$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: mrTMYPyonoFIrpJfXaFXiOBKrKQdgMOC1srOdXu48UQ= Subject key identifier: 4F:42:ED:76:18:A2:7B:E4:0D:5B:7A:FA:A8:D8:59:0A:7B:E9:62:35 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 7B Signing time: Sun 19 Oct 2025 10:07:00 +0000 Manifest this update: Sun 19 Oct 2025 10:06:59 +0000 Manifest next update: Sun 26 Oct 2025 10:06:59 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: R16kh667U7lfv6MFll11+NFh7C7ggrZZXEZ7UGit5BA=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: Oct 19 10:06:59 2025 GMT Not After : Oct 26 10:06:59 2025 GMT Subject: CN=68f4b844-e608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:a0:39:db:41:9c:0d:85:61:bd:d4:f6:48: 73:a7:e2:36:90:d1:b3:a0:e9:c7:77:03:56:91:17: 13:49:67:83:aa:1a:22:c7:9f:e7:8b:50:21:62:98: e9:df:94:59:f4:e7:62:2b:12:89:5d:23:db:42:5c: af:da:0f:67:e6:c1:44:1f:0d:db:f7:99:8a:64:40: 0f:bd:dd:1e:0b:4c:e2:6c:c1:72:7e:92:2d:fb:55: 0c:fd:f3:0a:7c:2e:4d:b1:8e:7b:f8:e7:a1:f5:c9: 2c:cf:31:20:a9:ad:b9:32:a8:dc:b9:ac:8b:ca:98: ce:5d:63:cc:c8:c0:f6:11:a7:48:22:dc:80:58:da: 58:89:fd:da:cd:5b:02:23:0f:7f:11:d7:0b:88:4e: f0:0f:44:37:9c:49:ec:e4:21:42:cc:c2:44:d6:7a: ee:38:12:b1:1e:7a:d1:6e:71:fc:a0:47:75:fe:a8: 98:88:69:a6:a4:ae:78:d9:1a:6e:cf:70:fc:88:03: 3e:21:fe:f8:ff:7c:b5:1b:c0:10:c4:1f:b1:ef:ba: 32:65:76:0b:2f:a3:0b:64:c3:58:4e:b7:ad:ba:87: 86:61:69:17:6d:41:0d:2e:48:aa:2f:8a:fb:aa:84: 3f:19:b2:24:05:ea:8a:59:96:1b:99:42:5a:43:b0: 90:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:42:ED:76:18:A2:7B:E4:0D:5B:7A:FA:A8:D8:59:0A:7B:E9:62:35 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:6d:27:ac:86:26:d1:da:a1:d5:d9:9c:19:1e:cc:cf:9f:90: 39:2b:dc:dc:68:de:0d:61:d8:5e:35:90:0b:dd:0e:dd:bf:f0: d8:da:6a:18:17:09:7d:e0:31:68:23:70:1c:45:2d:b9:d9:cf: ec:bf:82:69:31:95:b4:ae:19:d0:7d:6f:ee:62:8b:00:bf:64: 2f:3c:f0:05:b7:82:ef:fc:aa:33:02:e3:5f:41:f0:ba:f0:75: 55:83:90:04:81:58:59:77:31:ca:da:02:64:df:6d:b4:18:1c: 4f:66:d0:b0:0e:b6:e9:45:96:6a:1b:d6:d5:5a:b8:3b:98:c8: a8:f0:48:54:a5:ee:b9:98:1f:6c:12:92:ec:33:68:87:4d:fb: ed:6c:1b:ec:6d:cd:2d:7e:d4:3e:c6:b1:5a:fc:e2:9b:ad:48: c0:b0:21:20:14:d0:b8:29:04:a7:4a:0c:2f:3b:bd:65:80:62: 01:eb:e9:e9:1b:5b:16:60:e4:b1:02:e9:c6:af:24:c1:be:a7: ae:13:75:2d:8d:0a:55:71:06:57:51:43:aa:0c:1c:84:74:02: 79:b0:6c:21:a6:a7:10:d0:71:4f:fd:bc:b1:f1:b5:67:c2:5c: cd:ae:fa:33:fe:5c:8c:42:a3:c3:a9:74:08:08:29:26:c6:99: 44:c3:a3:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTEwMTkxMDA2NTlaFw0yNTEwMjYxMDA2NTlaMBgxFjAUBgNV BAMTDTY4ZjRiODQ0LWU2MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEjKA520GcDYVhvdT2SHOn4jaQ0bOg6cd3A1aRFxNJZ4OqGiLHn+eLUCFimOnf lFn052IrEoldI9tCXK/aD2fmwUQfDdv3mYpkQA+93R4LTOJswXJ+ki37VQz98wp8 Lk2xjnv456H1ySzPMSCprbkyqNy5rIvKmM5dY8zIwPYRp0gi3IBY2liJ/drNWwIj D38R1wuITvAPRDecSezkIULMwkTWeu44ErEeetFucfygR3X+qJiIaaakrnjZGm7P cPyIAz4h/vj/fLUbwBDEH7HvujJldgsvowtkw1hOt626h4ZhaRdtQQ0uSKovivuq hD8ZsiQF6opZlhuZQlpDsJBRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT0Ltdhii e+QNW3r6qNhZCnvpYjUwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFptJ6yGJtHaodXZnBkezM+fkDkr3Nxo3g1h2F41kAvdDt2/8NjaahgX CX3gMWgjcBxFLbnZz+y/gmkxlbSuGdB9b+5iiwC/ZC888AW3gu/8qjMC419B8Lrw dVWDkASBWFl3McraAmTfbbQYHE9m0LAOtulFlmob1tVauDuYyKjwSFSl7rmYH2wS kuwzaIdN++1sG+xtzS1+1D7GsVr84putSMCwISAU0LgpBKdKDC87vWWAYgHr6ekb WxZg5LEC6cavJMG+p64TdS2NClVxBldRQ6oMHIR0AnmwbCGmpxDQcU/9vLHxtWfC XM2u+jP+XIxCo8OpdAgIKSbGmUTDo/g= -----END CERTIFICATE-----Generated at Mon Oct 20 14:41:25 2025 by rpki-client