$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft File: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft (raw, json) Hash identifier: STfevlkccC+TRFlZTrkWiBPuNaiFcVExz1U6o0Mr5d8= Subject key identifier: E3:5B:F8:84:69:F0:47:45:83:57:89:0F:E9:5C:7D:43:71:90:CB:CC Authority key identifier: ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 Certificate issuer: /CN=A91E04ED/serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft Manifest number: 069C Signing time: Sun 02 Nov 2025 22:20:25 +0000 Manifest this update: Sun 02 Nov 2025 22:20:24 +0000 Manifest next update: Sun 09 Nov 2025 22:20:24 +0000 Files and hashes: 1: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl (hash: ftOc0Gfmy3NULr6tz+Sx+Q9KiE6yDVFMNhFk/j1hico=) 2: 0665D2328D1A11EB80593760C4F9AE02.roa (hash: 9RcU5RMIguV5RGzPowAleQQk2yHbByHLcaosyfn/YYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04ED, serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Validity Not Before: Nov 2 22:20:24 2025 GMT Not After : Nov 9 22:20:24 2025 GMT Subject: CN=6907d929-6092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:38:a5:5e:90:e7:14:ce:30:5c:21:2b:a3:70: 0c:1f:9f:6e:27:19:48:26:7e:72:7d:bc:d6:a4:14: 06:f5:6a:43:23:13:32:8c:2b:4e:b7:ed:62:f3:6b: f3:13:e9:ae:da:fb:f1:af:82:18:fc:f0:1f:14:c7: 02:69:5e:be:e8:06:b4:15:98:e8:4f:27:8b:98:1f: ea:26:31:7b:29:d5:53:3a:d6:24:1d:7d:98:9b:70: 52:25:b5:0c:25:b5:f8:fa:02:ee:a4:87:f1:8d:50: c8:2c:a4:a0:04:3f:29:83:95:7c:28:c6:74:15:b8: 08:fd:4b:85:e7:36:f8:b3:5d:65:19:bd:48:e4:60: bf:78:2f:74:fb:fe:55:d5:4a:e1:41:6a:a3:70:89: 4c:df:9e:b2:82:95:c0:5c:60:e4:86:22:c7:55:6b: cf:f6:1e:27:86:d0:27:9c:b5:7c:2b:f2:ba:66:25: 1d:c2:68:9d:c0:56:92:65:82:99:35:5b:43:70:16: 94:3b:32:c4:d5:2e:51:05:dd:ee:bc:6b:39:c1:b0: 96:07:07:58:e9:b4:ca:21:07:fd:34:90:5b:6e:99: 5d:fe:87:de:b0:f2:e5:b0:29:2a:e0:0b:90:25:c5: f4:3d:95:79:af:4a:ab:01:d0:bc:e6:b8:22:cb:0b: 7d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5B:F8:84:69:F0:47:45:83:57:89:0F:E9:5C:7D:43:71:90:CB:CC X509v3 Authority Key Identifier: keyid:ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:07:67:cc:3c:39:15:03:7f:6b:65:31:77:65:d8:d2:c3:2d: b9:6e:0b:5b:2e:a2:29:83:96:20:90:a6:a2:29:0d:d0:bc:0e: e1:8a:f0:cc:ca:79:ec:b2:83:4c:1f:c8:70:dc:7d:0b:47:11: fa:4a:5a:60:05:5f:dd:cf:b2:02:c2:c7:46:9b:7f:eb:ca:04: 2b:09:91:2c:48:0c:96:3f:5d:a9:1b:8a:92:f2:b2:0f:5c:59: 42:01:ab:bc:bc:bb:f8:bc:57:e1:96:e6:1d:b2:8b:28:a5:6f: 6b:92:38:16:70:52:df:a6:eb:85:7f:2c:be:ea:e3:16:31:9b: b3:00:f5:bf:c5:b1:eb:8c:25:af:8c:ba:aa:1b:2a:c8:21:d3: a7:ea:f0:03:3f:ab:a6:57:99:2f:34:93:56:46:db:59:51:a8: 52:1c:d4:15:81:c1:96:c7:d0:f3:ab:6a:f0:78:24:3f:79:04: 90:13:f8:f2:4c:ae:9b:c9:86:f5:ba:37:1b:19:a4:5d:c2:6a: 42:da:53:44:98:e0:3d:a3:41:f0:08:39:4d:2d:6a:19:c4:32: 30:93:28:f2:01:29:02:a9:dd:8e:ed:91:d9:ee:de:81:bb:a3: 99:58:39:53:62:ad:3c:5e:69:9f:88:8b:43:f3:58:98:75:5e: 31:57:06:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RUQxMTAvBgNVBAUTKEVEQTJBQUJCNDAyMTJFQjNDMDkyQUFFQUYxNTE0MkE3 NjlFRjU5MDcwHhcNMjUxMTAyMjIyMDI0WhcNMjUxMTA5MjIyMDI0WjAYMRYwFAYD VQQDEw02OTA3ZDkyOS02MDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjilXpDnFM4wXCEro3AMH59uJxlIJn5yfbzWpBQG9WpDIxMyjCtOt+1i82vz E+mu2vvxr4IY/PAfFMcCaV6+6Aa0FZjoTyeLmB/qJjF7KdVTOtYkHX2Ym3BSJbUM JbX4+gLupIfxjVDILKSgBD8pg5V8KMZ0FbgI/UuF5zb4s11lGb1I5GC/eC90+/5V 1UrhQWqjcIlM356ygpXAXGDkhiLHVWvP9h4nhtAnnLV8K/K6ZiUdwmidwFaSZYKZ NVtDcBaUOzLE1S5RBd3uvGs5wbCWBwdY6bTKIQf9NJBbbpld/ofesPLlsCkq4AuQ JcX0PZV5r0qrAdC85rgiywt98QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONb+IRp 8EdFg1eJD+lcfUNxkMvMMB8GA1UdIwQYMBaAFO2iqrtAIS6zwJKq6vFRQqdp71kH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRFRC9EQkU5MEJBQzhE MTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExyUEFrcXJxOFZGQ3AybnZX UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhS3F1MEFoTHJQQWtxcnE4VkZDcDJudldRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRFRC9EQkU5MEJBQzhEMTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExy UEFrcXJxOFZGQ3AybnZXUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgB2fMPDkVA39rZTF3ZdjSwy25bgtbLqIpg5YgkKaiKQ3QvA7hivDM ynnssoNMH8hw3H0LRxH6SlpgBV/dz7ICwsdGm3/rygQrCZEsSAyWP12pG4qS8rIP XFlCAau8vLv4vFfhluYdsosopW9rkjgWcFLfpuuFfyy+6uMWMZuzAPW/xbHrjCWv jLqqGyrIIdOn6vADP6umV5kvNJNWRttZUahSHNQVgcGWx9Dzq2rweCQ/eQSQE/jy TK6byYb1ujcbGaRdwmpC2lNEmOA9o0HwCDlNLWoZxDIwkyjyASkCqd2O7ZHZ7t6B u6OZWDlTYq08XmmfiItD81iYdV4xVwZw -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:35 2025 by rpki-client