$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: 8gvnVXE4XCRXNxeVHL0gbM4Wl6bNYH/tuEa4v+pFKgY= Subject key identifier: 7A:51:08:A5:E4:B4:BD:77:B1:BB:8F:96:21:4B:2B:69:A6:C6:61:BA Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: 0105 Signing time: Mon 03 Nov 2025 05:00:49 +0000 Manifest this update: Mon 03 Nov 2025 05:00:48 +0000 Manifest next update: Mon 10 Nov 2025 05:00:48 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: v4rl8krPVkQUg/KowjCdlyoeXYWlIeYnk89BW8kuQSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85, serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: Nov 3 05:00:48 2025 GMT Not After : Nov 10 05:00:48 2025 GMT Subject: CN=69083701-7c4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0c:d6:a8:1b:65:c4:fd:04:ce:56:0c:3e:5b: da:fe:d1:52:87:b1:66:3b:a9:ae:6f:4d:fd:6f:2e: 04:4b:62:2d:fd:f9:a0:8a:e6:f4:7a:eb:7d:e5:97: 92:26:72:fc:40:e2:76:38:ca:06:b8:1f:9d:2a:6b: 53:04:b1:c1:e6:82:0c:f4:28:c6:2e:b9:15:23:ae: 91:62:98:af:23:49:8e:d1:49:fd:fd:b2:53:a3:04: c2:85:97:4a:49:b7:a5:26:37:28:6e:da:ea:4b:40: c4:67:d3:e3:38:3c:7a:9c:30:87:6e:d1:92:23:64: 98:4d:5a:1a:04:c1:0f:f9:d7:40:0c:03:a8:17:4e: 9a:f0:c5:8f:de:22:b9:7c:57:4b:22:41:08:f1:01: ea:bc:e2:a8:11:e8:64:59:4c:24:1b:40:8f:4a:8a: a0:e1:6e:45:da:6c:5a:5a:b3:9c:ee:31:4a:cf:46: 98:93:83:9f:a3:8f:00:62:e7:d8:e5:eb:45:71:e4: 44:76:c7:68:5f:6c:96:6a:7b:20:b5:2a:f2:29:16: 4e:4d:a8:52:74:1b:ca:64:9c:a2:ec:98:13:91:6f: 87:75:29:00:2d:c8:76:95:14:f5:2e:d8:34:da:53: cd:9e:fa:cb:79:f1:e2:38:41:72:83:5e:e7:85:da: 87:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:51:08:A5:E4:B4:BD:77:B1:BB:8F:96:21:4B:2B:69:A6:C6:61:BA X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:2a:27:5d:00:b3:b9:f8:e7:aa:fa:66:01:bb:54:2d:d6:82: e2:5d:10:24:07:6d:69:96:29:c2:b8:07:35:6f:6b:ad:79:ec: d8:2b:68:21:25:a8:12:31:97:f6:4b:c7:4b:96:4a:b7:86:83: e8:53:13:36:01:90:94:0b:04:d8:aa:2b:40:29:3b:bd:f2:70: 54:05:45:7a:ba:0b:05:e9:41:90:9e:75:4b:92:ac:ba:d2:ec: fb:29:07:b2:3e:a8:c5:9e:96:43:7c:f1:9e:5f:00:cb:23:ba: 01:08:28:ee:53:06:01:9f:b6:78:3a:5f:52:82:5f:ac:3e:99: f5:ee:23:82:18:ce:ad:fc:40:ca:9d:a2:d0:75:cd:56:91:53: e4:a8:08:3a:82:9b:9d:ba:0a:e5:89:bb:ae:86:95:b0:bd:51: dc:30:ee:79:bc:5c:a9:70:20:f4:85:b7:ee:7d:d9:c0:4c:a4: 24:ce:6a:2a:d0:63:b0:98:99:94:22:9e:18:59:78:ca:8c:10: 97:05:71:8a:c7:31:36:34:8a:9d:e4:13:ab:47:96:69:bf:cb: 04:49:0f:da:1a:da:93:94:3e:c7:74:08:62:7c:4e:3c:3b:05: 25:a2:50:d9:d3:b8:77:ae:50:3b:8f:67:3c:c7:13:44:24:3f: ce:60:b6:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlEMTk4NDY1QjFD QkVGMkRGMjIwHhcNMjUxMTAzMDUwMDQ4WhcNMjUxMTEwMDUwMDQ4WjAYMRYwFAYD VQQDEw02OTA4MzcwMS03YzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogzWqBtlxP0EzlYMPlva/tFSh7FmO6mub039by4ES2It/fmgiub0eut95ZeS JnL8QOJ2OMoGuB+dKmtTBLHB5oIM9CjGLrkVI66RYpivI0mO0Un9/bJTowTChZdK SbelJjcobtrqS0DEZ9PjODx6nDCHbtGSI2SYTVoaBMEP+ddADAOoF06a8MWP3iK5 fFdLIkEI8QHqvOKoEehkWUwkG0CPSoqg4W5F2mxaWrOc7jFKz0aYk4Ofo48AYufY 5etFceREdsdoX2yWansgtSryKRZOTahSdBvKZJyi7JgTkW+HdSkALch2lRT1Ltg0 2lPNnvrLefHiOEFyg17nhdqHWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpRCKXk tL13sbuPliFLK2mmxmG6MB8GA1UdIwQYMBaAFO0xYIR9xK7ZLYxZ0ZhGWxy+8t8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkM4NS8yODcwN0NCRTI4 ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0a3RqRm5SbUVaYkhMN3kz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0 a3RqRm5SbUVaYkhMN3kzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWKiddALO5+Oeq+mYBu1Qt1oLiXRAkB21plinCuAc1b2uteezYK2gh JagSMZf2S8dLlkq3hoPoUxM2AZCUCwTYqitAKTu98nBUBUV6ugsF6UGQnnVLkqy6 0uz7KQeyPqjFnpZDfPGeXwDLI7oBCCjuUwYBn7Z4Ol9Sgl+sPpn17iOCGM6t/EDK naLQdc1WkVPkqAg6gpudugrlibuuhpWwvVHcMO55vFypcCD0hbfufdnATKQkzmoq 0GOwmJmUIp4YWXjKjBCXBXGKxzE2NIqd5BOrR5Zpv8sESQ/aGtqTlD7HdAhifE48 OwUlolDZ07h3rlA7j2c8xxNEJD/OYLY0 -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:33 2025 by rpki-client