:dd:18:18:75:ca:8e:c0:c1:72:71:81:58:ba:4f:12: 34:a3:95:f2:51:f5:e0:cb:87:ef:0b:56:bd:71:57:69:04:91: 0d:3a:b2:67:9b:cd:65:4c:ee:c4:fb:ca:38:aa:9c:a4:9b:17: 77:f9:96:0a:7b:ea:02:07:e0:fe:a8:a6:e6:62:db:df:f4:c6: b0:9c:14:e0:1c:4a:66:d7:f0:b7:6e:7b:55:56:bd:c5:94:2b: 53:27:ca:cb:59:12:58:e8:17:1e:c4:c0:be:04:ec:f8:07:37: c2:81:7c:22:3c:00:47:61:8e:78:ee:32:63:2b:12:a7:d4:ef: b9:a0:8d:5b:45:76:2e:e8:a6:b1:e3:4e:2b:05:e9:ee:a2:26: 21:6f:5b:2f:8b:fe:54:50:b3:43:1b:ef:ef:46:a7:88:05:1a: 01:d4:a4:3c:52:94:c8:fc:63:58:a4:a1:01:9b:89:7e:9b:32: 99:9e:db:7e:04:d2:04:04:75:ce:69:53:25:85:70:72:6e:55: 5c:2b:51:49:e0:4d:87:7f:6e:02:28:1d:83:b2:0c:1c:23:05: aa:d3:73:41:03:e0:9a:81:3b:4e:9c:d5:bc:49:31:d4:23:2b: 16:e3:ac:75:bd:ae:c7:00:4c:97:03:1d:74:5e:13:7b:e6:fe: ca:46:d7:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjUxMDI2MTU0MDM1WhcNMjUxMTAyMTU0MDM1WjAYMRYwFAYD VQQDEw02OGZlNDBmMy1mYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrEv6s92fBME+EWNN53qXLcelWZ4wQA+CpR3tR3P3eINQWEZpiSid50B1btG aLneszBgnRBakAZZ4OZbR4lNNladI6F4f1nUNYZz5oB1uPGD7jkDqyqgZ+ptz9c7 D/Hk3ls/wSyJ/MK3Uyyru07Wl/45uWliRNJObSyg2bMYgwuRgWjxksFzUpxfOMZH 16t5OlPzQMbY0DZycdTZSywWm+DHeKP8zx8ypoNCVOEOigIjqq1q5bXoVOq/UmdT iJixV8kyNHyjV84QFXs5icSZ++P0RAUCZf9khe8BGMwPX8Y5WcZuiLwi61cQ1YpD ZXmyT0oK6QeIBJ7ufeGnr+raNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/AespF hbj4SMF8zWEkTXjoYwcoMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRSh7dGBh1yo7AwXJxgVi6TxI0o5XyUfXgy4fvC1a9cVdpBJENOrJn m81lTO7E+8o4qpykmxd3+ZYKe+oCB+D+qKbmYtvf9MawnBTgHEpm1/C3bntVVr3F lCtTJ8rLWRJY6BcexMC+BOz4BzfCgXwiPABHYY547jJjKxKn1O+5oI1bRXYu6Kax 404rBenuoiYhb1svi/5UULNDG+/vRqeIBRoB1KQ8UpTI/GNYpKEBm4l+mzKZntt+ BNIEBHXOaVMlhXByblVcK1FJ4E2Hf24CKB2DsgwcIwWq03NBA+CagTtOnNW8STHU IysW46x1va7HAEyXAx10XhN75v7KRteg -----END CERTIFICATE-----Generated at Tue Oct 28 15:46:55 2025 by rpki-client