$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: V2fmJBUq3RkX2OMnwdhJEPFM9C7bpC3JaV0X3/6aqvw= Subject key identifier: 6E:9C:DE:49:5A:61:AA:A0:3A:4D:48:51:F8:E8:AA:B7:E6:32:93:1E Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 06A2 Signing time: Tue 04 Nov 2025 14:51:49 +0000 Manifest this update: Tue 04 Nov 2025 14:51:48 +0000 Manifest next update: Tue 11 Nov 2025 14:51:48 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: f39THfEGnbGtQWd5+F4d+jdCUPMrYMMuuhNAtHNHOyE=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: oxmHGKf/WSOT7WzpjdLiOn3oXWfHw/6ypS3n/mBbPHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Nov 4 14:51:48 2025 GMT Not After : Nov 11 14:51:48 2025 GMT Subject: CN=690a1305-2584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:90:fd:33:1c:9c:29:c2:6e:ae:82:de:24: d4:d2:81:38:b5:f0:3d:44:4a:a5:20:71:55:aa:5a: 9f:31:9e:ba:6e:c6:7b:1a:90:62:77:73:81:00:8b: 2e:8a:c4:76:dd:81:90:89:e7:42:87:8a:dc:27:77: 78:ec:3d:65:dc:2e:4d:11:fc:af:99:bb:f8:ce:21: f4:f5:83:01:f2:7a:4c:3b:ba:92:7a:a0:b5:5c:b8: c7:17:e3:30:b0:8c:6a:2f:8f:08:8d:99:ab:61:b3: fd:06:51:0a:a8:b1:6a:3b:d7:fc:29:3a:05:75:5e: 05:d6:8d:11:5d:c2:27:4e:29:62:c7:73:ab:13:3a: 58:1d:cb:0b:b5:e7:d7:4d:cd:6c:8c:af:b5:67:7b: ba:1c:42:4b:c9:48:9d:2e:b0:97:e8:b3:1a:36:c4: 78:cc:6d:67:8a:8b:f7:8a:05:15:a4:65:c3:54:f9: 79:62:f6:2e:23:ef:65:75:ce:17:f9:ef:74:a6:05: ca:aa:bb:21:45:d5:dc:6b:f4:7c:14:56:17:07:48: d7:f7:4e:53:0d:71:64:86:8c:78:1f:c1:7e:f7:f6: a2:49:36:a0:b4:5e:c6:49:d5:0d:ba:81:75:01:5a: 47:31:37:5c:b3:3d:08:ec:19:ea:ac:55:62:f5:4c: 57:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9C:DE:49:5A:61:AA:A0:3A:4D:48:51:F8:E8:AA:B7:E6:32:93:1E X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d6:e4:6a:af:cd:6f:55:54:36:3e:1e:c0:47:5e:95:56:65: f7:ec:a3:99:43:e0:e2:c2:67:63:c6:83:2b:c0:7c:89:80:4b: 4f:69:b7:d2:56:79:34:74:be:d5:45:a9:ad:50:10:1e:c7:06: be:b4:42:1d:d7:f8:5a:9e:1b:fd:73:4e:01:74:22:b3:bb:16: 2f:2f:78:87:ae:c9:20:9a:1d:67:dc:68:de:92:5b:51:a8:87: f4:16:1a:75:f9:55:9b:90:dd:79:0f:96:4e:9e:c3:ee:69:fd: 0b:9f:9d:ed:2c:d6:9b:14:4f:f1:58:b9:22:97:1e:8a:a6:d0: c9:b0:a4:e5:c7:b2:6e:2a:b0:63:9e:71:6d:86:58:08:c9:5a: b6:a0:df:dc:d7:eb:4c:fa:4a:b3:9e:35:30:e3:df:9b:ab:ea: 0c:0e:14:63:59:c2:8e:bc:ed:64:50:0d:8e:2b:7e:6a:21:0c: 93:dd:4c:39:7b:8f:48:b1:53:af:57:6f:71:45:2b:16:20:6d: 45:26:b8:77:05:fb:56:2a:0f:14:02:4c:fa:25:85:d3:f6:6e: 24:6b:61:6b:6b:9d:75:b6:f8:4c:46:6e:a0:a8:04:e0:3c:48: 05:2d:16:36:83:79:b7:d1:db:a0:cb:0e:f5:2e:8e:a4:ba:46: fe:a0:2d:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUxMTA0MTQ1MTQ4WhcNMjUxMTExMTQ1MTQ4WjAYMRYwFAYD VQQDEw02OTBhMTMwNS0yNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mKQ/TMcnCnCbq6C3iTU0oE4tfA9REqlIHFVqlqfMZ66bsZ7GpBid3OBAIsu isR23YGQiedCh4rcJ3d47D1l3C5NEfyvmbv4ziH09YMB8npMO7qSeqC1XLjHF+Mw sIxqL48IjZmrYbP9BlEKqLFqO9f8KToFdV4F1o0RXcInTilix3OrEzpYHcsLtefX Tc1sjK+1Z3u6HEJLyUidLrCX6LMaNsR4zG1niov3igUVpGXDVPl5YvYuI+9ldc4X +e90pgXKqrshRdXca/R8FFYXB0jX905TDXFkhox4H8F+9/aiSTagtF7GSdUNuoF1 AVpHMTdcsz0I7BnqrFVi9UxXhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6c3kla YaqgOk1IUfjoqrfmMpMeMB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb1uRqr81vVVQ2Ph7AR16VVmX37KOZQ+DiwmdjxoMrwHyJgEtPabfS Vnk0dL7VRamtUBAexwa+tEId1/hanhv9c04BdCKzuxYvL3iHrskgmh1n3GjekltR qIf0Fhp1+VWbkN15D5ZOnsPuaf0Ln53tLNabFE/xWLkilx6KptDJsKTlx7JuKrBj nnFthlgIyVq2oN/c1+tM+kqznjUw49+bq+oMDhRjWcKOvO1kUA2OK35qIQyT3Uw5 e49IsVOvV29xRSsWIG1FJrh3BftWKg8UAkz6JYXT9m4ka2Fra511tvhMRm6gqATg PEgFLRY2g3m30dugyw71Lo6kukb+oC2z -----END CERTIFICATE-----Generated at Wed Nov 5 00:22:57 2025 by rpki-client