$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: KdH4izYuexM6uO09fWrOjmwECZrq6eUvTi+z9yGpJHA= Subject key identifier: 53:C1:01:4D:C1:63:05:44:D2:2E:C5:9E:36:2A:BA:F9:F8:41:F1:17 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 122E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 1213 Signing time: Sun 02 Nov 2025 17:10:16 +0000 Manifest this update: Sun 02 Nov 2025 17:10:15 +0000 Manifest next update: Sun 09 Nov 2025 17:10:15 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: WoYkr6V+5AjjDr/CqosB8jSIuxAGvVJw4vHeGpMUlBM=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: 9dqK7fwX1U+8A9fcOv7N2ng0+RyVg5lfklaoSqiStho=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: RMsg5QWeiEkRgPY6Tmmzu/lfOLCSCEngacbP0E3B76I=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: xRGejBtSvmSQiXiFTmSi8Viq6cXlkkmhK13khjlMJ6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4654 (0x122e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Nov 2 17:10:15 2025 GMT Not After : Nov 9 17:10:15 2025 GMT Subject: CN=69079078-1b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9d:87:dc:17:8b:b8:de:04:a5:49:70:4e:69: 95:f9:86:b5:cc:fc:a3:f3:0e:89:ba:c4:44:9d:83: 84:ac:3b:e7:55:c1:87:a4:6f:88:a1:a7:b0:5f:7c: e5:d3:54:55:05:ef:08:49:b9:74:1a:33:b2:99:4c: 3a:67:26:dc:db:ff:ef:00:9a:49:69:e4:fa:24:06: ef:d2:fc:8d:e2:57:7f:36:00:e3:a4:00:21:06:ec: c6:5e:32:ca:ce:df:a1:7b:88:a5:d4:3e:e2:01:b0: 30:8e:48:18:8e:c4:e6:7c:1c:1c:93:3e:99:f2:37: c5:db:6a:a0:7e:93:5f:d0:07:a4:da:4c:56:a5:c2: d9:73:a6:f1:0a:c8:87:0e:2a:3a:ad:d4:8a:1a:05: 6d:1f:2e:9e:f2:98:fa:bc:81:7b:4d:32:85:2d:d1: f4:35:e8:4b:70:d9:87:4f:f6:5f:59:62:89:5e:ef: 6b:e8:d0:02:18:4a:d1:bd:fc:47:dc:54:9d:e4:0f: 55:44:9c:c8:10:c9:1a:5c:83:16:a5:dd:22:c3:ff: 08:c4:1e:b7:8d:1c:39:ff:4f:26:bb:9b:38:ae:c7: 40:94:a2:75:26:85:b6:00:a7:ad:6b:ae:5a:17:9e: 8b:a8:88:bf:65:fc:a1:a9:eb:ac:ae:b0:da:21:5a: 83:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C1:01:4D:C1:63:05:44:D2:2E:C5:9E:36:2A:BA:F9:F8:41:F1:17 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:68:2b:c0:51:6e:69:55:3c:d6:db:a7:07:b1:51:42:e0:66: d1:cd:fc:5a:f3:e5:7c:2b:d0:ca:20:b7:7b:fe:8a:f9:fb:51: 8a:81:db:48:97:83:90:4a:ef:97:1c:be:8d:ee:73:f7:8d:11: 8b:98:7c:04:a6:a5:d6:a3:da:05:43:46:5a:3c:03:4e:67:5b: 93:78:c6:8c:cd:63:83:91:47:96:c4:38:4b:04:9c:be:02:b4: 0d:89:7e:eb:60:df:ca:0a:bd:91:45:da:f7:82:7f:6e:6f:9e: bc:2c:e7:35:df:d5:1f:03:13:c8:37:43:b9:8c:be:89:c2:ed: 9b:78:97:c9:71:5b:af:48:70:d1:8a:69:f7:98:fa:8e:35:ec: 2f:55:ae:a0:a4:8a:04:fa:e6:59:03:6a:8f:b0:ef:bb:c6:72: aa:87:d0:2a:f6:4a:c2:29:8e:c6:46:07:72:75:ed:5d:aa:99: b8:66:93:5b:2d:9f:84:a6:c9:82:82:93:7a:82:ac:35:52:ca: 8a:e1:19:50:a9:5e:89:3c:66:45:13:50:fc:0d:6f:68:65:4e: a4:99:85:aa:aa:a6:ad:91:b8:ab:13:56:14:93:c3:ed:27:2e: 3a:7b:9f:28:bb:93:1c:6d:1d:5b:2c:e2:0c:d8:ea:5f:2d:d4: f6:fc:f8:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMTAyMTcxMDE1WhcNMjUxMTA5MTcxMDE1WjAYMRYwFAYD VQQDEw02OTA3OTA3OC0xYjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxp2H3BeLuN4EpUlwTmmV+Ya1zPyj8w6JusREnYOErDvnVcGHpG+IoaewX3zl 01RVBe8ISbl0GjOymUw6Zybc2//vAJpJaeT6JAbv0vyN4ld/NgDjpAAhBuzGXjLK zt+he4il1D7iAbAwjkgYjsTmfBwckz6Z8jfF22qgfpNf0Aek2kxWpcLZc6bxCsiH Dio6rdSKGgVtHy6e8pj6vIF7TTKFLdH0NehLcNmHT/ZfWWKJXu9r6NACGErRvfxH 3FSd5A9VRJzIEMkaXIMWpd0iw/8IxB63jRw5/08mu5s4rsdAlKJ1JoW2AKeta65a F56LqIi/ZfyhqeusrrDaIVqDLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPBAU3B YwVE0i7FnjYquvn4QfEXMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiaCvAUW5pVTzW26cHsVFC4GbRzfxa8+V8K9DKILd7/or5+1GKgdtI l4OQSu+XHL6N7nP3jRGLmHwEpqXWo9oFQ0ZaPANOZ1uTeMaMzWODkUeWxDhLBJy+ ArQNiX7rYN/KCr2RRdr3gn9ub568LOc139UfAxPIN0O5jL6Jwu2beJfJcVuvSHDR imn3mPqONewvVa6gpIoE+uZZA2qPsO+7xnKqh9Aq9krCKY7GRgdyde1dqpm4ZpNb LZ+EpsmCgpN6gqw1UsqK4RlQqV6JPGZFE1D8DW9oZU6kmYWqqqatkbirE1YUk8Pt Jy46e58ou5McbR1bLOIM2OpfLdT2/Pjc -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:55 2025 by rpki-client