$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft File: f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json) Hash identifier: n8smneLiHrvndccAPiKKW/tOwZ8rtmpC4dE5sq42r8Y= Subject key identifier: 64:52:9B:F6:33:9C:1D:84:4E:43:92:86:CC:2A:39:94:7F:BD:98:4B Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft Manifest number: 01E3 Signing time: Sun 19 Oct 2025 05:03:14 +0000 Manifest this update: Sun 19 Oct 2025 05:03:14 +0000 Manifest next update: Sun 26 Oct 2025 05:03:14 +0000 Files and hashes: 1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: 1nhInNYOPIEpS0gynR6Nk6ijwMs5nlmDo26enDZXGZE=) 2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: hP+l6tFfGRtL/s3PVotLK1C45PriZjz7pB5mLcbuaqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: Oct 19 05:03:14 2025 GMT Not After : Oct 26 05:03:14 2025 GMT Subject: CN=68f47112-8baa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:80:e7:42:40:ba:e2:d5:bf:e0:fb:56:31:ff: 38:36:da:7d:95:52:26:ab:1a:2f:d0:87:99:22:6e: 35:19:0c:e8:7b:d6:a9:cc:74:e7:26:bd:c7:c1:eb: 32:ec:b5:4d:02:c9:ef:f7:05:94:32:c5:0e:11:30: 30:2f:56:b5:74:20:a9:88:b1:2c:75:1a:7d:19:89: aa:ed:0a:84:41:59:56:02:c9:04:21:d9:37:01:e3: fd:56:28:ab:b1:ce:de:73:c6:6b:11:4e:15:75:ff: 0c:fd:9e:fb:ad:37:74:e9:ad:6e:2f:93:90:69:2c: cd:81:ae:a8:18:a3:5b:d6:86:70:47:15:3e:be:78: b0:64:c4:14:28:88:fe:12:11:1d:71:75:ac:a6:86: ae:2e:f8:81:0c:d9:e4:b6:b6:6f:42:fd:a4:59:9f: 81:1d:55:de:72:95:a7:44:a3:f8:b7:27:33:e3:7d: 3e:7f:81:f6:d1:ea:f8:57:db:ad:3e:b9:bc:b7:1e: 00:3d:f9:95:d0:ca:a0:6b:12:cf:d3:56:35:fb:10: 86:83:30:12:7e:f5:1a:24:69:ca:07:5b:f7:5e:dd: 7a:0e:01:12:3a:60:49:fd:4b:a7:d7:09:f2:f3:53: a3:21:45:87:9b:9d:ba:a0:b1:a7:bc:f1:13:68:f9: 18:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:52:9B:F6:33:9C:1D:84:4E:43:92:86:CC:2A:39:94:7F:BD:98:4B X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d4:ed:32:47:7f:5c:dc:0a:7d:9f:3d:40:98:87:7c:c9:cc: ae:2e:5c:e2:27:ee:42:8b:2a:f0:6f:aa:d5:b8:e1:56:a5:2d: 16:5c:20:9a:b8:a8:f3:25:1e:8c:82:df:a5:8e:00:0f:91:ea: 81:61:6d:4f:d0:1f:a4:b3:63:6f:fb:7f:a3:8e:70:54:49:26: 63:03:61:36:be:2a:b9:48:61:f9:cc:3a:22:89:1c:eb:39:88: a1:c4:ab:33:e4:80:f6:70:16:5e:b3:12:46:9c:0c:20:de:1e: 15:64:a1:a9:48:00:fd:87:64:dc:13:f4:27:87:08:1c:21:cc: 3b:37:bb:18:39:27:60:21:3b:46:9a:55:60:c7:69:74:5a:6e: b2:8e:71:a2:8c:03:52:33:17:14:f0:20:d4:9c:27:3b:4a:5c: 57:00:69:78:48:ac:da:2f:7e:24:b0:fe:b8:f1:60:56:16:97: b3:63:39:0d:be:d1:72:fb:de:a1:86:af:cc:96:e3:8d:b5:17: 31:df:da:b4:49:48:c4:7d:e3:13:58:f4:67:ad:99:bd:d1:2a: e3:ef:d4:aa:90:2e:f3:dd:ac:ba:88:d0:64:34:fb:8a:b2:8a: ca:61:d3:b5:ea:b1:92:de:45:b6:d7:fd:d3:6c:5e:8d:3d:c6: 06:02:54:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjUxMDE5MDUwMzE0WhcNMjUxMDI2MDUwMzE0WjAYMRYwFAYD VQQDEw02OGY0NzExMi04YmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64DnQkC64tW/4PtWMf84Ntp9lVImqxov0IeZIm41GQzoe9apzHTnJr3Hwesy 7LVNAsnv9wWUMsUOETAwL1a1dCCpiLEsdRp9GYmq7QqEQVlWAskEIdk3AeP9Viir sc7ec8ZrEU4Vdf8M/Z77rTd06a1uL5OQaSzNga6oGKNb1oZwRxU+vniwZMQUKIj+ EhEdcXWspoauLviBDNnktrZvQv2kWZ+BHVXecpWnRKP4tycz430+f4H20er4V9ut Prm8tx4APfmV0MqgaxLP01Y1+xCGgzASfvUaJGnKB1v3Xt16DgESOmBJ/Uun1wny 81OjIUWHm526oLGnvPETaPkYVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRSm/Yz nB2ETkOShswqOZR/vZhLMB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjgzRC9BM0Q1MkZCOEM4NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAz X09KTVRKcEdSV2c4T2VpaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM1O0yR39c3Ap9nz1AmId8ycyuLlziJ+5Ciyrwb6rVuOFWpS0WXCCa uKjzJR6Mgt+ljgAPkeqBYW1P0B+ks2Nv+3+jjnBUSSZjA2E2viq5SGH5zDoiiRzr OYihxKsz5ID2cBZesxJGnAwg3h4VZKGpSAD9h2TcE/QnhwgcIcw7N7sYOSdgITtG mlVgx2l0Wm6yjnGijANSMxcU8CDUnCc7SlxXAGl4SKzaL34ksP648WBWFpezYzkN vtFy+96hhq/MluONtRcx39q0SUjEfeMTWPRnrZm90Srj79SqkC7z3ay6iNBkNPuK sorKYdO16rGS3kW21/3TbF6NPcYGAlQc -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:30 2025 by rpki-client