$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft File: -E-7QV2aRUM2Lt9yZfU34s_5-CA.mft (raw, json) Hash identifier: NEB7+O+/d6IOb5ITpX0JbhSpM3m7PLaVBLX5g5fNwxM= Subject key identifier: DC:A6:4F:2F:9E:6F:96:A3:4B:C0:CA:B4:E1:7D:81:92:B5:A6:28:3A Authority key identifier: F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 Certificate issuer: /CN=A91BCDC6/serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft Manifest number: 0172 Signing time: Sun 19 Oct 2025 06:32:09 +0000 Manifest this update: Sun 19 Oct 2025 06:32:09 +0000 Manifest next update: Sun 26 Oct 2025 06:32:09 +0000 Files and hashes: 1: -E-7QV2aRUM2Lt9yZfU34s_5-CA.crl (hash: hhQwYZs+L8e1M+hrf2xib0xmpZZx5QD/xBB6AS0OieM=) 2: 254E9F807D4A11EEABBD1328C4F9AE02.roa (hash: E597Ub/8geXywFzvDFSLu6V1fvdFLZTNO5bMkAf850U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCDC6, serialNumber=F84FBB415D9A4543362EDF7265F537E2CFF9F820 Validity Not Before: Oct 19 06:32:09 2025 GMT Not After : Oct 26 06:32:09 2025 GMT Subject: CN=68f485e9-1251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ad:43:43:43:b4:af:97:6f:b8:04:bf:9c:c3: 0d:2a:ca:f8:91:09:0d:35:4d:25:39:2a:62:b2:90: 81:ba:98:a5:8b:91:d8:ae:2c:6a:db:d7:5d:6b:d8: 89:f5:14:1e:29:06:f1:5d:a6:29:cc:c2:ff:f1:a3: d7:2e:4a:59:c4:f6:0b:4b:7c:94:53:4b:1f:50:e6: 3a:eb:a5:45:63:9e:19:05:77:33:ee:91:ef:38:f3: 71:c5:72:79:38:14:ed:df:29:bf:d5:9d:4c:38:94: cf:3b:98:49:39:5f:9f:ff:51:20:ab:6b:b9:26:66: f5:48:cc:91:e3:72:84:1a:e8:b7:03:5c:22:b7:4d: 83:03:ab:aa:6d:c2:ab:ac:f4:1f:3f:47:61:4c:e5: 16:5f:64:51:27:6a:5b:be:10:68:87:20:8f:64:58: d8:15:39:48:6f:79:ec:75:0a:cd:d4:ae:a5:ba:b7: 44:7d:e5:0b:54:32:25:ab:88:10:9b:8d:58:87:2d: 4a:54:da:56:13:8d:e2:5d:4b:2e:a9:47:e0:81:0a: a2:44:a2:7d:2b:f0:0f:a6:f5:13:29:41:ab:f4:51: 08:e6:f5:e0:e7:a3:d8:99:00:0d:0c:03:2c:1c:c4: 61:ee:3a:d1:99:0f:4c:cc:74:62:2d:fc:a1:06:f9: c4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A6:4F:2F:9E:6F:96:A3:4B:C0:CA:B4:E1:7D:81:92:B5:A6:28:3A X509v3 Authority Key Identifier: keyid:F8:4F:BB:41:5D:9A:45:43:36:2E:DF:72:65:F5:37:E2:CF:F9:F8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-E-7QV2aRUM2Lt9yZfU34s_5-CA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCDC6/80128EC87D4911EEB9C6DC26C4F9AE02/-E-7QV2aRUM2Lt9yZfU34s_5-CA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f5:b3:31:d0:ca:fb:27:ea:2f:bf:55:f5:50:1e:09:9f:03: 17:a9:68:c9:40:23:75:c0:af:62:1d:1f:ae:8d:da:af:69:b6: 6f:c3:f6:3b:b9:82:54:f8:bc:cd:af:48:20:56:06:95:66:0a: fc:4d:03:b3:b3:0c:45:58:ba:d8:6e:38:1c:3a:9f:5f:ba:7b: 81:7a:bb:72:0f:93:fb:32:3f:c0:9e:10:b0:65:81:a6:36:bb: 25:3d:c0:5e:44:d1:a4:ad:c5:0b:cd:18:93:d2:13:45:8a:7b: f6:dc:65:ce:89:65:2f:4d:21:c0:36:b3:3c:4a:ad:91:a6:f7: 68:a4:a9:b8:fa:b8:c6:a9:09:93:b6:a5:24:c4:93:5c:67:27: 80:aa:3e:69:c6:52:c7:02:eb:e3:60:46:b9:11:31:ba:48:63: 94:52:48:0d:da:4f:24:26:d6:2a:c5:f3:71:71:aa:65:02:9e: 19:9b:e6:60:fa:eb:54:80:f8:16:43:41:cf:2c:a6:6c:aa:2c: 60:5a:de:ce:b0:10:38:0d:9e:64:01:3c:3a:92:b3:66:8a:ce: e8:c1:3a:1b:ae:12:4f:93:3d:1d:98:b4:26:07:f9:11:a5:b6: a6:4b:a4:21:72:e3:9e:56:4c:a8:54:0a:21:f0:23:36:cc:8b: 30:82:87:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNEQzYxMTAvBgNVBAUTKEY4NEZCQjQxNUQ5QTQ1NDMzNjJFREY3MjY1RjUzN0Uy Q0ZGOUY4MjAwHhcNMjUxMDE5MDYzMjA5WhcNMjUxMDI2MDYzMjA5WjAYMRYwFAYD VQQDEw02OGY0ODVlOS0xMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAra1DQ0O0r5dvuAS/nMMNKsr4kQkNNU0lOSpispCBupili5HYrixq29dda9iJ 9RQeKQbxXaYpzML/8aPXLkpZxPYLS3yUU0sfUOY666VFY54ZBXcz7pHvOPNxxXJ5 OBTt3ym/1Z1MOJTPO5hJOV+f/1Egq2u5Jmb1SMyR43KEGui3A1wit02DA6uqbcKr rPQfP0dhTOUWX2RRJ2pbvhBohyCPZFjYFTlIb3nsdQrN1K6lurdEfeULVDIlq4gQ m41Yhy1KVNpWE43iXUsuqUfggQqiRKJ9K/APpvUTKUGr9FEI5vXg56PYmQANDAMs HMRh7jrRmQ9MzHRiLfyhBvnEOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNymTy+e b5ajS8DKtOF9gZK1pig6MB8GA1UdIwQYMBaAFPhPu0FdmkVDNi7fcmX1N+LP+fgg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0RDNi84MDEyOEVDODdE NDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJVTTJMdDl5WmZVMzRzXzUt Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1FLTdRVjJhUlVNMkx0OXlaZlUzNHNfNS1DQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0RDNi84MDEyOEVDODdENDkxMUVFQjlDNkRDMjZDNEY5QUUwMi8tRS03UVYyYVJV TTJMdDl5WmZVMzRzXzUtQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC9bMx0Mr7J+ovv1X1UB4JnwMXqWjJQCN1wK9iHR+ujdqvabZvw/Y7 uYJU+LzNr0ggVgaVZgr8TQOzswxFWLrYbjgcOp9funuBertyD5P7Mj/AnhCwZYGm NrslPcBeRNGkrcULzRiT0hNFinv23GXOiWUvTSHANrM8Sq2RpvdopKm4+rjGqQmT tqUkxJNcZyeAqj5pxlLHAuvjYEa5ETG6SGOUUkgN2k8kJtYqxfNxcaplAp4Zm+Zg +utUgPgWQ0HPLKZsqixgWt7OsBA4DZ5kATw6krNmis7owTobrhJPkz0dmLQmB/kR pbamS6QhcuOeVkyoVAoh8CM2zIswgoef -----END CERTIFICATE-----Generated at Mon Oct 20 15:09:28 2025 by rpki-client