$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft File: elR0EjxUiBfiXzSEzCa2CwZBvWk.mft (raw, json) Hash identifier: tFGHgjepDEmvRgMINu89q8jRaz7S3z9cbc690s2ExIs= Subject key identifier: ED:5F:D4:9A:EF:EC:BC:37:AE:D6:9E:1F:DF:72:EF:51:57:28:95:41 Authority key identifier: 7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 Certificate issuer: /CN=A91B6F87/serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Certificate serial: 07C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft Manifest number: 07B3 Signing time: Sat 18 Oct 2025 22:46:45 +0000 Manifest this update: Sat 18 Oct 2025 22:46:44 +0000 Manifest next update: Sat 25 Oct 2025 22:46:44 +0000 Files and hashes: 1: elR0EjxUiBfiXzSEzCa2CwZBvWk.crl (hash: FQGqW5PAWifFnmfxmbZr7mKuO0oU43kNihCHkfXtSz4=) 2: 6AB849742C9C11EBB49A3A32C4F9AE02.roa (hash: dk2P7YS4UEzdhYSweMgpjO1Pw3svDbIzP68IGqk5fxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F87, serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Validity Not Before: Oct 18 22:46:44 2025 GMT Not After : Oct 25 22:46:44 2025 GMT Subject: CN=68f418d5-40f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:77:8a:6c:fe:76:77:87:85:cf:0f:38:8e:7c: 2d:96:d3:ba:71:33:31:6b:ee:cb:2a:ce:3a:bb:f8: 61:8d:e9:21:f0:79:55:6b:cb:c8:11:83:64:5f:41: 64:e1:2d:32:ff:19:74:35:bb:7b:f9:77:01:69:bc: 76:4f:d0:bb:6b:c3:35:70:53:f2:72:41:1c:70:26: 41:03:c0:15:d1:31:d7:5d:cd:77:fe:a1:2c:5c:f7: 16:dc:ad:f2:14:9f:9c:f9:a2:15:c9:36:dc:8d:f4: d3:af:51:c4:71:e3:52:3b:0d:76:11:8a:98:94:5c: 15:83:cd:fe:37:98:02:98:b1:51:d5:ae:05:69:55: 58:d7:b9:d3:47:13:51:e4:30:14:a7:bb:28:d5:34: f2:e1:8b:26:ce:75:d7:06:da:da:cd:54:25:be:87: 06:c1:95:ba:23:ea:90:f1:9d:95:22:38:c6:11:04: 02:be:0b:83:92:0e:da:f9:f3:1b:af:48:a9:73:8a: 15:39:3c:e7:05:21:62:7e:a1:eb:98:f6:23:7f:d4: 75:f1:b1:89:f7:cc:ef:db:b1:44:f4:bc:ea:be:1b: e6:20:4c:1f:12:4a:82:40:77:bc:94:fd:78:36:e5: 13:dd:5e:c5:f7:4d:eb:a6:88:cb:d4:2e:8e:e7:8d: ec:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:5F:D4:9A:EF:EC:BC:37:AE:D6:9E:1F:DF:72:EF:51:57:28:95:41 X509v3 Authority Key Identifier: keyid:7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:8e:af:c7:4d:98:4b:02:85:11:9e:ff:6c:f3:29:2d:c3:69: 78:69:ed:e7:a0:12:46:87:3c:68:17:73:94:ce:a9:33:13:52: db:8f:b1:b1:fd:ee:03:e2:b6:82:3e:b4:5a:c4:89:de:eb:ce: e4:3a:9b:2d:65:f4:0e:d4:52:fd:27:ea:8e:7c:1d:bd:70:bd: 53:66:ad:dd:d6:18:0b:97:ec:a4:ed:0d:d6:fc:f7:91:6f:44: d7:ee:db:7a:37:e3:53:b2:03:1a:44:0c:04:f9:ae:5a:53:e5: 2e:09:8b:e5:92:51:04:27:e3:23:17:2e:34:06:42:d9:59:ec: ee:4f:87:38:db:df:df:16:90:b3:72:12:d2:19:2d:a1:fa:6f: 8b:60:44:89:a8:ff:62:74:9d:8f:5b:cd:c6:36:da:fb:f8:44: 5c:7e:e5:c9:da:9e:85:f6:74:69:f5:0f:96:d3:dd:79:24:19: ec:5e:7e:a4:45:72:40:ad:a4:c4:41:bc:a9:30:46:30:6d:4e: bd:7d:32:65:91:5e:1f:d1:00:0d:b4:f3:40:f5:ea:d7:75:b3: ca:58:cc:99:1d:43:2c:f0:87:d1:76:a1:02:98:26:91:4f:33: 9d:22:08:91:d0:32:a1:91:3c:87:99:62:00:a0:52:68:22:f5: a2:8e:af:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGODcxMTAvBgNVBAUTKDdBNTQ3NDEyM0M1NDg4MTdFMjVGMzQ4NENDMjZCNjBC MDY0MUJENjkwHhcNMjUxMDE4MjI0NjQ0WhcNMjUxMDI1MjI0NjQ0WjAYMRYwFAYD VQQDEw02OGY0MThkNS00MGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwneKbP52d4eFzw84jnwtltO6cTMxa+7LKs46u/hhjekh8HlVa8vIEYNkX0Fk 4S0y/xl0Nbt7+XcBabx2T9C7a8M1cFPyckEccCZBA8AV0THXXc13/qEsXPcW3K3y FJ+c+aIVyTbcjfTTr1HEceNSOw12EYqYlFwVg83+N5gCmLFR1a4FaVVY17nTRxNR 5DAUp7so1TTy4YsmznXXBtrazVQlvocGwZW6I+qQ8Z2VIjjGEQQCvguDkg7a+fMb r0ipc4oVOTznBSFifqHrmPYjf9R18bGJ98zv27FE9LzqvhvmIEwfEkqCQHe8lP14 NuUT3V7F903rpojL1C6O543s+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1f1Jrv 7Lw3rtaeH99y71FXKJVBMB8GA1UdIwQYMBaAFHpUdBI8VIgX4l80hMwmtgsGQb1p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY4Ny9CMUNENzFGMDI2 ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlCZmlYelNFekNhMkN3WkJ2 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VsUjBFanhVaUJmaVh6U0V6Q2EyQ3daQnZXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY4Ny9CMUNENzFGMDI2ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlC ZmlYelNFekNhMkN3WkJ2V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKjq/HTZhLAoURnv9s8yktw2l4ae3noBJGhzxoF3OUzqkzE1Lbj7Gx /e4D4raCPrRaxIne687kOpstZfQO1FL9J+qOfB29cL1TZq3d1hgLl+yk7Q3W/PeR b0TX7tt6N+NTsgMaRAwE+a5aU+UuCYvlklEEJ+MjFy40BkLZWezuT4c429/fFpCz chLSGS2h+m+LYESJqP9idJ2PW83GNtr7+ERcfuXJ2p6F9nRp9Q+W0915JBnsXn6k RXJAraTEQbypMEYwbU69fTJlkV4f0QANtPNA9erXdbPKWMyZHUMs8IfRdqECmCaR TzOdIgiR0DKhkTyHmWIAoFJoIvWijq96 -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:12 2025 by rpki-client