$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft File: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft (raw, json) Hash identifier: R3mBCApEkfbyH8tasSH3ykm34wRBvhNnaQ+NTzH2h1w= Subject key identifier: 2E:4B:75:75:27:01:84:66:6C:2B:E2:41:E4:04:BE:6F:E4:35:2C:BD Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft Manifest number: 013B Signing time: Sun 19 Oct 2025 07:13:46 +0000 Manifest this update: Sun 19 Oct 2025 07:13:46 +0000 Manifest next update: Sun 26 Oct 2025 07:13:46 +0000 Files and hashes: 1: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl (hash: LSrMOfsx4Bc7JBUW+gaIyMyI9nAesEAW93dROHvN7pA=) 2: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (hash: u6J6SPSNjElCImZDre2hX9rdBiRV9plYfnlpPbtxhQc=) 3: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (hash: hR3HemTX8sPR//njNhfSediG0DqzFMWVKhRmgOL4nRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9, serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Oct 19 07:13:46 2025 GMT Not After : Oct 26 07:13:46 2025 GMT Subject: CN=68f48faa-5db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:64:41:33:f0:98:42:28:6b:4f:b4:ce:04:4d: 0d:c7:18:2b:96:f5:cb:24:ba:a0:5c:45:55:8c:e6: 6f:7f:44:04:2b:3c:4b:70:0f:9a:01:b2:e9:be:d5: b3:c9:c9:99:53:5e:60:4a:2c:35:8f:b8:c5:89:6a: 00:6b:c0:06:42:ca:ca:e4:b1:a2:84:e8:11:15:ed: 6b:ef:2c:c2:c9:c1:b8:63:e5:65:21:0d:81:17:16: 85:4e:96:a5:9d:dc:10:75:fd:c2:49:01:06:b9:9c: 6e:77:2f:3c:7c:2f:de:e6:57:91:de:6a:bf:b7:cf: ca:e6:9f:9f:4c:72:c8:e4:4d:b5:0e:07:a8:c0:4e: 6d:e1:fc:ce:3c:b8:c5:b6:4b:7d:75:bd:01:46:8e: 2b:2e:17:0e:a3:c9:72:bd:6f:80:45:25:bd:11:ef: fc:b6:9a:ab:e5:03:fc:df:8c:a2:66:76:cc:16:55: 20:1c:83:4a:43:44:ed:7a:77:f6:bf:f0:24:bd:19: 1d:76:b5:51:e3:59:dc:7a:6b:3d:e4:35:1f:b3:c7: 8c:14:66:a2:25:ae:da:1e:01:38:48:c5:2e:10:cf: b1:21:52:59:84:ea:6b:eb:19:21:f9:46:6b:6d:84: d3:6c:84:ae:62:a5:3c:4c:c6:0a:97:53:81:b4:c9: 07:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:4B:75:75:27:01:84:66:6C:2B:E2:41:E4:04:BE:6F:E4:35:2C:BD X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:b0:91:44:df:7a:06:4b:76:ed:9d:d8:d1:f9:15:31:ef:50: 2d:6c:71:e7:92:60:6c:30:0c:ea:20:24:3c:ab:42:63:04:64: 7c:e8:e5:c0:8c:76:77:ac:f5:16:ba:8b:84:77:f5:8f:eb:7b: 62:d6:d2:18:8f:6e:17:d3:a9:69:19:dd:0d:97:ca:bd:60:f9: 14:ee:f2:5c:98:5e:d8:02:48:36:49:5b:b2:c0:40:85:11:85: 93:02:27:f5:68:81:54:c4:95:53:71:43:f9:af:34:93:10:58: 87:39:66:22:84:ac:31:dd:24:3c:ac:94:03:d5:91:0f:35:23: 81:f4:b8:90:79:f9:80:75:a3:7c:af:a2:df:fa:0a:0d:a6:78: 4e:7d:79:0b:6b:19:68:72:45:71:d3:2f:01:b6:cb:eb:0f:a5: 5d:a5:8b:48:f9:a9:ec:c0:a9:df:0d:b6:11:03:ac:32:3c:a2: ac:a3:51:be:de:85:7a:0a:a1:d8:82:e3:cd:fc:34:d8:f6:1e: 29:9b:6a:10:ad:1a:35:f3:46:c5:c7:df:ef:60:35:4a:be:db: 99:c3:84:f1:a9:36:09:62:4f:06:cf:21:07:ef:2f:c7:80:f6: ed:ed:62:c2:fd:d3:f8:aa:fb:33:c1:38:55:f4:81:cf:37:58: 8c:c6:ad:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUxMDE5MDcxMzQ2WhcNMjUxMDI2MDcxMzQ2WjAYMRYwFAYD VQQDEw02OGY0OGZhYS01ZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2RBM/CYQihrT7TOBE0NxxgrlvXLJLqgXEVVjOZvf0QEKzxLcA+aAbLpvtWz ycmZU15gSiw1j7jFiWoAa8AGQsrK5LGihOgRFe1r7yzCycG4Y+VlIQ2BFxaFTpal ndwQdf3CSQEGuZxudy88fC/e5leR3mq/t8/K5p+fTHLI5E21DgeowE5t4fzOPLjF tkt9db0BRo4rLhcOo8lyvW+ARSW9Ee/8tpqr5QP834yiZnbMFlUgHINKQ0Ttenf2 v/AkvRkddrVR41ncems95DUfs8eMFGaiJa7aHgE4SMUuEM+xIVJZhOpr6xkh+UZr bYTTbISuYqU8TMYKl1OBtMkHsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5LdXUn AYRmbCviQeQEvm/kNSy9MB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTVDOS83RTJGMTI2OEM5RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1E blptS0Q4NWNucmRmX0laejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQsJFE33oGS3btndjR+RUx71AtbHHnkmBsMAzqICQ8q0JjBGR86OXA jHZ3rPUWuouEd/WP63ti1tIYj24X06lpGd0Nl8q9YPkU7vJcmF7YAkg2SVuywECF EYWTAif1aIFUxJVTcUP5rzSTEFiHOWYihKwx3SQ8rJQD1ZEPNSOB9LiQefmAdaN8 r6Lf+goNpnhOfXkLaxlockVx0y8BtsvrD6VdpYtI+answKnfDbYRA6wyPKKso1G+ 3oV6CqHYguPN/DTY9h4pm2oQrRo180bFx9/vYDVKvtuZw4TxqTYJYk8GzyEH7y/H gPbt7WLC/dP4qvszwThV9IHPN1iMxq1H -----END CERTIFICATE-----Generated at Tue Oct 21 07:23:52 2025 by rpki-client