$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: G3LM0v/hgrmh+F0IJkT6F35bTyNFXSDl4hYvL93+uuA= Subject key identifier: 38:0C:45:16:F3:AA:2E:A7:38:52:F8:96:C6:4B:AA:B9:E4:33:7A:04 Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 404D Signing time: Sat 18 Oct 2025 14:54:41 +0000 Manifest this update: Sat 18 Oct 2025 14:54:41 +0000 Manifest next update: Sat 25 Oct 2025 14:54:41 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: NsreiA8nj1RDe8Xj0PUO8l6cBDCSBEW3cBlseT8ekxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Oct 18 14:54:41 2025 GMT Not After : Oct 25 14:54:41 2025 GMT Subject: CN=68f3aa31-6095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f2:d8:cb:48:44:d8:fe:25:f0:70:d2:ec:7c: 22:71:42:0c:67:2b:7b:49:b5:f5:9a:5e:23:3d:30: 2b:1b:7f:79:01:4d:da:e7:03:b8:df:55:88:e4:27: 90:ef:cd:ca:3c:c7:b3:7e:c5:c7:50:a8:65:84:b5: 65:5d:56:59:b5:f2:86:5b:71:60:e9:14:7d:14:97: fc:9f:a2:73:f9:f3:4f:48:70:bf:f5:17:3c:0a:d3: 07:6f:ff:20:f0:c1:4a:e0:f5:5f:fa:5f:60:65:79: 75:34:79:0c:e7:df:4d:f2:a4:2e:63:92:9a:21:fa: b1:a7:85:e7:68:3e:ff:1c:0c:ae:42:28:0e:84:a5: c7:26:d8:5b:3a:d2:0e:30:d0:9f:38:9a:f9:ee:d0: c6:29:fb:b5:b7:41:41:92:2d:ee:0e:7c:5d:37:1c: 34:bb:16:ce:c3:74:91:1f:90:a5:51:25:c3:4f:47: 1d:c4:41:80:cb:34:63:c2:cb:56:1b:4c:b3:21:db: 4e:f5:e3:c9:b7:41:d6:34:c9:0a:3c:65:c2:48:fb: a8:12:ca:79:dc:b7:3f:ad:7b:4e:f0:18:b2:af:49: 14:49:26:eb:d9:ee:38:a8:9a:2b:34:e3:e3:0e:a5: 99:51:2a:c7:77:e2:3f:30:73:f2:e2:f9:df:32:ff: c8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0C:45:16:F3:AA:2E:A7:38:52:F8:96:C6:4B:AA:B9:E4:33:7A:04 X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:7e:41:71:76:f0:72:b3:e8:58:11:59:ea:58:e3:b1:5a:ca: 5d:72:18:12:6f:ce:37:f9:dc:04:0c:53:b3:ac:f6:c9:9f:53: 6b:8d:dd:88:e6:d8:1e:2f:f6:60:e1:d8:e0:a9:f8:bb:09:26: 8f:8a:b8:a2:32:1d:84:27:c7:4b:3f:43:a1:96:67:5c:ab:93: 5f:59:0e:99:cb:18:4f:b0:7f:97:c9:c7:b4:91:6a:7b:8f:f8: d9:f7:02:34:b3:0e:15:ab:47:06:22:37:08:d7:47:85:46:d3: d9:ee:f3:a1:2b:e3:30:b7:f5:1f:cd:b4:73:49:87:1a:26:fa: 0b:a1:53:2a:ec:b7:01:bc:96:5e:50:01:04:0a:2d:04:09:f5: 34:f6:8a:ef:52:09:86:d7:90:eb:69:f8:c2:73:90:49:1f:02: 5c:a3:f0:43:dc:1d:95:14:a3:fd:4b:65:56:bb:1e:bd:9f:5a: 14:61:ee:f9:b4:e7:67:d8:4d:51:24:fe:f3:88:fe:c7:7c:49: e5:db:d4:6d:bd:ff:f6:b0:0d:62:4e:35:b9:91:11:b0:2d:e3: 4f:ed:8b:7b:f9:81:02:4a:75:47:75:c2:b4:27:21:4e:98:f5: f0:d1:7b:e4:1f:f0:92:a4:3e:57:bb:c0:67:73:36:3e:09:c7: bf:a4:1a:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUxMDE4MTQ1NDQxWhcNMjUxMDI1MTQ1NDQxWjAYMRYwFAYD VQQDEw02OGYzYWEzMS02MDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPLYy0hE2P4l8HDS7HwicUIMZyt7SbX1ml4jPTArG395AU3a5wO431WI5CeQ 783KPMezfsXHUKhlhLVlXVZZtfKGW3Fg6RR9FJf8n6Jz+fNPSHC/9Rc8CtMHb/8g 8MFK4PVf+l9gZXl1NHkM599N8qQuY5KaIfqxp4XnaD7/HAyuQigOhKXHJthbOtIO MNCfOJr57tDGKfu1t0FBki3uDnxdNxw0uxbOw3SRH5ClUSXDT0cdxEGAyzRjwstW G0yzIdtO9ePJt0HWNMkKPGXCSPuoEsp53Lc/rXtO8Biyr0kUSSbr2e44qJorNOPj DqWZUSrHd+I/MHPy4vnfMv/IVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgMRRbz qi6nOFL4lsZLqrnkM3oEMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9fkFxdvBys+hYEVnqWOOxWspdchgSb843+dwEDFOzrPbJn1Nrjd2I 5tgeL/Zg4djgqfi7CSaPiriiMh2EJ8dLP0Ohlmdcq5NfWQ6ZyxhPsH+Xyce0kWp7 j/jZ9wI0sw4Vq0cGIjcI10eFRtPZ7vOhK+Mwt/UfzbRzSYcaJvoLoVMq7LcBvJZe UAEECi0ECfU09orvUgmG15DrafjCc5BJHwJco/BD3B2VFKP9S2VWux69n1oUYe75 tOdn2E1RJP7ziP7HfEnl29Rtvf/2sA1iTjW5kRGwLeNP7Yt7+YECSnVHdcK0JyFO mPXw0XvkH/CSpD5Xu8BnczY+Cce/pBqn -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:21 2025 by rpki-client