$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: PgTtTsqhKrdX93q1l3UwH8bPapgQvpdbnUs66E8yfRU= Subject key identifier: 7B:49:8E:C4:AE:BD:63:88:5B:42:A2:F0:1B:B0:F0:08:CB:03:71:53 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0218 Signing time: Fri 17 Oct 2025 04:36:34 +0000 Manifest this update: Fri 17 Oct 2025 04:36:33 +0000 Manifest next update: Fri 24 Oct 2025 04:36:33 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: 8GGB9LkJdoQnRnRiS8dQafQrK87V51PmpjPwW85IrRg=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 04:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Oct 17 04:36:33 2025 GMT Not After : Oct 24 04:36:33 2025 GMT Subject: CN=68f1c7d1-3355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7d:93:ca:43:8d:df:72:1b:2e:25:cf:03:3c: d3:f2:bb:7f:4e:bc:8a:00:46:7e:ab:64:b5:df:93: 14:34:46:08:b6:7e:4a:ce:3d:6f:c9:37:e3:6d:73: bd:56:67:12:92:23:cf:0a:b2:00:7c:46:16:b9:a3: 1c:0c:e4:dd:29:85:90:1a:c1:6c:3c:08:c8:5d:cd: 39:43:50:ef:f3:94:c4:fc:13:b6:11:24:30:45:a7: b4:01:14:b2:c4:f8:36:bc:bc:d7:ad:f7:9c:b5:ed: 10:20:7c:a9:b1:26:15:b6:ab:49:72:cd:ca:9e:19: a0:b9:37:52:09:6f:4b:69:7c:1e:c0:e6:70:cd:45: df:77:b5:88:10:c0:6c:5f:1b:de:6e:90:ed:01:64: 13:34:d6:1b:fd:6c:ef:75:a4:0a:90:40:3f:58:f9: ac:e1:0b:f0:99:d0:2b:c6:19:09:23:62:e4:3f:ad: b7:d8:8a:fb:98:c0:99:a8:de:e0:9f:19:32:b3:50: 17:a9:fc:0d:f5:98:1b:a9:51:a7:b7:64:f6:dd:e3: 55:e6:af:a0:23:a5:3c:74:cc:ac:77:61:1d:7f:c2: cf:d9:59:f1:b9:5d:19:da:9f:30:f0:76:11:b7:6f: 2e:02:88:58:01:e1:45:9c:f7:ff:e5:01:e6:5d:77: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:49:8E:C4:AE:BD:63:88:5B:42:A2:F0:1B:B0:F0:08:CB:03:71:53 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:30:19:27:4e:cf:bb:ff:16:b4:14:5e:25:10:8b:7e:2a:7d: 58:30:bd:b0:c5:ed:46:0e:7a:55:9d:f3:05:67:0c:a3:96:6a: b6:42:e0:35:57:cd:c8:aa:f7:51:3c:b1:48:fc:85:62:d3:52: da:65:69:24:90:e8:d0:7e:67:01:d4:0d:f6:17:85:b3:14:f6: 8c:36:24:85:ad:0b:da:96:51:1b:03:55:44:24:45:f1:fb:fa: 4d:1f:4d:ae:8d:64:75:c7:88:45:e3:c5:9d:b1:d1:0c:90:d1: 66:ea:b6:c4:96:1a:e3:08:8a:7e:1a:bb:5a:a6:48:af:23:87: 01:bc:75:00:95:d0:dc:78:64:8a:6c:fd:28:40:c2:32:b1:4f: 10:68:bb:fd:27:3a:fd:cf:32:89:de:d9:c0:ea:40:e8:a9:4d: 79:65:10:97:f9:cb:e3:a7:28:4c:16:8c:6b:a9:c0:cc:42:01: 74:c1:19:a9:c7:29:7d:8d:fa:13:a6:f8:91:8e:3b:1d:e9:4a: d2:67:3d:b8:97:c8:69:07:ad:52:a4:30:28:7c:9c:a4:f0:8a: 10:53:2a:a8:de:e5:e5:ff:8b:05:a4:da:91:1f:96:0c:36:d7: 19:0a:5d:4a:11:c2:cf:bc:6c:57:cb:d8:f3:ab:d3:e6:7a:0e: bd:cb:9d:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUxMDE3MDQzNjMzWhcNMjUxMDI0MDQzNjMzWjAYMRYwFAYD VQQDEw02OGYxYzdkMS0zMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4n2TykON33IbLiXPAzzT8rt/TryKAEZ+q2S135MUNEYItn5Kzj1vyTfjbXO9 VmcSkiPPCrIAfEYWuaMcDOTdKYWQGsFsPAjIXc05Q1Dv85TE/BO2ESQwRae0ARSy xPg2vLzXrfecte0QIHypsSYVtqtJcs3KnhmguTdSCW9LaXwewOZwzUXfd7WIEMBs XxvebpDtAWQTNNYb/WzvdaQKkEA/WPms4QvwmdArxhkJI2LkP6232Ir7mMCZqN7g nxkys1AXqfwN9ZgbqVGnt2T23eNV5q+gI6U8dMysd2Edf8LP2VnxuV0Z2p8w8HYR t28uAohYAeFFnPf/5QHmXXcMCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtJjsSu vWOIW0Ki8Buw8AjLA3FTMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALMBknTs+7/xa0FF4lEIt+Kn1YML2wxe1GDnpVnfMFZwyjlmq2QuA1 V83IqvdRPLFI/IVi01LaZWkkkOjQfmcB1A32F4WzFPaMNiSFrQvallEbA1VEJEXx +/pNH02ujWR1x4hF48WdsdEMkNFm6rbElhrjCIp+GrtapkivI4cBvHUAldDceGSK bP0oQMIysU8QaLv9Jzr9zzKJ3tnA6kDoqU15ZRCX+cvjpyhMFoxrqcDMQgF0wRmp xyl9jfoTpviRjjsd6UrSZz24l8hpB61SpDAofJyk8IoQUyqo3uXl/4sFpNqRH5YM NtcZCl1KEcLPvGxXy9jzq9Pmeg69y50D -----END CERTIFICATE-----Generated at Sat Oct 18 01:49:35 2025 by rpki-client