$ rpki-client -vvf rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft File: 7UHN-Ie33i9cIBvogU8ejfPQIB8.mft (raw, json) Hash identifier: 3E0UVz4EXRvPOLaAb7wdnZqN3LZTgC97ZAagRDeiCsQ= Subject key identifier: 63:E5:E2:52:B3:18:C8:BE:33:61:1D:02:C5:78:75:83:A1:E4:09:8F Authority key identifier: ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F Certificate issuer: /CN=A916C832/serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft Manifest number: 65 Signing time: Wed 05 Nov 2025 07:13:15 +0000 Manifest this update: Wed 05 Nov 2025 07:13:15 +0000 Manifest next update: Wed 12 Nov 2025 07:13:15 +0000 Files and hashes: 1: 7UHN-Ie33i9cIBvogU8ejfPQIB8.crl (hash: kzkN2A/KWxxZeXuKiB6gf8z/r5Vy4RmGs7JfusDOh9Q=) 2: 9C40745A86F911F0AC1F5922C4F9AE02.roa (hash: iXo4kScDCGZMJR2A/670yFNX9nbH7Jj9Oj398RIkzRg=) 3: AA3FBE4A1E6111F093F53B75C4F9AE02.roa (hash: LSRr7TMpx9Qi1u09QfccXCZNggaDKCGxTg8r/GddSHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C832, serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Validity Not Before: Nov 5 07:13:15 2025 GMT Not After : Nov 12 07:13:15 2025 GMT Subject: CN=690af90b-07e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:51:01:47:a1:e5:d2:cd:5c:04:6a:c0:d6: c6:3c:94:a2:08:65:d7:91:da:2d:84:51:45:38:17: 9c:3c:7f:e1:f6:10:3c:ed:48:14:12:e5:33:e4:b8: d8:03:b3:c0:cb:9e:cc:5b:59:0a:95:78:fd:70:6a: 66:87:f6:b5:47:4a:3a:75:79:b3:f4:3e:8b:b5:82: 7e:9d:84:ca:06:8c:0a:b4:fb:4b:9c:70:82:b4:74: b5:43:1b:3e:a1:59:99:11:66:88:25:51:28:e5:c3: 5a:49:41:2d:4b:06:c9:6e:65:9a:99:4b:7b:2e:c7: f4:79:88:a0:1b:80:34:f7:9a:a9:54:52:98:1b:b3: 8d:a7:11:bd:c2:36:67:ab:1e:42:d2:62:9d:08:83: 91:65:99:ff:2c:3d:6d:1e:a4:43:87:b1:7b:75:16: 57:10:fd:6d:16:b3:55:33:a7:9b:4d:0a:b2:d8:ea: 8c:04:f8:15:7c:8b:c0:1f:b5:9a:6d:17:53:71:6b: 01:17:ed:5b:fc:ed:80:c7:d9:1c:8c:ae:27:67:c6: d6:34:eb:8c:86:93:98:c5:11:4b:e5:2b:f1:d8:5e: cf:89:fb:4f:85:3b:c7:b8:41:2e:60:f8:03:42:33: 93:ba:b1:ba:8d:79:73:03:32:75:0b:e4:cb:f8:57: b9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E5:E2:52:B3:18:C8:BE:33:61:1D:02:C5:78:75:83:A1:E4:09:8F X509v3 Authority Key Identifier: keyid:ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:6d:8b:38:bd:eb:74:db:e0:fc:61:a0:8d:1c:ce:fb:56:11: a6:af:d7:25:a5:53:06:0e:41:ce:00:5b:6b:3b:bb:83:5d:6f: 45:6b:77:a3:73:c5:6a:38:33:fc:3c:93:22:cf:dd:39:a3:44: 5d:00:d1:67:86:20:1c:4c:88:06:ba:ff:5e:d3:ec:21:8e:c4: bc:e1:9d:67:98:96:f9:81:4a:a3:9b:17:af:e1:d4:92:25:d7: 21:1c:6c:34:44:43:99:9c:7d:c7:37:3c:9a:a0:ec:55:a6:8a: 60:80:18:6b:ab:b2:a3:42:00:f9:57:98:37:4f:08:4b:29:32: db:f1:b8:43:55:8a:09:cc:be:11:6c:1f:e0:3a:9c:e7:93:a5: a1:d4:ce:83:ef:0f:94:c1:b6:1c:d4:ea:d8:30:c4:95:01:f7: 9a:49:26:44:43:54:4f:80:11:41:0c:37:63:5e:d9:11:e7:c3: ae:69:3c:98:40:c4:be:89:a2:38:df:a7:65:b6:f3:57:5e:fe: b7:98:89:ab:c1:1d:de:1c:a0:fa:8e:bd:d0:28:be:44:31:80: a6:08:43:3d:6b:73:1e:eb:1e:d5:db:14:da:74:36:d0:e1:b7: f6:fb:a0:dd:70:08:93:42:45:97:a3:94:70:80:40:fa:b1:01: ce:ed:d7:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzgzMjExMC8GA1UEBRMoRUQ0MUNERjg4N0I3REUyRjVDMjAxQkU4ODE0RjFFOERG M0QwMjAxRjAeFw0yNTExMDUwNzEzMTVaFw0yNTExMTIwNzEzMTVaMBgxFjAUBgNV BAMTDTY5MGFmOTBiLTA3ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzV1EBR6Hl0s1cBGrA1sY8lKIIZdeR2i2EUUU4F5w8f+H2EDztSBQS5TPkuNgD s8DLnsxbWQqVeP1wamaH9rVHSjp1ebP0Pou1gn6dhMoGjAq0+0uccIK0dLVDGz6h WZkRZoglUSjlw1pJQS1LBsluZZqZS3sux/R5iKAbgDT3mqlUUpgbs42nEb3CNmer HkLSYp0Ig5Flmf8sPW0epEOHsXt1FlcQ/W0Ws1Uzp5tNCrLY6owE+BV8i8AftZpt F1NxawEX7Vv87YDH2RyMridnxtY064yGk5jFEUvlK/HYXs+J+0+FO8e4QS5g+ANC M5O6sbqNeXMDMnUL5Mv4V7nDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY+XiUrMY yL4zYR0CxXh1g6HkCY8wHwYDVR0jBBgwFoAU7UHN+Ie33i9cIBvogU8ejfPQIB8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDODMyLzVCNjE4MDYwMUU2 MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5Y0lCdm9nVThlamZQUUlC OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1VITi1JZTMzaTljSUJ2b2dVOGVqZlBRSUI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD ODMyLzVCNjE4MDYwMUU2MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5 Y0lCdm9nVThlamZQUUlCOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ9tizi963Tb4PxhoI0czvtWEaav1yWlUwYOQc4AW2s7u4Ndb0Vrd6Nz xWo4M/w8kyLP3TmjRF0A0WeGIBxMiAa6/17T7CGOxLzhnWeYlvmBSqObF6/h1JIl 1yEcbDREQ5mcfcc3PJqg7FWmimCAGGursqNCAPlXmDdPCEspMtvxuENVignMvhFs H+A6nOeTpaHUzoPvD5TBthzU6tgwxJUB95pJJkRDVE+AEUEMN2Ne2RHnw65pPJhA xL6Jojjfp2W281de/reYiavBHd4coPqOvdAovkQxgKYIQz1rcx7rHtXbFNp0NtDh t/b7oN1wCJNCRZejlHCAQPqxAc7t10Y= -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:24 2025 by rpki-client