$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft File: f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json) Hash identifier: t5sqxRFiPLSnoTAudrL4ey4ZN4wuwhRsvnrhxiWIuAA= Subject key identifier: 88:EE:AD:7B:40:16:71:45:F0:A6:FF:F0:DC:C8:95:F4:3F:A5:B7:DC Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft Manifest number: 01ED Signing time: Wed 05 Nov 2025 02:41:39 +0000 Manifest this update: Wed 05 Nov 2025 02:41:38 +0000 Manifest next update: Wed 12 Nov 2025 02:41:38 +0000 Files and hashes: 1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: epT6RHgZBqKdXWbLloT6X7m7MqfgYBvga4hcHw2INpQ=) 2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: Ne5P4RHs3YFSrDYzxUegdYs2bv4xvTKvncGb7wbf4vY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: Nov 5 02:41:38 2025 GMT Not After : Nov 12 02:41:38 2025 GMT Subject: CN=690ab962-0545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b2:1a:3e:d9:63:d2:6a:81:fd:ae:a1:c2:bf: 33:61:e3:9a:d4:f4:27:17:c2:1a:63:ad:fa:7b:a1: 3d:f6:95:59:18:b2:6c:d1:18:35:54:b8:0a:4f:51: a5:20:e6:d8:a8:3b:bf:a9:8e:59:d5:7a:23:c9:72: c5:e9:25:e9:4e:7f:a6:bf:06:bd:ce:db:29:69:68: 9d:ea:3d:0d:6d:2f:2b:7a:59:04:e4:bf:6f:b2:33: 7e:be:24:20:e7:a2:de:f2:63:23:5d:8b:90:62:84: 00:93:fe:0d:c9:e1:d0:bc:53:37:e8:ef:fe:6e:37: d4:e4:f6:99:f2:72:5a:c3:77:65:8d:e5:23:cf:73: 8c:89:5e:42:39:23:28:c4:25:21:a4:13:75:7b:61: 7f:f2:02:4d:6e:17:00:aa:ee:78:77:21:0c:6a:92: 3b:58:02:58:b6:13:25:6f:34:dc:40:7c:bc:16:c3: 30:cb:4e:72:88:af:bf:6f:b0:fd:a8:05:ed:bf:45: bd:8d:da:09:bd:7b:e8:64:77:bc:98:c2:be:9a:5e: 6e:56:c1:10:f7:68:fa:1f:8c:2b:fa:12:06:9d:77: 6c:a6:f4:60:a8:68:78:15:80:dd:61:27:cd:aa:56: 8e:12:67:01:5f:69:ba:d8:98:1f:1b:9d:0a:66:c8: 6c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EE:AD:7B:40:16:71:45:F0:A6:FF:F0:DC:C8:95:F4:3F:A5:B7:DC X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:bc:c8:86:10:78:6d:a2:08:14:9a:3e:4e:58:a3:dc:2f:51: 58:e2:e8:d0:ba:19:23:94:6c:6d:df:65:3a:03:f6:6c:1c:27: 37:78:c6:8f:fd:d3:ad:d2:22:06:86:01:32:2b:f1:2a:0d:5e: 79:81:eb:52:09:31:18:7a:0e:3b:61:ac:62:55:00:1e:66:8a: 68:98:10:1b:bc:4c:53:42:25:db:3f:c0:54:44:d1:b2:16:23: 35:a3:41:ec:89:f6:7e:c9:01:fc:72:e2:0f:2d:ef:23:8a:0a: 05:00:08:fd:4d:b0:c4:6b:d3:68:4f:74:52:42:28:27:18:c7: 3d:5d:a3:30:11:4b:8c:5c:2d:d7:fd:31:ae:aa:69:1b:5d:c2: fd:a1:76:e4:d5:be:ab:06:f8:f4:e9:35:e3:33:f3:d8:2d:4e: bb:84:88:92:5d:1f:86:00:1d:71:fd:dd:64:ec:a8:82:06:3a: 39:11:14:5d:6c:eb:2f:81:28:1a:e3:9c:a7:e1:36:23:85:a1: b2:ba:bf:f3:84:33:e5:0e:48:07:7a:a3:8a:c5:ed:98:80:d8: 52:3b:5a:71:2f:38:44:c5:2c:98:57:02:5f:e7:04:58:ee:55: dc:71:ab:7d:ec:58:64:09:b2:cc:5c:c9:b1:5a:5a:a1:cf:a2: 4f:01:a3:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjUxMTA1MDI0MTM4WhcNMjUxMTEyMDI0MTM4WjAYMRYwFAYD VQQDEw02OTBhYjk2Mi0wNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLIaPtlj0mqB/a6hwr8zYeOa1PQnF8IaY636e6E99pVZGLJs0Rg1VLgKT1Gl IObYqDu/qY5Z1XojyXLF6SXpTn+mvwa9ztspaWid6j0NbS8relkE5L9vsjN+viQg 56Le8mMjXYuQYoQAk/4NyeHQvFM36O/+bjfU5PaZ8nJaw3dljeUjz3OMiV5COSMo xCUhpBN1e2F/8gJNbhcAqu54dyEMapI7WAJYthMlbzTcQHy8FsMwy05yiK+/b7D9 qAXtv0W9jdoJvXvoZHe8mMK+ml5uVsEQ92j6H4wr+hIGnXdspvRgqGh4FYDdYSfN qlaOEmcBX2m62JgfG50KZshspQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjurXtA FnFF8Kb/8NzIlfQ/pbfcMB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjgzRC9BM0Q1MkZCOEM4NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAz X09KTVRKcEdSV2c4T2VpaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6vMiGEHhtoggUmj5OWKPcL1FY4ujQuhkjlGxt32U6A/ZsHCc3eMaP /dOt0iIGhgEyK/EqDV55getSCTEYeg47YaxiVQAeZopomBAbvExTQiXbP8BURNGy FiM1o0HsifZ+yQH8cuIPLe8jigoFAAj9TbDEa9NoT3RSQignGMc9XaMwEUuMXC3X /TGuqmkbXcL9oXbk1b6rBvj06TXjM/PYLU67hIiSXR+GAB1x/d1k7KiCBjo5ERRd bOsvgSga45yn4TYjhaGyur/zhDPlDkgHeqOKxe2YgNhSO1pxLzhExSyYVwJf5wRY 7lXccat97FhkCbLMXMmxWlqhz6JPAaOT -----END CERTIFICATE-----Generated at Wed Nov 5 11:36:44 2025 by rpki-client