$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft File: 7JW4qElym6bvhCxjcarUrH2PIfc.mft (raw, json) Hash identifier: 63zp0CkbLOCXUeBpxwvcrw6MX+bWCXIldbjuVCbtO7w= Subject key identifier: B0:12:50:4E:DD:D4:D2:8E:A6:EC:67:82:D1:81:53:8A:6D:99:0B:E0 Authority key identifier: EC:95:B8:A8:49:72:9B:A6:EF:84:2C:63:71:AA:D4:AC:7D:8F:21:F7 Certificate issuer: /CN=A91A759F/serialNumber=EC95B8A849729BA6EF842C6371AAD4AC7D8F21F7 Certificate serial: 3356 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft Manifest number: 3CA6 Signing time: Tue 04 Nov 2025 15:23:58 +0000 Manifest this update: Tue 04 Nov 2025 15:23:57 +0000 Manifest next update: Tue 11 Nov 2025 15:23:57 +0000 Files and hashes: 1: 7JW4qElym6bvhCxjcarUrH2PIfc.crl (hash: iTEgxVUPb04Xs0Q+FVqV9wAIDQ/7H9fh4MLzx43FFVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13142 (0x3356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F, serialNumber=EC95B8A849729BA6EF842C6371AAD4AC7D8F21F7 Validity Not Before: Nov 4 15:23:57 2025 GMT Not After : Nov 11 15:23:57 2025 GMT Subject: CN=690a1a8d-7ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:2c:9e:d4:07:0c:a8:6c:bb:0d:4c:95:5c: b4:12:d3:ea:29:e5:6b:11:5d:46:65:ed:2d:21:4f: 46:00:b3:c3:e7:3b:59:df:83:bb:2a:be:76:65:83: c6:99:ee:26:50:a6:12:85:38:36:e4:15:27:ea:a5: 6c:a8:ca:6f:cd:94:71:6b:f4:24:2d:b6:d5:85:5c: 1b:2e:13:de:c7:22:c7:08:1c:13:10:6f:ea:36:26: f3:fb:67:b2:53:38:2c:7d:30:68:14:62:29:e3:87: f3:3b:2e:8c:d4:36:83:36:06:df:ff:e8:8d:eb:9c: 7a:af:82:34:2e:54:60:e2:18:1d:29:ef:4d:09:01: 09:4e:f0:08:87:2f:f9:ae:70:d8:d3:42:f0:b4:db: 45:0a:af:85:1a:18:ed:bd:a9:fe:1c:81:97:10:ce: 93:c4:f6:b5:b0:71:79:50:df:a7:b5:0e:62:86:a3: 0d:72:97:28:16:d1:e3:a4:11:a2:d0:23:5d:ea:17: 07:4f:f0:75:da:e5:fd:80:72:29:2a:e1:c1:cb:c4: 85:88:04:8e:bb:2d:3d:92:77:6a:8f:91:38:46:61: c6:46:39:cf:cd:18:26:64:57:15:57:4d:9d:66:bf: 90:2a:34:63:9f:b3:3d:59:6d:11:be:f6:7c:69:47: 5b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:12:50:4E:DD:D4:D2:8E:A6:EC:67:82:D1:81:53:8A:6D:99:0B:E0 X509v3 Authority Key Identifier: keyid:EC:95:B8:A8:49:72:9B:A6:EF:84:2C:63:71:AA:D4:AC:7D:8F:21:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:12:53:1d:de:07:94:5e:2e:db:73:64:7a:6e:28:e8:f1:27: d2:57:f9:e4:d2:16:07:c5:5e:3a:a1:55:24:89:85:8b:ba:00: 68:97:2b:60:e5:4d:e4:4d:80:10:98:d1:00:67:21:fa:38:24: 77:c2:cd:62:f2:77:15:27:ef:67:4c:4d:e9:9d:f7:75:90:80: 42:cf:ee:d4:cf:1c:42:20:1f:78:02:9f:de:cd:16:a5:be:a0: e7:68:cc:ca:53:d9:20:7c:7a:6b:aa:8d:11:69:ac:c0:f8:0b: a3:ca:b8:f9:3d:0e:26:d8:cf:e9:22:53:d4:ef:80:57:96:df: 0d:39:93:92:43:2e:83:8c:64:e6:05:07:28:cd:73:d0:9a:32: 84:ba:cf:55:12:32:06:89:d6:ec:b9:bf:40:1a:35:cb:fd:97: da:18:dd:54:00:b2:46:a4:19:9f:92:95:44:20:32:fb:b4:a8: f8:6a:d8:79:9f:c4:71:ec:2e:bb:81:25:e5:fc:ac:9b:f2:f4: 0f:eb:75:6f:13:da:51:5a:72:e2:6c:e2:1e:0c:3d:71:e6:a1: 0c:42:42:a5:45:9d:77:b0:37:1f:71:6d:54:3b:e2:00:9e:e9: 3b:52:1c:d8:d1:f8:ba:11:b7:1e:48:47:ee:10:07:59:63:65: a3:7c:24:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKEVDOTVCOEE4NDk3MjlCQTZFRjg0MkM2MzcxQUFENEFD N0Q4RjIxRjcwHhcNMjUxMTA0MTUyMzU3WhcNMjUxMTExMTUyMzU3WjAYMRYwFAYD VQQDEw02OTBhMWE4ZC03Y2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+wsntQHDKhsuw1MlVy0EtPqKeVrEV1GZe0tIU9GALPD5ztZ34O7Kr52ZYPG me4mUKYShTg25BUn6qVsqMpvzZRxa/QkLbbVhVwbLhPexyLHCBwTEG/qNibz+2ey UzgsfTBoFGIp44fzOy6M1DaDNgbf/+iN65x6r4I0LlRg4hgdKe9NCQEJTvAIhy/5 rnDY00LwtNtFCq+FGhjtvan+HIGXEM6TxPa1sHF5UN+ntQ5ihqMNcpcoFtHjpBGi 0CNd6hcHT/B12uX9gHIpKuHBy8SFiASOuy09kndqj5E4RmHGRjnPzRgmZFcVV02d Zr+QKjRjn7M9WW0RvvZ8aUdbtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLASUE7d 1NKOpuxngtGBU4ptmQvgMB8GA1UdIwQYMBaAFOyVuKhJcpum74QsY3Gq1Kx9jyH3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC83Slc0cUVseW02YnZoQ3hqY2FyVXJIMlBJ ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdKVzRxRWx5bTZidmhDeGpjYXJVckgyUElmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC83Slc0cUVseW02 YnZoQ3hqY2FyVXJIMlBJZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKElMd3geUXi7bc2R6bijo8SfSV/nk0hYHxV46oVUkiYWLugBolytg 5U3kTYAQmNEAZyH6OCR3ws1i8ncVJ+9nTE3pnfd1kIBCz+7UzxxCIB94Ap/ezRal vqDnaMzKU9kgfHprqo0RaazA+Aujyrj5PQ4m2M/pIlPU74BXlt8NOZOSQy6DjGTm BQcozXPQmjKEus9VEjIGidbsub9AGjXL/ZfaGN1UALJGpBmfkpVEIDL7tKj4ath5 n8Rx7C67gSXl/Kyb8vQP63VvE9pRWnLibOIeDD1x5qEMQkKlRZ13sDcfcW1UO+IA nuk7UhzY0fi6EbceSEfuEAdZY2WjfCTx -----END CERTIFICATE-----Generated at Wed Nov 5 16:45:21 2025 by rpki-client