$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft File: F3JfretEo_qLMf_wpjy8UVWpB9g.mft (raw, json) Hash identifier: 30SiPTXds4i0mwu7HGSzrMmeSpPn2q3HUbu47/mFG9M= Subject key identifier: 2E:78:B8:C7:8A:0C:C4:EA:D2:63:A8:7D:33:F3:00:77:AD:E1:20:D4 Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft Manifest number: 07DB Signing time: Tue 04 Nov 2025 21:16:08 +0000 Manifest this update: Tue 04 Nov 2025 21:16:07 +0000 Manifest next update: Tue 11 Nov 2025 21:16:07 +0000 Files and hashes: 1: F3JfretEo_qLMf_wpjy8UVWpB9g.crl (hash: EvV9fLoJw4YCvAUvN9IcWUvS97M3gHIHYqtaxhQ2Zxw=) 2: C6591C620DFD11EBAD63A21CC4F9AE02.roa (hash: wiuGLfhX4Abp89BeKvQrP2ym0zYLw1999qfgLcOKlHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049, serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: Nov 4 21:16:07 2025 GMT Not After : Nov 11 21:16:07 2025 GMT Subject: CN=690a6d18-0aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e0:58:31:97:1f:26:8c:c5:f5:05:f1:76:fe: 3a:24:b7:ac:34:ee:5f:85:0a:4e:0f:4c:b1:66:b7: 67:1a:1a:4b:7e:bf:e5:4b:dd:52:fe:e1:73:f6:26: 24:e8:34:f6:d3:87:4d:2f:43:05:32:06:6a:8b:aa: c9:a1:75:12:44:13:69:d8:a3:66:8c:96:2e:13:10: 27:7a:8b:86:61:7b:f9:8f:96:63:b8:86:4e:cd:d9: b5:f4:68:3e:f6:03:6b:f8:54:b0:af:a7:7e:b3:d5: 77:a4:c3:da:cb:0e:50:b2:dd:52:87:26:8c:93:b7: 7c:8d:3f:00:46:0c:e5:30:14:55:0f:08:60:17:58: 10:98:db:5a:7c:5e:df:d4:5e:a3:59:6b:72:10:84: 90:f3:40:be:52:19:cf:cd:93:2e:57:7e:40:99:7c: ac:ab:8b:eb:2b:29:6d:bd:91:d2:f8:12:df:50:d6: 25:67:aa:02:87:cc:66:42:19:88:c5:a2:cc:10:20: de:99:15:66:08:77:a5:39:9c:32:d2:89:6d:bf:1e: a4:bf:b5:43:1d:29:c4:3d:08:ab:ec:17:d9:c8:f2: b1:c1:cc:dc:8c:cf:e5:b4:7e:19:37:80:a8:9f:8f: 32:0e:70:75:e0:29:10:43:93:57:ac:40:ea:d6:04: 8c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:78:B8:C7:8A:0C:C4:EA:D2:63:A8:7D:33:F3:00:77:AD:E1:20:D4 X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:26:78:78:e3:48:c3:cb:dc:6e:5c:02:86:7b:51:b7:ee:c8: 34:fe:57:ba:3c:d9:a2:05:16:dc:1b:f6:52:23:b9:e2:bf:88: 4c:ce:83:07:b5:e6:17:34:52:07:99:92:d3:10:06:91:fa:a0: 84:41:de:c0:e2:20:5e:3d:a9:da:a7:ba:40:c8:25:c0:e5:80: 9f:4c:e4:9b:bc:74:60:e1:29:33:77:b0:1f:12:20:3c:bb:88: 63:5b:74:9a:5c:98:43:76:26:63:df:16:c9:ce:3c:93:4b:9d: 8b:aa:aa:42:dc:3f:42:0a:7a:63:27:70:68:31:44:34:51:e3: c3:8c:63:c3:a8:d8:49:c3:e5:9c:7d:2b:1a:34:e5:a5:bf:54: 16:24:0d:2c:f3:01:2c:d6:c9:7a:c6:97:d8:f5:81:87:1d:3b: 02:ae:2c:8e:f9:14:43:e6:99:b0:99:f2:99:25:df:e9:da:29: a0:d5:93:d6:87:13:77:e1:d0:20:46:0b:b8:5e:be:81:3c:ae: bf:7d:db:85:eb:13:c6:00:c2:06:b6:0e:d8:c4:7c:f9:a6:86: e0:ba:51:ba:0a:43:70:24:89:fc:49:0e:f6:27:dd:49:11:4b: 02:9c:7c:80:c1:9c:1b:9c:b8:82:8d:57:7c:77:b9:42:4a:38: a8:43:5f:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjUxMTA0MjExNjA3WhcNMjUxMTExMjExNjA3WjAYMRYwFAYD VQQDEw02OTBhNmQxOC0wYWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOBYMZcfJozF9QXxdv46JLesNO5fhQpOD0yxZrdnGhpLfr/lS91S/uFz9iYk 6DT204dNL0MFMgZqi6rJoXUSRBNp2KNmjJYuExAneouGYXv5j5ZjuIZOzdm19Gg+ 9gNr+FSwr6d+s9V3pMPayw5Qst1ShyaMk7d8jT8ARgzlMBRVDwhgF1gQmNtafF7f 1F6jWWtyEISQ80C+UhnPzZMuV35AmXysq4vrKyltvZHS+BLfUNYlZ6oCh8xmQhmI xaLMECDemRVmCHelOZwy0oltvx6kv7VDHSnEPQir7BfZyPKxwczcjM/ltH4ZN4Co n48yDnB14CkQQ5NXrEDq1gSMBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC54uMeK DMTq0mOofTPzAHet4SDUMB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDA0OS83RUM5MDk3NjBERkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9f cUxNZl93cGp5OFVWV3BCOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Jnh440jDy9xuXAKGe1G37sg0/le6PNmiBRbcG/ZSI7niv4hMzoMH teYXNFIHmZLTEAaR+qCEQd7A4iBePanap7pAyCXA5YCfTOSbvHRg4Skzd7AfEiA8 u4hjW3SaXJhDdiZj3xbJzjyTS52LqqpC3D9CCnpjJ3BoMUQ0UePDjGPDqNhJw+Wc fSsaNOWlv1QWJA0s8wEs1sl6xpfY9YGHHTsCriyO+RRD5pmwmfKZJd/p2img1ZPW hxN34dAgRgu4Xr6BPK6/fduF6xPGAMIGtg7YxHz5pobgulG6CkNwJIn8SQ72J91J EUsCnHyAwZwbnLiCjVd8d7lCSjioQ185 -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:20 2025 by rpki-client