$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: 3JacTQzwRCdE9jfRfSu4tB16BqxqOpuLMf5XMkLSyGE= Subject key identifier: DD:0F:2A:4B:8D:C2:83:A2:B4:3F:21:33:04:82:9E:C3:AD:D0:DF:9F Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CF0 Signing time: Tue 04 Nov 2025 18:11:29 +0000 Manifest this update: Tue 04 Nov 2025 18:11:29 +0000 Manifest next update: Tue 11 Nov 2025 18:11:28 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: uX16sSuMtBqq6jMQonNQgtjmDATQpqaSLcw6R8n/7iY=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: Lgb8GqRFfTjU3W3z9LRFwwnC1h3FLvp4weLwp44Pmyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3322 (0xcfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Nov 4 18:11:29 2025 GMT Not After : Nov 11 18:11:28 2025 GMT Subject: CN=690a41d1-4b7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:21:a6:73:aa:40:43:b7:2f:98:d9:5d:1b:2c: ed:62:dc:c7:84:9a:1f:1e:ea:5f:66:59:7d:20:e1: 4e:0c:b1:56:cd:69:e2:fe:57:25:d5:7f:71:6b:6c: ea:e4:ec:68:7b:70:2e:45:bd:ed:48:24:aa:b7:7e: 9d:0a:b7:a1:2d:de:ac:78:97:16:89:ef:3a:cc:a0: 35:8c:8e:ac:55:fb:b5:42:2b:1f:7f:30:16:45:af: 21:ce:22:26:0b:15:58:d2:3e:a8:ea:71:54:10:9c: 1c:d0:b2:d4:ee:d8:64:ef:24:24:85:de:ef:6a:4f: b4:7e:75:c8:d4:9a:00:57:ba:bd:be:9a:0b:2d:79: e8:ed:f6:89:eb:8f:30:b3:35:67:15:d8:02:8a:b0: d9:b8:d9:67:ab:d3:28:e0:6f:78:2e:e2:16:17:57: c5:5e:e2:11:01:cc:ac:73:55:1a:bf:50:6c:03:34: 2e:13:18:82:eb:98:b4:96:ad:65:f1:af:24:6b:64: a2:10:13:2b:61:f0:4f:4b:11:85:10:7b:f3:f6:59: 66:4b:b8:d7:f6:30:36:16:2f:9e:cc:bb:c3:c7:28: 0e:db:ac:01:60:f1:8a:15:8b:f5:54:69:26:42:16: cf:ac:59:8b:e3:56:95:e0:7d:96:b1:49:25:31:b8: b4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0F:2A:4B:8D:C2:83:A2:B4:3F:21:33:04:82:9E:C3:AD:D0:DF:9F X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:85:82:2e:56:e0:9a:6c:1d:c3:1e:a1:85:ac:62:95:70:20: 87:0c:63:b3:bd:2f:2f:1a:c2:16:ed:ae:81:c9:01:93:41:1d: 0a:5b:fe:de:4e:80:7e:ec:0f:0d:b1:35:5b:91:9b:53:dc:e0: ea:d0:58:48:21:96:eb:98:77:f9:66:d7:4e:10:4f:33:dd:a3: 43:fc:14:a8:48:d4:2e:04:e0:9f:e7:84:4a:7d:a9:10:17:a9: 0e:6e:3c:f6:d7:68:b1:67:27:02:e5:4c:11:14:cd:23:06:3d: 6e:70:a8:4b:c3:eb:b9:d1:a8:ee:2c:a9:2a:32:3e:14:c0:c6: 6f:bd:a9:45:48:d6:69:3f:e9:7d:c2:fa:d5:bc:62:3a:d1:fd: 35:c7:94:6e:00:48:b9:c2:03:0b:dc:82:9e:d2:83:26:f5:21: 54:9d:64:30:93:c3:92:20:e6:cb:9a:cb:e7:ba:56:3b:90:92: f8:23:f9:3e:43:54:49:e2:b7:c7:92:18:4e:3d:8a:55:d9:77: 3c:0c:b4:48:4e:38:b2:fc:0c:4c:a2:9b:1c:09:1d:10:ab:0f: 50:ee:ea:aa:81:5c:1f:e1:25:3d:7f:0a:a6:36:e6:9e:e8:92: 37:07:cc:f1:8d:12:b7:4a:c8:14:47:ec:7d:9b:4f:78:b6:ec: 33:12:4a:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUxMTA0MTgxMTI5WhcNMjUxMTExMTgxMTI4WjAYMRYwFAYD VQQDEw02OTBhNDFkMS00YjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSGmc6pAQ7cvmNldGyztYtzHhJofHupfZll9IOFODLFWzWni/lcl1X9xa2zq 5Oxoe3AuRb3tSCSqt36dCrehLd6seJcWie86zKA1jI6sVfu1QisffzAWRa8hziIm CxVY0j6o6nFUEJwc0LLU7thk7yQkhd7vak+0fnXI1JoAV7q9vpoLLXno7faJ648w szVnFdgCirDZuNlnq9Mo4G94LuIWF1fFXuIRAcysc1Uav1BsAzQuExiC65i0lq1l 8a8ka2SiEBMrYfBPSxGFEHvz9llmS7jX9jA2Fi+ezLvDxygO26wBYPGKFYv1VGkm QhbPrFmL41aV4H2WsUklMbi0AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0PKkuN woOitD8hMwSCnsOt0N+fMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3hYIuVuCabB3DHqGFrGKVcCCHDGOzvS8vGsIW7a6ByQGTQR0KW/7e ToB+7A8NsTVbkZtT3ODq0FhIIZbrmHf5ZtdOEE8z3aND/BSoSNQuBOCf54RKfakQ F6kObjz212ixZycC5UwRFM0jBj1ucKhLw+u50ajuLKkqMj4UwMZvvalFSNZpP+l9 wvrVvGI60f01x5RuAEi5wgML3IKe0oMm9SFUnWQwk8OSIObLmsvnulY7kJL4I/k+ Q1RJ4rfHkhhOPYpV2Xc8DLRITjiy/AxMopscCR0Qqw9Q7uqqgVwf4SU9fwqmNuae 6JI3B8zxjRK3SsgUR+x9m094tuwzEkqN -----END CERTIFICATE-----Generated at Wed Nov 5 12:23:34 2025 by rpki-client