$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft File: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft (raw, json) Hash identifier: 3oazovK6OVrK8RUYXiCklclyIBMzFOWeeTnd+g62MZk= Subject key identifier: 79:4E:C2:33:AF:E2:26:12:14:6B:2E:DB:36:FF:05:51:46:93:B6:5B Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 0ADB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft Manifest number: 0AD5 Signing time: Tue 04 Nov 2025 19:32:14 +0000 Manifest this update: Tue 04 Nov 2025 19:32:14 +0000 Manifest next update: Tue 11 Nov 2025 19:32:14 +0000 Files and hashes: 1: 7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl (hash: I//eHxvaxxF+jP/TOjz+E42miZrvj0mtVZ8ZtZfd1tk=) 2: A7D265605BB411EAB5B9A73BC4F9AE02.roa (hash: wRiU0pz+/rk6H4beDLKQQM79S2Mgy7c+Kq9SVKFoW2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2779 (0xadb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3, serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Nov 4 19:32:14 2025 GMT Not After : Nov 11 19:32:14 2025 GMT Subject: CN=690a54be-b957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:2d:a3:4f:91:8b:e6:16:b5:fc:bc:cb:89: 30:ad:9d:a4:d8:cf:d1:7c:2a:d9:81:49:52:08:49: 1c:e4:68:06:22:98:da:86:d6:aa:2a:dc:c9:66:36: c3:67:06:c7:15:39:e6:7a:f0:d6:63:77:1f:f8:e1: e6:3c:fd:0f:fe:fe:ae:d8:89:09:8c:89:c5:5e:f7: a4:8d:62:a9:e9:f1:b6:ea:10:c4:5d:07:f1:58:21: 15:8a:f5:40:89:64:29:9b:a8:b0:0b:60:7b:57:73: a8:c7:9e:4b:ce:1e:f3:c2:37:6f:98:78:af:fc:3d: d9:41:02:e6:34:c7:11:8b:b2:ef:7a:73:a1:79:e3: eb:d1:a0:9b:67:a7:b7:d1:9c:1b:15:a5:45:9e:9a: 40:21:9d:1b:f2:87:da:58:95:5e:c3:89:b9:68:72: cb:82:f1:c6:c4:b8:3c:19:74:c9:55:4b:7c:96:31: 1f:91:89:7a:5c:c0:94:58:4c:b6:20:68:0c:43:80: 31:b9:f6:ae:f3:43:25:58:9f:b9:2f:04:88:46:ef: 4f:57:72:60:9b:2d:86:97:e0:a1:05:7f:63:a3:b6: 20:13:b7:ef:db:44:c0:8c:7f:04:58:07:4a:7e:ef: c0:d6:46:54:f4:93:ce:09:9e:a0:5f:74:c4:d3:54: c4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4E:C2:33:AF:E2:26:12:14:6B:2E:DB:36:FF:05:51:46:93:B6:5B X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:72:24:d2:fa:c0:81:17:10:fb:ce:43:71:d8:00:35:07:c6: c3:4e:78:ce:03:47:db:47:f9:50:d2:2c:7a:da:ec:c2:b0:a6: 51:da:5c:77:40:3f:07:01:77:cb:2b:9b:8b:54:35:bc:bb:4f: c4:a0:15:90:73:88:0d:92:9b:ca:9a:33:40:4d:94:ed:be:1b: 06:97:ae:9a:c0:c1:24:78:9f:a3:3b:d7:e1:26:01:d8:63:b1: 3d:77:1b:a0:41:2d:2a:62:c1:d0:f8:f8:51:6f:67:6e:ee:0d: 9b:b1:d7:e2:09:5a:c3:69:d9:ef:6c:6d:9d:e7:11:c6:1c:b5: 29:ed:71:41:66:d1:2a:94:db:e4:c9:b5:30:f5:b2:0a:61:f7: c0:3f:7d:30:7b:9a:22:31:a5:7a:b5:41:04:0e:bc:28:22:25: 9a:26:24:9b:9b:50:66:f0:be:69:f4:44:5b:41:b1:eb:3a:27: 1f:1e:50:fd:ef:d2:8b:b2:a2:c7:cb:c6:66:37:00:2e:c9:4c: 8f:08:83:82:ef:22:71:b3:d7:05:62:7a:47:4b:bf:9c:ec:bb: 27:b2:7b:46:dc:c5:09:14:f9:2d:65:33:1d:5a:1b:3c:38:55: 03:63:3d:9e:ad:dd:72:7e:f7:cc:9b:9e:cc:74:cb:c2:bc:a0: d0:ab:ac:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjUxMTA0MTkzMjE0WhcNMjUxMTExMTkzMjE0WjAYMRYwFAYD VQQDEw02OTBhNTRiZS1iOTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoIto0+Ri+YWtfy8y4kwrZ2k2M/RfCrZgUlSCEkc5GgGIpjahtaqKtzJZjbD ZwbHFTnmevDWY3cf+OHmPP0P/v6u2IkJjInFXvekjWKp6fG26hDEXQfxWCEVivVA iWQpm6iwC2B7V3Oox55Lzh7zwjdvmHiv/D3ZQQLmNMcRi7LvenOheePr0aCbZ6e3 0ZwbFaVFnppAIZ0b8ofaWJVew4m5aHLLgvHGxLg8GXTJVUt8ljEfkYl6XMCUWEy2 IGgMQ4Axufau80MlWJ+5LwSIRu9PV3Jgmy2Gl+ChBX9jo7YgE7fv20TAjH8EWAdK fu/A1kZU9JPOCZ6gX3TE01TEZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlOwjOv 4iYSFGsu2zb/BVFGk7ZbMB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDRFMy8xNDgzQkQzNjVCQjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8w eXhKQi1DODd6QTZITGtzNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3ciTS+sCBFxD7zkNx2AA1B8bDTnjOA0fbR/lQ0ix62uzCsKZR2lx3 QD8HAXfLK5uLVDW8u0/EoBWQc4gNkpvKmjNATZTtvhsGl66awMEkeJ+jO9fhJgHY Y7E9dxugQS0qYsHQ+PhRb2du7g2bsdfiCVrDadnvbG2d5xHGHLUp7XFBZtEqlNvk ybUw9bIKYffAP30we5oiMaV6tUEEDrwoIiWaJiSbm1Bm8L5p9ERbQbHrOicfHlD9 79KLsqLHy8ZmNwAuyUyPCIOC7yJxs9cFYnpHS7+c7LsnsntG3MUJFPktZTMdWhs8 OFUDYz2erd1yfvfMm57MdMvCvKDQq6wV -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:01 2025 by rpki-client