$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: OegXihj1MD5VOkKDJdvyv6ZMbKdvRi+lx8sWt11Vi2w= Subject key identifier: 3F:46:C5:F8:1B:F7:7C:97:42:A6:13:D1:0B:01:A5:A3:A9:08:EE:8F Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: AD Signing time: Wed 05 Nov 2025 06:22:46 +0000 Manifest this update: Wed 05 Nov 2025 06:22:46 +0000 Manifest next update: Wed 12 Nov 2025 06:22:46 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: G5lllVpRIqBcDwX3UncT5lgzIp8rdNpXvR32sE8Yp/I=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Nov 5 06:22:46 2025 GMT Not After : Nov 12 06:22:46 2025 GMT Subject: CN=690aed36-4b4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:91:c8:a7:89:ef:90:81:4d:7e:4a:ce:1c:02: 47:74:ca:e7:11:72:06:25:9a:02:b2:7c:2b:14:c6: 1b:e7:01:af:25:50:cc:bd:42:e2:82:0c:36:51:2b: f9:37:d3:ec:82:33:66:b7:6c:76:d0:f3:f0:17:f8: f4:79:26:61:3e:97:05:a8:f9:26:d9:e0:d2:1e:be: 49:5c:4c:87:73:a2:e7:03:6c:5e:03:ce:ac:31:d2: c8:54:71:e0:a0:4b:47:73:b0:3a:2e:41:76:a0:b4: 3f:7a:0f:1e:4d:00:b8:96:d6:90:15:e0:90:f4:06: 70:8a:c1:84:81:eb:0a:f6:c1:5b:e9:00:f9:06:5b: d7:0f:81:65:22:61:74:21:28:b9:97:a2:d5:40:78: 54:a4:17:27:8e:4a:bc:33:76:63:8d:ec:82:cb:84: 95:c4:5c:3d:73:59:59:f1:37:83:95:7f:ee:8c:09: 1a:db:0e:ed:e5:48:f4:54:75:90:36:45:50:56:19: b0:76:37:19:dd:cf:63:65:9c:99:34:9b:fd:81:d1: e0:38:a2:71:25:36:35:bf:b6:e7:e6:a2:7a:b8:06: 49:7c:1c:22:87:42:36:42:d5:36:16:e9:3d:8f:27: 31:4f:f8:f2:d8:b1:c5:0d:05:79:c5:96:a8:69:d5: c4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:46:C5:F8:1B:F7:7C:97:42:A6:13:D1:0B:01:A5:A3:A9:08:EE:8F X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d5:3c:ff:f7:7e:c0:94:ba:81:6a:f2:21:47:6e:36:b6:87: 8b:4f:77:00:a6:da:54:42:6a:5c:74:72:cd:67:bf:bf:46:23: 0a:42:ac:8d:01:46:a4:41:2f:7d:8e:d5:16:fa:da:8f:9e:e3: 97:df:15:c1:b2:10:46:94:63:d7:e4:0d:90:96:86:17:a2:db: 84:5b:6d:8f:f1:d5:0d:53:d3:b6:d5:b0:a8:7f:f4:02:11:c1: 47:43:f1:8a:4c:4a:99:f9:72:0c:4f:d9:d8:5e:9d:02:33:f2: 0f:f7:9f:9a:61:7b:94:21:59:ad:ed:69:f8:24:77:a1:0d:e8: ba:82:f9:77:d2:92:a8:84:6d:31:70:d1:0d:c5:f7:a2:45:22: 7c:3e:33:3c:4e:81:e1:c3:98:fb:ba:f0:9e:b2:2e:2d:4b:3a: e5:64:c5:ee:79:fe:96:8f:31:c9:69:f0:ea:f1:eb:6f:95:27: 86:0b:da:24:a1:8a:92:0e:da:15:44:6c:41:e0:2e:45:cb:76: 25:47:1e:ae:53:f4:a9:fa:5b:c7:bf:d2:78:1a:c4:7e:b5:8f: d1:5a:9f:0d:c0:16:59:07:8e:d1:64:5e:1e:9c:45:5c:5b:97: e6:56:6f:fa:40:77:cc:f5:45:b6:8f:d2:b2:f9:24:47:2d:13: f7:d0:d9:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3Q0YxMTAvBgNVBAUTKEVDM0Q4MDdGNzkzQzlDRjVGQ0UzMzVFRTE1RTA5ODQ0 NDlCNDMwOTYwHhcNMjUxMTA1MDYyMjQ2WhcNMjUxMTEyMDYyMjQ2WjAYMRYwFAYD VQQDEw02OTBhZWQzNi00YjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JHIp4nvkIFNfkrOHAJHdMrnEXIGJZoCsnwrFMYb5wGvJVDMvULiggw2USv5 N9PsgjNmt2x20PPwF/j0eSZhPpcFqPkm2eDSHr5JXEyHc6LnA2xeA86sMdLIVHHg oEtHc7A6LkF2oLQ/eg8eTQC4ltaQFeCQ9AZwisGEgesK9sFb6QD5BlvXD4FlImF0 ISi5l6LVQHhUpBcnjkq8M3ZjjeyCy4SVxFw9c1lZ8TeDlX/ujAka2w7t5Uj0VHWQ NkVQVhmwdjcZ3c9jZZyZNJv9gdHgOKJxJTY1v7bn5qJ6uAZJfBwih0I2QtU2Fuk9 jycxT/jy2LHFDQV5xZaoadXEUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9Gxfgb 93yXQqYT0QsBpaOpCO6PMB8GA1UdIwQYMBaAFOw9gH95PJz1/OM17hXgmERJtDCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTdDRi9CNDE1NTQ1OEIy QzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5QWDg0elh1RmVDWVJFbTBN SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1KWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTdDRi9CNDE1NTQ1OEIyQzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5Q WDg0elh1RmVDWVJFbTBNSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf1Tz/937AlLqBavIhR242toeLT3cAptpUQmpcdHLNZ7+/RiMKQqyN AUakQS99jtUW+tqPnuOX3xXBshBGlGPX5A2QloYXotuEW22P8dUNU9O21bCof/QC EcFHQ/GKTEqZ+XIMT9nYXp0CM/IP95+aYXuUIVmt7Wn4JHehDei6gvl30pKohG0x cNENxfeiRSJ8PjM8ToHhw5j7uvCesi4tSzrlZMXuef6WjzHJafDq8etvlSeGC9ok oYqSDtoVRGxB4C5Fy3YlRx6uU/Sp+lvHv9J4GsR+tY/RWp8NwBZZB47RZF4enEVc W5fmVm/6QHfM9UW2j9Ky+SRHLRP30NnO -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:46 2025 by rpki-client