$ rpki-client -vvf rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft File: 7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft (raw, json) Hash identifier: H7Ttf82YPear/BKxOGjhuhx1+n44fvysFEYYCqzR6FA= Subject key identifier: EB:0E:34:31:54:72:31:C8:7E:3F:29:7D:EE:8F:A6:54:CF:C5:1B:D1 Authority key identifier: ED:17:D1:BE:3D:57:11:C6:C9:8C:8C:CC:59:AA:F7:37:E8:65:C3:84 Certificate issuer: /CN=A914C725/serialNumber=ED17D1BE3D5711C6C98C8CCC59AAF737E865C384 Certificate serial: 199D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft Manifest number: 1983 Signing time: Tue 04 Nov 2025 16:30:01 +0000 Manifest this update: Tue 04 Nov 2025 16:30:00 +0000 Manifest next update: Tue 11 Nov 2025 16:30:00 +0000 Files and hashes: 1: 7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl (hash: 72A+VCVR1Q18L7zRRy10Tb6PLW+QQnHmVWPVI++2mEg=) 2: B4DF66BA809F11E7B741FD2EC4F9AE02.roa (hash: NtbBfKBhWJufBJ+Zx0sdblhNzhOyn0/W+4n9rD0fO4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6557 (0x199d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C725, serialNumber=ED17D1BE3D5711C6C98C8CCC59AAF737E865C384 Validity Not Before: Nov 4 16:30:00 2025 GMT Not After : Nov 11 16:30:00 2025 GMT Subject: CN=690a2a08-8480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:db:a6:4f:44:6e:b9:59:8e:39:79:e1:c7: f1:5e:d1:93:61:97:6b:0d:5f:e6:18:38:e9:33:bf: dd:52:b7:a9:46:5e:77:c2:e4:7a:e1:19:4e:a6:e9: 39:e8:56:93:ac:b6:7d:72:75:48:f4:9c:17:66:3f: c1:8a:99:eb:d1:9f:1b:60:39:8c:16:dd:4a:65:cf: 2d:3d:03:ec:53:33:f9:d3:6c:39:c0:b1:15:38:17: 15:60:c1:45:67:0b:c9:ce:68:7e:5c:35:35:4f:55: 62:49:d1:2b:0b:05:11:49:cb:24:99:e3:e3:35:82: 63:1a:00:dd:5f:a1:10:dd:11:d0:12:fd:e2:d4:6d: 1c:1b:c3:d2:10:c1:ac:69:a8:bd:91:c3:0d:94:47: 81:51:58:37:53:d7:ae:05:4b:ac:1e:85:99:d9:1b: c9:36:90:8f:b6:ba:bb:e1:bd:c6:b2:8b:ae:71:ed: 93:ad:93:0b:bd:2d:8e:5d:ec:3b:50:55:50:f6:27: 34:83:9a:86:1f:1f:92:5b:99:b9:8d:14:8d:6b:c2: c8:53:d6:0f:36:cf:1a:e8:cc:21:4c:af:bc:36:1c: 60:4d:6b:22:43:2f:ca:b8:a1:fc:99:e8:67:60:4b: 5b:24:ee:36:2c:1f:56:75:dc:1b:37:1a:26:45:15: c6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0E:34:31:54:72:31:C8:7E:3F:29:7D:EE:8F:A6:54:CF:C5:1B:D1 X509v3 Authority Key Identifier: keyid:ED:17:D1:BE:3D:57:11:C6:C9:8C:8C:CC:59:AA:F7:37:E8:65:C3:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RfRvj1XEcbJjIzMWar3N-hlw4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C725/31844C36809F11E7BD6A6B2EC4F9AE02/7RfRvj1XEcbJjIzMWar3N-hlw4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:fc:07:64:f5:a5:10:2f:c2:9e:ee:c3:0d:1e:1d:f8:2b:6a: 9a:3f:f3:65:02:e8:00:ad:03:b7:42:34:89:ba:69:40:a9:6d: 4a:d9:c9:c0:ab:b7:9f:67:25:67:30:af:36:c1:ae:a8:99:8e: a1:c9:eb:55:1e:c7:c0:d7:25:4f:ce:69:ea:03:93:b2:16:4c: 21:81:a6:4b:84:58:0b:b9:f6:f0:2b:5b:19:bc:f3:ad:72:d1: c5:c3:ee:13:3c:d6:a3:70:ac:fc:4c:14:4d:36:05:48:89:34: 0b:01:fb:a2:ed:ba:d2:0a:90:b1:21:d0:a4:4d:ea:37:2d:50: 8a:d8:c0:8f:37:49:ba:da:f4:be:6f:51:6c:54:5c:be:80:16: 8d:f0:54:38:aa:2e:15:60:34:c7:47:63:a0:4f:fa:32:87:51: f0:ee:79:62:fa:1f:d7:ec:8e:39:7a:aa:66:45:ef:34:dd:61: 84:76:11:31:f7:ec:b6:b5:db:05:e7:25:bc:37:6e:82:8e:55: 0a:13:b8:f1:16:14:a5:31:45:f5:f6:b2:6e:6b:df:cf:23:c7: 69:f6:50:d5:15:fc:f7:5a:93:c4:c1:90:ec:62:59:a2:1c:68: 13:0c:97:59:f0:30:84:65:b6:e1:63:0a:d6:b3:c0:28:3e:be: 60:63:83:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM3MjUxMTAvBgNVBAUTKEVEMTdEMUJFM0Q1NzExQzZDOThDOENDQzU5QUFGNzM3 RTg2NUMzODQwHhcNMjUxMTA0MTYzMDAwWhcNMjUxMTExMTYzMDAwWjAYMRYwFAYD VQQDEw02OTBhMmEwOC04NDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxLbpk9EbrlZjjl54cfxXtGTYZdrDV/mGDjpM7/dUrepRl53wuR64RlOpuk5 6FaTrLZ9cnVI9JwXZj/Bipnr0Z8bYDmMFt1KZc8tPQPsUzP502w5wLEVOBcVYMFF ZwvJzmh+XDU1T1ViSdErCwURScskmePjNYJjGgDdX6EQ3RHQEv3i1G0cG8PSEMGs aai9kcMNlEeBUVg3U9euBUusHoWZ2RvJNpCPtrq74b3Gsouuce2TrZMLvS2OXew7 UFVQ9ic0g5qGHx+SW5m5jRSNa8LIU9YPNs8a6MwhTK+8NhxgTWsiQy/KuKH8mehn YEtbJO42LB9WddwbNxomRRXGOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsONDFU cjHIfj8pfe6PplTPxRvRMB8GA1UdIwQYMBaAFO0X0b49VxHGyYyMzFmq9zfoZcOE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzcyNS8zMTg0NEMzNjgw OUYxMUU3QkQ2QTZCMkVDNEY5QUUwMi83UmZSdmoxWEVjYkpqSXpNV2FyM04taGx3 NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSZlJ2ajFYRWNiSmpJek1XYXIzTi1obHc0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzcyNS8zMTg0NEMzNjgwOUYxMUU3QkQ2QTZCMkVDNEY5QUUwMi83UmZSdmoxWEVj YkpqSXpNV2FyM04taGx3NFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS/Adk9aUQL8Ke7sMNHh34K2qaP/NlAugArQO3QjSJumlAqW1K2cnA q7efZyVnMK82wa6omY6hyetVHsfA1yVPzmnqA5OyFkwhgaZLhFgLufbwK1sZvPOt ctHFw+4TPNajcKz8TBRNNgVIiTQLAfui7brSCpCxIdCkTeo3LVCK2MCPN0m62vS+ b1FsVFy+gBaN8FQ4qi4VYDTHR2OgT/oyh1Hw7nli+h/X7I45eqpmRe803WGEdhEx 9+y2tdsF5yW8N26CjlUKE7jxFhSlMUX19rJua9/PI8dp9lDVFfz3WpPEwZDsYlmi HGgTDJdZ8DCEZbbhYwrWs8AoPr5gY4Nt -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:22 2025 by rpki-client