$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft File: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft (raw, json) Hash identifier: pT2uOIQPQdOLiFYnD8vZtGY6wSr1f72TsVwjn5PI0pg= Subject key identifier: 7F:97:36:B4:69:B0:70:1E:57:3A:97:E5:93:8A:44:C9:49:33:5F:78 Authority key identifier: 27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 Certificate issuer: /CN=A91E4696/serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft Manifest number: 0216 Signing time: Wed 05 Nov 2025 02:23:02 +0000 Manifest this update: Wed 05 Nov 2025 02:23:02 +0000 Manifest next update: Wed 12 Nov 2025 02:23:02 +0000 Files and hashes: 1: J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl (hash: XhDyVEbZQs/LfKfK/Vbuy7ZbOJ9cUecZ81eI1v6Lltw=) 2: F04A74EC90C511EDA07C3025C4F9AE02.roa (hash: S5aqnIp8wBDzzuC/I2D/TZu1GPCH8szm3/gxMup7cPA=) 3: 63CC2AA80FEE11EEBCC6AE50C4F9AE02.roa (hash: cOb2KOzEfKEZcsNXW8uSYWT5P5sqT/oMWjbiB66z740=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4696, serialNumber=27B8722C859CA4F6F03EC1E061FDD4C3B9B497E5 Validity Not Before: Nov 5 02:23:02 2025 GMT Not After : Nov 12 02:23:02 2025 GMT Subject: CN=690ab506-bc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:e3:bd:c9:85:9f:ef:79:04:91:00:c0:ca: a4:cc:f9:d9:7f:7b:7f:07:d4:40:f0:ad:20:bb:28: e6:71:98:2f:98:3c:bf:3e:d3:63:60:a4:44:2c:09: 12:2b:84:f3:0c:c8:a1:9b:29:f1:ea:45:e2:44:f5: 87:28:ad:12:60:88:b2:bf:61:a1:ba:b2:7f:fb:03: e6:29:91:f5:d4:fb:b5:5a:14:11:20:93:81:d0:d4: e5:06:dd:36:ab:57:94:b8:f6:31:fb:96:76:e5:e7: dd:61:51:69:16:b9:ad:12:85:20:d9:04:7b:b2:e0: a7:f0:ab:9d:96:07:ad:2f:4a:d0:e7:da:c3:58:82: 52:5e:3f:56:66:a6:37:30:a5:80:09:8b:8d:d8:6e: 5b:89:8b:89:0a:fd:a1:75:0b:ae:8f:12:a0:b1:c9: b8:3c:76:a0:50:0d:f8:ce:b9:8a:db:f9:95:89:e4: 91:70:c6:25:eb:af:09:a1:a3:5f:6f:b9:94:b7:8b: f5:13:5a:0c:aa:cd:3f:3c:bf:07:47:85:9f:9f:38: bf:4b:c0:99:14:c2:59:cc:5f:24:c3:da:c3:3b:09: 13:d7:33:d5:7d:6c:d3:c7:d5:1a:d8:10:f6:b7:10: 52:08:a6:3a:34:12:23:d0:48:fc:87:ea:18:e4:de: 04:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:97:36:B4:69:B0:70:1E:57:3A:97:E5:93:8A:44:C9:49:33:5F:78 X509v3 Authority Key Identifier: keyid:27:B8:72:2C:85:9C:A4:F6:F0:3E:C1:E0:61:FD:D4:C3:B9:B4:97:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4696/D6A11C4A90BF11ED8CC1E783C4F9AE02/J7hyLIWcpPbwPsHgYf3Uw7m0l-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:77:93:5f:fb:ad:61:e9:7b:32:81:92:42:bb:1c:58:28:af: 9e:84:87:99:35:55:ea:b2:a4:a2:69:98:42:10:ec:e5:f1:a7: 69:c3:ee:18:23:c2:dc:66:15:67:04:ba:f6:47:df:08:7d:3a: d4:ef:a4:84:04:85:d5:1b:bc:86:83:bd:6f:b7:d3:6d:4e:b8: 33:ed:8c:18:cb:03:a4:28:32:53:41:06:bf:ff:60:12:7d:36: 0c:14:4a:0f:10:fa:53:b2:5c:dc:3b:d5:fc:e2:89:e7:86:55: 19:68:54:e3:53:40:d6:01:8a:85:9b:91:66:d6:d7:12:af:90: b0:e6:7c:88:a6:84:33:65:c7:39:8c:69:31:a4:d9:3d:99:3b: db:a1:40:0d:4f:2a:42:01:1b:46:b1:a7:00:02:99:93:f4:40: 7d:91:b5:b8:24:9f:e8:79:63:c8:68:43:3b:c7:ba:ba:6d:d5: 04:99:04:6b:42:e7:91:3e:1a:2d:96:6a:25:18:9e:63:c1:0a: 7b:ab:f9:2a:0e:11:47:37:a4:5a:7c:f9:86:b8:89:fb:7a:21: b8:86:33:d3:3a:c6:b5:a2:2c:da:17:69:f8:c3:85:ab:c9:9b: fa:8a:82:81:c8:a3:f8:15:4f:2c:7f:f4:76:bf:1e:49:54:82: 91:dd:61:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2OTYxMTAvBgNVBAUTKDI3Qjg3MjJDODU5Q0E0RjZGMDNFQzFFMDYxRkRENEMz QjlCNDk3RTUwHhcNMjUxMTA1MDIyMzAyWhcNMjUxMTEyMDIyMzAyWjAYMRYwFAYD VQQDEw02OTBhYjUwNi1iYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07rjvcmFn+95BJEAwMqkzPnZf3t/B9RA8K0guyjmcZgvmDy/PtNjYKRELAkS K4TzDMihmynx6kXiRPWHKK0SYIiyv2GhurJ/+wPmKZH11Pu1WhQRIJOB0NTlBt02 q1eUuPYx+5Z25efdYVFpFrmtEoUg2QR7suCn8KudlgetL0rQ59rDWIJSXj9WZqY3 MKWACYuN2G5biYuJCv2hdQuujxKgscm4PHagUA34zrmK2/mVieSRcMYl668JoaNf b7mUt4v1E1oMqs0/PL8HR4Wfnzi/S8CZFMJZzF8kw9rDOwkT1zPVfWzTx9Ua2BD2 txBSCKY6NBIj0Ej8h+oY5N4EXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+XNrRp sHAeVzqX5ZOKRMlJM194MB8GA1UdIwQYMBaAFCe4ciyFnKT28D7B4GH91MO5tJfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY5Ni9ENkExMUM0QTkw QkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQYndQc0hnWWYzVXc3bTBs LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3aHlMSVdjcFBid1BzSGdZZjNVdzdtMGwtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY5Ni9ENkExMUM0QTkwQkYxMUVEOENDMUU3ODNDNEY5QUUwMi9KN2h5TElXY3BQ YndQc0hnWWYzVXc3bTBsLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNd5Nf+61h6XsygZJCuxxYKK+ehIeZNVXqsqSiaZhCEOzl8adpw+4Y I8LcZhVnBLr2R98IfTrU76SEBIXVG7yGg71vt9NtTrgz7YwYywOkKDJTQQa//2AS fTYMFEoPEPpTslzcO9X84onnhlUZaFTjU0DWAYqFm5Fm1tcSr5Cw5nyIpoQzZcc5 jGkxpNk9mTvboUANTypCARtGsacAApmT9EB9kbW4JJ/oeWPIaEM7x7q6bdUEmQRr QueRPhotlmolGJ5jwQp7q/kqDhFHN6RafPmGuIn7eiG4hjPTOsa1oizaF2n4w4Wr yZv6ioKByKP4FU8sf/R2vx5JVIKR3WFm -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:22 2025 by rpki-client