$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: 7ZSAAPKjO3ERUsG38BWYqxi65e3At48rxb7pC2+vm6M= Subject key identifier: 3B:CA:04:2A:F2:9D:D9:88:8F:27:25:00:E1:B6:16:8D:45:95:D2:16 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CE7 Signing time: Sat 18 Oct 2025 18:48:17 +0000 Manifest this update: Sat 18 Oct 2025 18:48:16 +0000 Manifest next update: Sat 25 Oct 2025 18:48:16 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: 7tXZbWdgdx0EgJhLfsHDPyrfDI9rloIz13m5WxDm5UA=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: Lgb8GqRFfTjU3W3z9LRFwwnC1h3FLvp4weLwp44Pmyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Oct 18 18:48:16 2025 GMT Not After : Oct 25 18:48:16 2025 GMT Subject: CN=68f3e0f1-5f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:69:28:78:fa:15:a9:f7:df:b4:d1:85:03:4a: 82:8c:b4:ff:ed:9e:92:30:a0:e5:25:75:84:35:ac: 4d:1d:54:d8:98:ff:cd:89:bd:cb:4d:21:f8:58:03: 06:19:f7:04:34:19:c1:0f:c2:d6:8e:22:f3:fa:15: c2:da:70:de:19:6f:a9:e6:cd:e4:36:80:b6:23:2e: e3:c6:d1:2b:35:78:de:a1:8d:91:9d:7d:da:14:9e: 90:64:d4:9f:c7:b5:9b:c9:00:18:14:a0:4e:82:b6: 91:7a:01:c6:74:22:14:10:6e:17:41:0e:c8:71:bc: 10:76:2d:ca:85:28:8f:ac:89:43:0e:c7:d8:38:f9: 0c:bf:65:47:9d:dd:bd:b9:3b:bb:36:0e:f6:11:e8: 2a:fb:f5:d9:bd:57:17:09:0d:73:da:e4:4c:c0:97: f3:8b:49:f6:0a:ff:96:f4:58:c8:df:d5:32:a2:e1: f4:85:ea:6d:83:3c:35:05:b0:94:0f:d4:5b:69:cf: e4:6f:18:87:1b:a4:6d:9c:41:45:e6:af:1b:5c:fc: e9:07:89:d6:66:94:74:13:49:6c:52:38:36:40:e0: b3:78:8c:7d:e9:28:ef:5c:b5:de:f2:b3:df:24:58: 58:26:ea:9c:7a:c5:3c:fc:ca:40:fc:0d:20:bd:45: da:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:CA:04:2A:F2:9D:D9:88:8F:27:25:00:E1:B6:16:8D:45:95:D2:16 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:16:55:ef:3b:f4:e7:d8:2e:75:e6:b1:de:ca:4f:75:a5:df: c1:b3:9a:c9:88:93:1a:a5:61:39:75:ef:09:ca:f2:1c:cc:57: 28:02:55:9c:60:f6:4e:07:b2:53:81:c6:f0:fe:7a:80:e4:51: 71:88:9f:15:55:f1:9d:4e:e0:97:4f:f1:8b:da:a3:2b:ae:9e: f0:82:33:72:18:3e:4a:00:30:66:f2:c9:4d:23:72:0b:4c:a7: 1e:a9:bf:3b:af:4f:a0:2e:63:0a:75:49:8e:16:e9:9b:e6:59: f6:98:da:4a:4e:b7:75:16:f3:c3:ea:9d:b5:90:51:b5:ca:82: f8:b6:02:f6:c7:37:c1:4c:75:32:f5:70:a3:3a:2c:c8:67:f5: 07:3b:0e:34:c1:93:f8:c4:63:24:71:27:90:ab:80:5f:c4:c1: cd:06:de:88:2a:dd:60:b3:1d:da:2f:a2:81:fe:8b:0b:a3:cc: f7:5e:63:56:1e:5c:fe:ed:41:64:24:41:70:d2:3a:7d:05:52: b0:81:f7:5e:24:28:2d:b1:7f:ff:8c:11:37:55:58:0f:c4:49: 1a:20:fa:cd:0d:ab:2f:80:ed:4f:26:b2:3d:e7:cb:53:18:fa: d4:e7:c2:44:fd:a1:c0:1f:c4:0c:e5:26:fd:36:d4:bf:b3:c7: 0b:85:35:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUxMDE4MTg0ODE2WhcNMjUxMDI1MTg0ODE2WjAYMRYwFAYD VQQDEw02OGYzZTBmMS01Zjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2koePoVqffftNGFA0qCjLT/7Z6SMKDlJXWENaxNHVTYmP/Nib3LTSH4WAMG GfcENBnBD8LWjiLz+hXC2nDeGW+p5s3kNoC2Iy7jxtErNXjeoY2RnX3aFJ6QZNSf x7WbyQAYFKBOgraRegHGdCIUEG4XQQ7IcbwQdi3KhSiPrIlDDsfYOPkMv2VHnd29 uTu7Ng72Eegq+/XZvVcXCQ1z2uRMwJfzi0n2Cv+W9FjI39UyouH0heptgzw1BbCU D9Rbac/kbxiHG6RtnEFF5q8bXPzpB4nWZpR0E0lsUjg2QOCzeIx96SjvXLXe8rPf JFhYJuqcesU8/MpA/A0gvUXadQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvKBCry ndmIjyclAOG2Fo1FldIWMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIFlXvO/Tn2C515rHeyk91pd/Bs5rJiJMapWE5de8JyvIczFcoAlWc YPZOB7JTgcbw/nqA5FFxiJ8VVfGdTuCXT/GL2qMrrp7wgjNyGD5KADBm8slNI3IL TKceqb87r0+gLmMKdUmOFumb5ln2mNpKTrd1FvPD6p21kFG1yoL4tgL2xzfBTHUy 9XCjOizIZ/UHOw40wZP4xGMkcSeQq4BfxMHNBt6IKt1gsx3aL6KB/osLo8z3XmNW Hlz+7UFkJEFw0jp9BVKwgfdeJCgtsX//jBE3VVgPxEkaIPrNDasvgO1PJrI958tT GPrU58JE/aHAH8QM5Sb9NtS/s8cLhTVd -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:26 2025 by rpki-client