$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: asgmlPEPgIOlQv+hydXSuObdlWTFl9vBdxR6dijfqSo= Subject key identifier: D6:ED:07:6D:AA:76:1A:73:19:2A:D5:9F:CE:90:2D:2B:03:BF:3E:4A Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 4061 Signing time: Tue 04 Nov 2025 14:52:36 +0000 Manifest this update: Tue 04 Nov 2025 14:52:35 +0000 Manifest next update: Tue 11 Nov 2025 14:52:35 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: Kc1dGhdrN52+owEGiOTj2qMBzJaIofuNCQKM1QfqFQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Nov 4 14:52:35 2025 GMT Not After : Nov 11 14:52:35 2025 GMT Subject: CN=690a1333-7854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:09:38:8b:82:3a:a0:37:72:53:6b:9d:89:9c: 15:cb:33:8b:fb:a8:da:69:d6:0e:a2:ef:9d:aa:d5: 6f:0c:c3:4c:74:88:00:8d:2a:54:89:05:f1:60:e7: ec:9c:23:07:b9:5e:8a:c6:ba:b1:4f:89:68:96:f8: 48:2e:f1:58:5a:6b:85:12:fb:15:5f:0f:ac:79:85: fc:8d:e0:37:c6:42:7f:81:0e:1a:de:20:e5:ef:f5: bb:0f:3b:53:e6:55:87:b5:50:25:9b:92:92:89:70: 5f:35:d7:17:50:58:d2:18:c5:e0:d8:f5:41:10:ed: 72:8a:d6:7c:49:7c:d7:42:cf:6b:ac:16:20:09:5c: bc:0d:6c:e6:2d:cd:f0:44:38:ba:5f:b8:82:26:e3: d2:1b:d5:4b:7a:6f:31:c3:b9:23:33:f3:d9:8b:8a: 58:08:33:5e:34:42:89:8a:58:41:3c:f2:7c:f3:07: 18:a2:a7:fb:dd:b1:b8:f4:32:42:77:39:30:36:7e: 82:53:c7:83:4b:14:40:0d:89:2d:46:d3:c3:ca:02: b5:93:0c:a3:58:93:32:1b:45:db:8e:22:3b:e1:4c: 4f:b0:c6:7d:38:2b:dd:74:6d:97:50:75:a7:96:98: 2e:73:33:e9:08:00:58:00:a0:4e:4c:a1:57:b0:28: 33:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:ED:07:6D:AA:76:1A:73:19:2A:D5:9F:CE:90:2D:2B:03:BF:3E:4A X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e1:20:90:66:65:6c:d6:d3:ea:64:2f:17:23:7e:69:46:85: 4d:66:0f:cd:8b:be:6e:c2:ca:e2:54:c0:9b:74:b5:c3:3a:2e: b9:10:30:a7:27:05:6f:c6:a7:75:0d:ab:3f:c7:ee:dd:71:ee: 24:66:0a:88:e6:ef:0b:87:ab:85:b1:96:82:78:de:8d:19:ff: 6c:95:d0:2d:b1:a0:f5:67:47:01:a7:13:06:13:d4:e5:f0:59: 3e:83:0a:ce:f6:c6:2e:b6:ce:2d:7d:a2:c0:0d:63:b4:ec:a2: ea:f3:83:c0:fe:65:7c:ef:fa:5a:5d:17:52:a6:54:b9:c6:9a: b2:12:e6:60:9e:67:ab:aa:7d:d5:7b:9e:31:02:92:c5:36:5f: a0:cd:8a:49:36:f8:59:01:19:fb:e0:b8:4c:ed:ed:73:a5:2b: 66:a8:6e:37:eb:ba:5a:16:af:dc:99:8c:e7:98:89:65:ff:06: 67:0f:a9:94:ed:82:ee:03:10:38:5e:fe:c5:5f:82:8f:88:5d: 9a:e8:4d:a4:3b:c5:5c:d4:83:61:a2:72:58:96:94:40:00:b7: c3:b4:87:33:06:66:88:09:d4:1e:25:9e:55:48:7d:e9:e7:63: fc:86:46:58:46:95:48:e9:4b:b6:fe:e3:5e:a6:ec:1c:af:69: b7:84:eb:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUxMTA0MTQ1MjM1WhcNMjUxMTExMTQ1MjM1WjAYMRYwFAYD VQQDEw02OTBhMTMzMy03ODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gk4i4I6oDdyU2udiZwVyzOL+6jaadYOou+dqtVvDMNMdIgAjSpUiQXxYOfs nCMHuV6KxrqxT4lolvhILvFYWmuFEvsVXw+seYX8jeA3xkJ/gQ4a3iDl7/W7DztT 5lWHtVAlm5KSiXBfNdcXUFjSGMXg2PVBEO1yitZ8SXzXQs9rrBYgCVy8DWzmLc3w RDi6X7iCJuPSG9VLem8xw7kjM/PZi4pYCDNeNEKJilhBPPJ88wcYoqf73bG49DJC dzkwNn6CU8eDSxRADYktRtPDygK1kwyjWJMyG0XbjiI74UxPsMZ9OCvddG2XUHWn lpguczPpCABYAKBOTKFXsCgzhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbtB22q dhpzGSrVn86QLSsDvz5KMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM4SCQZmVs1tPqZC8XI35pRoVNZg/Ni75uwsriVMCbdLXDOi65EDCn JwVvxqd1Das/x+7dce4kZgqI5u8Lh6uFsZaCeN6NGf9sldAtsaD1Z0cBpxMGE9Tl 8Fk+gwrO9sYuts4tfaLADWO07KLq84PA/mV87/paXRdSplS5xpqyEuZgnmerqn3V e54xApLFNl+gzYpJNvhZARn74LhM7e1zpStmqG4367paFq/cmYznmIll/wZnD6mU 7YLuAxA4Xv7FX4KPiF2a6E2kO8Vc1INhonJYlpRAALfDtIczBmaICdQeJZ5VSH3p 52P8hkZYRpVI6Uu2/uNepuwcr2m3hOtU -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:32 2025 by rpki-client