$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft File: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft (raw, json) Hash identifier: wS5tPQhzP3++AG2BtyHdotTYFf4OVs5GgBMeg4JdCpY= Subject key identifier: D6:FC:62:C2:25:EB:21:86:3A:E7:0A:C6:33:62:0B:E2:FA:7F:1B:7A Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft Manifest number: 5C Signing time: Mon 03 Nov 2025 07:06:59 +0000 Manifest this update: Mon 03 Nov 2025 07:06:59 +0000 Manifest next update: Mon 10 Nov 2025 07:06:59 +0000 Files and hashes: 1: 7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl (hash: 0rjZWu1JMzTgq8c3Bf+J4fQ08RdHymTkgsIuaNUxtks=) 2: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (hash: 3eRh0WSm3ML8fWWz0uqzCk5In0Q1rchUgCmcr9wy07U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Nov 3 07:06:59 2025 GMT Not After : Nov 10 07:06:59 2025 GMT Subject: CN=69085493-b1c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c7:3c:bd:79:4b:8e:85:da:66:47:66:f6:6e: bc:5e:dd:84:ac:4c:cb:ec:88:2b:86:98:52:f4:eb: 90:a5:7f:e1:f7:eb:10:85:28:f9:1e:47:78:8b:07: 17:9c:cf:39:df:69:47:91:18:1a:52:d2:53:94:29: 4e:26:9b:4c:28:76:eb:f9:d1:8f:c9:b4:10:59:cd: 12:11:33:2d:31:9f:d7:a2:10:92:d4:0e:4a:0d:2c: 2a:96:82:18:f0:63:88:1d:f2:ce:dd:c0:4c:9e:fd: 15:9e:d0:cd:a7:64:54:b0:3c:6c:3d:78:c4:1a:0a: f5:ed:0e:ec:9e:e3:42:75:8f:c9:11:05:89:7c:fa: 0a:14:70:ed:e6:22:ba:11:b4:07:bb:72:f8:4f:83: 41:bf:76:03:c6:06:3b:31:65:ab:c3:8e:ef:ab:8d: c2:49:d7:e5:7c:b1:f3:0a:97:3b:62:1d:04:32:39: b5:2d:b7:75:0e:a3:87:74:2f:d1:3a:98:e1:6a:a5: 15:60:b0:f3:33:b9:34:96:27:58:a7:3e:0a:ed:fa: fc:15:85:b0:cf:d7:57:ce:62:45:78:eb:dd:a0:a1: 9a:b7:9d:c0:a3:18:3d:2d:6b:60:c9:de:5c:8f:71: 56:11:b1:7e:67:83:60:c8:c5:b8:2f:aa:13:3c:1f: 71:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FC:62:C2:25:EB:21:86:3A:E7:0A:C6:33:62:0B:E2:FA:7F:1B:7A X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:b5:45:45:ec:76:d0:b0:c7:59:c4:1e:fe:70:5c:a5:3a:9a: ac:11:5b:95:ca:23:cd:7b:05:25:37:50:4e:c9:97:8c:74:07: 7f:c5:1d:24:e4:7a:2d:b8:8a:50:6c:66:bb:91:4c:75:38:63: 8d:4e:06:c8:ae:01:02:fe:6a:d1:ee:79:43:7e:b6:c9:68:f7: 6a:3c:8c:8c:cc:11:dc:f0:34:8c:76:96:07:3d:dc:49:78:8c: 6e:c8:59:f5:bd:3b:c4:25:5a:d8:ff:f4:01:ef:79:69:30:30: cd:9a:e5:68:f5:a8:68:b0:05:03:b1:8f:e1:8c:64:34:c7:d5: 9a:3d:44:49:0e:73:fe:60:c5:c5:dc:28:c7:80:6f:41:fe:87: 5f:d8:db:31:b7:b8:b6:e3:b2:38:02:b1:71:a7:b1:54:5e:08: 5b:97:d1:58:3e:46:fb:e8:1b:96:90:60:0f:67:f5:bb:e5:2e: a0:34:b5:57:a5:95:4e:78:a6:19:fc:ac:9e:be:a9:17:d2:9e: 12:3a:9a:a5:37:5c:ff:3c:24:10:3a:9e:c0:80:5a:ca:ae:9a: 26:be:5e:33:07:b0:48:59:56:f9:94:22:e2:bd:6a:6f:13:cf: ef:d7:3a:dd:f3:0b:80:0a:61:6c:b8:5a:e2:39:ea:d2:0a:b3: 13:80:fa:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QUEyNDExMC8GA1UEBRMoRUQ3MkM3MTZCQzBBRjU5RDQzMDYzMjNGQkFBNDc0QkQ0 QjRERTcxQzAeFw0yNTExMDMwNzA2NTlaFw0yNTExMTAwNzA2NTlaMBgxFjAUBgNV BAMTDTY5MDg1NDkzLWIxYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChxzy9eUuOhdpmR2b2brxe3YSsTMvsiCuGmFL065Clf+H36xCFKPkeR3iLBxec zznfaUeRGBpS0lOUKU4mm0woduv50Y/JtBBZzRIRMy0xn9eiEJLUDkoNLCqWghjw Y4gd8s7dwEye/RWe0M2nZFSwPGw9eMQaCvXtDuye40J1j8kRBYl8+goUcO3mIroR tAe7cvhPg0G/dgPGBjsxZavDju+rjcJJ1+V8sfMKlztiHQQyObUtt3UOo4d0L9E6 mOFqpRVgsPMzuTSWJ1inPgrt+vwVhbDP11fOYkV4692goZq3ncCjGD0ta2DJ3lyP cVYRsX5ng2DIxbgvqhM8H3EjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1vxiwiXr IYY65wrGM2IL4vp/G3owHwYDVR0jBBgwFoAU7XLHFrwK9Z1DBjI/uqR0vUtN5xww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBQTI0LzE3MzlDMzVBMkJD OTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1hMSEZyd0s5WjFEQmpJX3VxUjB2VXRONXh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB QTI0LzE3MzlDMzVBMkJDOTExRjBCOEJFM0YzQkM0RjlBRTAyLzdYTEhGcndLOVox REJqSV91cVIwdlV0TjV4dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIm1RUXsdtCwx1nEHv5wXKU6mqwRW5XKI817BSU3UE7Jl4x0B3/FHSTk ei24ilBsZruRTHU4Y41OBsiuAQL+atHueUN+tslo92o8jIzMEdzwNIx2lgc93El4 jG7IWfW9O8QlWtj/9AHveWkwMM2a5Wj1qGiwBQOxj+GMZDTH1Zo9REkOc/5gxcXc KMeAb0H+h1/Y2zG3uLbjsjgCsXGnsVReCFuX0Vg+RvvoG5aQYA9n9bvlLqA0tVel lU54phn8rJ6+qRfSnhI6mqU3XP88JBA6nsCAWsqumia+XjMHsEhZVvmUIuK9am8T z+/XOt3zC4AKYWy4WuI56tIKsxOA+mI= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:09 2025 by rpki-client