$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft File: 7qiugNcT5rItsOxgkVfwxZpS_X8.mft (raw, json) Hash identifier: j7f1ZLtJGB0gouZFwUhYXDsJzbo/Ynz3rREJ7C0DSc8= Subject key identifier: 36:2C:28:31:D4:65:30:81:25:FF:EC:57:3C:C5:70:05:63:1E:81:06 Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F Certificate issuer: /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Certificate serial: 3542 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft Manifest number: 3506 Signing time: Tue 04 Nov 2025 14:54:37 +0000 Manifest this update: Tue 04 Nov 2025 14:54:37 +0000 Manifest next update: Tue 11 Nov 2025 14:54:37 +0000 Files and hashes: 1: 7qiugNcT5rItsOxgkVfwxZpS_X8.crl (hash: axn9kFh80T8ZSwlk7p+vjCVZhRmutxdzzP1xsmE/T8E=) 2: F026CE74927411EDB020A481C4F9AE02.roa (hash: D3nZr89FC3B/hYB2ABfVDlFpa9Kx2bcJix0bhxq7u3Y=) 3: 6C0C85D0A43011ECA230771BC4F9AE02.roa (hash: 7ZkKrwIf5dxU1AyQHdEtx/cZNmt12RU0pVuLQbnEwD8=) 4: 2A73A3403A0711F081048A4EC4F9AE02.roa (hash: Sb9dKZUra617yJWr0DgG7F51M0rwa4KtVZlgSlPgYpw=) 5: 2ACF9E0C855C11EB8C076013C4F9AE02.roa (hash: /XOWg1DL5Ca4WTABh7nowkgqWfXA9qIHVM17A2ry+Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13634 (0x3542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6B7, serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Validity Not Before: Nov 4 14:54:37 2025 GMT Not After : Nov 11 14:54:37 2025 GMT Subject: CN=690a13ad-869c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c8:53:26:6d:ed:e7:c4:29:04:27:fb:29:ca: 77:0a:ef:25:85:37:8b:88:89:4f:83:ac:aa:51:d3: a5:db:24:82:f1:04:fd:e9:b5:d3:b0:7f:84:51:b2: bf:79:d5:58:83:6c:19:a3:ac:b8:dc:c5:7b:32:da: 35:e9:09:8b:76:a8:4d:68:f1:16:b8:5f:a8:36:1f: c6:ff:cf:54:af:8b:f8:09:8e:76:bf:3e:2b:27:c5: 35:59:c0:1d:11:f0:de:bc:48:4b:dc:79:68:76:c9: 11:73:1c:0e:35:14:e2:03:9a:bc:8f:5b:60:15:7b: 35:44:4d:fb:a3:66:a9:a9:7b:6d:bc:1d:17:0e:89: 0b:b2:48:54:a7:9d:b5:0a:c3:40:1b:a2:26:01:fe: 80:79:fc:75:1e:81:48:3a:42:41:e5:95:ed:ed:b3: 48:3c:9e:99:7c:55:70:50:a7:9a:39:b0:25:0c:40: d0:12:d8:ef:b1:6b:69:30:24:0c:a0:ac:de:b3:eb: 9d:84:44:b7:53:25:86:5a:bb:e0:35:7b:ee:96:cf: 4c:a2:ac:f4:00:fb:84:5f:d9:3b:33:dc:2f:98:ed: 69:be:04:b0:10:dc:3c:86:e7:59:89:c3:2e:74:73: a5:12:03:d7:fe:fe:25:46:7d:5c:8f:b6:c9:30:24: e8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:2C:28:31:D4:65:30:81:25:FF:EC:57:3C:C5:70:05:63:1E:81:06 X509v3 Authority Key Identifier: keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:22:d9:48:04:f3:a3:eb:fc:50:8e:10:f3:aa:5a:4d:14:aa: 24:9f:bc:19:9a:14:f1:49:a1:6e:de:1a:15:66:36:8d:c1:b7: 0b:89:57:78:cb:96:f9:77:23:2f:be:70:5c:89:59:16:04:4c: e4:d7:59:1b:07:7c:05:69:b9:28:6a:3b:b1:a9:58:c9:b2:92: 1c:ab:0d:55:23:b5:55:71:af:15:93:83:16:89:47:a9:c0:75: eb:bd:50:6e:70:22:90:e9:3c:98:88:cc:85:e4:28:35:6c:f2: 2e:6b:b6:e7:9e:69:8b:6c:60:7f:e2:2b:d1:25:38:ca:a1:d1: c8:b0:70:c5:d8:3e:80:41:90:a7:6e:e7:37:23:ea:dd:d9:ed: 39:7a:e8:1f:5e:d9:8b:25:3d:c0:3b:a7:58:4d:6f:aa:03:b3: 6a:d3:bd:f2:49:24:e3:b2:ec:09:f5:5b:fc:ad:37:a4:c7:28: 96:97:cf:77:8a:b3:d2:25:60:d4:a8:2f:12:0a:13:ea:db:d6: 4b:9e:b9:9a:7f:ba:51:bd:27:27:95:d1:5e:22:a4:39:cc:00: 80:94:e5:7e:85:a2:ef:c2:d5:f3:8e:3c:f6:a6:62:6f:e1:3c: 89:2d:4b:64:80:23:9d:c2:19:47:81:82:ff:db:12:bc:dc:e4: 11:20:88:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QjcxMTAvBgNVBAUTKEVFQThBRTgwRDcxM0U2QjIyREIwRUM2MDkxNTdGMEM1 OUE1MkZEN0YwHhcNMjUxMTA0MTQ1NDM3WhcNMjUxMTExMTQ1NDM3WjAYMRYwFAYD VQQDEw02OTBhMTNhZC04NjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0chTJm3t58QpBCf7Kcp3Cu8lhTeLiIlPg6yqUdOl2ySC8QT96bXTsH+EUbK/ edVYg2wZo6y43MV7Mto16QmLdqhNaPEWuF+oNh/G/89Ur4v4CY52vz4rJ8U1WcAd EfDevEhL3HlodskRcxwONRTiA5q8j1tgFXs1RE37o2apqXttvB0XDokLskhUp521 CsNAG6ImAf6Aefx1HoFIOkJB5ZXt7bNIPJ6ZfFVwUKeaObAlDEDQEtjvsWtpMCQM oKzes+udhES3UyWGWrvgNXvuls9Moqz0APuEX9k7M9wvmO1pvgSwENw8hudZicMu dHOlEgPX/v4lRn1cj7bJMCToBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYsKDHU ZTCBJf/sVzzFcAVjHoEGMB8GA1UdIwQYMBaAFO6oroDXE+ayLbDsYJFX8MWaUv1/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCNy8xQzE2NjQxQzFE OTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVySXRzT3hna1Zmd3hacFNf WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxaXVnTmNUNXJJdHNPeGdrVmZ3eFpwU19YOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDZCNy8xQzE2NjQxQzFEOTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVy SXRzT3hna1Zmd3hacFNfWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZItlIBPOj6/xQjhDzqlpNFKokn7wZmhTxSaFu3hoVZjaNwbcLiVd4 y5b5dyMvvnBciVkWBEzk11kbB3wFabkoajuxqVjJspIcqw1VI7VVca8Vk4MWiUep wHXrvVBucCKQ6TyYiMyF5Cg1bPIua7bnnmmLbGB/4ivRJTjKodHIsHDF2D6AQZCn buc3I+rd2e05eugfXtmLJT3AO6dYTW+qA7Nq073ySSTjsuwJ9Vv8rTekxyiWl893 irPSJWDUqC8SChPq29ZLnrmaf7pRvScnldFeIqQ5zACAlOV+haLvwtXzjjz2pmJv 4TyJLUtkgCOdwhlHgYL/2xK83OQRIIhf -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:15 2025 by rpki-client