$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft File: g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft (raw, json) Hash identifier: 6v7zxrbOOVY4ijclZeY0dCVhlq5sZwSxmbFVE4vAFTQ= Subject key identifier: 69:DB:1E:17:A5:D6:64:5C:D2:97:3A:C4:AD:9B:4B:2C:DE:55:AC:A2 Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 079B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft Manifest number: 0712 Signing time: Sun 02 Nov 2025 22:26:50 +0000 Manifest this update: Sun 02 Nov 2025 22:26:49 +0000 Manifest next update: Sun 09 Nov 2025 22:26:49 +0000 Files and hashes: 1: g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl (hash: HAiL93B6c5CsOIjOVi31g1AWLxMc+Z/2jwcc/mBf8QI=) 2: 756E0BBCEAE711EE88CD8641C4F9AE02.roa (hash: AIYT1vtMWjn+gqf3bfo7gJUDe3tZqbxGWI5bPkWziTI=) 3: CF2E103080E011F08E83DE46C4F9AE02.roa (hash: Y6JO5fQI73bFQr5WyCjc2Hk/eYd4ilGqwT2WOKBxnQ8=) 4: E700770280E011F0B1480C47C4F9AE02.roa (hash: QaG5/R6IEIVOIwkDTpG/SoihFaVnKZgGmAPTZkd0p/I=) 5: 993EAAD4522911EFA600C035C4F9AE02.roa (hash: FzKAZQfiNEIYTCeHngxWX8UUMPxm6y5RIZ18Vk8J8K4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7, serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: Nov 2 22:26:49 2025 GMT Not After : Nov 9 22:26:49 2025 GMT Subject: CN=6907daaa-9c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:53:16:c7:6e:7f:33:aa:24:d9:2b:40:eb:be: c1:2b:f3:3a:78:43:81:de:00:c5:f3:2d:97:aa:77: 84:da:02:22:c7:d8:f1:87:2d:dc:46:51:9b:21:bd: f9:e7:31:dd:81:65:b5:c7:bf:f1:ee:1a:f2:dd:48: 5e:20:e1:46:2c:60:0d:b1:84:f8:85:90:90:00:bb: c3:58:d5:d5:0c:78:9f:3b:22:cf:91:da:5c:40:07: b4:de:ed:ec:d6:ae:a7:f6:17:d2:f1:c2:2c:ce:0e: 90:89:aa:fe:0f:49:93:24:fc:f1:80:bd:98:00:a9: 8d:ab:e4:0b:82:ad:89:b7:96:fb:93:08:d5:6e:6c: b3:2b:47:80:1b:23:7f:b8:a9:27:cb:3f:2e:db:66: d6:39:d6:19:40:d8:77:57:1a:d7:22:7e:8c:fb:95: e3:42:9d:b6:81:93:d3:a3:9a:bc:34:f0:1d:a1:36: 20:25:ab:ec:6b:ec:41:4d:b5:96:55:7c:b2:89:7d: a6:1c:44:64:15:65:fd:07:38:20:7f:d1:76:0a:42: 76:d9:72:2b:5f:5c:c8:5a:c5:ef:61:ba:86:b8:73: cd:58:19:15:06:80:41:82:ec:23:0f:d5:0e:63:22: 2c:be:0e:2f:fc:f1:3f:23:a8:34:fc:a0:1f:14:7a: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DB:1E:17:A5:D6:64:5C:D2:97:3A:C4:AD:9B:4B:2C:DE:55:AC:A2 X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:97:8c:c7:84:0f:00:08:6e:86:c2:5d:1e:d6:67:f1:94:57: d6:cb:60:bd:58:46:69:12:6b:8b:3c:e6:88:b3:d2:44:ef:e7: 78:52:e5:76:30:3c:34:77:27:fc:84:5b:ff:66:da:15:77:a9: 09:d8:ac:90:80:a5:b6:08:0e:da:27:79:dd:a9:7f:13:ca:d5: 3a:ce:17:2e:ad:14:25:d8:6e:12:69:57:d3:31:3e:73:d9:4a: eb:83:ad:c8:7f:3d:39:96:e2:7d:50:63:f2:91:e3:e9:5d:9e: 82:ec:21:e9:e1:3d:72:8e:38:4c:f8:67:f8:18:bb:f9:b0:66: 61:aa:73:82:c9:6f:2c:a6:2e:45:c8:f9:44:58:93:f5:40:98: 9e:99:a2:b5:c5:98:d3:2a:83:ab:39:3e:a5:af:f0:83:3a:fb: 0b:34:2e:aa:70:57:2a:33:4b:0c:b3:e2:5f:c0:8a:1a:d1:67: fa:49:a0:f0:c4:04:2c:6f:23:e0:fa:b3:f3:13:04:3c:b6:e8: 23:cc:24:5c:25:aa:f4:fc:11:45:7e:d1:8b:34:45:e1:4f:c5: fd:93:aa:7f:32:a3:c7:29:ac:32:69:fb:63:ce:13:7e:7d:00: 00:87:9f:af:8c:e5:e7:27:2f:05:d1:ba:84:1c:b1:cf:a6:c8: 31:21:e1:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjUxMTAyMjIyNjQ5WhcNMjUxMTA5MjIyNjQ5WjAYMRYwFAYD VQQDEw02OTA3ZGFhYS05YzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlMWx25/M6ok2StA677BK/M6eEOB3gDF8y2XqneE2gIix9jxhy3cRlGbIb35 5zHdgWW1x7/x7hry3UheIOFGLGANsYT4hZCQALvDWNXVDHifOyLPkdpcQAe03u3s 1q6n9hfS8cIszg6Qiar+D0mTJPzxgL2YAKmNq+QLgq2Jt5b7kwjVbmyzK0eAGyN/ uKknyz8u22bWOdYZQNh3VxrXIn6M+5XjQp22gZPTo5q8NPAdoTYgJavsa+xBTbWW VXyyiX2mHERkFWX9Bzggf9F2CkJ22XIrX1zIWsXvYbqGuHPNWBkVBoBBguwjD9UO YyIsvg4v/PE/I6g0/KAfFHqQiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnbHhel 1mRc0pc6xK2bSyzeVayiMB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZCNy85NUVGN0RCQTk2N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFa MGpTMFJXMXZablhjZm1CaDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxl4zHhA8ACG6Gwl0e1mfxlFfWy2C9WEZpEmuLPOaIs9JE7+d4UuV2 MDw0dyf8hFv/ZtoVd6kJ2KyQgKW2CA7aJ3ndqX8TytU6zhcurRQl2G4SaVfTMT5z 2Urrg63Ifz05luJ9UGPykePpXZ6C7CHp4T1yjjhM+Gf4GLv5sGZhqnOCyW8spi5F yPlEWJP1QJiemaK1xZjTKoOrOT6lr/CDOvsLNC6qcFcqM0sMs+JfwIoa0Wf6SaDw xAQsbyPg+rPzEwQ8tugjzCRcJar0/BFFftGLNEXhT8X9k6p/MqPHKawyaftjzhN+ fQAAh5+vjOXnJy8F0bqEHLHPpsgxIeFO -----END CERTIFICATE-----Generated at Tue Nov 4 19:12:44 2025 by rpki-client