$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft File: 7yfjyfFbWDsVypzMPJBdIpzi8NA.mft (raw, json) Hash identifier: ZgFkvQQX/7ZZs53YSThRTnQ6Gj7EmR6bQxQ8VJnIsr0= Subject key identifier: 9D:EA:11:22:C9:36:25:D7:18:21:C0:24:8A:58:7F:54:5A:53:B1:90 Authority key identifier: EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 Certificate issuer: /CN=A91C1814/serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Certificate serial: 062A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft Manifest number: 0625 Signing time: Tue 04 Nov 2025 22:51:23 +0000 Manifest this update: Tue 04 Nov 2025 22:51:22 +0000 Manifest next update: Tue 11 Nov 2025 22:51:22 +0000 Files and hashes: 1: 7yfjyfFbWDsVypzMPJBdIpzi8NA.crl (hash: mcVgryux8rjCizhUo5E1Jex0omRkM92dn2Cz3UEeAto=) 2: 38378A3EBA3411EBB94A527CC4F9AE02.roa (hash: bXfsV+JRththOFdM9JTTJyhVvibLKGVpju+gIvVc/Sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1814, serialNumber=EF27E3C9F15B583B15CA9CCC3C905D229CE2F0D0 Validity Not Before: Nov 4 22:51:22 2025 GMT Not After : Nov 11 22:51:22 2025 GMT Subject: CN=690a836a-ca04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cc:f6:fa:c6:d1:a6:fc:87:ae:4c:ed:b1:05: 28:07:7a:ef:ff:21:71:23:b4:7a:ae:db:df:ff:0c: 8f:41:01:fe:d7:5c:59:ea:f3:bd:ff:6a:db:15:10: 4c:2b:e5:d1:bd:2b:59:b8:bc:2f:d3:7c:74:c6:45: fa:8c:6a:34:03:c8:09:1f:d5:5c:b5:cb:17:a2:01: 60:ab:ae:ef:5d:cc:63:8d:d3:63:e0:4a:a0:14:61: f3:5a:57:eb:9c:8f:86:b0:1a:00:0b:b1:02:2f:f0: d0:74:68:d6:89:23:e7:8a:57:8b:95:6e:17:a5:0b: ea:35:f8:6d:25:19:66:65:7d:a4:9e:d0:1f:7b:a1: 66:bf:f2:a7:12:72:07:ca:fd:1a:a7:20:44:b5:22: 51:a3:1d:5c:ad:91:03:6c:08:f9:ed:1e:2a:22:46: 7c:d3:b0:6a:c3:94:a0:2f:9d:0d:fa:ce:65:95:ca: 63:a9:c4:ef:e7:f7:ca:cb:f1:95:43:c7:d8:fe:56: 41:1b:f4:81:bf:c7:74:8b:eb:d2:87:b3:d0:45:b1: c1:52:ef:cb:64:7d:9a:3f:17:94:fe:a0:ad:15:36: b1:61:10:06:45:da:2e:b3:4b:b5:d4:3e:4a:74:03: 96:27:59:82:c5:a7:0c:a7:eb:0d:18:86:79:c1:1e: 1c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EA:11:22:C9:36:25:D7:18:21:C0:24:8A:58:7F:54:5A:53:B1:90 X509v3 Authority Key Identifier: keyid:EF:27:E3:C9:F1:5B:58:3B:15:CA:9C:CC:3C:90:5D:22:9C:E2:F0:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7yfjyfFbWDsVypzMPJBdIpzi8NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1814/F3C8539EBA3111EB9C69C178C4F9AE02/7yfjyfFbWDsVypzMPJBdIpzi8NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f9:19:7e:13:ac:db:e9:b2:3e:42:fc:b3:0f:37:1a:a1:e1: 31:c9:87:97:85:7b:bc:2b:e3:ac:06:2f:3c:2b:5b:13:8f:d6: 25:b5:f2:fe:74:3e:c1:2a:a0:32:95:d4:a4:fb:91:b8:16:79: 01:27:79:5d:c5:e7:b2:29:f3:bf:c2:a0:dc:88:e8:1a:23:10: cc:bd:f1:2e:21:02:bd:10:fd:0d:6e:e7:8c:9a:75:90:32:53: 93:ae:f5:38:d0:8b:4b:71:a6:32:42:dc:61:2b:82:1f:3b:9c: d6:5f:7b:34:90:cd:26:3a:75:05:ad:f8:1f:ef:c7:f6:a1:ab: 86:f7:2c:cc:46:7d:56:a9:dc:2e:53:f2:37:23:58:43:70:cd: d3:55:a6:c1:91:c6:30:c1:b1:5e:18:a4:da:96:bf:78:24:ff: 23:d6:73:a4:ea:3c:bc:2d:5f:97:1c:1e:fd:6e:1d:bb:85:6b: 74:8b:87:65:8e:41:5f:5c:49:7a:ef:5a:d6:8a:73:cf:cd:71: d3:21:5a:2f:ee:bc:1b:b0:6e:eb:f7:4b:65:aa:53:ad:7c:95: 3c:c3:7e:82:32:8e:8f:5b:66:d7:79:93:ab:66:68:e4:7f:ea: 25:f3:6f:22:2a:df:33:31:b3:8b:dd:01:b0:32:75:1c:ee:a4: 56:96:31:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE4MTQxMTAvBgNVBAUTKEVGMjdFM0M5RjE1QjU4M0IxNUNBOUNDQzNDOTA1RDIy OUNFMkYwRDAwHhcNMjUxMTA0MjI1MTIyWhcNMjUxMTExMjI1MTIyWjAYMRYwFAYD VQQDEw02OTBhODM2YS1jYTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38z2+sbRpvyHrkztsQUoB3rv/yFxI7R6rtvf/wyPQQH+11xZ6vO9/2rbFRBM K+XRvStZuLwv03x0xkX6jGo0A8gJH9VctcsXogFgq67vXcxjjdNj4EqgFGHzWlfr nI+GsBoAC7ECL/DQdGjWiSPnileLlW4XpQvqNfhtJRlmZX2kntAfe6Fmv/KnEnIH yv0apyBEtSJRox1crZEDbAj57R4qIkZ807Bqw5SgL50N+s5llcpjqcTv5/fKy/GV Q8fY/lZBG/SBv8d0i+vSh7PQRbHBUu/LZH2aPxeU/qCtFTaxYRAGRdous0u11D5K dAOWJ1mCxacMp+sNGIZ5wR4cTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3qESLJ NiXXGCHAJIpYf1RaU7GQMB8GA1UdIwQYMBaAFO8n48nxW1g7FcqczDyQXSKc4vDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTgxNC9GM0M4NTM5RUJB MzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldEc1Z5cHpNUEpCZElwemk4 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd5Zmp5ZkZiV0RzVnlwek1QSkJkSXB6aThOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTgxNC9GM0M4NTM5RUJBMzExMUVCOUM2OUMxNzhDNEY5QUUwMi83eWZqeWZGYldE c1Z5cHpNUEpCZElwemk4TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ+Rl+E6zb6bI+QvyzDzcaoeExyYeXhXu8K+OsBi88K1sTj9YltfL+ dD7BKqAyldSk+5G4FnkBJ3ldxeeyKfO/wqDciOgaIxDMvfEuIQK9EP0NbueMmnWQ MlOTrvU40ItLcaYyQtxhK4IfO5zWX3s0kM0mOnUFrfgf78f2oauG9yzMRn1Wqdwu U/I3I1hDcM3TVabBkcYwwbFeGKTalr94JP8j1nOk6jy8LV+XHB79bh27hWt0i4dl jkFfXEl671rWinPPzXHTIVov7rwbsG7r90tlqlOtfJU8w36CMo6PW2bXeZOrZmjk f+ol828iKt8zMbOL3QGwMnUc7qRWljHP -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:25 2025 by rpki-client