$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: mNOEBU92qMyb+kyEF69JZmx+HMwsbJL6vFGW8Vz6HEM= Subject key identifier: C8:97:E8:0D:DD:BC:2B:98:A3:08:8C:F5:E9:F1:B4:F2:93:A5:C5:1C Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 013B Signing time: Mon 27 Oct 2025 06:32:08 +0000 Manifest this update: Mon 27 Oct 2025 06:32:07 +0000 Manifest next update: Mon 03 Nov 2025 06:32:06 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: nRMmX7TnEid1WQqEsdgPn4o/roGyvy2OFlu/o+RrHfM=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: g8goRa5uN0098PK1vnqVTndrxAdY1S5JKnq752ZsLOQ=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: BxZpcifR3l7qhnt+56VpPmZ3hTQmgPYYxX/h3b9rorE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 06:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Oct 27 06:32:07 2025 GMT Not After : Nov 3 06:32:06 2025 GMT Subject: CN=68ff11e7-3d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:23:93:cb:fa:9c:95:a6:17:65:7a:ec:99:0b: a2:35:44:05:e0:af:5e:1d:1f:78:4f:61:ae:57:50: 43:a2:6d:a2:2b:a4:55:81:47:54:61:d7:53:06:06: 56:5f:80:c8:4b:77:eb:03:3b:4d:22:ab:c2:9e:89: 4e:9d:ab:c4:dc:f9:8c:96:0d:00:6f:be:54:bc:90: 90:d1:c1:e7:f5:31:e7:3b:80:d5:b9:89:06:fc:9f: 5e:c0:30:c5:09:03:b0:18:16:04:0b:a3:ed:f2:e6: 60:1f:66:84:b2:06:a4:4e:e6:42:f9:fd:02:1a:c3: 9b:3a:50:7b:75:0c:8b:08:20:c3:4c:32:5a:10:dc: b2:06:8b:72:fb:c6:62:1f:c8:a3:80:fb:6a:d8:b6: fb:68:72:8f:1d:81:ed:6b:af:c9:74:ca:be:6f:48: a2:ae:47:eb:11:62:05:dd:17:39:4a:99:5e:88:6a: 04:4d:25:0c:1a:d4:e1:fd:25:6c:ab:6b:22:f3:a0: bb:9c:24:fc:b6:1c:50:92:b0:51:38:dd:9b:44:33: b0:41:0a:a0:57:83:d4:4d:d2:2e:f3:7f:89:12:92: ad:6e:62:6e:25:b7:dc:32:8e:7d:36:9e:a6:70:a7: b5:60:67:29:e2:49:3a:33:9b:c9:f2:55:00:b3:67: 2d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:97:E8:0D:DD:BC:2B:98:A3:08:8C:F5:E9:F1:B4:F2:93:A5:C5:1C X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:de:da:96:6a:68:7a:d2:79:a4:ad:90:0f:a7:f1:4a:6e:de: c7:69:1a:5d:d8:3f:87:4a:94:ae:8a:ff:00:38:cf:91:d6:20: 4a:a7:e1:a5:6a:4b:0b:bb:38:9d:19:99:94:a0:12:9c:e3:cb: 80:51:1a:63:32:72:19:f5:56:af:5e:d2:02:c2:e0:fa:46:cf: d2:ff:3e:9c:a8:de:5a:be:10:08:08:06:cb:85:74:66:bc:55: 5d:12:c4:a2:7a:e0:2e:d9:c0:4a:e3:b4:16:b8:04:91:0a:20: d4:67:3e:2f:9c:9f:70:81:7e:1f:00:28:1b:2a:0f:ab:45:f5: 81:61:24:e3:23:ce:d8:9a:ab:f1:3e:69:59:87:fd:23:f7:35: ab:c4:42:cd:c3:ed:d8:cc:5f:af:4d:d9:76:d9:0f:0e:1b:b6: a5:70:b1:c4:6e:93:e9:79:53:66:72:c0:04:15:7d:9d:2b:9f: 6c:37:28:9d:81:91:82:50:c3:16:e6:23:d9:38:9f:ea:fd:c3: c2:8b:84:24:79:63:13:06:fb:ce:3c:c2:78:18:6b:4e:db:3d: 9a:5e:70:04:04:dc:1f:2a:fd:98:e2:14:a1:ff:d9:db:7c:69: dc:04:4e:f3:61:a8:65:f1:fa:06:d9:c3:92:a8:5e:d7:82:4d: ae:7f:d7:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUxMDI3MDYzMjA3WhcNMjUxMTAzMDYzMjA2WjAYMRYwFAYD VQQDEw02OGZmMTFlNy0zZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiOTy/qclaYXZXrsmQuiNUQF4K9eHR94T2GuV1BDom2iK6RVgUdUYddTBgZW X4DIS3frAztNIqvCnolOnavE3PmMlg0Ab75UvJCQ0cHn9THnO4DVuYkG/J9ewDDF CQOwGBYEC6Pt8uZgH2aEsgakTuZC+f0CGsObOlB7dQyLCCDDTDJaENyyBoty+8Zi H8ijgPtq2Lb7aHKPHYHta6/JdMq+b0iirkfrEWIF3Rc5SpleiGoETSUMGtTh/SVs q2si86C7nCT8thxQkrBRON2bRDOwQQqgV4PUTdIu83+JEpKtbmJuJbfcMo59Np6m cKe1YGcp4kk6M5vJ8lUAs2ctNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiX6A3d vCuYowiM9enxtPKTpcUcMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH3tqWamh60nmkrZAPp/FKbt7HaRpd2D+HSpSuiv8AOM+R1iBKp+Gl aksLuzidGZmUoBKc48uAURpjMnIZ9VavXtICwuD6Rs/S/z6cqN5avhAICAbLhXRm vFVdEsSieuAu2cBK47QWuASRCiDUZz4vnJ9wgX4fACgbKg+rRfWBYSTjI87Ymqvx PmlZh/0j9zWrxELNw+3YzF+vTdl22Q8OG7alcLHEbpPpeVNmcsAEFX2dK59sNyid gZGCUMMW5iPZOJ/q/cPCi4QkeWMTBvvOPMJ4GGtO2z2aXnAEBNwfKv2Y4hSh/9nb fGncBE7zYahl8foG2cOSqF7Xgk2uf9ec -----END CERTIFICATE-----Generated at Tue Oct 28 18:44:11 2025 by rpki-client