$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft File: EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft (raw, json) Hash identifier: 0/tolhbXwqfZyfVHURiLJWevumBhm5cJO0gN2tjSNyg= Subject key identifier: CA:18:CD:5D:1C:90:B0:B9:20:03:F2:84:51:DB:A6:19:61:72:F3:8B Authority key identifier: 12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 Certificate issuer: /CN=A91AB72F/serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft Manifest number: F6 Signing time: Wed 05 Nov 2025 05:23:48 +0000 Manifest this update: Wed 05 Nov 2025 05:23:48 +0000 Manifest next update: Wed 12 Nov 2025 05:23:48 +0000 Files and hashes: 1: EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl (hash: HFAwTWCKiSjcF/xV3H/1sGrCRxAoKMAxdkl14+T5oig=) 2: 79F48DAAED0711EFA7332931C4F9AE02.roa (hash: GLbMFy1JbyAVM7u4jQAEv8xQTj/rbFbdkkf2ZQWfsOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB72F, serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Validity Not Before: Nov 5 05:23:48 2025 GMT Not After : Nov 12 05:23:48 2025 GMT Subject: CN=690adf64-9d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:15:56:fe:51:61:24:97:97:80:60:27:e4:47: 65:a1:9d:2f:5f:ea:fa:1e:ac:b2:88:70:a8:6f:8e: 1a:45:91:e1:9e:34:65:90:6e:2f:3a:88:78:34:5c: b4:20:5b:42:49:80:76:af:e6:2e:12:5d:a2:5e:c9: 9e:e0:38:64:08:62:7b:ee:57:a6:06:ea:4d:28:50: be:6b:4e:1d:a2:f2:c4:64:01:a6:9a:26:16:54:10: 83:a3:d0:34:e8:5e:51:80:e6:9c:47:9e:68:25:9b: ef:44:2f:61:bc:84:f6:92:e3:8b:2d:71:e2:87:18: fd:84:5e:c5:67:75:ef:72:6c:00:2e:55:9d:06:da: a3:60:12:68:2d:95:85:5b:3b:77:fc:ae:39:21:69: f7:bd:1f:01:f0:e0:7d:4e:2d:6f:65:df:34:53:5f: 5e:62:bc:c9:3b:8e:09:6c:4f:e3:b7:7f:5e:41:b1: 5f:b4:54:5c:a9:01:80:de:dc:31:91:b7:f5:01:1b: cb:8e:bb:1f:0b:f1:9a:f5:d2:e7:10:93:ff:63:05: 54:b9:6c:36:ef:51:68:98:ba:95:19:af:24:ac:e2: 2f:14:3a:82:5d:fa:69:a7:ed:be:d7:02:86:4b:cc: 16:13:46:d2:da:0a:ae:1c:4b:fb:5d:85:ba:b1:4a: c7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:18:CD:5D:1C:90:B0:B9:20:03:F2:84:51:DB:A6:19:61:72:F3:8B X509v3 Authority Key Identifier: keyid:12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2b:b7:16:bb:82:c4:e0:67:82:95:cb:ba:5b:3a:08:dd:e1: 95:b9:fd:79:6d:18:9c:27:f7:16:d1:a6:15:d1:ea:1d:1c:17: 0a:a6:ef:be:5c:cc:ff:b6:73:00:59:82:3c:16:09:a9:85:92: b9:8e:6f:6e:81:a1:06:c0:37:88:36:63:f5:fb:f7:e6:ee:12: 40:bf:89:a6:b5:b1:e3:8a:9c:9e:72:e9:1a:5d:52:65:d7:62: fd:6c:f2:ad:20:3f:c4:7e:de:f0:ed:b1:80:e5:4e:f9:a5:11: b3:45:33:c8:41:d3:9c:9e:74:fd:c8:69:e6:e2:e6:62:cb:8c: 78:46:ef:ff:65:f4:73:66:99:cf:83:e0:76:0b:9e:60:aa:26: 0c:9b:bb:c4:ed:cd:d2:e6:25:63:b0:9c:b1:05:1f:5c:6d:e1: ff:48:de:15:18:0c:cd:68:29:f6:b7:93:3a:73:16:ae:cd:ae: c5:09:0a:0c:dc:85:5c:5a:8f:23:d9:44:18:0e:cf:ba:a0:9d: 9f:ba:14:6b:75:03:76:d1:0d:16:7f:78:d5:69:41:06:10:b2: 39:d4:0a:eb:be:10:0c:4d:89:bd:c2:ad:2f:39:64:71:c6:df: 65:3b:ee:57:16:03:85:57:df:a6:db:a2:f5:66:13:cb:71:52: dc:35:7d:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3MkYxMTAvBgNVBAUTKDEyNDQ3ODVENDBDNUVDNThERkM0QTMyODU0MEYxQjM5 M0RFQTIzNzUwHhcNMjUxMTA1MDUyMzQ4WhcNMjUxMTEyMDUyMzQ4WjAYMRYwFAYD VQQDEw02OTBhZGY2NC05ZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxVW/lFhJJeXgGAn5EdloZ0vX+r6HqyyiHCob44aRZHhnjRlkG4vOoh4NFy0 IFtCSYB2r+YuEl2iXsme4DhkCGJ77lemBupNKFC+a04dovLEZAGmmiYWVBCDo9A0 6F5RgOacR55oJZvvRC9hvIT2kuOLLXHihxj9hF7FZ3XvcmwALlWdBtqjYBJoLZWF Wzt3/K45IWn3vR8B8OB9Ti1vZd80U19eYrzJO44JbE/jt39eQbFftFRcqQGA3twx kbf1ARvLjrsfC/Ga9dLnEJP/YwVUuWw271FomLqVGa8krOIvFDqCXfppp+2+1wKG S8wWE0bS2gquHEv7XYW6sUrHhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoYzV0c kLC5IAPyhFHbphlhcvOLMB8GA1UdIwQYMBaAFBJEeF1AxexY38SjKFQPGzk96iN1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjcyRi8yRkI0OUIzRTQz RDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdGamZ4S01vVkE4Yk9UM3FJ M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VrUjRYVURGN0ZqZnhLTW9WQThiT1QzcUkzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjcyRi8yRkI0OUIzRTQzRDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdG amZ4S01vVkE4Yk9UM3FJM1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMK7cWu4LE4GeClcu6WzoI3eGVuf15bRicJ/cW0aYV0eodHBcKpu++ XMz/tnMAWYI8FgmphZK5jm9ugaEGwDeINmP1+/fm7hJAv4mmtbHjipyecukaXVJl 12L9bPKtID/Eft7w7bGA5U75pRGzRTPIQdOcnnT9yGnm4uZiy4x4Ru//ZfRzZpnP g+B2C55gqiYMm7vE7c3S5iVjsJyxBR9cbeH/SN4VGAzNaCn2t5M6cxauza7FCQoM 3IVcWo8j2UQYDs+6oJ2fuhRrdQN20Q0Wf3jVaUEGELI51ArrvhAMTYm9wq0vOWRx xt9lO+5XFgOFV9+m26L1ZhPLcVLcNX1W -----END CERTIFICATE-----Generated at Wed Nov 5 17:00:28 2025 by rpki-client