$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: nMGA9WkjX8WuZ0DlC+rBlG7dSiiw0wOZVsl8XVDshkE= Subject key identifier: 2E:43:48:D9:66:9B:AD:3C:C7:6E:CE:0A:EF:5D:B1:38:E0:87:CC:32 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0BFD Signing time: Sun 02 Nov 2025 18:48:05 +0000 Manifest this update: Sun 02 Nov 2025 18:48:04 +0000 Manifest next update: Sun 09 Nov 2025 18:48:04 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: IDuw+Jq/sTgeBmlLP5n7f3LKn1RHc/SqOENH3xT5M54=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3075 (0xc03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Nov 2 18:48:04 2025 GMT Not After : Nov 9 18:48:04 2025 GMT Subject: CN=6907a765-1e3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:09:d4:c9:51:99:ef:5a:45:69:2a:55:7c:5e: 83:e2:a6:42:f9:a2:0a:9c:fc:c1:ae:71:d6:00:b1: af:19:9e:c2:0d:59:0a:a1:49:cb:60:7f:4b:e2:df: fb:0b:c2:fe:16:40:72:9c:a6:c7:b9:1b:ba:0e:72: 39:02:b7:a0:d6:50:60:7c:d4:2b:8c:91:79:4f:d3: ce:9c:c5:c3:fa:70:4f:a6:c8:9a:b8:09:04:46:b0: 79:42:71:ca:c3:8f:31:eb:3b:9a:56:00:77:cd:72: 13:15:8e:86:c4:5a:8d:f2:f2:53:51:e2:89:bd:e4: ea:13:9f:6a:f8:ef:84:40:f1:6e:c7:4f:22:0d:9e: fa:e0:ce:a0:ed:13:10:8f:f8:fc:8c:b8:35:35:0a: 4c:8d:86:65:2a:5a:bd:b3:63:29:de:bd:3b:3a:82: 83:64:c7:71:d6:72:7d:b1:86:cb:55:3f:a3:88:93: 6f:4a:59:05:b0:e1:b2:bf:67:db:e4:ae:2a:46:39: 5b:75:8c:77:bb:5e:72:35:d6:72:1e:a2:b9:90:79: c9:4b:e0:83:f1:be:cc:36:48:08:be:b3:09:f6:5e: 09:64:b7:4b:32:c4:92:ec:74:ea:b5:4a:89:e9:3c: ff:45:f9:5f:2a:df:12:5f:74:b2:29:e3:af:c0:40: 65:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:43:48:D9:66:9B:AD:3C:C7:6E:CE:0A:EF:5D:B1:38:E0:87:CC:32 X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:51:a7:4e:59:d6:11:7e:7f:df:1a:49:c2:7e:09:95:aa:63: d9:17:ee:56:28:dc:83:7a:94:9c:d3:d4:22:ff:5e:f1:ab:a1: 00:8c:76:4a:bc:99:d0:22:6f:ed:88:44:9b:54:7c:58:e9:c2: 55:e3:c1:41:e2:98:41:7d:d7:3d:f4:ca:73:fc:27:9b:85:a6: df:b1:19:d5:8f:2c:7b:ca:6c:cf:83:1e:6d:02:e9:68:bd:5e: 1f:3d:f4:fe:3e:4c:65:b9:ea:a7:0c:96:10:41:d5:f2:92:1d: 08:eb:dd:5d:6f:4e:f6:41:c4:64:fe:08:42:ed:63:69:e5:b2: 11:11:40:05:4e:fb:0a:f1:8b:7a:5c:25:e5:65:c2:ce:73:dd: 0d:24:6b:19:2e:0a:73:cb:6b:08:b3:3d:58:83:11:ea:a0:e7: 03:0d:38:a9:fa:ea:32:3f:f2:b3:7a:d2:66:6c:68:e9:e8:b9: 4e:8d:f5:15:f1:51:ba:67:4a:e4:e1:0d:5f:eb:01:e1:62:1f: 36:6a:7a:a5:0d:a0:38:c1:d8:d3:ee:d3:f6:de:84:b5:02:62: f3:2e:42:fc:bd:7d:3b:bd:83:19:bb:e5:6f:24:6e:d2:e8:e0: d7:39:c4:70:2c:f1:91:35:28:f6:79:79:cf:58:bb:07:e3:b1: 81:56:b2:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUxMTAyMTg0ODA0WhcNMjUxMTA5MTg0ODA0WjAYMRYwFAYD VQQDEw02OTA3YTc2NS0xZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQnUyVGZ71pFaSpVfF6D4qZC+aIKnPzBrnHWALGvGZ7CDVkKoUnLYH9L4t/7 C8L+FkBynKbHuRu6DnI5Areg1lBgfNQrjJF5T9POnMXD+nBPpsiauAkERrB5QnHK w48x6zuaVgB3zXITFY6GxFqN8vJTUeKJveTqE59q+O+EQPFux08iDZ764M6g7RMQ j/j8jLg1NQpMjYZlKlq9s2Mp3r07OoKDZMdx1nJ9sYbLVT+jiJNvSlkFsOGyv2fb 5K4qRjlbdYx3u15yNdZyHqK5kHnJS+CD8b7MNkgIvrMJ9l4JZLdLMsSS7HTqtUqJ 6Tz/RflfKt8SX3SyKeOvwEBl/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5DSNlm m608x27OCu9dsTjgh8wyMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+UadOWdYRfn/fGknCfgmVqmPZF+5WKNyDepSc09Qi/17xq6EAjHZK vJnQIm/tiESbVHxY6cJV48FB4phBfdc99Mpz/CebhabfsRnVjyx7ymzPgx5tAulo vV4fPfT+PkxlueqnDJYQQdXykh0I691db072QcRk/ghC7WNp5bIREUAFTvsK8Yt6 XCXlZcLOc90NJGsZLgpzy2sIsz1YgxHqoOcDDTip+uoyP/KzetJmbGjp6LlOjfUV 8VG6Z0rk4Q1f6wHhYh82anqlDaA4wdjT7tP23oS1AmLzLkL8vX07vYMZu+VvJG7S 6ODXOcRwLPGRNSj2eXnPWLsH47GBVrK8 -----END CERTIFICATE-----Generated at Tue Nov 4 01:04:03 2025 by rpki-client