$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft File: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft (raw, json) Hash identifier: VScFc3bOklZI/gIBQ9x4egWWo2sibNfvFPgIV3fve7k= Subject key identifier: 68:24:3C:41:13:CB:47:25:DB:CB:43:B8:70:FB:3B:22:A7:64:99:F9 Authority key identifier: EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 Certificate issuer: /CN=A91982B6/serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft Manifest number: 9A Signing time: Mon 03 Nov 2025 06:21:30 +0000 Manifest this update: Mon 03 Nov 2025 06:21:29 +0000 Manifest next update: Mon 10 Nov 2025 06:21:29 +0000 Files and hashes: 1: 7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl (hash: j81RFi8jcNekG0lCmtPtIAZpL/CFxb80otuhkFzgPqI=) 2: 739C8BDECB5A11EFBEE64062C4F9AE02.roa (hash: WVqv1JuSt8hSNNolUiV5z8//m1vJSnq0q+Q8Ooe/S0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=EC679169177B9E131D0DAA01398D70039827D1F6 Validity Not Before: Nov 3 06:21:29 2025 GMT Not After : Nov 10 06:21:29 2025 GMT Subject: CN=690849ea-7e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9f:05:c2:41:d8:6e:d2:a5:5b:c6:22:cc:83: 26:48:67:8c:b7:6b:53:4b:79:0e:59:ca:35:a5:e7: f4:42:0d:cf:c8:a8:fe:56:d5:b3:8b:8b:fe:ce:4d: a8:71:11:0e:95:32:34:9a:c4:ae:6c:e9:63:c8:f5: 5f:32:a7:63:7b:0b:9d:ef:d6:92:e7:74:3b:00:d2: fd:47:78:8f:45:3e:18:47:83:79:52:94:6f:50:8c: 79:24:02:b6:96:eb:99:f3:43:3b:26:e5:cd:9c:0a: 0f:bb:46:7f:95:f4:2c:4e:eb:15:19:4a:bb:15:3e: 1d:47:67:d5:2e:72:1c:fd:82:f8:fb:18:ab:ac:97: 24:a5:f6:07:df:fd:ad:8f:4f:8b:3a:8d:b5:a3:0c: f3:b0:2a:42:fc:90:85:2f:e6:42:13:79:2a:99:68: 8f:a1:2c:b4:af:32:5a:34:52:77:a3:b0:4b:6d:b3: 03:a8:a8:17:af:a4:5f:0c:61:66:85:e2:f9:f0:41: e4:07:e7:c4:08:9b:5b:77:4e:7b:1a:11:68:a3:a5: 12:7d:12:a3:f5:77:f8:b2:ea:bd:2c:67:20:2b:54: 01:73:26:17:a0:c5:f2:a1:92:31:41:2d:ae:d4:1c: b6:c8:d7:0e:a7:1f:d7:58:25:d5:2c:9c:81:ed:4d: 91:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:24:3C:41:13:CB:47:25:DB:CB:43:B8:70:FB:3B:22:A7:64:99:F9 X509v3 Authority Key Identifier: keyid:EC:67:91:69:17:7B:9E:13:1D:0D:AA:01:39:8D:70:03:98:27:D1:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7GeRaRd7nhMdDaoBOY1wA5gn0fY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/E64B03B4CB5911EF86915B61C4F9AE02/7GeRaRd7nhMdDaoBOY1wA5gn0fY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:6f:2d:83:69:58:d9:48:f9:ed:8b:c5:36:32:20:17:e2:a5: ca:06:bc:26:23:2f:1f:83:50:ae:6d:5c:66:5e:88:92:84:82: 06:28:9c:3b:a5:d0:07:fa:8b:7a:4b:94:08:5d:2f:53:14:77: b2:6b:e7:ba:ee:ec:9e:f9:e4:30:66:c8:0b:7e:c8:6b:fa:c0: 60:fc:31:6d:e4:2a:96:7a:22:28:99:fc:ae:d4:50:cf:f0:0b: b5:dc:40:1c:9a:10:0f:9f:05:63:3b:b5:b0:77:e0:fa:f3:45: f0:6d:6c:d3:b6:b1:3f:36:1e:f2:04:02:f4:9e:4f:6b:f9:d4: 34:ad:d8:7b:72:fa:e7:a8:37:a9:55:e0:46:f1:39:2b:8e:7b: 46:95:c8:1e:c1:d5:7c:69:f0:94:a9:b4:1a:bd:ed:fb:c6:c8: ba:6f:d3:02:f2:fe:4d:48:cd:f2:5e:72:60:d0:12:40:a4:de: f8:08:a2:f1:f2:1b:43:d6:81:39:14:10:59:79:37:d5:00:be: aa:3c:7a:a4:2e:aa:da:4d:db:43:1c:6f:51:b5:ee:20:39:5b: 6e:77:a6:42:15:9c:62:34:28:21:e9:41:22:6b:3e:e5:b1:0c: ce:f8:d8:09:26:b4:76:ce:25:23:a0:10:f7:97:cc:13:32:14: 69:35:14:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKEVDNjc5MTY5MTc3QjlFMTMxRDBEQUEwMTM5OEQ3MDAz OTgyN0QxRjYwHhcNMjUxMTAzMDYyMTI5WhcNMjUxMTEwMDYyMTI5WjAYMRYwFAYD VQQDEw02OTA4NDllYS03ZTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmp8FwkHYbtKlW8YizIMmSGeMt2tTS3kOWco1pef0Qg3PyKj+VtWzi4v+zk2o cREOlTI0msSubOljyPVfMqdjewud79aS53Q7ANL9R3iPRT4YR4N5UpRvUIx5JAK2 luuZ80M7JuXNnAoPu0Z/lfQsTusVGUq7FT4dR2fVLnIc/YL4+xirrJckpfYH3/2t j0+LOo21owzzsCpC/JCFL+ZCE3kqmWiPoSy0rzJaNFJ3o7BLbbMDqKgXr6RfDGFm heL58EHkB+fECJtbd057GhFoo6USfRKj9Xf4suq9LGcgK1QBcyYXoMXyoZIxQS2u 1By2yNcOpx/XWCXVLJyB7U2RpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgkPEET y0cl28tDuHD7OyKnZJn5MB8GA1UdIwQYMBaAFOxnkWkXe54THQ2qATmNcAOYJ9H2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9FNjRCMDNCNENC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi83R2VSYVJkN25oTWREYW9CT1kxd0E1Z24w ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdHZVJhUmQ3bmhNZERhb0JPWTF3QTVnbjBmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9FNjRCMDNCNENCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi83R2VSYVJkN25o TWREYW9CT1kxd0E1Z24wZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgby2DaVjZSPnti8U2MiAX4qXKBrwmIy8fg1CubVxmXoiShIIGKJw7 pdAH+ot6S5QIXS9TFHeya+e67uye+eQwZsgLfshr+sBg/DFt5CqWeiIomfyu1FDP 8Au13EAcmhAPnwVjO7Wwd+D680XwbWzTtrE/Nh7yBAL0nk9r+dQ0rdh7cvrnqDep VeBG8TkrjntGlcgewdV8afCUqbQave37xsi6b9MC8v5NSM3yXnJg0BJApN74CKLx 8htD1oE5FBBZeTfVAL6qPHqkLqraTdtDHG9Rte4gOVtud6ZCFZxiNCgh6UEiaz7l sQzO+NgJJrR2ziUjoBD3l8wTMhRpNRR/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:32 2025 by rpki-client