$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: OeZ6sQpD7pkiIepBYoUu1nOywkgQNUjUaYzUMrCt+3s= Subject key identifier: FE:C0:F7:7F:46:10:A7:E7:EB:C5:09:F3:5F:F6:59:8A:63:CE:F3:34 Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: A7 Signing time: Mon 03 Nov 2025 06:17:13 +0000 Manifest this update: Mon 03 Nov 2025 06:17:12 +0000 Manifest next update: Mon 10 Nov 2025 06:17:12 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: /KL/6L7vLGBXrgyBTGVUpw1wqU0mk8zHbH1squyssY4=) 2: E5FC085A843011F0971BDC44C4F9AE02.roa (hash: TmQjJA9MkbzXubDuYe9ot48CH91CXeYRqJHt5RQNZcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Nov 3 06:17:12 2025 GMT Not After : Nov 10 06:17:12 2025 GMT Subject: CN=690848e8-4990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:a4:d7:03:27:38:7d:20:d9:79:09:be:79: 5a:dc:33:e6:71:3c:af:5a:19:8a:ca:63:1f:69:34: 61:1a:4c:82:33:d1:dd:41:0e:bc:84:4d:79:3e:59: 99:5e:bd:0e:c8:a8:af:fa:8c:86:37:6c:95:43:f3: 3a:5b:04:52:7b:e6:99:c6:af:62:8d:32:ea:ca:50: c5:3b:02:29:cc:27:a3:42:1c:9e:52:15:f4:23:54: 4f:84:de:49:ba:4c:7e:48:cf:e5:fc:9e:01:94:fa: 46:a9:4f:6c:ce:e6:b0:4e:15:04:4a:46:98:9e:9c: 33:22:a5:fb:a5:f9:e3:b6:19:09:16:24:3b:d4:53: 55:01:a8:fd:d8:d3:a0:14:14:4e:e4:e2:33:3c:ed: 2a:63:4a:2f:59:6d:99:6a:f6:65:6c:f2:cf:e1:9c: 95:77:a7:84:17:dc:dd:eb:f2:24:b0:f5:33:79:7a: 96:34:80:e0:5f:82:40:62:13:8c:b7:14:af:7c:2b: 85:1c:37:2d:a9:74:c9:69:88:ed:a2:51:36:bc:e4: 87:d5:fe:b0:75:04:c6:e5:04:e0:92:6c:85:89:38: cd:c1:47:89:d0:96:34:63:f6:ee:11:61:1d:21:51: b2:fe:d1:61:ca:93:95:4a:6c:ce:6d:79:93:e7:be: 50:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C0:F7:7F:46:10:A7:E7:EB:C5:09:F3:5F:F6:59:8A:63:CE:F3:34 X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e4:fd:c4:33:f8:d9:71:05:57:9d:8b:d4:cc:75:d4:c2:e3: 66:a0:bb:1d:80:c9:b9:3b:eb:39:3d:83:39:9c:57:c8:90:0d: 0b:b2:62:62:02:2b:a5:17:4e:27:de:78:c5:ee:db:d0:aa:f1: 4e:67:63:90:27:79:a0:b1:2e:c5:f9:a8:ad:4d:d3:ea:7a:ee: 8d:65:7e:bc:ab:9c:f9:45:8e:5c:2d:7f:10:8e:31:43:a8:c6: 23:51:76:9e:1e:6f:fb:99:25:ab:8c:4a:10:06:3b:b1:33:16: a8:33:ed:74:0d:bf:02:4a:60:89:4f:db:5a:04:fc:c9:3c:50: 85:9f:f6:96:77:05:83:93:f5:a0:55:66:d9:42:13:3e:91:54: b9:b9:5e:51:07:82:91:13:e7:79:1c:1a:7e:3b:f8:1f:eb:17: 7c:a3:b7:e7:bf:d5:24:68:c8:8a:82:0f:b0:b0:f5:95:bc:62: 78:85:8e:23:4e:54:71:17:a5:b1:ea:92:5e:39:ea:cf:74:62: e9:46:f2:6e:23:30:2c:de:fd:41:4e:23:a7:e2:75:f6:cb:fb: 04:64:b6:ab:5e:f0:79:a4:03:67:95:7b:e8:02:c7:b8:98:ef: 38:2a:dc:df:6c:37:29:c4:3d:d3:20:32:51:c5:43:8d:24:0d: 7c:20:33:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDRCMDkyREYxMDQyODBGNDVCQzNGMjc5NkY0MDFDQzJC NEM2MTQ0RTkwHhcNMjUxMTAzMDYxNzEyWhcNMjUxMTEwMDYxNzEyWjAYMRYwFAYD VQQDEw02OTA4NDhlOC00OTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ+k1wMnOH0g2XkJvnla3DPmcTyvWhmKymMfaTRhGkyCM9HdQQ68hE15PlmZ Xr0OyKiv+oyGN2yVQ/M6WwRSe+aZxq9ijTLqylDFOwIpzCejQhyeUhX0I1RPhN5J ukx+SM/l/J4BlPpGqU9szuawThUESkaYnpwzIqX7pfnjthkJFiQ71FNVAaj92NOg FBRO5OIzPO0qY0ovWW2ZavZlbPLP4ZyVd6eEF9zd6/IksPUzeXqWNIDgX4JAYhOM txSvfCuFHDctqXTJaYjtolE2vOSH1f6wdQTG5QTgkmyFiTjNwUeJ0JY0Y/buEWEd IVGy/tFhypOVSmzObXmT575QZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7A939G EKfn68UJ81/2WYpjzvM0MB8GA1UdIwQYMBaAFEsJLfEEKA9FvD8nlvQBzCtMYUTp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8yQkM5MjQ1MEJF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0QwVzhQeWVXOUFITUsweGhS T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8yQkM5MjQ1MEJFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0Qw VzhQeWVXOUFITUsweGhST2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB05P3EM/jZcQVXnYvUzHXUwuNmoLsdgMm5O+s5PYM5nFfIkA0LsmJi AiulF04n3njF7tvQqvFOZ2OQJ3mgsS7F+aitTdPqeu6NZX68q5z5RY5cLX8QjjFD qMYjUXaeHm/7mSWrjEoQBjuxMxaoM+10Db8CSmCJT9taBPzJPFCFn/aWdwWDk/Wg VWbZQhM+kVS5uV5RB4KRE+d5HBp+O/gf6xd8o7fnv9UkaMiKgg+wsPWVvGJ4hY4j TlRxF6Wx6pJeOerPdGLpRvJuIzAs3v1BTiOn4nX2y/sEZLarXvB5pANnlXvoAse4 mO84KtzfbDcpxD3TIDJRxUONJA18IDPg -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:25 2025 by rpki-client