$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft File: ep7epfyIL4Z-ujeIm807O7SsYjE.mft (raw, json) Hash identifier: LzPhdjQeT1K//SlrkAfHmY8Bo5ymrbokwvWp1KWMUmM= Subject key identifier: 64:23:BE:28:DA:66:F7:B4:BF:F0:0C:09:1C:0F:A6:C5:33:47:24:4A Authority key identifier: 7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 Certificate issuer: /CN=A91EBBAF/serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft Manifest number: 4D Signing time: Sun 19 Oct 2025 10:42:51 +0000 Manifest this update: Sun 19 Oct 2025 10:42:50 +0000 Manifest next update: Sun 26 Oct 2025 10:42:50 +0000 Files and hashes: 1: ep7epfyIL4Z-ujeIm807O7SsYjE.crl (hash: JUMR+f4H8VZnlMBlQR4nJPF2PKIhvghf10kK+G/GJN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Validity Not Before: Oct 19 10:42:50 2025 GMT Not After : Oct 26 10:42:50 2025 GMT Subject: CN=68f4c0aa-ed4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3a:9a:43:11:eb:8e:2a:cb:bd:1f:c6:87:63: 05:6b:f6:3e:93:f8:c0:4d:5b:ee:92:32:76:c6:06: 80:ac:b9:84:d9:f3:7c:dd:b0:8a:56:96:3a:5f:0c: 82:d7:be:b4:bb:6b:8f:fe:a5:af:90:f2:38:c0:60: 8b:12:de:fb:e7:58:e7:ee:4a:53:71:bc:d0:be:e9: f4:f9:77:24:bb:d5:0c:23:51:e0:54:53:f6:a2:3a: 64:2e:6a:fa:57:a0:53:bf:c1:04:31:fa:1b:e2:0f: 9e:46:d0:c8:50:bc:f9:c1:62:3d:dd:37:a3:78:a9: 66:ea:15:ca:7f:14:81:b6:b7:dc:54:98:e9:d6:0c: 9a:ab:7b:1f:33:0a:07:03:f8:bb:0d:1f:50:ae:c9: f6:4d:9b:b6:2f:0f:d9:28:eb:0c:5a:37:3d:33:fd: 17:e5:8b:40:d6:73:b9:3c:ce:32:e1:57:d8:84:d3: 61:66:21:84:32:d3:de:80:26:fc:8f:71:d7:5e:48: ce:34:4d:8b:f7:b3:9f:11:35:f6:47:78:85:31:d9: ae:53:84:63:ca:df:aa:eb:6d:58:ff:c1:04:f4:5a: aa:45:84:a3:49:8b:22:0d:d8:3b:af:68:dc:e0:66: 3f:bc:2a:82:5c:06:7a:19:7c:0c:80:b3:4e:fb:9f: 51:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:23:BE:28:DA:66:F7:B4:BF:F0:0C:09:1C:0F:A6:C5:33:47:24:4A X509v3 Authority Key Identifier: keyid:7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:5a:80:b5:2d:a7:6e:c7:ac:60:15:c4:d7:24:0b:2a:6a:32: 33:a0:d5:23:17:2a:7c:ba:22:53:c5:f8:41:f0:eb:a7:a7:d6: 84:81:3b:16:cd:48:8e:ca:82:72:5b:5a:d0:fd:aa:fa:d8:0b: af:87:63:99:9e:f3:b3:00:3f:70:1f:3e:e2:0c:c4:34:66:90: 41:dd:24:12:3f:9a:29:74:62:cf:9c:d3:79:a5:f9:e4:46:02: 30:ea:97:1a:fa:44:86:54:b9:e2:44:b7:29:3f:e0:40:ce:62: 11:e7:32:d7:56:ca:63:a4:9b:35:ac:ee:46:1e:47:8a:ba:56: d4:c5:96:3e:db:0a:81:a4:2d:ae:24:eb:28:04:ed:ec:e9:11: fa:49:3c:c6:4f:3d:56:00:d5:92:9f:9e:73:95:cf:93:42:55: 25:a3:8d:64:88:86:79:0c:dc:2b:6b:8c:ab:79:0b:96:82:9b: d8:ef:31:2d:99:c5:d8:ec:a1:8d:90:1c:95:b4:53:8c:2f:d0: 9e:e4:2d:24:d2:a6:4e:1e:ef:58:96:a1:79:84:92:66:5a:6a: 33:c5:68:2c:9c:b7:c6:7c:59:e8:19:12:66:e3:ae:aa:15:2c: 03:0d:4a:d7:7f:93:0e:ba:e3:b4:d5:dc:ab:2d:04:ad:b2:9e: 74:a3:91:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoN0E5RURFQTVGQzg4MkY4NjdFQkEzNzg4OUJDRDNCM0JC NEFDNjIzMTAeFw0yNTEwMTkxMDQyNTBaFw0yNTEwMjYxMDQyNTBaMBgxFjAUBgNV BAMTDTY4ZjRjMGFhLWVkNGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiOppDEeuOKsu9H8aHYwVr9j6T+MBNW+6SMnbGBoCsuYTZ83zdsIpWljpfDILX vrS7a4/+pa+Q8jjAYIsS3vvnWOfuSlNxvNC+6fT5dyS71QwjUeBUU/aiOmQuavpX oFO/wQQx+hviD55G0MhQvPnBYj3dN6N4qWbqFcp/FIG2t9xUmOnWDJqrex8zCgcD +LsNH1CuyfZNm7YvD9ko6wxaNz0z/Rfli0DWc7k8zjLhV9iE02FmIYQy096AJvyP cddeSM40TYv3s58RNfZHeIUx2a5ThGPK36rrbVj/wQT0WqpFhKNJiyIN2DuvaNzg Zj+8KoJcBnoZfAyAs077n1F5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZCO+KNpm 97S/8AwJHA+mxTNHJEowHwYDVR0jBBgwFoAUep7epfyIL4Z+ujeIm807O7SsYjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzE5MUE2Mzg2MzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRaLXVqZUltODA3TzdTc1lq RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXA3ZXBmeUlMNFotdWplSW04MDdPN1NzWWpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzE5MUE2Mzg2MzZERDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRa LXVqZUltODA3TzdTc1lqRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJJagLUtp27HrGAVxNckCypqMjOg1SMXKny6IlPF+EHw66en1oSBOxbN SI7KgnJbWtD9qvrYC6+HY5me87MAP3AfPuIMxDRmkEHdJBI/mil0Ys+c03ml+eRG AjDqlxr6RIZUueJEtyk/4EDOYhHnMtdWymOkmzWs7kYeR4q6VtTFlj7bCoGkLa4k 6ygE7ezpEfpJPMZPPVYA1ZKfnnOVz5NCVSWjjWSIhnkM3CtrjKt5C5aCm9jvMS2Z xdjsoY2QHJW0U4wv0J7kLSTSpk4e71iWoXmEkmZaajPFaCyct8Z8WegZEmbjrqoV LAMNStd/kw6647TV3KstBK2ynnSjkdI= -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:12 2025 by rpki-client