$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft File: 7MBefFuSR4uMxDst35ql9slCnyE.mft (raw, json) Hash identifier: QDNN8u/5W89klJSzilv390L1nsNYyzRyJp6h1N5ahTU= Subject key identifier: CB:F6:26:0B:F4:D1:5F:0D:0E:6E:24:05:55:62:FD:25:13:6A:91:C5 Authority key identifier: EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 Certificate issuer: /CN=A9190D0D/serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Certificate serial: 0B40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft Manifest number: 0B37 Signing time: Sat 18 Oct 2025 20:09:46 +0000 Manifest this update: Sat 18 Oct 2025 20:09:45 +0000 Manifest next update: Sat 25 Oct 2025 20:09:45 +0000 Files and hashes: 1: 7MBefFuSR4uMxDst35ql9slCnyE.crl (hash: QOgEVguiN29iKlaw+XHc01GqOIzF+lfUim4vaGYVz64=) 2: FB7E5618A05711F08606974BC4F9AE02.roa (hash: pPbrb2O/8aVVKZS9ZCfK/8lR2aBJ6SwFf4IQqxIGaoo=) 3: 2B601BDCA05811F0BE7DD54BC4F9AE02.roa (hash: rcoAf/XSP+JMK9+dzb4AOtxnapjuQECNQvM4hbbxzDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2880 (0xb40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D0D, serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Validity Not Before: Oct 18 20:09:45 2025 GMT Not After : Oct 25 20:09:45 2025 GMT Subject: CN=68f3f40a-921b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e9:66:01:e6:f7:bc:f5:9b:cb:3f:2c:d7:88: 7f:03:e7:dd:2f:0d:60:e5:ba:8c:52:1b:78:44:15: a5:00:33:52:47:09:d4:89:c2:a2:1e:8d:e8:d2:e1: 2b:37:5c:b6:5e:12:4a:f3:75:64:49:54:1b:af:8d: a9:bf:c5:65:cd:f6:61:a0:2a:14:22:bb:c0:cb:c3: 02:d2:ee:51:96:2b:46:fa:b5:86:d9:17:a0:10:22: ec:16:b8:fe:8f:cc:6a:3b:73:54:24:e7:05:7a:4b: e3:a4:25:3c:1d:0c:16:14:be:c2:2e:61:6d:8e:4d: be:76:a0:67:89:67:6f:6b:b5:b5:27:f5:65:94:b2: b4:a0:45:3a:b8:38:d0:59:2f:fd:3f:76:b7:1d:5a: ff:82:f8:3b:62:57:84:ec:7d:9a:c6:3d:1d:d9:53: 36:f0:11:eb:b3:b1:47:80:32:e9:aa:fc:1a:10:e0: 50:fc:b0:ea:a5:d0:26:a5:83:a7:ff:81:d1:ad:48: 62:b6:56:b3:30:7b:4c:c3:4d:ed:88:48:d1:07:17: fd:a4:a5:c5:fe:1f:b2:1c:9c:1b:3e:0c:a4:f2:2d: d6:4e:a7:ad:94:4c:3d:ef:47:1c:5c:c3:0d:ef:d3: 53:5c:0e:11:fe:aa:26:ec:9f:9e:06:1f:c2:96:eb: 58:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F6:26:0B:F4:D1:5F:0D:0E:6E:24:05:55:62:FD:25:13:6A:91:C5 X509v3 Authority Key Identifier: keyid:EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d8:9b:70:a1:ae:48:5b:59:89:12:06:85:59:64:03:61:0c: b7:43:03:aa:77:84:4c:8e:b2:04:35:28:97:a2:11:e2:f5:1d: 55:83:14:ac:f4:84:eb:bb:91:77:01:e8:41:47:0f:a5:a3:b1: a3:8a:99:45:fb:e0:12:fc:89:57:af:7f:3d:f6:8d:58:85:0f: 8f:82:f8:fd:b5:8f:18:2c:34:df:80:2d:56:b3:5c:1a:aa:7c: 11:1a:89:b0:ec:4f:d4:bc:f0:d6:13:67:ee:b7:73:e5:7a:db: bd:28:1e:c5:af:56:28:49:2b:d6:b4:3e:6d:9b:eb:da:bc:e1: b4:b0:1d:2b:86:a1:65:a2:98:e2:c9:9d:73:9c:68:e3:57:63: a5:f6:52:4a:2b:4f:91:ea:93:ac:69:56:c7:0d:a1:64:d1:64: 42:b7:04:89:00:78:8b:db:ac:24:6e:14:e6:41:65:53:95:74: 0e:e9:a6:f4:69:ea:e2:59:a7:9d:a4:87:0e:c8:27:f0:ea:23: 8e:78:2d:0f:51:42:fc:db:ff:6d:61:d9:1c:57:ca:12:7e:c8: b1:b9:71:f1:b5:1a:82:17:ca:be:2f:47:b1:7e:bc:dd:58:69: d3:93:cf:1e:79:b9:01:d0:63:ee:4d:4a:c1:df:a4:9c:ee:3d: 6d:57:53:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBEMEQxMTAvBgNVBAUTKEVDQzA1RTdDNUI5MjQ3OEI4Q0M0M0IyRERGOUFBNUY2 Qzk0MjlGMjEwHhcNMjUxMDE4MjAwOTQ1WhcNMjUxMDI1MjAwOTQ1WjAYMRYwFAYD VQQDEw02OGYzZjQwYS05MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsulmAeb3vPWbyz8s14h/A+fdLw1g5bqMUht4RBWlADNSRwnUicKiHo3o0uEr N1y2XhJK83VkSVQbr42pv8VlzfZhoCoUIrvAy8MC0u5RlitG+rWG2RegECLsFrj+ j8xqO3NUJOcFekvjpCU8HQwWFL7CLmFtjk2+dqBniWdva7W1J/VllLK0oEU6uDjQ WS/9P3a3HVr/gvg7YleE7H2axj0d2VM28BHrs7FHgDLpqvwaEOBQ/LDqpdAmpYOn /4HRrUhitlazMHtMw03tiEjRBxf9pKXF/h+yHJwbPgyk8i3WTqetlEw970ccXMMN 79NTXA4R/qom7J+eBh/ClutY3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMv2Jgv0 0V8NDm4kBVVi/SUTapHFMB8GA1UdIwQYMBaAFOzAXnxbkkeLjMQ7Ld+apfbJQp8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQwRC9GMDM3QkQwODQ3 NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0dU14RHN0MzVxbDlzbENu eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdNQmVmRnVTUjR1TXhEc3QzNXFsOXNsQ255RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEQwRC9GMDM3QkQwODQ3NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0 dU14RHN0MzVxbDlzbENueUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo2Jtwoa5IW1mJEgaFWWQDYQy3QwOqd4RMjrIENSiXohHi9R1VgxSs 9ITru5F3AehBRw+lo7GjiplF++AS/IlXr3899o1YhQ+Pgvj9tY8YLDTfgC1Ws1wa qnwRGomw7E/UvPDWE2fut3Pletu9KB7Fr1YoSSvWtD5tm+vavOG0sB0rhqFlopji yZ1znGjjV2Ol9lJKK0+R6pOsaVbHDaFk0WRCtwSJAHiL26wkbhTmQWVTlXQO6ab0 aeriWaedpIcOyCfw6iOOeC0PUUL82/9tYdkcV8oSfsixuXHxtRqCF8q+L0exfrzd WGnTk88eebkB0GPuTUrB36Sc7j1tV1Oh -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:01 2025 by rpki-client