$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: WjKrhsSudDV8Vv5GaHUVEG5vLhasGSKOrub4D2OVsT0= Subject key identifier: 2A:9D:70:B0:2F:BE:9C:03:B4:75:12:38:5C:E8:58:4C:AD:10:35:6C Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B68 Signing time: Sat 18 Oct 2025 19:58:55 +0000 Manifest this update: Sat 18 Oct 2025 19:58:55 +0000 Manifest next update: Sat 25 Oct 2025 19:58:55 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: kFMOHwwuQD+VCoV1gYzcql+mTjK9QkuTVMCtloCiuUY=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2936 (0xb78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Oct 18 19:58:55 2025 GMT Not After : Oct 25 19:58:55 2025 GMT Subject: CN=68f3f17f-cfd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1b:1f:f3:5a:33:82:d8:52:86:8f:0d:13:17: 15:fd:69:83:ee:f0:5b:aa:a9:84:f1:2a:d6:8d:7d: d2:ed:de:a3:a5:ab:1d:08:4c:57:37:c6:ac:98:a3: 18:3a:54:4d:f0:05:f6:8e:ea:4f:28:0f:b8:c4:29: 02:c8:d8:b9:c8:5f:e6:85:5c:a3:3d:20:72:6f:10: 85:bd:e3:5e:90:49:be:3c:92:ed:b0:79:42:2f:e9: 5d:3d:e1:c5:a6:b1:a6:a9:41:2b:8e:8c:90:27:52: 38:44:1e:d2:b7:75:9d:c8:5b:02:de:64:ff:e2:ec: 6c:a4:55:e8:59:09:c8:f1:9a:4a:fa:d7:cb:65:2a: 47:e3:dc:09:e0:d3:8b:89:69:fc:5e:34:39:78:1a: 2b:25:d2:e3:f8:76:b2:b2:24:2f:e0:ba:b2:be:2d: c6:f3:d0:ad:03:8d:45:9f:42:13:8b:9b:16:49:c4: 78:fa:d6:eb:9a:ff:22:50:7a:27:88:82:70:f9:50: 66:1c:97:72:7a:17:f8:0a:01:65:c9:91:b1:f0:ef: ae:ef:ac:88:81:f0:b6:25:85:a9:3d:bd:19:78:66: 04:bc:7a:f5:71:4a:e2:c5:f5:ae:2f:dc:50:41:ac: 18:a5:70:89:83:97:19:c3:e5:15:ac:3e:47:9a:41: a0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9D:70:B0:2F:BE:9C:03:B4:75:12:38:5C:E8:58:4C:AD:10:35:6C X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:6f:8d:84:3d:c6:7d:11:05:a4:1e:4f:3b:5a:bc:89:90:d9: 30:cb:1f:cd:94:6d:34:b1:73:22:9f:a8:39:bb:a7:8d:30:de: 72:89:70:bd:a4:92:11:b9:a2:fa:22:ba:20:9b:4c:87:aa:64: a4:7b:72:99:c8:46:87:15:af:85:25:39:b4:74:aa:e3:12:d0: 32:d1:4c:94:cf:32:fb:30:87:61:33:e2:11:b2:34:c5:de:cc: b8:67:d0:26:ee:c4:95:04:6a:bf:44:9b:e2:ec:4c:cf:bc:19: 08:7c:90:53:59:d4:2b:99:03:36:13:f9:ad:f8:82:dd:87:4c: 76:9b:4a:b1:c7:69:25:16:35:e7:98:7b:eb:38:f5:91:62:70: fa:b7:d8:f4:33:4e:3d:0b:81:35:98:31:e7:ea:cf:51:1c:18: eb:f1:dd:cd:24:77:0a:cb:76:0c:0b:38:d6:d6:63:3e:9d:85: 32:a7:86:00:68:16:c6:24:6f:32:6c:23:b9:b2:75:25:80:0f: 78:00:90:85:13:3e:bb:0c:66:6a:54:38:72:50:5f:b4:3c:e3: 27:d4:90:c0:a4:bf:fd:5a:c6:cd:e9:4d:36:e2:23:13:cc:bb: df:f4:86:75:85:f0:7e:4b:fb:a2:1e:b1:07:d4:9b:cb:af:76: cb:46:9c:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUxMDE4MTk1ODU1WhcNMjUxMDI1MTk1ODU1WjAYMRYwFAYD VQQDEw02OGYzZjE3Zi1jZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Rsf81ozgthSho8NExcV/WmD7vBbqqmE8SrWjX3S7d6jpasdCExXN8asmKMY OlRN8AX2jupPKA+4xCkCyNi5yF/mhVyjPSBybxCFveNekEm+PJLtsHlCL+ldPeHF prGmqUErjoyQJ1I4RB7St3WdyFsC3mT/4uxspFXoWQnI8ZpK+tfLZSpH49wJ4NOL iWn8XjQ5eBorJdLj+HaysiQv4Lqyvi3G89CtA41Fn0ITi5sWScR4+tbrmv8iUHon iIJw+VBmHJdyehf4CgFlyZGx8O+u76yIgfC2JYWpPb0ZeGYEvHr1cUrixfWuL9xQ QawYpXCJg5cZw+UVrD5HmkGgNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqdcLAv vpwDtHUSOFzoWEytEDVsMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3b42EPcZ9EQWkHk87WryJkNkwyx/NlG00sXMin6g5u6eNMN5yiXC9 pJIRuaL6Irogm0yHqmSke3KZyEaHFa+FJTm0dKrjEtAy0UyUzzL7MIdhM+IRsjTF 3sy4Z9Am7sSVBGq/RJvi7EzPvBkIfJBTWdQrmQM2E/mt+ILdh0x2m0qxx2klFjXn mHvrOPWRYnD6t9j0M049C4E1mDHn6s9RHBjr8d3NJHcKy3YMCzjW1mM+nYUyp4YA aBbGJG8ybCO5snUlgA94AJCFEz67DGZqVDhyUF+0POMn1JDApL/9WsbN6U024iMT zLvf9IZ1hfB+S/uiHrEH1JvLr3bLRpxe -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:31 2025 by rpki-client