$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: 2w9IOsVQvb3CZtw221K+dm4W7oqP4nfpFAfidSZUbbI= Subject key identifier: FA:BB:14:0F:38:2A:8B:81:83:E9:31:03:7D:4E:1F:A9:97:DB:F0:8F Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B71 Signing time: Tue 04 Nov 2025 19:11:31 +0000 Manifest this update: Tue 04 Nov 2025 19:11:31 +0000 Manifest next update: Tue 11 Nov 2025 19:11:31 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: pR6+Q+sQeBNtZhEmml5v7fMoRGx6eeiIeFO3Vn+oL48=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2945 (0xb81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Nov 4 19:11:31 2025 GMT Not After : Nov 11 19:11:31 2025 GMT Subject: CN=690a4fe3-9b59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ee:cc:cc:f1:2d:d5:cd:4a:de:ca:0b:2d:f4: 7f:3e:d7:1d:62:58:29:c9:e9:0b:b7:2e:e9:e8:e6: 44:e4:04:47:ad:a4:bd:3a:50:2b:59:cc:53:9f:5b: af:1e:0a:47:9e:13:c8:6d:e2:3a:84:2c:39:fd:1a: bc:35:1e:51:ef:65:82:bc:ea:68:c7:9f:82:80:af: 4c:eb:1b:80:1b:95:4d:e2:ff:6a:ee:fd:d8:16:7e: 80:c6:48:a5:e4:3d:e2:e6:ee:55:ae:58:cd:1f:89: 9b:91:ca:9d:87:7a:01:0b:54:91:95:ba:7b:f1:d5: 16:71:4d:0f:76:b2:f7:c5:8f:20:73:d2:7b:2d:97: 55:d3:c7:91:2b:0a:5e:c5:e9:ab:4f:d8:45:b6:fa: f4:ea:ec:60:55:74:fb:2d:2c:98:51:8f:c0:de:d5: db:b0:82:96:26:35:7b:e4:d5:ba:fa:b8:cf:1c:d9: 95:87:c0:b7:78:52:22:63:0f:28:ac:db:6c:3e:3c: 46:3b:48:02:c9:a7:7d:5a:8f:70:6a:54:c9:9a:62: 2a:dd:a1:e3:c3:52:f1:9d:6e:b6:27:46:b7:2f:ff: ca:66:d0:04:05:de:ba:76:0a:d5:64:0e:46:3e:40: a7:fe:e1:6e:15:8c:f9:03:eb:51:65:9f:6c:1a:d3: 34:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BB:14:0F:38:2A:8B:81:83:E9:31:03:7D:4E:1F:A9:97:DB:F0:8F X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a2:19:9c:b8:7a:88:14:c1:73:09:56:cc:24:9f:61:5e:e9: c5:9e:11:fa:10:31:ea:1c:2e:10:40:d8:d2:9f:28:78:88:ed: c5:bf:d6:19:4e:a5:f6:8b:8b:7a:54:39:63:89:cd:14:5a:e2: bf:37:7f:a0:51:c1:26:36:0c:c6:d2:3e:e4:ce:39:20:ac:da: 71:f3:ac:8a:cc:e1:05:8f:4f:0a:a5:3a:be:b8:c4:d9:cc:ba: 8e:cd:aa:4e:a8:c0:23:6c:cb:ef:22:55:f0:3e:60:52:ea:84: 72:5c:ba:09:f6:18:2c:03:f0:a8:f6:55:87:d1:39:b6:6f:90: 42:10:b1:ce:9b:03:b8:23:6d:c8:8f:d1:d0:f3:88:da:57:14: 5d:51:e2:5e:af:dd:db:6e:60:d4:48:9f:47:ca:cb:a3:3c:68: 43:d5:9a:be:0c:72:df:cc:53:ee:26:e3:a6:70:77:49:ca:c8: 53:6b:9f:37:f2:a7:99:9f:89:2d:15:95:91:74:d9:e5:9a:d3: 86:5b:45:a9:65:f8:4d:c4:0d:ef:e7:8e:cf:78:cd:ec:b5:2a: 61:43:f2:57:e4:7e:94:42:31:1f:8f:36:d7:2e:3d:58:a0:01: 17:02:af:c3:90:51:48:02:72:91:a8:ff:7c:86:a7:d3:71:a1: 6d:aa:23:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUxMTA0MTkxMTMxWhcNMjUxMTExMTkxMTMxWjAYMRYwFAYD VQQDEw02OTBhNGZlMy05YjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze7MzPEt1c1K3soLLfR/PtcdYlgpyekLty7p6OZE5ARHraS9OlArWcxTn1uv HgpHnhPIbeI6hCw5/Rq8NR5R72WCvOpox5+CgK9M6xuAG5VN4v9q7v3YFn6Axkil 5D3i5u5VrljNH4mbkcqdh3oBC1SRlbp78dUWcU0PdrL3xY8gc9J7LZdV08eRKwpe xemrT9hFtvr06uxgVXT7LSyYUY/A3tXbsIKWJjV75NW6+rjPHNmVh8C3eFIiYw8o rNtsPjxGO0gCyad9Wo9walTJmmIq3aHjw1LxnW62J0a3L//KZtAEBd66dgrVZA5G PkCn/uFuFYz5A+tRZZ9sGtM0YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPq7FA84 KouBg+kxA31OH6mX2/CPMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfohmcuHqIFMFzCVbMJJ9hXunFnhH6EDHqHC4QQNjSnyh4iO3Fv9YZ TqX2i4t6VDljic0UWuK/N3+gUcEmNgzG0j7kzjkgrNpx86yKzOEFj08KpTq+uMTZ zLqOzapOqMAjbMvvIlXwPmBS6oRyXLoJ9hgsA/Co9lWH0Tm2b5BCELHOmwO4I23I j9HQ84jaVxRdUeJer93bbmDUSJ9HysujPGhD1Zq+DHLfzFPuJuOmcHdJyshTa583 8qeZn4ktFZWRdNnlmtOGW0WpZfhNxA3v547PeM3stSphQ/JX5H6UQjEfjzbXLj1Y oAEXAq/DkFFIAnKRqP98hqfTcaFtqiMD -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:07 2025 by rpki-client