$ rpki-client -vvf rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft File: CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft (raw, json) Hash identifier: f0dhjz4vIUhDrju7Id7dewoQvw1KjcGYRqM1RQrn9Jk= Subject key identifier: 9E:D9:CE:46:5D:9C:4A:B7:BD:77:E0:E1:C8:CE:B0:68:A4:72:8C:B2 Authority key identifier: 08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 Certificate issuer: /CN=A9137627/serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft Manifest number: B2 Signing time: Mon 03 Nov 2025 06:05:22 +0000 Manifest this update: Mon 03 Nov 2025 06:05:21 +0000 Manifest next update: Mon 10 Nov 2025 06:05:21 +0000 Files and hashes: 1: CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl (hash: XUoO5tHz4KQj3h+phDQg1l4lUTqRwTYfv5oL27AkIeg=) 2: 4F148EC8A89211EFBE18B52EC4F9AE02.roa (hash: Ac/uc/BnLL5OC5L/oElWDyPEyaU4HTEnF9nDubVxykg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137627, serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Validity Not Before: Nov 3 06:05:21 2025 GMT Not After : Nov 10 06:05:21 2025 GMT Subject: CN=69084622-1dbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:14:f3:02:2b:ee:c4:cb:dc:82:ca:0e:09:7f: 99:a0:19:b2:0d:93:18:ba:16:25:4e:7b:62:43:06: ba:f6:1a:1d:c4:a5:6b:9a:41:1b:8e:02:eb:06:f2: 4f:e0:d3:27:aa:f0:41:24:67:2c:dc:9d:41:8a:15: b2:14:11:91:a3:ba:3e:bb:88:48:3b:31:2b:fc:d2: 94:94:ba:2e:4b:ce:2f:a8:4f:9d:12:9e:99:e6:77: b7:a7:83:c6:1b:a5:19:c2:41:f0:e5:93:df:7f:5e: 1a:86:a6:10:82:fd:66:35:57:b9:01:ef:56:d8:5c: 1b:b2:3f:fb:cd:39:8c:31:68:7c:87:99:33:d6:02: ec:60:c5:c8:4b:16:ce:4e:31:7c:77:86:66:a6:9f: aa:05:ab:98:6d:97:8d:e1:89:f2:9f:bd:ba:b8:90: b1:84:28:ab:57:62:c3:76:17:8e:0e:a2:f6:49:8c: 0c:aa:43:3d:e0:93:d9:f2:e8:67:6c:e3:7f:75:40: 77:6b:f1:95:b8:62:8c:68:41:b3:87:3d:93:39:d8: f7:b1:eb:84:58:81:20:3c:a7:bf:fc:f8:61:9d:60: 1b:39:1d:4d:8d:3f:f7:40:f2:a5:8b:77:52:d4:4b: ed:b5:12:e8:a3:f3:e8:7a:73:c8:a5:81:33:fc:d6: 74:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D9:CE:46:5D:9C:4A:B7:BD:77:E0:E1:C8:CE:B0:68:A4:72:8C:B2 X509v3 Authority Key Identifier: keyid:08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:fc:ee:3b:a2:78:73:0e:ae:fd:55:03:af:e8:06:fb:2b:e4: 26:e0:f5:68:b8:9a:0c:b4:d3:86:96:1c:88:e4:05:24:92:58: a9:f6:e7:67:dd:98:65:29:19:88:cf:ff:05:f1:28:32:f2:8a: d6:62:ba:44:05:30:91:43:7a:8a:2e:57:d9:d2:d2:b8:be:33: bb:06:40:7d:64:d2:32:35:ed:09:3c:2b:72:1f:dd:e6:9c:db: ab:56:33:65:ca:9b:e0:4d:06:47:cf:fc:72:6b:d8:76:19:7d: 68:f1:c9:5a:6d:7e:e7:cf:10:0c:30:77:22:88:ea:7c:54:98: b2:59:b3:9f:b0:2c:4a:45:2a:86:6f:23:f4:41:06:46:a3:ae: 90:48:75:b0:3d:33:40:6f:4a:76:d4:95:3a:c9:1c:af:ca:43: 05:e4:42:21:ea:53:a4:b9:9b:37:03:15:b2:9e:3c:c7:ea:5e: c5:80:c4:dd:5c:70:6e:19:2e:be:71:88:a1:a2:b7:f5:fa:12: b8:23:c7:9c:6c:36:df:aa:90:3b:6c:cf:68:2c:b0:1e:7f:4c: cc:49:08:d2:46:20:76:ff:68:ab:bb:b4:d0:aa:70:12:64:0c: d9:b2:82:ce:08:8f:0f:96:98:ef:1e:7a:9b:4d:b8:58:8a:e0: 38:13:38:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2MjcxMTAvBgNVBAUTKDA4MEVDMTRBMDAxMjVEOTE0QzdFNjI4NURFOUM1NjY4 OUM1ODcyQTQwHhcNMjUxMTAzMDYwNTIxWhcNMjUxMTEwMDYwNTIxWjAYMRYwFAYD VQQDEw02OTA4NDYyMi0xZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xTzAivuxMvcgsoOCX+ZoBmyDZMYuhYlTntiQwa69hodxKVrmkEbjgLrBvJP 4NMnqvBBJGcs3J1BihWyFBGRo7o+u4hIOzEr/NKUlLouS84vqE+dEp6Z5ne3p4PG G6UZwkHw5ZPff14ahqYQgv1mNVe5Ae9W2Fwbsj/7zTmMMWh8h5kz1gLsYMXISxbO TjF8d4Zmpp+qBauYbZeN4Ynyn726uJCxhCirV2LDdheODqL2SYwMqkM94JPZ8uhn bON/dUB3a/GVuGKMaEGzhz2TOdj3seuEWIEgPKe//PhhnWAbOR1NjT/3QPKli3dS 1EvttRLoo/PoenPIpYEz/NZ0HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7ZzkZd nEq3vXfg4cjOsGikcoyyMB8GA1UdIwQYMBaAFAgOwUoAEl2RTH5ihd6cVmicWHKk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzYyNy9FN0QyNTc4NkE4 OTExMUVGOTI2ODhCMkJDNEY5QUUwMi9DQTdCU2dBU1haRk1mbUtGM3B4V2FKeFlj cVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBN0JTZ0FTWFpGTWZtS0YzcHhXYUp4WWNxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzYyNy9FN0QyNTc4NkE4OTExMUVGOTI2ODhCMkJDNEY5QUUwMi9DQTdCU2dBU1ha Rk1mbUtGM3B4V2FKeFljcVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4/O47onhzDq79VQOv6Ab7K+Qm4PVouJoMtNOGlhyI5AUkklip9udn 3ZhlKRmIz/8F8Sgy8orWYrpEBTCRQ3qKLlfZ0tK4vjO7BkB9ZNIyNe0JPCtyH93m nNurVjNlypvgTQZHz/xya9h2GX1o8clabX7nzxAMMHciiOp8VJiyWbOfsCxKRSqG byP0QQZGo66QSHWwPTNAb0p21JU6yRyvykMF5EIh6lOkuZs3AxWynjzH6l7FgMTd XHBuGS6+cYihorf1+hK4I8ecbDbfqpA7bM9oLLAef0zMSQjSRiB2/2iru7TQqnAS ZAzZsoLOCI8PlpjvHnqbTbhYiuA4Eziu -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:30 2025 by rpki-client