$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft File: 7LW7UwpypAlWiey7FY8q5e_pElU.mft (raw, json) Hash identifier: 9dymAFzxNmRGkLBK5WXaqfitdtFlM+HUb4Zwl0DMU6I= Subject key identifier: F1:C9:76:3A:ED:74:7D:D6:F9:33:8D:F6:9B:72:B3:72:1F:6F:07:64 Authority key identifier: EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 Certificate issuer: /CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Certificate serial: 34D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft Manifest number: 34CE Signing time: Sun 02 Nov 2025 15:09:42 +0000 Manifest this update: Sun 02 Nov 2025 15:09:41 +0000 Manifest next update: Sun 09 Nov 2025 15:09:41 +0000 Files and hashes: 1: 7LW7UwpypAlWiey7FY8q5e_pElU.crl (hash: xgojbnL7499hZn7BuWXdphvlSJE3mRZCGE0foBAACC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13521 (0x34d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9FB9, serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Validity Not Before: Nov 2 15:09:41 2025 GMT Not After : Nov 9 15:09:41 2025 GMT Subject: CN=69077435-2cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a4:12:7a:85:b0:45:17:f1:85:8d:7f:b2:37: 2b:c3:68:54:80:58:9b:fe:33:ae:33:09:f1:9b:b6: 4c:d1:f2:58:12:e0:3f:02:74:6e:e9:1d:fc:c8:da: da:5e:f2:31:00:84:46:a8:3f:b8:ae:a7:b1:13:02: e3:4f:b6:af:44:e8:3b:43:4d:6e:fe:5f:80:71:8d: c1:84:29:58:31:86:92:12:22:c9:4d:16:cb:d7:9b: 17:ee:cd:bd:10:da:df:2f:49:0a:9b:e6:e9:e6:4e: 82:1d:64:a6:f5:b4:e1:7b:af:5e:9a:ed:a2:9b:e1: 95:f7:fa:b1:1c:20:91:cf:05:16:b5:f3:62:65:8c: b4:f9:e4:37:5f:e1:3e:db:9f:51:d3:3f:5f:b1:35: 9b:47:20:b5:af:7a:76:40:20:76:a7:df:79:ab:8c: d8:7c:94:99:e8:86:37:b1:b8:79:5f:e2:06:44:0e: 79:e6:4e:80:6c:89:90:26:ae:62:69:ae:59:73:62: 75:1d:2c:a7:49:11:de:be:b2:40:aa:be:a3:d6:20: b2:24:57:41:47:07:8d:9b:7e:13:79:8e:2f:b5:5d: 76:e5:fd:77:c9:e4:ed:94:f4:64:68:16:8d:5b:2c: ae:02:5e:96:52:d7:7f:5f:8d:67:8f:1a:f7:cb:30: 4a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C9:76:3A:ED:74:7D:D6:F9:33:8D:F6:9B:72:B3:72:1F:6F:07:64 X509v3 Authority Key Identifier: keyid:EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:92:2e:8d:06:63:fb:e4:32:67:1f:21:67:89:81:1c:b7:89: 22:18:2e:25:bb:89:28:f1:a8:85:71:f6:16:ae:e2:9d:2d:f0: c7:c4:2a:ca:00:05:e4:30:d5:66:a6:ff:02:3e:5c:0d:e5:64: c3:c8:fb:2e:30:61:4b:49:fa:13:00:99:db:57:49:99:82:9f: e2:ac:43:48:92:d3:41:9e:47:b4:68:50:43:60:18:71:17:42: 67:bf:4d:c6:37:88:c7:76:33:ef:a5:cb:5e:74:fc:e6:10:5b: 9a:0f:5d:03:c1:17:a2:c0:c2:90:3c:c9:8d:d8:33:a5:36:53: ea:05:9d:1f:b6:e2:50:2c:ff:33:90:d3:ed:2d:46:70:22:91: a8:b8:82:de:7b:08:47:8f:af:df:c9:11:14:b9:c5:11:91:3f: 8f:bc:25:72:12:38:91:71:0d:69:f1:a7:94:4f:c7:93:b6:f7: 29:af:27:57:b3:66:59:30:75:24:62:70:1b:56:f2:0f:e8:95: 32:2d:eb:72:73:40:7c:6a:72:16:d2:6c:f8:89:c6:47:ac:54: 98:8b:35:56:8f:9d:2a:4a:b1:dc:d0:8c:bc:a6:4a:23:16:65: 94:e1:c3:3d:b0:be:f1:55:a1:0a:7f:13:91:45:53:c1:e2:26: 4c:2f:ce:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGQjkxMTAvBgNVBAUTKEVDQjVCQjUzMEE3MkE0MDk1Njg5RUNCQjE1OEYyQUU1 RUZFOTEyNTUwHhcNMjUxMTAyMTUwOTQxWhcNMjUxMTA5MTUwOTQxWjAYMRYwFAYD VQQDEw02OTA3NzQzNS0yY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaQSeoWwRRfxhY1/sjcrw2hUgFib/jOuMwnxm7ZM0fJYEuA/AnRu6R38yNra XvIxAIRGqD+4rqexEwLjT7avROg7Q01u/l+AcY3BhClYMYaSEiLJTRbL15sX7s29 ENrfL0kKm+bp5k6CHWSm9bThe69emu2im+GV9/qxHCCRzwUWtfNiZYy0+eQ3X+E+ 259R0z9fsTWbRyC1r3p2QCB2p995q4zYfJSZ6IY3sbh5X+IGRA555k6AbImQJq5i aa5Zc2J1HSynSRHevrJAqr6j1iCyJFdBRweNm34TeY4vtV125f13yeTtlPRkaBaN WyyuAl6WUtd/X41njxr3yzBK8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHJdjrt dH3W+TON9ptys3IfbwdkMB8GA1UdIwQYMBaAFOy1u1MKcqQJVonsuxWPKuXv6RJV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUZCOS8yMTE0RDU2ODFE QTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBBbFdpZXk3Rlk4cTVlX3BF bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMVzdVd3B5cEFsV2lleTdGWThxNWVfcEVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUZCOS8yMTE0RDU2ODFEQTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBB bFdpZXk3Rlk4cTVlX3BFbFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASki6NBmP75DJnHyFniYEct4kiGC4lu4ko8aiFcfYWruKdLfDHxCrK AAXkMNVmpv8CPlwN5WTDyPsuMGFLSfoTAJnbV0mZgp/irENIktNBnke0aFBDYBhx F0Jnv03GN4jHdjPvpctedPzmEFuaD10DwReiwMKQPMmN2DOlNlPqBZ0ftuJQLP8z kNPtLUZwIpGouILeewhHj6/fyREUucURkT+PvCVyEjiRcQ1p8aeUT8eTtvcprydX s2ZZMHUkYnAbVvIP6JUyLetyc0B8anIW0mz4icZHrFSYizVWj50qSrHc0Iy8pkoj FmWU4cM9sL7xVaEKfxORRVPB4iZML85i -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:23 2025 by rpki-client