$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft File: 7sDpmYfcHqnUAviE_NqX4DFFpKA.mft (raw, json) Hash identifier: xTfw5nd2pFeRKiBSbnMl5uDncx8bf/StrfSndwwsMTg= Subject key identifier: 1E:77:55:78:46:8A:39:E9:68:0D:E1:20:E9:E1:D7:81:B5:1D:E1:6E Authority key identifier: EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 Certificate issuer: /CN=A91AE1B5/serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft Manifest number: 011B Signing time: Sun 19 Oct 2025 07:42:01 +0000 Manifest this update: Sun 19 Oct 2025 07:42:00 +0000 Manifest next update: Sun 26 Oct 2025 07:42:00 +0000 Files and hashes: 1: 7sDpmYfcHqnUAviE_NqX4DFFpKA.crl (hash: 7n6MzkX0VaaVoWGCQB1IqthbdQ5XvbXDKU/96jUhi6M=) 2: D2A2FF4A003B11EFA6658D0DC4F9AE02.roa (hash: 7/3ODwQ2dlZbxqeVnJstobH8SWsvoF3IBlCZtLMYHu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE1B5, serialNumber=EEC0E99987DC1EA9D402F884FCDA97E03145A4A0 Validity Not Before: Oct 19 07:42:00 2025 GMT Not After : Oct 26 07:42:00 2025 GMT Subject: CN=68f49649-15f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:52:0c:6d:77:94:b2:05:bb:a9:a8:e4:8e:4f: 67:61:35:4c:ba:d5:8f:24:ce:67:5d:93:ba:7c:01: 52:93:d3:1d:b0:22:3c:fb:fa:7d:90:c4:05:38:8e: 6a:10:46:ce:e0:6d:27:33:74:f3:51:66:93:07:db: c3:28:76:4f:f0:f4:2e:b7:55:cd:ef:54:c7:ad:fc: f9:87:46:2f:43:4d:27:b2:4c:e1:e7:50:9f:1a:7b: ba:b0:94:64:a4:d5:a4:ce:77:35:02:51:8d:b1:b2: de:0f:c5:19:8a:73:cd:e4:7c:71:d7:1f:9a:e4:11: c7:b2:ca:9e:f4:9e:7c:14:df:ae:f7:20:5d:d2:fb: 08:3f:ed:e0:eb:04:87:e1:5b:5d:0a:bf:35:96:30: 7c:2c:37:f8:44:75:0a:a1:d6:14:73:c3:c9:8d:03: 7a:71:99:4b:3b:cf:4d:9d:31:5c:af:8e:ea:a4:7d: c9:f9:1e:29:3b:cc:86:80:83:ca:a0:e6:3e:6b:e9: af:87:ef:7c:6a:f4:80:91:58:e7:1a:34:82:ee:8f: 6e:a7:75:a4:2e:87:da:12:c1:b6:f7:d4:27:0d:95: 5d:17:bc:e7:2c:73:27:c3:fc:76:6a:ce:c6:e7:b2: db:50:ca:17:8f:fe:fe:65:56:5b:c5:bd:fe:e1:68: 83:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:77:55:78:46:8A:39:E9:68:0D:E1:20:E9:E1:D7:81:B5:1D:E1:6E X509v3 Authority Key Identifier: keyid:EE:C0:E9:99:87:DC:1E:A9:D4:02:F8:84:FC:DA:97:E0:31:45:A4:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7sDpmYfcHqnUAviE_NqX4DFFpKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE1B5/8B405E5E003B11EF911B8F68C4F9AE02/7sDpmYfcHqnUAviE_NqX4DFFpKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e5:ed:71:47:cd:fa:f5:f8:a0:37:ab:2e:2a:ad:71:f7:76: 7c:e2:a3:f2:6c:1a:1e:78:62:f2:4c:b1:79:87:fb:f6:8f:cf: c9:e0:db:79:c8:b8:5b:6e:61:d3:55:fa:24:53:1e:6c:03:85: 80:13:c3:2d:09:a5:3e:c1:97:2f:2f:6c:8e:b3:cb:07:94:45: 3d:ce:c5:01:92:0e:f8:f8:d7:14:01:99:32:11:35:23:6e:d5: 89:56:20:67:ab:d7:30:1a:20:a0:e4:54:78:c1:60:61:80:73: a4:9f:5f:0a:76:f8:b6:62:19:9d:ff:49:f4:76:b4:ce:cc:ca: c4:e3:13:f0:e0:7c:56:bb:c1:5b:18:b9:17:62:2c:f1:bc:a0: 76:46:66:64:41:50:e0:9f:dd:62:9e:39:9f:f9:ff:d1:7b:43: 07:80:a8:69:39:4f:5e:9d:0c:a3:d5:f6:b7:68:14:82:6f:89: 5e:cf:95:35:b2:a1:01:15:7e:ef:83:09:be:55:31:e5:f7:83: 36:4f:ed:8a:64:96:16:ec:78:aa:fa:b8:9d:93:41:9d:22:d9: a1:7e:01:8e:67:81:15:79:18:af:3c:b6:19:f1:3d:76:fe:3e: 26:eb:20:00:f2:80:15:0c:eb:b7:5f:80:42:52:84:23:fb:7d: 3f:a2:cf:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxQjUxMTAvBgNVBAUTKEVFQzBFOTk5ODdEQzFFQTlENDAyRjg4NEZDREE5N0Uw MzE0NUE0QTAwHhcNMjUxMDE5MDc0MjAwWhcNMjUxMDI2MDc0MjAwWjAYMRYwFAYD VQQDEw02OGY0OTY0OS0xNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlIMbXeUsgW7qajkjk9nYTVMutWPJM5nXZO6fAFSk9MdsCI8+/p9kMQFOI5q EEbO4G0nM3TzUWaTB9vDKHZP8PQut1XN71THrfz5h0YvQ00nskzh51CfGnu6sJRk pNWkznc1AlGNsbLeD8UZinPN5Hxx1x+a5BHHssqe9J58FN+u9yBd0vsIP+3g6wSH 4VtdCr81ljB8LDf4RHUKodYUc8PJjQN6cZlLO89NnTFcr47qpH3J+R4pO8yGgIPK oOY+a+mvh+98avSAkVjnGjSC7o9up3WkLofaEsG299QnDZVdF7znLHMnw/x2as7G 57LbUMoXj/7+ZVZbxb3+4WiDnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB53VXhG ijnpaA3hIOnh14G1HeFuMB8GA1UdIwQYMBaAFO7A6ZmH3B6p1AL4hPzal+AxRaSg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTFCNS84QjQwNUU1RTAw M0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hxblVBdmlFX05xWDRERkZw S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdzRHBtWWZjSHFuVUF2aUVfTnFYNERGRnBLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTFCNS84QjQwNUU1RTAwM0IxMUVGOTExQjhGNjhDNEY5QUUwMi83c0RwbVlmY0hx blVBdmlFX05xWDRERkZwS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE5e1xR8369figN6suKq1x93Z84qPybBoeeGLyTLF5h/v2j8/J4Nt5 yLhbbmHTVfokUx5sA4WAE8MtCaU+wZcvL2yOs8sHlEU9zsUBkg74+NcUAZkyETUj btWJViBnq9cwGiCg5FR4wWBhgHOkn18Kdvi2Yhmd/0n0drTOzMrE4xPw4HxWu8Fb GLkXYizxvKB2RmZkQVDgn91injmf+f/Re0MHgKhpOU9enQyj1fa3aBSCb4lez5U1 sqEBFX7vgwm+VTHl94M2T+2KZJYW7Hiq+ridk0GdItmhfgGOZ4EVeRivPLYZ8T12 /j4m6yAA8oAVDOu3X4BCUoQj+30/os+a -----END CERTIFICATE-----Generated at Mon Oct 20 04:03:26 2025 by rpki-client