$ rpki-client -vvf rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft File: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft (raw, json) Hash identifier: X/6KldGHh/4rf1CsxMikRA99E2IRWUDdP12s/A8WO3w= Subject key identifier: 79:20:8D:95:6A:E9:A8:34:20:57:87:57:CC:11:72:A4:61:25:79:02 Authority key identifier: EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 Certificate issuer: /CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft Manifest number: 14EC Signing time: Tue 04 Nov 2025 18:19:48 +0000 Manifest this update: Tue 04 Nov 2025 18:19:48 +0000 Manifest next update: Tue 11 Nov 2025 18:19:48 +0000 Files and hashes: 1: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl (hash: Ho5hI35JuS56OgaQJu4nUi2AGIn50yzrbe66/OvUpRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D7D0, serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Validity Not Before: Nov 4 18:19:48 2025 GMT Not After : Nov 11 18:19:48 2025 GMT Subject: CN=690a43c4-380b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2b:c3:36:ff:f8:99:56:54:7d:bd:f3:e1:76: a5:f3:32:6f:4d:ae:ed:39:4d:6c:ba:bb:82:c9:ab: c8:7b:97:60:4e:d9:39:e7:9e:b6:a1:0c:93:ec:72: ac:b4:d0:31:f0:0d:b9:7e:be:56:9a:07:f7:6a:1a: 86:57:57:73:7c:78:2f:45:b2:da:63:8f:c8:49:d6: e0:60:76:9d:61:50:06:42:f4:77:1a:00:53:52:03: d1:ea:76:fb:ab:48:d7:5d:e0:22:70:ea:ac:93:42: 30:b6:ca:85:26:51:ce:b7:bf:20:85:2d:c9:de:66: 54:fc:09:cd:a5:0a:b9:a8:4c:2e:d2:f2:3a:52:ac: 2c:cb:55:b4:29:7c:ae:e4:25:17:4c:9d:86:43:48: 22:9f:1d:e1:cd:5a:88:91:44:0f:ca:1c:0c:37:8d: 93:65:f7:7f:07:92:65:58:56:fd:d1:bb:fc:f3:14: 6b:de:56:5b:42:06:89:b7:d0:b3:68:db:1e:fd:11: ab:37:61:41:dc:36:04:d8:6a:ad:0e:22:57:85:b8: fa:67:01:60:db:e9:83:45:ae:65:8e:a8:ec:1c:8e: 04:22:fe:b9:b7:d9:b1:49:42:91:5e:45:5b:6b:06: 84:87:ce:5c:5a:80:2a:39:29:a0:22:42:b1:6e:f5: 05:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:20:8D:95:6A:E9:A8:34:20:57:87:57:CC:11:72:A4:61:25:79:02 X509v3 Authority Key Identifier: keyid:EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:cc:a5:fe:fe:53:be:e8:08:68:a9:36:dc:f1:a7:4d:80:4f: a7:35:17:e9:57:fe:11:57:44:e4:64:18:e6:69:43:39:e1:8f: 06:09:8e:5f:16:73:2f:ac:5c:b1:26:72:62:8f:a2:11:69:62: e9:0f:48:09:a4:e7:c1:4d:a0:27:74:5d:13:17:20:a1:c9:04: 65:ee:c4:f7:c9:cc:e0:45:24:a4:7c:f6:e4:22:18:48:1f:e1: 75:51:c0:2c:e3:3a:6c:a8:0a:b0:a2:93:5e:29:cc:81:ee:b3: 9e:71:20:45:99:74:7a:34:84:f4:39:55:f0:d3:a9:4a:cd:b4: 7d:51:3e:ea:df:64:f4:d5:74:f3:ed:0e:0e:b5:eb:9a:ca:ad: 49:c8:7c:50:7d:17:15:f7:af:f7:fa:94:ef:f8:88:eb:10:d4: 9d:e6:4a:1d:ce:6a:80:79:80:37:0a:56:44:fe:ea:97:18:ba: f7:81:55:95:d0:3b:fa:e9:2e:ef:17:0a:d2:83:d8:bc:ac:13: d8:90:30:95:ff:ba:94:2f:78:be:86:bf:64:77:c4:7d:4c:78: ff:69:fb:e9:22:1d:0f:c4:79:a5:32:de:c1:de:05:95:e1:2d: 50:f3:8b:15:7d:ba:f8:b2:0e:d1:d9:bb:49:79:b4:30:0b:00: 46:e5:73:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3RDAxMTAvBgNVBAUTKEVDM0I5MEMzNDg4NkZEMDkyOEUzMTI1NDYxRkJCNDE1 MkJFOTkxMzcwHhcNMjUxMTA0MTgxOTQ4WhcNMjUxMTExMTgxOTQ4WjAYMRYwFAYD VQQDEw02OTBhNDNjNC0zODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ivDNv/4mVZUfb3z4Xal8zJvTa7tOU1suruCyavIe5dgTtk55562oQyT7HKs tNAx8A25fr5Wmgf3ahqGV1dzfHgvRbLaY4/ISdbgYHadYVAGQvR3GgBTUgPR6nb7 q0jXXeAicOqsk0IwtsqFJlHOt78ghS3J3mZU/AnNpQq5qEwu0vI6Uqwsy1W0KXyu 5CUXTJ2GQ0ginx3hzVqIkUQPyhwMN42TZfd/B5JlWFb90bv88xRr3lZbQgaJt9Cz aNse/RGrN2FB3DYE2GqtDiJXhbj6ZwFg2+mDRa5ljqjsHI4EIv65t9mxSUKRXkVb awaEh85cWoAqOSmgIkKxbvUF4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkgjZVq 6ag0IFeHV8wRcqRhJXkCMB8GA1UdIwQYMBaAFOw7kMNIhv0JKOMSVGH7tBUr6ZE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDdEMC85ODJCMkQ1QTAw ODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19Ra280eEpVWWZ1MEZTdnBr VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEdVF3MGlHX1FrbzR4SlVZZnUwRlN2cGtUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDdEMC85ODJCMkQ1QTAwODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19R a280eEpVWWZ1MEZTdnBrVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlzKX+/lO+6AhoqTbc8adNgE+nNRfpV/4RV0TkZBjmaUM54Y8GCY5f FnMvrFyxJnJij6IRaWLpD0gJpOfBTaAndF0TFyChyQRl7sT3yczgRSSkfPbkIhhI H+F1UcAs4zpsqAqwopNeKcyB7rOecSBFmXR6NIT0OVXw06lKzbR9UT7q32T01XTz 7Q4Oteuayq1JyHxQfRcV96/3+pTv+IjrENSd5kodzmqAeYA3ClZE/uqXGLr3gVWV 0Dv66S7vFwrSg9i8rBPYkDCV/7qUL3i+hr9kd8R9THj/afvpIh0PxHmlMt7B3gWV 4S1Q84sVfbr4sg7R2btJebQwCwBG5XP+ -----END CERTIFICATE-----Generated at Wed Nov 5 05:20:31 2025 by rpki-client