$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft File: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft (raw, json) Hash identifier: LFsREKDHctoHRRFpo1N1p3tMr0SWrMqD3/pQO7eYs3I= Subject key identifier: 7A:3F:8D:7D:69:A5:90:6C:1F:B3:D7:B6:25:CB:BB:DD:89:8D:E1:AE Authority key identifier: CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A Certificate issuer: /CN=A91E0CF5/serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft Manifest number: F2 Signing time: Wed 05 Nov 2025 05:27:23 +0000 Manifest this update: Wed 05 Nov 2025 05:27:23 +0000 Manifest next update: Wed 12 Nov 2025 05:27:22 +0000 Files and hashes: 1: y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl (hash: vVdrRCbELzW4nIUQ4kQV+ueUKDR9V2rHspyw6OGu+Ew=) 2: C155660E492B11EF8EF0D04FC4F9AE02.roa (hash: p1Kd4l2BGto3TUE6P+Iwqb8Y4agcHwTbtFw10TWcSis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5, serialNumber=CBBBBB24B22B435D1CA493A9D63DCA779BE0796A Validity Not Before: Nov 5 05:27:23 2025 GMT Not After : Nov 12 05:27:22 2025 GMT Subject: CN=690ae03b-e0f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:3b:65:2f:c5:ed:81:dc:14:d5:57:51:d2: 5c:c1:24:27:92:0e:d2:72:a7:e4:c5:72:df:63:3f: c7:7d:8c:d7:94:b2:71:8d:dc:5a:c6:34:5f:d5:64: 58:24:d0:b4:7d:20:83:5a:6e:fe:b7:7d:44:36:67: a0:b5:46:fb:6f:13:08:27:69:5e:91:21:28:1d:a8: ed:4b:82:cc:a5:f9:a7:5b:d7:d3:de:18:a1:66:ed: 65:5c:bf:34:cb:dd:1f:1d:70:16:e2:91:10:7b:be: 18:c4:3a:10:b5:6c:9f:72:7e:3e:e1:7e:cd:58:41: 21:7e:09:ec:a3:ab:55:eb:0c:dc:01:78:02:61:86: 8d:28:83:64:8f:02:08:c3:46:62:43:72:7e:cf:bd: 06:d2:1e:4e:4f:a8:88:e8:77:6b:4f:6a:6a:2d:03: b6:9e:4d:1d:74:b2:0b:30:b7:ad:a3:ca:fc:00:12: 25:d5:96:e9:f7:1f:c4:ea:ad:ee:95:b1:99:4b:63: d1:82:4c:5a:90:12:bb:9d:8b:7a:45:f8:c1:ae:b6: a7:af:c7:df:fa:ba:90:bc:42:b8:87:3b:eb:5d:9e: 8c:f2:22:1c:79:d7:a2:7c:12:97:1d:d2:81:02:e3: b0:6c:b5:db:d8:9c:6e:ff:15:a1:38:2c:54:d5:aa: 51:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3F:8D:7D:69:A5:90:6C:1F:B3:D7:B6:25:CB:BB:DD:89:8D:E1:AE X509v3 Authority Key Identifier: keyid:CB:BB:BB:24:B2:2B:43:5D:1C:A4:93:A9:D6:3D:CA:77:9B:E0:79:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/538C1960492B11EFBE10184FC4F9AE02/y7u7JLIrQ10cpJOp1j3Kd5vgeWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1d:52:31:b0:b0:46:43:f0:42:f3:9d:24:9b:e2:47:df:74: 10:e6:85:b5:d4:62:36:56:e6:77:9a:1e:f0:ce:22:e2:c4:55: ce:04:fe:91:e2:c8:6b:00:3e:05:0e:5a:6c:db:62:8d:aa:c0: 68:0f:1b:ab:a1:dd:a2:e8:60:4d:74:c4:58:b6:d5:2f:f2:94: 9d:31:f8:7c:d7:5c:9e:e2:53:fe:51:06:6f:cf:04:19:fe:79: 37:96:34:62:fd:54:c7:78:90:65:a4:e7:cd:df:25:13:77:c8: f2:59:4b:c0:50:82:4c:cf:96:66:da:1e:dd:ba:2b:c4:0d:a1: dd:62:39:10:c9:cf:f5:78:9a:5d:2b:3b:e1:88:b8:cc:68:fe: 7d:60:ea:f2:ab:89:47:85:f2:b2:68:2d:af:97:43:c6:7f:dc: 26:54:55:b0:a3:89:dd:23:3d:e2:d7:62:ea:fa:d4:8a:2b:bd: ba:4e:47:83:bc:a5:d6:76:79:45:07:97:b8:24:a3:e2:75:4b: e0:15:bb:3c:6d:af:f5:d1:8c:7c:4d:13:7a:c4:ed:54:20:d9: 61:a5:0e:8d:7e:78:f2:a3:a4:fc:10:38:21:3f:bf:fb:01:0b: 6a:e6:1a:6b:a3:85:c5:a8:04:83:a7:d0:eb:4b:3b:c3:db:64: 55:7f:82:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRjUxMTAvBgNVBAUTKENCQkJCQjI0QjIyQjQzNUQxQ0E0OTNBOUQ2M0RDQTc3 OUJFMDc5NkEwHhcNMjUxMTA1MDUyNzIzWhcNMjUxMTEyMDUyNzIyWjAYMRYwFAYD VQQDEw02OTBhZTAzYi1lMGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOM7ZS/F7YHcFNVXUdJcwSQnkg7ScqfkxXLfYz/HfYzXlLJxjdxaxjRf1WRY JNC0fSCDWm7+t31ENmegtUb7bxMIJ2lekSEoHajtS4LMpfmnW9fT3hihZu1lXL80 y90fHXAW4pEQe74YxDoQtWyfcn4+4X7NWEEhfgnso6tV6wzcAXgCYYaNKINkjwII w0ZiQ3J+z70G0h5OT6iI6HdrT2pqLQO2nk0ddLILMLeto8r8ABIl1Zbp9x/E6q3u lbGZS2PRgkxakBK7nYt6RfjBrranr8ff+rqQvEK4hzvrXZ6M8iIcedeifBKXHdKB AuOwbLXb2Jxu/xWhOCxU1apRKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHo/jX1p pZBsH7PXtiXLu92JjeGuMB8GA1UdIwQYMBaAFMu7uySyK0NdHKSTqdY9yneb4Hlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENGNS81MzhDMTk2MDQ5 MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclExMGNwSk9wMWozS2Q1dmdl V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3dTdKTElyUTEwY3BKT3AxajNLZDV2Z2VXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENGNS81MzhDMTk2MDQ5MkIxMUVGQkUxMDE4NEZDNEY5QUUwMi95N3U3SkxJclEx MGNwSk9wMWozS2Q1dmdlV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/HVIxsLBGQ/BC850km+JH33QQ5oW11GI2VuZ3mh7wziLixFXOBP6R 4shrAD4FDlps22KNqsBoDxurod2i6GBNdMRYttUv8pSdMfh811ye4lP+UQZvzwQZ /nk3ljRi/VTHeJBlpOfN3yUTd8jyWUvAUIJMz5Zm2h7duivEDaHdYjkQyc/1eJpd KzvhiLjMaP59YOryq4lHhfKyaC2vl0PGf9wmVFWwo4ndIz3i12Lq+tSKK726TkeD vKXWdnlFB5e4JKPidUvgFbs8ba/10Yx8TRN6xO1UINlhpQ6Nfnjyo6T8EDghP7/7 AQtq5hpro4XFqASDp9DrSzvD22RVf4JX -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:43 2025 by rpki-client