$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: mEPQ5jz+aV0iRjLRUBJ5JnnOsJFDPK3rbHhDZrZbKGE= Subject key identifier: 7C:1A:42:46:52:00:80:C7:B5:7C:6B:4E:D4:45:95:75:42:30:33:27 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0B93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B7D Signing time: Sun 02 Nov 2025 19:02:54 +0000 Manifest this update: Sun 02 Nov 2025 19:02:54 +0000 Manifest next update: Sun 09 Nov 2025 19:02:54 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: aj2BAy6akr0cxEGxYZKC/+RXpSs5zLjiEu1Gloefu7Q=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: eQjSLvcTPm64WJsuRzl8viIdz6G/ld4B/GelvP5rP4g=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 1f6aFvhkVa/N7iAPf2YxVBmmTzpTWpZU9hllszfOpEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2963 (0xb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Nov 2 19:02:54 2025 GMT Not After : Nov 9 19:02:54 2025 GMT Subject: CN=6907aade-0e3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:98:ce:6e:b4:2b:75:11:04:24:29:cc:e7:77: a3:a9:58:70:78:c5:c1:f2:07:12:93:0c:8f:16:8c: 6f:ae:92:c7:54:e0:3d:6e:63:de:b3:02:e7:3f:e2: 4d:14:11:8a:22:95:b0:17:02:84:90:db:36:8f:92: c9:8f:9a:29:48:a5:2f:79:08:4e:8f:d4:bc:35:d2: 7d:97:7c:ba:a7:f8:20:3f:ab:93:fb:ba:36:72:53: 9b:a0:89:38:1c:23:92:2d:1a:13:ea:23:44:31:c5: e0:f4:06:19:2e:ff:3e:66:f3:26:bb:a0:09:bf:ef: 91:38:86:24:3a:7b:e5:1a:87:34:36:95:8c:42:5e: cb:41:2b:5d:63:74:f9:4b:b1:a8:82:56:02:51:82: cd:72:1e:ba:58:06:b7:b7:f9:51:7e:c4:16:be:bd: 96:95:a4:be:7e:bb:58:9a:01:3a:58:f8:5e:ad:82: 93:8c:c1:81:d7:1b:d4:c1:14:e0:ef:bf:81:d7:95: 7c:55:ba:de:1c:83:7b:3d:07:88:7d:25:80:60:01: 62:e7:00:c6:57:e8:7d:09:59:b1:4c:15:9d:a6:ee: 49:85:90:7b:a0:84:07:3a:a9:94:ac:59:4c:9c:a3: c4:f1:e2:96:c4:a4:f3:71:e1:db:72:f0:a3:19:97: 61:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:1A:42:46:52:00:80:C7:B5:7C:6B:4E:D4:45:95:75:42:30:33:27 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d0:ab:d4:44:2f:4b:a8:69:54:61:fc:1a:7d:d7:76:fd:86: c6:49:9b:35:26:7a:37:9c:4d:5d:b3:02:27:00:06:46:d1:96: 01:1c:67:81:6a:d0:cb:7b:36:b9:c6:da:21:a0:bc:0c:c4:08: 55:f2:3a:50:83:66:8c:56:64:16:8d:2d:b1:de:6d:2f:c8:18: d2:f1:fd:eb:ac:a4:f7:ad:12:8f:b4:c1:56:4e:c8:b9:6a:9f: 8e:6b:d0:7b:47:82:2e:d7:6a:d1:01:42:0c:62:02:1c:1d:1b: fb:8d:f0:f9:26:2e:e5:b4:d8:2a:12:da:f3:66:81:70:0a:31: 3a:4a:f9:b6:ee:ac:39:0a:0a:82:bd:9e:d9:80:b6:8d:db:ae: 14:33:7d:2e:3f:3c:73:04:81:80:1b:bb:b1:97:e3:c9:95:61: 42:4f:52:ee:70:5c:75:9e:d6:b6:8c:0f:b4:b4:14:e3:e1:48: 60:15:53:53:37:ef:e7:58:24:db:a1:13:ac:f9:58:31:34:0c: 66:2e:35:84:a5:30:2e:db:63:06:6a:24:c2:e4:3f:f4:31:f1: f0:b8:3a:b5:c5:00:9a:16:50:85:f6:72:b4:1c:ca:5d:97:37: 65:04:72:e6:74:30:39:68:71:77:8e:51:45:ff:ca:fd:d5:68: 9e:70:97:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUxMTAyMTkwMjU0WhcNMjUxMTA5MTkwMjU0WjAYMRYwFAYD VQQDEw02OTA3YWFkZS0wZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZjObrQrdREEJCnM53ejqVhweMXB8gcSkwyPFoxvrpLHVOA9bmPeswLnP+JN FBGKIpWwFwKEkNs2j5LJj5opSKUveQhOj9S8NdJ9l3y6p/ggP6uT+7o2clOboIk4 HCOSLRoT6iNEMcXg9AYZLv8+ZvMmu6AJv++ROIYkOnvlGoc0NpWMQl7LQStdY3T5 S7GoglYCUYLNch66WAa3t/lRfsQWvr2WlaS+frtYmgE6WPherYKTjMGB1xvUwRTg 77+B15V8VbreHIN7PQeIfSWAYAFi5wDGV+h9CVmxTBWdpu5JhZB7oIQHOqmUrFlM nKPE8eKWxKTzceHbcvCjGZdh+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwaQkZS AIDHtXxrTtRFlXVCMDMnMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS0KvURC9LqGlUYfwafdd2/YbGSZs1Jno3nE1dswInAAZG0ZYBHGeB atDLeza5xtohoLwMxAhV8jpQg2aMVmQWjS2x3m0vyBjS8f3rrKT3rRKPtMFWTsi5 ap+Oa9B7R4Iu12rRAUIMYgIcHRv7jfD5Ji7ltNgqEtrzZoFwCjE6Svm27qw5CgqC vZ7ZgLaN264UM30uPzxzBIGAG7uxl+PJlWFCT1LucFx1nta2jA+0tBTj4UhgFVNT N+/nWCTboROs+VgxNAxmLjWEpTAu22MGaiTC5D/0MfHwuDq1xQCaFlCF9nK0HMpd lzdlBHLmdDA5aHF3jlFF/8r91WiecJfb -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:46 2025 by rpki-client