$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft File: 7AffwfGIh38OvP3gtIHMAiw0NrI.mft (raw, json) Hash identifier: mTwueNPO/+usWBLv+TGpzgsl8hozEjOQfBZ9zLksy/c= Subject key identifier: 1F:FF:0E:F7:A6:BC:C4:32:62:5A:4C:B6:6C:07:8E:81:0E:62:E2:0F Authority key identifier: EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 Certificate issuer: /CN=A91BEE1D/serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft Manifest number: 9E Signing time: Mon 03 Nov 2025 06:19:48 +0000 Manifest this update: Mon 03 Nov 2025 06:19:47 +0000 Manifest next update: Mon 10 Nov 2025 06:19:47 +0000 Files and hashes: 1: 7AffwfGIh38OvP3gtIHMAiw0NrI.crl (hash: fbnFmPSW+3kZ2HKUsq4abqveY1cNGJBaE6/IOAX5Q0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Validity Not Before: Nov 3 06:19:47 2025 GMT Not After : Nov 10 06:19:47 2025 GMT Subject: CN=69084983-a028 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c9:c1:a2:60:1f:b9:87:0c:6d:52:6e:d1:b2: 0d:4d:b1:28:63:1e:b4:ef:f1:52:12:99:97:85:1a: 02:42:a9:cd:d5:81:e2:be:53:48:4a:0f:39:3f:81: 9a:a9:f0:b9:3d:cf:ff:23:4b:22:9b:42:58:ac:33: 8c:7f:65:c0:02:97:ea:b6:4d:e5:ad:76:2b:f0:e0: 7e:c4:5a:fc:ce:47:61:c7:3a:94:64:f7:1c:7d:dd: f6:9e:ee:42:0c:6b:76:a0:d7:7d:4f:1d:c3:ee:8d: 44:3d:75:d8:de:2f:4e:9a:62:bb:e5:f4:5f:3e:7b: 68:6c:3b:8f:49:ac:8b:0c:ad:d3:94:76:3f:88:31: 72:d0:c4:c3:64:65:05:f3:40:77:4f:21:99:e5:ff: 0f:ae:a1:46:9f:cb:f5:11:a4:48:48:4e:23:10:94: 14:4b:00:c8:e7:7e:23:87:30:c3:40:6b:ce:a6:a2: 1d:db:5d:8f:bd:c2:7e:0c:99:e0:06:84:0e:53:fe: d5:00:2b:b2:99:1d:bb:ac:f4:ec:22:74:ac:7c:52: ac:7c:f9:03:c0:74:22:e9:22:67:e9:d0:fd:be:92: f1:8e:6d:3d:5b:5c:90:11:13:b7:11:2f:e1:68:f7: 44:c4:c6:61:90:01:68:44:b4:54:c0:1f:6c:70:c8: ff:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FF:0E:F7:A6:BC:C4:32:62:5A:4C:B6:6C:07:8E:81:0E:62:E2:0F X509v3 Authority Key Identifier: keyid:EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ef:b4:e0:cb:24:cd:ca:bc:b2:1a:08:15:40:16:16:c3:35: 32:cc:41:bb:4c:5d:79:68:21:8c:17:07:a8:8f:6e:20:af:9a: a3:d6:97:8f:db:cb:c9:ec:fc:8f:1d:76:b2:19:20:e9:7e:a9: 6f:6a:fd:76:40:9f:db:00:1f:88:77:10:fe:8f:99:79:7c:74: b8:c2:af:f1:e2:25:3e:ff:92:de:da:df:8f:34:c0:d6:95:28: 14:5b:63:a9:23:9f:70:46:bd:3d:81:82:7d:5c:93:29:0e:f0: 34:b2:1a:3c:16:1d:6c:72:0e:e1:a8:75:81:35:f4:f2:12:cc: 8f:c4:c4:e8:e9:85:92:52:d8:fa:f4:e7:a1:b6:36:3b:8e:7b: 7d:f5:fc:0d:b1:82:ec:43:2d:c6:09:74:6c:6c:4c:3d:0f:da: 9a:bc:ef:76:31:64:1d:48:3b:b2:f4:ba:f6:ca:69:79:1d:5d: d9:4d:5b:e7:d1:13:37:48:56:3e:f0:59:56:39:f1:4d:65:2d: e2:46:10:73:a8:04:92:ac:5a:d7:16:ac:e5:ec:47:14:88:42: 81:09:f0:4e:5e:50:fa:0b:bf:88:6a:0f:13:86:88:76:79:05: 64:5c:4e:ee:06:c0:42:c9:d2:2f:31:f2:af:c8:6d:86:c0:2f: ea:86:28:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKEVDMDdERkMxRjE4ODg3N0YwRUJDRkRFMEI0ODFDQzAy MkMzNDM2QjIwHhcNMjUxMTAzMDYxOTQ3WhcNMjUxMTEwMDYxOTQ3WjAYMRYwFAYD VQQDEw02OTA4NDk4My1hMDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcnBomAfuYcMbVJu0bINTbEoYx607/FSEpmXhRoCQqnN1YHivlNISg85P4Ga qfC5Pc//I0sim0JYrDOMf2XAApfqtk3lrXYr8OB+xFr8zkdhxzqUZPccfd32nu5C DGt2oNd9Tx3D7o1EPXXY3i9OmmK75fRfPntobDuPSayLDK3TlHY/iDFy0MTDZGUF 80B3TyGZ5f8PrqFGn8v1EaRISE4jEJQUSwDI534jhzDDQGvOpqId212PvcJ+DJng BoQOU/7VACuymR27rPTsInSsfFKsfPkDwHQi6SJn6dD9vpLxjm09W1yQERO3ES/h aPdExMZhkAFoRLRUwB9scMj/9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB//Dvem vMQyYlpMtmwHjoEOYuIPMB8GA1UdIwQYMBaAFOwH38HxiId/Drz94LSBzAIsNDay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85Mjc4MjIzNEM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi83QWZmd2ZHSWgzOE92UDNndElITUFpdzBO ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdBZmZ3ZkdJaDM4T3ZQM2d0SUhNQWl3ME5ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85Mjc4MjIzNEM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi83QWZmd2ZHSWgz OE92UDNndElITUFpdzBOckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq77TgyyTNyryyGggVQBYWwzUyzEG7TF15aCGMFweoj24gr5qj1peP 28vJ7PyPHXayGSDpfqlvav12QJ/bAB+IdxD+j5l5fHS4wq/x4iU+/5Le2t+PNMDW lSgUW2OpI59wRr09gYJ9XJMpDvA0sho8Fh1scg7hqHWBNfTyEsyPxMTo6YWSUtj6 9OehtjY7jnt99fwNsYLsQy3GCXRsbEw9D9qavO92MWQdSDuy9Lr2yml5HV3ZTVvn 0RM3SFY+8FlWOfFNZS3iRhBzqASSrFrXFqzl7EcUiEKBCfBOXlD6C7+Iag8Thoh2 eQVkXE7uBsBCydIvMfKvyG2GwC/qhih4 -----END CERTIFICATE-----Generated at Wed Nov 5 05:16:44 2025 by rpki-client