$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: f1QhP6RDEPEK1QkTc+/KWWwutkM33i3R7OGXd7qO9e8= Subject key identifier: 72:6F:5B:63:C2:45:65:AC:F7:3D:01:D7:70:56:7C:31:01:72:B2:0F Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 0222 Signing time: Thu 06 Nov 2025 22:21:06 +0000 Manifest this update: Thu 06 Nov 2025 22:21:06 +0000 Manifest next update: Thu 13 Nov 2025 22:21:06 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: 9y1ddsSzClQnthdVVIwV/2Cj7VdFqZfiwiNKJllprb4=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 22:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Nov 6 22:21:06 2025 GMT Not After : Nov 13 22:21:06 2025 GMT Subject: CN=690d1f52-0a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:72:92:80:c6:f5:40:26:19:76:44:c9:ca: 45:34:ca:87:17:0a:fb:58:e6:4d:b2:27:c3:ae:f4: c6:1e:48:c1:c1:37:7d:e8:4b:b6:ed:76:d2:f0:8e: 5f:4f:81:51:92:69:7e:aa:91:ee:1a:26:ac:9f:01: de:9f:00:70:32:d2:c9:48:19:4f:94:ce:b6:c7:00: 28:73:98:49:69:b6:ae:38:40:1a:18:74:a8:71:f4: 78:ab:60:d2:2c:ad:25:23:62:19:59:95:f0:de:cf: 80:f5:93:67:bc:e6:98:a8:f9:22:5c:de:46:32:97: fb:aa:f5:8d:ea:21:86:08:96:f4:3d:cc:8b:eb:01: 67:f1:ee:a3:4c:eb:93:e0:46:e7:d9:d5:79:c4:74: 1f:fb:fc:84:7e:8b:b2:c9:46:8a:9b:af:10:fe:7b: c9:b2:da:2a:dd:82:4b:0c:85:fd:e8:12:7d:d9:e8: e4:7b:40:47:a8:a6:87:87:ec:65:50:79:cb:6d:f9: 95:5a:20:43:34:55:09:a0:86:b2:3c:c2:85:85:14: a2:ac:57:98:8e:0b:55:29:7e:54:6c:e8:5a:05:94: 47:bd:76:79:29:29:64:55:7f:3c:d9:8e:95:28:ec: f5:5b:1a:8e:e2:00:37:6c:08:d4:62:9e:63:10:32: 65:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6F:5B:63:C2:45:65:AC:F7:3D:01:D7:70:56:7C:31:01:72:B2:0F X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ff:99:46:af:38:4e:0e:fb:e6:39:c3:93:94:08:8b:70:69: 0a:22:55:06:36:54:87:92:54:05:99:52:13:67:f7:7f:5f:df: 02:77:65:2d:75:a2:0a:70:d8:b9:b4:1b:40:08:17:60:8d:f0: ad:8b:91:3e:74:09:5d:e9:f8:ef:a7:00:ea:96:c2:50:e4:8b: 01:e7:0f:5e:3b:f8:2c:d0:ee:01:1e:e4:5d:f6:c5:ec:80:9f: 29:41:0c:2e:e8:57:78:5a:c3:c3:68:77:39:fe:de:ff:44:00: 09:69:f7:53:a3:99:3b:a2:4d:3d:30:a8:91:8b:ea:dd:ef:24: e1:69:fe:09:ea:7b:da:76:f1:f7:bd:1b:6a:10:25:a1:48:01: d2:00:c5:df:fe:ee:02:7f:37:3b:f2:89:01:c0:dd:09:c0:92: e4:84:5a:f4:b8:5c:20:d8:8d:09:14:d0:7e:c0:d0:3a:1d:ed: 3f:9a:1f:15:25:1c:32:b5:96:3f:6d:d9:e7:18:c1:e7:3b:70: de:06:5f:61:eb:b3:b1:7e:6f:26:5a:25:cf:27:af:e9:0b:bf: 70:9a:f8:bb:e1:5c:37:d2:37:85:a1:9d:5f:5f:04:c6:81:b5: b7:c3:6f:d4:29:a4:75:12:e6:6e:41:b7:72:ec:1b:bb:5d:b1: 7d:f1:8e:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUxMTA2MjIyMTA2WhcNMjUxMTEzMjIyMTA2WjAYMRYwFAYD VQQDEw02OTBkMWY1Mi0wYTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun5ykoDG9UAmGXZEycpFNMqHFwr7WOZNsifDrvTGHkjBwTd96Eu27XbS8I5f T4FRkml+qpHuGiasnwHenwBwMtLJSBlPlM62xwAoc5hJabauOEAaGHSocfR4q2DS LK0lI2IZWZXw3s+A9ZNnvOaYqPkiXN5GMpf7qvWN6iGGCJb0PcyL6wFn8e6jTOuT 4Ebn2dV5xHQf+/yEfouyyUaKm68Q/nvJstoq3YJLDIX96BJ92ejke0BHqKaHh+xl UHnLbfmVWiBDNFUJoIayPMKFhRSirFeYjgtVKX5UbOhaBZRHvXZ5KSlkVX882Y6V KOz1WxqO4gA3bAjUYp5jEDJlwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJvW2PC RWWs9z0B13BWfDEBcrIPMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX/5lGrzhODvvmOcOTlAiLcGkKIlUGNlSHklQFmVITZ/d/X98Cd2Ut daIKcNi5tBtACBdgjfCti5E+dAld6fjvpwDqlsJQ5IsB5w9eO/gs0O4BHuRd9sXs gJ8pQQwu6Fd4WsPDaHc5/t7/RAAJafdTo5k7ok09MKiRi+rd7yThaf4J6nvadvH3 vRtqECWhSAHSAMXf/u4Cfzc78okBwN0JwJLkhFr0uFwg2I0JFNB+wNA6He0/mh8V JRwytZY/bdnnGMHnO3DeBl9h67Oxfm8mWiXPJ6/pC79wmvi74Vw30jeFoZ1fXwTG gbW3w2/UKaR1EuZuQbdy7Bu7XbF98Y7a -----END CERTIFICATE-----Generated at Fri Nov 7 09:02:15 2025 by rpki-client