$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft File: 7cH-eLyHvyWy4419cs2cozAibOk.mft (raw, json) Hash identifier: wU30Ha8J5Qb38E0ipapUS0IY1dEOdcAFEMrKw8kmSEU= Subject key identifier: 70:10:02:F2:38:D8:A1:71:D4:AC:C1:49:E0:27:46:4D:3C:67:35:0F Authority key identifier: ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 Certificate issuer: /CN=A91B5AAA/serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft Manifest number: 405F Signing time: Sun 02 Nov 2025 14:49:29 +0000 Manifest this update: Sun 02 Nov 2025 14:49:28 +0000 Manifest next update: Sun 09 Nov 2025 14:49:28 +0000 Files and hashes: 1: 7cH-eLyHvyWy4419cs2cozAibOk.crl (hash: 7Ju2SzQmjSQdtXRTT5QREL9wnezLmQ+SmpmDdljqcqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AAA, serialNumber=EDC1FE78BC87BF25B2E38D7D72CD9CA330226CE9 Validity Not Before: Nov 2 14:49:28 2025 GMT Not After : Nov 9 14:49:28 2025 GMT Subject: CN=69076f78-e92c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3d:e5:32:3f:d9:de:a8:dd:87:cb:05:5b:2f: 8f:78:61:a1:a0:11:8f:5d:dd:06:b5:da:1b:85:e4: 51:08:67:85:79:97:04:d1:f0:2c:89:ba:35:7b:0f: 09:7d:85:e3:a1:87:4a:93:0e:f8:76:43:11:1a:32: 68:67:74:e7:b7:b9:ff:8c:c4:04:ce:62:6e:c9:bc: dd:3e:e8:60:24:71:1f:f5:6a:85:4d:d9:59:20:d4: 7a:44:17:cd:b6:15:da:e1:ea:0b:0a:7c:89:15:eb: 2b:cb:b6:3f:70:f0:95:69:87:ca:3c:36:e0:c2:cc: 05:4a:90:fc:59:9a:85:7d:c6:9f:fc:c0:32:84:0b: f1:9a:af:2c:b7:43:53:34:e2:88:62:64:d5:0e:7e: de:1d:35:d1:7a:8d:5f:51:e1:7e:c5:be:7d:bd:b6: a6:3d:e3:59:a3:b8:59:19:79:35:a2:f7:9c:54:40: 4f:dd:8e:23:69:7a:fe:4b:f8:34:43:77:4b:75:c8: 0f:25:8e:13:90:7b:47:8f:e4:ff:e4:9d:1b:81:ba: ed:a2:d6:72:48:c0:3d:42:1f:7c:55:00:33:1d:7d: a6:b9:5c:61:69:cb:33:d5:29:23:1b:85:c0:34:0c: 02:96:b9:27:2b:ac:b1:65:3c:af:9c:ce:fb:d5:33: 4e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:10:02:F2:38:D8:A1:71:D4:AC:C1:49:E0:27:46:4D:3C:67:35:0F X509v3 Authority Key Identifier: keyid:ED:C1:FE:78:BC:87:BF:25:B2:E3:8D:7D:72:CD:9C:A3:30:22:6C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cH-eLyHvyWy4419cs2cozAibOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AAA/8F5892941D9511E2A98A9A7D08B02CD2/7cH-eLyHvyWy4419cs2cozAibOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:5d:ae:6a:b9:ac:de:a7:04:ac:6e:a6:68:b5:c5:0d:41:5e: c3:8b:01:5e:80:f3:ed:0b:64:e6:80:9a:82:9d:be:42:b2:ab: 83:e6:67:9a:96:8f:5a:86:66:a1:5f:4f:aa:66:22:cd:04:e7: 08:27:72:d1:2a:3f:1f:e2:d1:41:e2:a4:68:14:2f:49:d4:de: dc:99:e6:16:7c:33:b0:e8:11:66:1d:b1:62:48:d2:4a:3e:a2: 7f:46:df:b9:0c:3b:5b:87:aa:a0:15:db:a8:01:ec:15:ec:b5: fd:76:f3:82:ee:75:0a:fc:43:9b:c2:d9:3a:e4:a8:f6:2d:2e: dd:34:88:e0:2a:cd:87:d4:5b:88:61:0e:48:03:da:1c:bb:1f: 53:26:d5:cb:35:5c:81:f4:22:c8:84:b0:08:1f:1b:21:db:d7: 47:a1:55:75:cb:7f:b5:b4:60:54:f5:02:ba:78:c3:7d:ff:4c: 77:1a:ad:74:49:c9:8b:56:ca:2c:f8:10:20:2a:4e:02:7c:70: 92:c0:ca:ef:59:75:38:69:58:bb:65:27:b7:4f:ff:d6:80:d2: 53:c2:e8:e6:3d:3b:22:a1:7c:42:e9:84:96:be:6b:9f:fd:7a: c0:a3:7e:4f:22:b6:1c:4d:61:e6:fd:44:8b:3a:9a:ef:77:f8: a0:eb:90:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBQUExMTAvBgNVBAUTKEVEQzFGRTc4QkM4N0JGMjVCMkUzOEQ3RDcyQ0Q5Q0Ez MzAyMjZDRTkwHhcNMjUxMTAyMTQ0OTI4WhcNMjUxMTA5MTQ0OTI4WjAYMRYwFAYD VQQDEw02OTA3NmY3OC1lOTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5j3lMj/Z3qjdh8sFWy+PeGGhoBGPXd0GtdobheRRCGeFeZcE0fAsibo1ew8J fYXjoYdKkw74dkMRGjJoZ3Tnt7n/jMQEzmJuybzdPuhgJHEf9WqFTdlZINR6RBfN thXa4eoLCnyJFesry7Y/cPCVaYfKPDbgwswFSpD8WZqFfcaf/MAyhAvxmq8st0NT NOKIYmTVDn7eHTXReo1fUeF+xb59vbamPeNZo7hZGXk1ovecVEBP3Y4jaXr+S/g0 Q3dLdcgPJY4TkHtHj+T/5J0bgbrtotZySMA9Qh98VQAzHX2muVxhacsz1SkjG4XA NAwClrknK6yxZTyvnM771TNOHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAQAvI4 2KFx1KzBSeAnRk08ZzUPMB8GA1UdIwQYMBaAFO3B/ni8h78lsuONfXLNnKMwImzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFBQS84RjU4OTI5NDFE OTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5V3k0NDE5Y3MyY296QWli T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjSC1lTHlIdnlXeTQ0MTljczJjb3pBaWJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFBQS84RjU4OTI5NDFEOTUxMUUyQTk4QTlBN0QwOEIwMkNEMi83Y0gtZUx5SHZ5 V3k0NDE5Y3MyY296QWliT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWXa5quazepwSsbqZotcUNQV7DiwFegPPtC2TmgJqCnb5CsquD5mea lo9ahmahX0+qZiLNBOcIJ3LRKj8f4tFB4qRoFC9J1N7cmeYWfDOw6BFmHbFiSNJK PqJ/Rt+5DDtbh6qgFduoAewV7LX9dvOC7nUK/EObwtk65Kj2LS7dNIjgKs2H1FuI YQ5IA9ocux9TJtXLNVyB9CLIhLAIHxsh29dHoVV1y3+1tGBU9QK6eMN9/0x3Gq10 ScmLVsos+BAgKk4CfHCSwMrvWXU4aVi7ZSe3T//WgNJTwujmPTsioXxC6YSWvmuf /XrAo35PIrYcTWHm/USLOprvd/ig65CR -----END CERTIFICATE-----Generated at Tue Nov 4 12:40:08 2025 by rpki-client