$ rpki-client -vvf rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft File: rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft (raw, json) Hash identifier: VE+gX139U6+fmzXWH+wfaHmt1BGHHsADPLf/1VNzP/U= Subject key identifier: 5E:24:99:E3:E1:C5:99:E4:C5:ED:25:23:A5:F1:FF:E6:97:7C:E7:A1 Authority key identifier: AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 Certificate issuer: /CN=A91878B2/serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft Manifest number: 06BC Signing time: Sun 02 Nov 2025 22:12:09 +0000 Manifest this update: Sun 02 Nov 2025 22:12:09 +0000 Manifest next update: Sun 09 Nov 2025 22:12:09 +0000 Files and hashes: 1: rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl (hash: I65YS9lsd0szhISbWas1e1ZSD0kMOelEh7W8Od5pYKQ=) 2: 47249F9E7D7D11EBA5FADA5FC4F9AE02.roa (hash: nOK4DMRRD7EMHW1vygJSaZC/Q2N8Vn6fopdd1X9izD0=) 3: 467830CE7D7D11EBA5FADA5FC4F9AE02.roa (hash: Hr3eqEAtIPRi0Gbgk6nGIIh7VqbumXAU2t+2EOfBUjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878B2, serialNumber=ADDEE909A3167621553FD44E0224D38A06787987 Validity Not Before: Nov 2 22:12:09 2025 GMT Not After : Nov 9 22:12:09 2025 GMT Subject: CN=6907d739-9b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:30:fe:8b:1c:06:b7:e2:56:50:19:aa:4b:9f: 89:42:41:ab:3e:d8:04:01:61:4f:57:26:54:21:b8: eb:a7:f1:d0:c1:cc:28:12:35:17:b3:89:e0:79:3f: 6b:38:7c:66:73:ed:43:b3:fd:f5:c3:fa:54:f8:80: 79:3d:25:59:65:ed:7b:db:ea:9f:72:6d:bc:ce:da: d0:d3:cb:bd:3c:8b:99:81:bb:b4:6a:64:0d:57:0b: f2:22:8b:b2:21:c1:6c:51:41:56:a4:5c:2f:57:25: 2b:48:4d:65:b1:c4:49:f1:f5:47:9c:b4:e2:d9:6c: b4:f8:51:96:b0:4e:d5:d4:9e:20:d2:77:a5:ed:1f: b7:a2:ef:fd:7c:b0:23:77:e9:fc:5a:3e:ef:09:67: 82:37:14:02:c8:16:1a:35:a5:c7:45:88:15:c4:83: 15:57:83:f3:9f:63:74:52:31:82:0a:07:c0:62:be: af:f0:7d:07:a7:59:91:d0:46:da:08:0b:05:06:66: b6:3d:c5:62:bc:ab:a2:70:38:03:7a:1e:d5:93:89: 13:ff:87:27:70:67:5c:61:54:c2:e0:c6:d8:96:b2: 41:53:b7:03:1f:a6:a7:de:87:f9:08:3e:d3:07:b2: d4:50:d8:2c:6d:23:67:78:22:24:e1:42:b0:73:41: d2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:24:99:E3:E1:C5:99:E4:C5:ED:25:23:A5:F1:FF:E6:97:7C:E7:A1 X509v3 Authority Key Identifier: keyid:AD:DE:E9:09:A3:16:76:21:55:3F:D4:4E:02:24:D3:8A:06:78:79:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rd7pCaMWdiFVP9ROAiTTigZ4eYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878B2/739BBA5A7D7B11EBA622275BC4F9AE02/rd7pCaMWdiFVP9ROAiTTigZ4eYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:59:d5:74:b5:94:d4:4b:0f:05:f5:3a:17:e9:95:aa:77:7b: 28:98:67:6e:9d:46:90:21:64:6b:6b:6f:95:ac:6e:57:16:28: e4:39:04:e1:9c:4e:44:7c:a2:92:07:ce:61:bf:67:fb:e4:c6: 75:81:eb:d7:f1:cc:e6:b7:29:f6:f3:90:b3:8f:73:b7:4f:74: 5f:35:e0:8e:66:5c:cf:e9:58:6d:c1:81:40:66:74:43:0e:c3: bd:21:e4:d6:21:f0:b0:cc:0c:00:e1:ce:43:ae:9c:1f:8c:9a: a5:22:4f:f5:b9:e7:92:5f:26:fc:96:16:46:16:d0:6d:da:20: 2f:01:f3:4c:e8:9d:88:67:59:69:86:ed:78:c5:01:4b:20:73: 87:58:60:21:21:da:a6:be:86:29:45:c0:26:41:76:ff:15:70: 32:85:51:41:f4:09:29:c8:a2:73:70:3e:fb:f9:97:d2:d7:e4: ec:89:4d:56:c4:06:b8:38:d5:e7:81:9d:22:d7:79:a0:50:c4: de:1d:a5:8c:2d:40:63:79:28:d0:4c:99:f7:6e:3a:d6:a5:6e: 4c:ec:ab:16:12:75:cd:44:86:17:b8:e0:6e:f7:ed:a9:59:ae: 91:70:64:c6:13:e2:20:7c:1a:31:e0:63:db:6f:f1:b6:a6:ee: 02:18:93:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4QjIxMTAvBgNVBAUTKEFEREVFOTA5QTMxNjc2MjE1NTNGRDQ0RTAyMjREMzhB MDY3ODc5ODcwHhcNMjUxMTAyMjIxMjA5WhcNMjUxMTA5MjIxMjA5WjAYMRYwFAYD VQQDEw02OTA3ZDczOS05YjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTD+ixwGt+JWUBmqS5+JQkGrPtgEAWFPVyZUIbjrp/HQwcwoEjUXs4ngeT9r OHxmc+1Ds/31w/pU+IB5PSVZZe172+qfcm28ztrQ08u9PIuZgbu0amQNVwvyIouy IcFsUUFWpFwvVyUrSE1lscRJ8fVHnLTi2Wy0+FGWsE7V1J4g0nel7R+3ou/9fLAj d+n8Wj7vCWeCNxQCyBYaNaXHRYgVxIMVV4Pzn2N0UjGCCgfAYr6v8H0Hp1mR0Eba CAsFBma2PcVivKuicDgDeh7Vk4kT/4cncGdcYVTC4MbYlrJBU7cDH6an3of5CD7T B7LUUNgsbSNneCIk4UKwc0HS6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4kmePh xZnkxe0lI6Xx/+aXfOehMB8GA1UdIwQYMBaAFK3e6QmjFnYhVT/UTgIk04oGeHmH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzhCMi83MzlCQkE1QTdE N0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2RpRlZQOVJPQWlUVGlnWjRl WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkN3BDYU1XZGlGVlA5Uk9BaVRUaWdaNGVZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzhCMi83MzlCQkE1QTdEN0IxMUVCQTYyMjI3NUJDNEY5QUUwMi9yZDdwQ2FNV2Rp RlZQOVJPQWlUVGlnWjRlWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMWdV0tZTUSw8F9ToX6ZWqd3somGdunUaQIWRra2+VrG5XFijkOQTh nE5EfKKSB85hv2f75MZ1gevX8czmtyn285Czj3O3T3RfNeCOZlzP6VhtwYFAZnRD DsO9IeTWIfCwzAwA4c5DrpwfjJqlIk/1ueeSXyb8lhZGFtBt2iAvAfNM6J2IZ1lp hu14xQFLIHOHWGAhIdqmvoYpRcAmQXb/FXAyhVFB9AkpyKJzcD77+ZfS1+TsiU1W xAa4ONXngZ0i13mgUMTeHaWMLUBjeSjQTJn3bjrWpW5M7KsWEnXNRIYXuOBu9+2p Wa6RcGTGE+IgfBox4GPbb/G2pu4CGJOe -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:13 2025 by rpki-client