$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: jDOVmlxXlcFvYrNvKcDg/4JNGLVNRoTPQDA1p1KRJW4= Subject key identifier: 90:20:84:05:7F:DE:3B:C9:A4:BD:BF:CA:14:F8:FF:4D:35:10:2B:40 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: B6 Signing time: Wed 05 Nov 2025 06:19:43 +0000 Manifest this update: Wed 05 Nov 2025 06:19:43 +0000 Manifest next update: Wed 12 Nov 2025 06:19:43 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: 7SzKQM4xf8qONafvGnQt5ZwwwPmj9reKhN1UOUZWaAE=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: dHwTXNF7nxQj+usP14EJUs8ePEKM62O1dTyVaEZxO3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Nov 5 06:19:43 2025 GMT Not After : Nov 12 06:19:43 2025 GMT Subject: CN=690aec7f-fe24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8f:16:46:a8:42:46:69:7a:a0:79:4e:70:d2: c8:bd:28:cb:1d:1a:fa:df:67:06:52:de:2e:63:aa: b9:70:0e:dc:65:de:18:fb:0a:f8:50:0f:a9:10:63: ee:0d:91:04:f9:c0:07:2f:05:19:11:87:4d:dc:9c: db:54:9a:dc:54:d1:8f:2a:de:ab:23:dc:12:75:ed: 53:e2:60:d2:8a:7d:a5:79:ef:27:6b:16:28:53:7f: 25:66:eb:2c:d5:ca:2b:3d:d1:d4:90:70:45:b5:e8: 66:1d:23:40:02:71:09:5c:9a:35:e7:33:0d:a9:ae: ac:8f:67:b6:d2:bc:20:af:ff:fa:8e:83:40:be:62: b1:e8:f6:e6:49:95:4e:9f:e9:b1:c7:17:a4:13:a7: 2e:da:9c:29:1d:64:ae:9b:c8:40:bd:ee:a5:73:96: 26:4a:af:da:e8:a0:b0:70:04:e0:dd:4d:15:cf:f0: de:22:8b:fd:c4:ad:d9:4a:c1:95:e5:f9:e8:66:8a: 21:96:14:07:b0:36:e7:78:a9:d6:eb:c7:b6:f4:40: b8:10:63:0b:c8:40:20:6c:41:29:9f:1f:fb:5c:3d: 02:84:9c:94:21:f8:31:a7:c8:38:dc:ca:89:e4:b5: dc:65:07:a7:ba:fe:58:b0:b5:46:5b:8d:17:de:65: 11:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:20:84:05:7F:DE:3B:C9:A4:BD:BF:CA:14:F8:FF:4D:35:10:2B:40 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:71:b3:37:a0:f8:2d:75:cc:17:88:cf:21:23:ae:1a:48:a2: 01:64:f8:d4:7a:b8:6a:68:a6:6d:7d:a0:2a:d2:d0:f1:be:7f: d4:7c:59:d1:08:ec:76:e2:aa:d9:5d:7a:b7:db:30:b9:f9:a4: da:e7:12:9d:66:79:8b:5b:9f:72:9e:f0:05:85:d3:be:87:07: 7d:55:a7:67:62:55:c6:52:50:38:a1:d2:ef:5a:60:a3:cb:6b: 4a:d3:53:28:1a:3a:16:86:03:d6:67:3f:62:34:93:4c:47:2e: 92:21:4a:3d:4f:97:b4:49:7d:cf:a9:83:3d:fd:2b:03:92:07: c5:e7:75:2c:62:98:ad:cf:60:9d:c6:d4:ba:47:5a:e0:66:9d: f8:ef:ee:45:3e:c0:04:92:16:c5:69:53:b9:7a:5e:52:0d:e9: 12:21:e0:77:19:2f:0b:16:8c:52:45:5c:8c:2b:28:2c:e4:d2: 6e:5d:75:ff:87:68:52:09:e0:ec:fc:f6:7f:cd:12:38:a7:ed: 50:e1:5f:5a:23:86:f9:b5:d0:99:14:35:df:ec:4e:57:f1:de: 03:44:92:f4:a4:92:36:9c:9d:f3:92:79:c9:c8:0f:5f:79:8e: 6b:09:69:b8:df:a5:6c:fb:b8:83:88:71:1d:47:9e:43:e6:ba: 8d:1a:69:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk0RTcxMTAvBgNVBAUTKDg5MUVEOEJBQUMyQzczQkQxM0FEQ0FBMUExNkFBRjAw RDIyNEE4NzcwHhcNMjUxMTA1MDYxOTQzWhcNMjUxMTEyMDYxOTQzWjAYMRYwFAYD VQQDEw02OTBhZWM3Zi1mZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Y8WRqhCRml6oHlOcNLIvSjLHRr632cGUt4uY6q5cA7cZd4Y+wr4UA+pEGPu DZEE+cAHLwUZEYdN3JzbVJrcVNGPKt6rI9wSde1T4mDSin2lee8naxYoU38lZuss 1corPdHUkHBFtehmHSNAAnEJXJo15zMNqa6sj2e20rwgr//6joNAvmKx6PbmSZVO n+mxxxekE6cu2pwpHWSum8hAve6lc5YmSq/a6KCwcATg3U0Vz/DeIov9xK3ZSsGV 5fnoZoohlhQHsDbneKnW68e29EC4EGMLyEAgbEEpnx/7XD0ChJyUIfgxp8g43MqJ 5LXcZQenuv5YsLVGW40X3mURKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAghAV/ 3jvJpL2/yhT4/001ECtAMB8GA1UdIwQYMBaAFIke2LqsLHO9E63KoaFqrwDSJKh3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTRFNy9GNENGRDFEQUFD NzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3MFRyY3Fob1dxdkFOSWtx SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTRFNy9GNENGRDFEQUFDNzMxMUVGODdGQzU1NENDNEY5QUUwMi9pUjdZdXF3c2M3 MFRyY3Fob1dxdkFOSWtxSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKcbM3oPgtdcwXiM8hI64aSKIBZPjUerhqaKZtfaAq0tDxvn/UfFnR COx24qrZXXq32zC5+aTa5xKdZnmLW59ynvAFhdO+hwd9VadnYlXGUlA4odLvWmCj y2tK01MoGjoWhgPWZz9iNJNMRy6SIUo9T5e0SX3PqYM9/SsDkgfF53UsYpitz2Cd xtS6R1rgZp347+5FPsAEkhbFaVO5el5SDekSIeB3GS8LFoxSRVyMKygs5NJuXXX/ h2hSCeDs/PZ/zRI4p+1Q4V9aI4b5tdCZFDXf7E5X8d4DRJL0pJI2nJ3zknnJyA9f eY5rCWm436Vs+7iDiHEdR55D5rqNGmmk -----END CERTIFICATE-----Generated at Wed Nov 5 11:48:18 2025 by rpki-client