$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft File: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft (raw, json) Hash identifier: 1GhwuksmTeGOb5hM3tluTB/1TAzIvwL1BzcYITjPyCc= Subject key identifier: 92:9C:89:74:62:03:FE:04:89:45:17:39:1D:D7:9C:BB:DD:2C:49:32 Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft Manifest number: 54 Signing time: Sun 19 Oct 2025 10:36:09 +0000 Manifest this update: Sun 19 Oct 2025 10:36:08 +0000 Manifest next update: Sun 26 Oct 2025 10:36:08 +0000 Files and hashes: 1: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl (hash: VowCvcDXdsgwPgO8rjwIHX3xRTTdkFEuFluq+Tx94gs=) 2: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (hash: 3eRh0WSm3ML8fWWz0uqzCk5In0Q1rchUgCmcr9wy07U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Oct 19 10:36:08 2025 GMT Not After : Oct 26 10:36:08 2025 GMT Subject: CN=68f4bf18-e235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d0:3d:2d:76:71:73:65:de:98:02:f8:62:59: 4d:0d:ce:21:be:2e:da:6a:d6:01:de:2f:f1:fa:05: d5:25:b3:0a:9b:37:5e:b4:a2:48:b7:5d:db:65:55: a9:56:51:a9:7f:7b:80:36:17:4a:18:ed:33:ca:04: ce:91:54:00:1d:41:ac:1a:11:ce:ac:16:b3:43:2f: ba:37:5f:6b:49:97:1b:b4:16:5b:f6:74:68:f3:c4: 82:a9:d5:7f:9e:2c:87:49:07:bc:cd:e3:9e:e0:df: 00:22:a1:95:4c:6f:1c:78:29:a0:7f:66:de:bb:03: c4:a9:73:17:08:74:ea:bf:e1:aa:f3:b3:6f:46:0e: 68:ec:5c:d6:4d:0a:c2:27:a6:99:da:00:77:cc:f9: a6:26:ba:7e:90:aa:26:80:00:19:01:91:4f:d3:49: 52:f4:2a:ba:84:be:a8:4b:dc:6c:1a:1b:60:86:9b: 30:46:5c:df:be:a9:63:15:b0:e8:25:dc:a1:d9:a0: 1d:28:a7:7d:c0:1a:20:21:26:f3:e6:85:80:1d:df: 50:30:7e:2b:d9:39:00:db:75:27:59:c6:e2:6e:45: bc:f6:b7:a5:1f:b3:79:3f:9b:9a:47:a7:ee:97:d2: 46:5b:b2:eb:81:25:08:51:f2:64:02:2c:18:a5:34: 85:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:9C:89:74:62:03:FE:04:89:45:17:39:1D:D7:9C:BB:DD:2C:49:32 X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:32:c4:35:70:2f:73:23:99:26:15:08:8c:a8:b6:18:a5:a7: 8a:65:e6:97:39:74:92:ca:6d:cd:5d:a3:28:0c:89:d7:37:db: 66:5e:2c:3d:65:7f:c2:8b:3c:68:87:1b:37:52:9a:f8:5c:9e: 23:4b:2d:74:17:6a:a0:f7:e8:04:21:72:1e:db:53:01:94:73: 4c:bc:93:ba:97:f3:ca:5a:af:74:e2:eb:16:82:73:5b:cc:d4: f8:13:33:41:b8:09:a2:ff:43:7f:1e:67:05:e3:df:8f:b9:c8: 94:22:15:15:17:22:f7:be:e2:ba:01:5c:af:14:9e:94:60:bf: 33:c6:d8:0e:ad:c3:c1:0a:b2:c1:27:36:1e:58:35:ca:3a:22: 65:22:e2:ed:a1:7b:84:24:1d:61:25:e7:94:d9:af:c5:56:3a: 50:ee:55:ff:96:ae:2c:96:18:0e:bb:63:c9:6a:25:c8:05:d0: fb:79:b3:14:aa:e9:3e:70:a0:37:e5:ef:f4:51:77:22:0c:2c: 9c:ac:1e:4c:65:5d:d1:41:38:bf:b3:ca:68:dc:a5:81:d8:d8: be:7f:e7:5a:ea:a9:4a:8d:c2:93:4a:1e:65:b0:24:d9:39:3b: 6b:dc:d7:df:e4:31:43:e3:20:13:c8:ee:46:f6:a5:68:3d:cb: e0:f5:ad:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTEwMTkxMDM2MDhaFw0yNTEwMjYxMDM2MDhaMBgxFjAUBgNV BAMTDTY4ZjRiZjE4LWUyMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP0D0tdnFzZd6YAvhiWU0NziG+Ltpq1gHeL/H6BdUlswqbN160oki3XdtlValW Ual/e4A2F0oY7TPKBM6RVAAdQawaEc6sFrNDL7o3X2tJlxu0Flv2dGjzxIKp1X+e LIdJB7zN457g3wAioZVMbxx4KaB/Zt67A8SpcxcIdOq/4arzs29GDmjsXNZNCsIn ppnaAHfM+aYmun6QqiaAABkBkU/TSVL0KrqEvqhL3GwaG2CGmzBGXN++qWMVsOgl 3KHZoB0op33AGiAhJvPmhYAd31AwfivZOQDbdSdZxuJuRbz2t6Ufs3k/m5pHp+6X 0kZbsuuBJQhR8mQCLBilNIXJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkpyJdGID /gSJRRc5Hdecu90sSTIwHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QTI0LzE3MzlDMzVBMkJDOTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVox REJqSV91cVIwdlV0TjV4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ4yxDVwL3MjmSYVCIyothilp4pl5pc5dJLKbc1doygMidc322ZeLD1l f8KLPGiHGzdSmvhcniNLLXQXaqD36AQhch7bUwGUc0y8k7qX88par3Ti6xaCc1vM 1PgTM0G4CaL/Q38eZwXj34+5yJQiFRUXIve+4roBXK8UnpRgvzPG2A6tw8EKssEn Nh5YNco6ImUi4u2he4QkHWEl55TZr8VWOlDuVf+WriyWGA67Y8lqJcgF0Pt5sxSq 6T5woDfl7/RRdyIMLJysHkxlXdFBOL+zymjcpYHY2L5/51rqqUqNwpNKHmWwJNk5 O2vc19/kMUPjIBPI7kb2pWg9y+D1rQ4= -----END CERTIFICATE-----Generated at Sun Oct 19 16:24:53 2025 by rpki-client