$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: q60yvgPJ7diHHh5JsDIov6Y4rni2tyy7x9K4KzChEFE= Subject key identifier: DB:44:AC:31:B5:51:57:A8:2D:31:77:80:4A:A0:09:51:68:B0:58:57 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 0310 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 02F7 Signing time: Thu 23 Oct 2025 02:40:53 +0000 Manifest this update: Thu 23 Oct 2025 02:40:53 +0000 Manifest next update: Thu 30 Oct 2025 02:40:53 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: Jl/2fNEH/5RavBF08L8fXiAiVpqcXWLLmp3/sVOpL7M=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: BW5tT5Fwnb90kCw3kdyCo6pAhP8PZLajj0fwMdIDbDA=) 3: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: z4aaUTQPt4LTmxBrxqPbGwAQr9ekPHI1lkNmNVVH7mw=) 4: 652A87CC65EC11F0BAEF8066C4F9AE02.roa (hash: 9Lyfdf8jewXKDNNSejND0Fdao81XqhdSmTyOn0pVCEo=) 5: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: zUxzk8PVVaES9EMN0VkIqcIxDvXdbV+4WJwr6H3F2mM=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: 2FTQfXCf5iEijrWaIGoqW7OkD23cYHWReHvkr3RdiVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 784 (0x310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Oct 23 02:40:53 2025 GMT Not After : Oct 30 02:40:53 2025 GMT Subject: CN=68f995b5-9d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:55:fb:bf:6a:53:ca:95:61:6e:52:57:30:a2: 7c:96:f0:cf:f4:6c:eb:55:cc:c9:66:e5:f4:7d:84: 48:be:cb:60:ca:8b:26:a6:86:45:a5:27:e7:d3:4e: 7f:6c:6d:33:de:89:45:87:ed:cd:bc:43:d7:59:73: f0:52:ac:55:92:41:ed:54:79:7a:73:ff:34:bd:c4: 87:dc:6f:4e:53:fe:9a:9f:72:86:f3:e4:6f:b7:70: ec:87:ee:9e:2f:ca:da:b6:15:44:c1:2e:32:df:23: 7f:44:00:a0:c0:02:a0:d5:60:a9:41:85:e8:0c:cf: e3:db:d4:c2:81:25:59:cc:fd:8d:0e:2c:d4:75:d6: da:a3:1e:82:ab:2b:44:e1:bb:86:e5:22:c8:ea:9f: 39:e9:ef:40:d9:52:e5:16:4b:2b:77:cc:68:35:c7: 36:b9:90:40:08:3a:af:a9:f1:2b:58:fc:23:a3:e2: c4:57:c6:5a:65:ab:52:27:5b:60:4e:ed:d4:30:1e: 89:e7:05:06:d3:36:56:4d:79:3f:26:bf:9b:fb:6b: 06:9d:db:f6:30:65:89:d2:42:41:7b:26:98:65:fe: cc:e2:72:7b:5f:4b:90:dc:dc:51:16:bf:a0:77:ba: 68:77:6c:31:d3:ed:1c:23:6a:00:9c:75:b5:cf:63: 96:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:44:AC:31:B5:51:57:A8:2D:31:77:80:4A:A0:09:51:68:B0:58:57 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:64:a7:27:5d:cb:c5:08:37:92:6f:8e:ca:a6:60:0a:24:0b: a8:bf:51:7c:dd:c1:e0:11:86:11:2f:ba:f5:02:2e:cc:f1:69: 95:9a:df:c7:8c:97:f8:d4:cc:f0:cd:e8:4e:c5:49:3f:4b:7c: 79:c0:4f:b8:81:8a:fe:8f:be:63:6d:f5:9c:b7:0a:8f:28:30: 77:d0:f9:94:55:6f:0e:1f:05:81:0a:2b:be:d2:2f:08:98:ef: d9:c8:1d:4a:ac:a4:55:16:ca:63:11:1e:16:43:e7:61:25:d3: 6f:8d:87:7c:b1:c0:42:42:66:a4:3d:a6:8f:70:7b:f3:e1:2a: 0b:8d:12:f7:a7:af:5a:57:8c:5a:f4:a8:64:4e:b5:58:f7:3e: a7:59:5e:59:bb:f6:68:a0:f0:89:b2:45:64:3a:c1:7e:91:98: ca:86:17:33:be:37:c4:e6:8c:9e:92:21:9e:46:6b:f6:3c:2e: 44:29:92:71:93:75:a0:03:f5:c6:0b:75:90:19:9e:fe:1d:e9: 2d:6f:9d:f2:a6:9c:70:e3:81:81:f7:84:a4:48:a7:00:c2:ff: 01:85:cc:87:07:c2:1a:31:3a:81:78:09:78:61:83:83:33:7a: 0a:03:7c:09:b0:1e:e1:da:29:7f:53:85:1d:e0:53:24:d4:15: 70:52:01:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUxMDIzMDI0MDUzWhcNMjUxMDMwMDI0MDUzWjAYMRYwFAYD VQQDEw02OGY5OTViNS05ZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulX7v2pTypVhblJXMKJ8lvDP9GzrVczJZuX0fYRIvstgyosmpoZFpSfn005/ bG0z3olFh+3NvEPXWXPwUqxVkkHtVHl6c/80vcSH3G9OU/6an3KG8+Rvt3Dsh+6e L8rathVEwS4y3yN/RACgwAKg1WCpQYXoDM/j29TCgSVZzP2NDizUddbaox6CqytE 4buG5SLI6p856e9A2VLlFksrd8xoNcc2uZBACDqvqfErWPwjo+LEV8ZaZatSJ1tg Tu3UMB6J5wUG0zZWTXk/Jr+b+2sGndv2MGWJ0kJBeyaYZf7M4nJ7X0uQ3NxRFr+g d7pod2wx0+0cI2oAnHW1z2OWPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtErDG1 UVeoLTF3gEqgCVFosFhXMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0ZKcnXcvFCDeSb47KpmAKJAuov1F83cHgEYYRL7r1Ai7M8WmVmt/H jJf41MzwzehOxUk/S3x5wE+4gYr+j75jbfWctwqPKDB30PmUVW8OHwWBCiu+0i8I mO/ZyB1KrKRVFspjER4WQ+dhJdNvjYd8scBCQmakPaaPcHvz4SoLjRL3p69aV4xa 9KhkTrVY9z6nWV5Zu/ZooPCJskVkOsF+kZjKhhczvjfE5oyekiGeRmv2PC5EKZJx k3WgA/XGC3WQGZ7+Hektb53yppxw44GB94SkSKcAwv8BhcyHB8IaMTqBeAl4YYOD M3oKA3wJsB7h2il/U4Ud4FMk1BVwUgFD -----END CERTIFICATE-----Generated at Thu Oct 23 19:07:48 2025 by rpki-client