$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: Zxhhy1FVcLpvhG/6RoG34g3Luh4JS4UR8ACFF+xoRhM= Subject key identifier: 83:46:BD:A0:80:BB:7F:2C:6B:7A:3A:1D:23:D4:42:EE:FF:0F:6D:6D Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0239 Signing time: Mon 03 Nov 2025 01:48:51 +0000 Manifest this update: Mon 03 Nov 2025 01:48:50 +0000 Manifest next update: Mon 10 Nov 2025 01:48:50 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: FPjWd4h1Btt1XxJ2kKW0GAnZk/CBraE8ESTkUOtoxVs=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: KvaqXLWWsSi0DyIW72uaV8JvweT4UuqZ2OwGOX+bYh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Nov 3 01:48:50 2025 GMT Not After : Nov 10 01:48:50 2025 GMT Subject: CN=69080a02-07ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:8a:d1:b8:90:30:15:c4:3f:ed:ee:11:cc: 66:3d:18:44:9d:d8:0e:80:c4:c4:93:af:91:d7:ef: c2:b0:32:f4:6e:48:87:2b:63:8d:f4:6e:21:dd:f4: 24:42:d5:07:2c:01:10:73:42:70:0f:78:38:0a:2a: 6a:10:1f:cb:c2:c1:eb:88:1e:8e:93:41:b5:3d:43: fb:01:b6:d5:6f:c7:3f:bd:f5:de:48:04:e6:9b:02: b8:4a:1c:f3:ad:3f:ae:6a:13:0b:cf:b1:3f:f9:bf: 34:35:ae:be:e5:af:b1:59:bb:0b:66:44:01:0f:bc: 24:83:19:36:fc:16:cf:dd:79:4d:f7:5f:55:4c:62: 85:c5:65:b4:58:30:8c:d1:a5:8e:70:c0:6e:a5:8c: cd:a9:3f:f6:46:fd:80:27:d3:bd:41:60:21:fb:ad: 1e:cd:2b:db:a8:96:b9:4d:ff:ea:8b:2b:03:6b:15: 0a:6a:ad:eb:f1:a2:4c:a1:66:a5:09:8f:98:2a:c0: f0:97:0c:c6:cc:f2:de:80:8f:9f:bf:26:24:a5:6b: 19:e1:14:9e:04:e0:97:3f:9a:87:cc:d5:4c:ac:b3: 62:ff:0a:df:6f:ab:f1:26:6a:7b:3d:be:e9:d6:fb: eb:6b:76:6a:c8:1a:35:a5:fc:a9:7b:de:b1:d6:ef: 5f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:46:BD:A0:80:BB:7F:2C:6B:7A:3A:1D:23:D4:42:EE:FF:0F:6D:6D X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:41:ca:5b:48:cf:8d:38:b1:a9:b0:48:7f:ee:14:30:8d:ae: 5a:6c:44:63:a3:f5:22:67:af:cf:e0:97:6a:fd:db:73:86:c6: e1:3d:0f:7f:d0:2e:e4:53:fa:b3:f6:b9:1f:19:be:90:11:45: 2d:00:7d:5d:66:2e:5f:83:ae:00:67:32:1c:ea:d7:8f:44:a0: 78:85:26:eb:8e:dc:99:55:fe:9a:f1:34:5e:c1:57:05:51:e1: 32:7f:03:8c:4a:83:31:c4:49:4a:ea:bc:9d:f5:01:22:a3:c4: 74:c0:ff:04:f9:2d:dd:83:7e:f1:56:d9:a9:7c:51:9a:d6:2f: b0:6f:d0:80:4f:81:08:80:37:0b:57:ef:31:f5:d3:94:70:a6: b5:ba:20:45:59:87:45:0b:d4:b8:cf:cd:6d:a0:81:86:46:e3: 86:0c:e1:3d:b7:3c:e4:ea:12:5d:b8:db:b2:4b:89:72:9c:b4: 01:30:aa:14:20:eb:e9:08:1d:35:b9:18:88:c6:eb:78:bf:75: 7c:09:da:ee:e8:42:fd:dd:b5:66:9d:0b:74:6f:88:37:6c:fe: 02:34:67:27:96:47:09:04:7f:a7:cc:e1:67:25:90:ea:47:fc: 52:08:49:45:93:4b:35:b4:74:fd:47:05:c1:c8:db:25:b6:2a: 28:52:d3:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUxMTAzMDE0ODUwWhcNMjUxMTEwMDE0ODUwWjAYMRYwFAYD VQQDEw02OTA4MGEwMi0wN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXiK0biQMBXEP+3uEcxmPRhEndgOgMTEk6+R1+/CsDL0bkiHK2ON9G4h3fQk QtUHLAEQc0JwD3g4CipqEB/LwsHriB6Ok0G1PUP7AbbVb8c/vfXeSATmmwK4Shzz rT+uahMLz7E/+b80Na6+5a+xWbsLZkQBD7wkgxk2/BbP3XlN919VTGKFxWW0WDCM 0aWOcMBupYzNqT/2Rv2AJ9O9QWAh+60ezSvbqJa5Tf/qiysDaxUKaq3r8aJMoWal CY+YKsDwlwzGzPLegI+fvyYkpWsZ4RSeBOCXP5qHzNVMrLNi/wrfb6vxJmp7Pb7p 1vvra3ZqyBo1pfype96x1u9f1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINGvaCA u38sa3o6HSPUQu7/D21tMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3QcpbSM+NOLGpsEh/7hQwja5abERjo/UiZ6/P4Jdq/dtzhsbhPQ9/ 0C7kU/qz9rkfGb6QEUUtAH1dZi5fg64AZzIc6tePRKB4hSbrjtyZVf6a8TRewVcF UeEyfwOMSoMxxElK6ryd9QEio8R0wP8E+S3dg37xVtmpfFGa1i+wb9CAT4EIgDcL V+8x9dOUcKa1uiBFWYdFC9S4z81toIGGRuOGDOE9tzzk6hJduNuyS4lynLQBMKoU IOvpCB01uRiIxut4v3V8Cdru6EL93bVmnQt0b4g3bP4CNGcnlkcJBH+nzOFnJZDq R/xSCElFk0s1tHT9RwXByNsltiooUtNN -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:12 2025 by rpki-client