$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft File: 7w5JMvxot1LjQokiqT5mq-MfNDE.mft (raw, json) Hash identifier: +HP20VeqDzDcha8xKbhUKwg9kLCG+0Xn5AL3BxOq/Cg= Subject key identifier: EB:8E:3F:A2:A4:C4:7A:AA:10:5C:C7:7E:4A:87:72:72:35:1B:DA:2B Authority key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 Certificate issuer: /CN=A91B4B33/serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft Manifest number: 0102 Signing time: Sun 19 Oct 2025 07:58:32 +0000 Manifest this update: Sun 19 Oct 2025 07:58:31 +0000 Manifest next update: Sun 26 Oct 2025 07:58:31 +0000 Files and hashes: 1: 7w5JMvxot1LjQokiqT5mq-MfNDE.crl (hash: oAEYzzEPP12z3eeIFD1G3l3epaVG7m+TsjzTmgPPm6g=) 2: 80741B04221F11EF92A42E1AC4F9AE02.roa (hash: tCXmsiS2pZhfyBR2w7/CD7l4+Sf7uzGB1XazUIv4/b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Validity Not Before: Oct 19 07:58:31 2025 GMT Not After : Oct 26 07:58:31 2025 GMT Subject: CN=68f49a27-90b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:29:c5:80:15:5c:68:04:1c:c7:ab:76:da:12: 62:f6:6d:b5:92:c6:ef:45:39:de:78:59:40:f8:34: 8f:23:17:7d:ec:98:02:48:55:47:a7:21:eb:f4:34: c6:02:41:77:7f:f2:af:38:10:e9:89:df:cd:a3:e6: b4:36:56:a6:3d:58:38:17:02:5a:27:1f:8a:de:97: 4a:0b:dd:24:1c:49:8f:9a:b4:9d:04:48:8f:79:28: d2:5b:12:30:1b:c8:f2:dc:5f:88:f4:fb:c0:2d:3a: 44:2b:9d:bf:c4:af:a6:51:cc:66:f6:26:1e:1c:f3: c4:8c:64:54:87:03:69:bb:6e:ff:a0:2c:27:39:32: c8:bc:95:ad:a4:02:71:b5:44:59:a9:c3:31:8c:be: bb:2b:d7:59:fc:59:67:fe:09:60:51:08:78:c8:de: 86:94:b7:9d:00:11:19:0b:d9:cb:66:b9:27:04:c5: 02:f3:f5:15:d7:e0:82:99:c3:91:c1:95:06:ac:36: 77:1b:a3:a9:fa:74:2f:df:4e:48:dd:e7:31:d2:4b: cd:87:5d:f2:68:77:da:6d:44:19:0e:79:1f:4e:76: 3e:97:b9:1d:d3:c4:2c:a3:da:f4:f6:64:8a:43:3c: 68:b4:30:1f:57:e2:c2:c8:57:88:9d:14:ee:20:7e: 45:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8E:3F:A2:A4:C4:7A:AA:10:5C:C7:7E:4A:87:72:72:35:1B:DA:2B X509v3 Authority Key Identifier: keyid:EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:e3:e0:40:28:0a:80:8a:62:40:a8:b5:e3:12:79:d7:ad:f2: ee:df:53:00:0f:d2:14:ee:46:c2:75:0d:d7:22:9e:04:24:95: 56:6e:7f:78:39:af:36:ec:e0:a6:65:c5:40:8e:ff:06:c1:1a: 68:ab:f6:2a:9a:26:46:62:41:0b:5e:05:27:0b:27:0a:38:04: 67:7b:7a:11:d6:ad:27:ac:d0:a9:a4:8a:c7:ac:a9:3f:7d:5b: fd:12:57:6f:4f:bd:ff:dc:85:e5:dd:93:ad:4a:4a:ce:c3:3e: 5d:84:9e:20:8c:17:80:3a:42:4d:10:96:9d:39:07:4d:d7:11: 70:98:b9:16:cd:ea:12:06:b5:19:8e:60:8f:84:59:19:e3:25: 40:87:0d:62:a4:b6:63:3f:82:d9:82:26:13:2b:cb:26:41:b7: fb:98:50:f4:0e:ef:6e:29:17:48:03:24:e9:05:b0:54:95:9f: 20:71:f9:04:30:31:eb:ad:fd:1d:70:4e:d4:bf:94:0a:bf:be: ce:0d:02:18:d3:f0:50:13:08:6e:e7:6a:86:e7:92:c2:e5:21: 4a:bb:88:89:35:f6:c3:5f:4b:72:37:7e:6c:24:a2:01:92:20: ee:16:ad:ec:95:5a:27:cf:15:bc:b8:c1:31:b4:21:f9:9b:71: a1:5a:ee:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEVGMEU0OTMyRkM2OEI3NTJFMzQyODkyMkE5M0U2NkFC RTMxRjM0MzEwHhcNMjUxMDE5MDc1ODMxWhcNMjUxMDI2MDc1ODMxWjAYMRYwFAYD VQQDEw02OGY0OWEyNy05MGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCnFgBVcaAQcx6t22hJi9m21ksbvRTneeFlA+DSPIxd97JgCSFVHpyHr9DTG AkF3f/KvOBDpid/No+a0NlamPVg4FwJaJx+K3pdKC90kHEmPmrSdBEiPeSjSWxIw G8jy3F+I9PvALTpEK52/xK+mUcxm9iYeHPPEjGRUhwNpu27/oCwnOTLIvJWtpAJx tURZqcMxjL67K9dZ/Fln/glgUQh4yN6GlLedABEZC9nLZrknBMUC8/UV1+CCmcOR wZUGrDZ3G6Op+nQv305I3ecx0kvNh13yaHfabUQZDnkfTnY+l7kd08Qso9r09mSK QzxotDAfV+LCyFeInRTuIH5FFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuOP6Kk xHqqEFzHfkqHcnI1G9orMB8GA1UdIwQYMBaAFO8OSTL8aLdS40KJIqk+ZqvjHzQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8xQUNFN0QwNDIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3QxTGpRb2tpcVQ1bXEtTWZO REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzd3NUpNdnhvdDFMalFva2lxVDVtcS1NZk5ERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8xQUNFN0QwNDIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3Qx TGpRb2tpcVQ1bXEtTWZOREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ4+BAKAqAimJAqLXjEnnXrfLu31MAD9IU7kbCdQ3XIp4EJJVWbn94 Oa827OCmZcVAjv8GwRpoq/YqmiZGYkELXgUnCycKOARne3oR1q0nrNCppIrHrKk/ fVv9EldvT73/3IXl3ZOtSkrOwz5dhJ4gjBeAOkJNEJadOQdN1xFwmLkWzeoSBrUZ jmCPhFkZ4yVAhw1ipLZjP4LZgiYTK8smQbf7mFD0Du9uKRdIAyTpBbBUlZ8gcfkE MDHrrf0dcE7Uv5QKv77ODQIY0/BQEwhu52qG55LC5SFKu4iJNfbDX0tyN35sJKIB kiDuFq3slVonzxW8uMExtCH5m3GhWu6g -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:43 2025 by rpki-client