$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: sGBJROtS0QMkxPmQeDtSLnjmioolLRYAk7W7pbtDSEM= Subject key identifier: CD:87:D2:88:B7:3C:09:51:56:4F:3A:F8:33:F4:91:33:9D:74:F8:80 Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 3519 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 34F3 Signing time: Tue 04 Nov 2025 14:16:41 +0000 Manifest this update: Tue 04 Nov 2025 14:16:40 +0000 Manifest next update: Tue 11 Nov 2025 14:16:40 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: Jvw66JQdNv3ROEB3lO8xTgHAM7DOdW+lHl9H9sZ1wE8=) 2: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: Un+gRmwEe7RmL1YJ6V7sBXAGRc3bNfxPT16yGupUBnU=) 3: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: JRg1LZXcFPzNHPCZgdhpiNiCJWsLCkY/WCIHJGUF1Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13593 (0x3519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Nov 4 14:16:40 2025 GMT Not After : Nov 11 14:16:40 2025 GMT Subject: CN=690a0ac9-7059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:4d:a3:b5:f0:b9:0d:fa:d2:84:a3:86:39:3c: 07:cc:af:ba:58:27:e6:a8:52:26:69:94:db:3e:9a: dc:88:9a:e6:ab:55:e5:71:7f:ce:c8:88:08:38:c1: 03:17:1e:7e:9d:b7:85:e0:25:b7:44:40:4a:5f:68: f3:7b:76:5a:7c:31:98:d0:d6:8b:81:03:db:44:75: 52:97:4f:9d:33:3a:c8:3c:bd:b0:c6:55:78:8c:3f: f9:b0:00:e6:19:2f:c6:c1:51:25:f0:a4:9d:f3:77: 3d:00:c0:ba:e9:c4:31:85:b7:df:11:de:a5:a7:b2: 04:11:a1:f8:44:21:c1:73:f8:2d:9b:cc:5e:22:a9: 00:98:5c:0e:09:77:cd:ca:10:73:cf:00:dc:1f:c4: 4b:8b:ea:69:f7:b6:0f:98:85:12:7f:56:02:b8:fc: 6a:24:89:e8:95:e1:a2:6b:db:29:3c:50:8e:6c:f2: 94:a3:a7:51:c8:32:78:b7:c7:3a:67:74:b8:6f:c2: 44:16:a4:0d:ed:cc:d9:34:11:8d:96:1c:a9:f9:20: b0:f4:0a:ef:b0:d8:f3:53:66:f4:a7:e0:2c:d7:db: 13:99:0c:10:48:d2:f9:fd:01:fc:db:ca:84:df:97: 2a:84:ec:2c:86:d5:a4:da:c3:c9:cb:71:dc:87:26: 81:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:87:D2:88:B7:3C:09:51:56:4F:3A:F8:33:F4:91:33:9D:74:F8:80 X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:b5:a4:54:d4:f7:7b:fd:7d:6d:84:b8:94:88:9a:3a:52:1a: f4:61:23:87:31:ab:f2:64:c8:f8:22:88:28:d1:60:8c:35:85: c8:e7:3f:1b:6c:f0:c9:c6:ed:d2:89:c4:02:0f:31:87:4d:c9: 16:7f:ff:77:6b:62:ad:d6:cd:19:d6:06:55:29:bd:eb:59:ca: 79:82:eb:c6:85:42:b5:41:b2:2e:da:8f:e1:27:78:01:22:90: 55:0e:47:95:ca:b7:1d:73:00:8c:a6:d0:3a:b2:34:07:66:45: 02:ca:d2:ef:e6:eb:87:0f:6d:3f:6a:9d:b1:aa:fc:b1:c9:c5: 8f:eb:ae:08:bd:84:af:c8:3d:bb:4b:60:d9:30:8c:7a:b1:b8: 5e:9c:42:37:d7:57:c7:c8:50:dd:33:27:eb:45:82:48:4e:02: 29:7f:ad:03:11:c5:d2:83:29:0b:1e:04:a1:e0:f2:8f:a8:05: 49:e9:4e:73:18:73:27:72:b5:61:f1:46:5c:f1:89:9a:e9:2a: 0c:89:98:db:d5:d3:9d:f9:fa:97:e9:1d:1f:88:43:a3:47:0f: 6a:c6:c8:9e:41:5a:43:98:51:19:52:98:df:af:6d:c0:87:fb: 74:54:12:5d:ed:66:67:e1:a2:85:f6:1f:8c:87:ea:57:32:8d: f3:f2:a7:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjUxMTA0MTQxNjQwWhcNMjUxMTExMTQxNjQwWjAYMRYwFAYD VQQDEw02OTBhMGFjOS03MDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9k2jtfC5DfrShKOGOTwHzK+6WCfmqFImaZTbPprciJrmq1XlcX/OyIgIOMED Fx5+nbeF4CW3REBKX2jze3ZafDGY0NaLgQPbRHVSl0+dMzrIPL2wxlV4jD/5sADm GS/GwVEl8KSd83c9AMC66cQxhbffEd6lp7IEEaH4RCHBc/gtm8xeIqkAmFwOCXfN yhBzzwDcH8RLi+pp97YPmIUSf1YCuPxqJInoleGia9spPFCObPKUo6dRyDJ4t8c6 Z3S4b8JEFqQN7czZNBGNlhyp+SCw9ArvsNjzU2b0p+As19sTmQwQSNL5/QH828qE 35cqhOwshtWk2sPJy3HchyaBzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2H0oi3 PAlRVk86+DP0kTOddPiAMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2taRU1Pd7/X1thLiUiJo6Uhr0YSOHMavyZMj4Iogo0WCMNYXI5z8b bPDJxu3SicQCDzGHTckWf/93a2Kt1s0Z1gZVKb3rWcp5guvGhUK1QbIu2o/hJ3gB IpBVDkeVyrcdcwCMptA6sjQHZkUCytLv5uuHD20/ap2xqvyxycWP664IvYSvyD27 S2DZMIx6sbhenEI311fHyFDdMyfrRYJITgIpf60DEcXSgykLHgSh4PKPqAVJ6U5z GHMncrVh8UZc8Yma6SoMiZjb1dOd+fqX6R0fiEOjRw9qxsieQVpDmFEZUpjfr23A h/t0VBJd7WZn4aKF9h+Mh+pXMo3z8qdO -----END CERTIFICATE-----Generated at Wed Nov 5 17:07:30 2025 by rpki-client