$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: eI4Aq/caki9/+CUgDrM5lnrRK/nEzm40Xndw2aCSYO8= Subject key identifier: 43:C4:BB:6F:3C:A9:5C:19:2A:0E:1C:BF:E9:ED:3C:95:00:EE:F8:4A Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0227 Signing time: Mon 17 Nov 2025 00:19:23 +0000 Manifest this update: Mon 17 Nov 2025 00:19:23 +0000 Manifest next update: Mon 24 Nov 2025 00:19:23 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: hF4ATvrW1r//t8oXMynJDL/agnV63MFeqtns9lQGy1Y=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Nov 2025 00:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Nov 17 00:19:23 2025 GMT Not After : Nov 24 00:19:23 2025 GMT Subject: CN=691a6a0b-2112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4b:6b:ad:22:4d:ee:cb:8d:5c:20:d8:db:e2: 63:8b:9b:c2:0b:f6:cb:ec:fd:6e:de:69:a5:37:d1: 67:a8:b8:1d:69:27:0c:56:f5:87:1a:63:22:96:7c: 55:b8:57:ea:a6:99:2f:5d:ab:9d:59:22:f8:1a:d6: 60:60:57:90:ed:d4:cd:72:6e:cf:4e:ab:41:c8:0b: 22:db:ef:a3:33:39:14:31:6e:27:2d:70:0b:1e:b0: 6f:a8:72:d0:b2:80:5f:02:4d:83:ab:06:a8:68:1b: 31:9a:03:9b:37:33:f5:97:05:b0:03:b1:53:4a:77: 86:97:14:40:db:98:51:07:9d:ae:0c:b9:a4:2c:ca: db:39:8a:a2:f6:df:19:00:d9:68:4e:52:c3:2e:fd: c5:a2:f4:0a:40:6c:bf:d2:ee:5e:bb:b4:16:f7:10: 3c:b4:6d:5d:06:ec:97:43:83:8d:39:5e:cb:5f:a3: 63:0d:67:f6:43:15:08:12:ba:21:8a:a0:4b:c8:6c: 2b:bc:e6:13:93:77:e0:6a:3a:35:ab:55:96:22:89: 80:a8:f8:87:6f:74:36:07:e7:5d:95:dc:4e:1b:57: b2:88:fc:9e:4f:06:6a:93:05:9c:f2:62:c0:cf:d7: 2a:8c:01:61:c3:b5:ac:e1:a9:5b:7f:03:e7:3f:0c: bc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C4:BB:6F:3C:A9:5C:19:2A:0E:1C:BF:E9:ED:3C:95:00:EE:F8:4A X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:8b:bd:b5:d5:aa:43:09:79:8f:18:f9:93:cc:d4:56:ea:e7: 52:85:80:80:3e:a5:27:62:55:66:df:51:a8:02:81:57:35:1a: 29:3d:27:09:9a:7e:d2:0a:e7:20:cc:cf:0a:93:8f:e3:29:d0: ec:86:82:0f:0f:54:7f:e3:04:36:99:f0:c8:d7:1e:8a:f8:71: 97:ce:7f:d4:fe:cb:65:f2:8b:38:8f:0f:36:e8:9f:8a:44:b0: df:af:d2:ef:28:a3:0f:1f:31:9f:49:63:5e:95:db:db:d5:d7: df:f8:4e:27:b6:c9:6a:0e:75:e5:de:80:48:cc:b5:ce:9b:b4: 06:44:7b:c1:32:a6:83:d1:30:da:28:05:bb:a8:86:25:65:d2: 81:db:29:c0:dd:be:fe:e8:6b:dc:ca:a1:90:32:b7:36:7d:4a: 0a:c3:03:60:7e:60:5c:ce:76:aa:f4:b0:22:ce:f3:fe:33:f5: 08:30:fd:3e:51:99:ce:fe:d5:34:54:2b:4f:54:1f:dd:ab:3a: 8c:1e:3e:f3:10:02:23:79:69:bc:2a:83:73:6f:c5:a1:5d:e1: 83:58:ca:9d:39:41:75:a5:2f:56:66:70:fb:ef:8c:61:2f:47: f2:5c:1b:78:45:87:54:37:00:40:1e:fc:4a:40:9c:46:fe:af: 28:43:5c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUxMTE3MDAxOTIzWhcNMjUxMTI0MDAxOTIzWjAYMRYwFAYD VQQDEw02OTFhNmEwYi0yMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUtrrSJN7suNXCDY2+Jji5vCC/bL7P1u3mmlN9FnqLgdaScMVvWHGmMilnxV uFfqppkvXaudWSL4GtZgYFeQ7dTNcm7PTqtByAsi2++jMzkUMW4nLXALHrBvqHLQ soBfAk2DqwaoaBsxmgObNzP1lwWwA7FTSneGlxRA25hRB52uDLmkLMrbOYqi9t8Z ANloTlLDLv3FovQKQGy/0u5eu7QW9xA8tG1dBuyXQ4ONOV7LX6NjDWf2QxUIEroh iqBLyGwrvOYTk3fgajo1q1WWIomAqPiHb3Q2B+ddldxOG1eyiPyeTwZqkwWc8mLA z9cqjAFhw7Ws4albfwPnPwy80QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPEu288 qVwZKg4cv+ntPJUA7vhKMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgi7211apDCXmPGPmTzNRW6udShYCAPqUnYlVm31GoAoFXNRopPScJ mn7SCucgzM8Kk4/jKdDshoIPD1R/4wQ2mfDI1x6K+HGXzn/U/stl8os4jw826J+K RLDfr9LvKKMPHzGfSWNeldvb1dff+E4ntslqDnXl3oBIzLXOm7QGRHvBMqaD0TDa KAW7qIYlZdKB2ynA3b7+6GvcyqGQMrc2fUoKwwNgfmBcznaq9LAizvP+M/UIMP0+ UZnO/tU0VCtPVB/dqzqMHj7zEAIjeWm8KoNzb8WhXeGDWMqdOUF1pS9WZnD774xh L0fyXBt4RYdUNwBAHvxKQJxG/q8oQ1yj -----END CERTIFICATE-----Generated at Mon Nov 17 09:58:04 2025 by rpki-client