$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: rJH/QmYffqXSpxOxF6m4pkOKpGm8rL6GwL9/FdnZH6s= Subject key identifier: 17:B4:B6:17:7E:75:D4:70:E1:07:51:84:B6:99:A6:A9:12:77:77:14 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0C04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0BFE Signing time: Tue 04 Nov 2025 18:55:14 +0000 Manifest this update: Tue 04 Nov 2025 18:55:14 +0000 Manifest next update: Tue 11 Nov 2025 18:55:14 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: obkeN324alw2Kcn9xhUHMS0pWKl9qZb2mDj5p49odMw=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3076 (0xc04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Nov 4 18:55:14 2025 GMT Not After : Nov 11 18:55:14 2025 GMT Subject: CN=690a4c12-ba16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:97:98:bb:a9:ef:49:1d:46:ad:5e:1c:0f: e3:87:a3:da:85:e7:a5:6b:ee:f2:b1:5a:a3:53:ef: 62:40:1b:f6:8f:09:62:8a:1a:e4:9b:89:24:01:5c: 82:cc:36:d8:e9:b8:c5:e6:3a:86:5d:7c:79:36:1a: 6c:18:6a:27:23:62:1f:8a:be:2b:0b:3d:2e:d8:12: 0f:f2:65:52:ea:62:a2:6b:10:e5:b5:92:4c:be:a0: de:bd:1d:6b:2a:2a:fe:76:cd:ab:61:25:55:c8:fd: bb:94:71:e4:e4:8b:c4:d9:07:3b:97:be:e2:c7:b6: 62:48:6b:be:a7:d8:8d:64:b2:68:d1:36:9c:5f:42: a2:c6:6d:96:e9:fc:fb:f9:74:64:29:c5:04:98:80: d5:61:d5:c1:66:2c:ad:75:d2:0d:fb:1b:f0:50:8c: b9:96:29:9b:6f:55:96:aa:57:1f:24:df:54:0a:b3: db:af:37:30:1b:6c:05:52:2f:ba:99:f3:05:b7:a4: d2:0a:22:e0:13:0e:a5:89:b8:93:9e:aa:03:97:82: 94:a7:8c:91:4f:26:32:44:e2:ad:29:50:aa:21:3c: 2b:4e:f1:d6:74:f2:29:6a:04:66:a6:ca:4b:a7:8f: d2:65:94:50:c0:c1:b2:6d:59:d0:65:ee:4d:91:19: 80:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B4:B6:17:7E:75:D4:70:E1:07:51:84:B6:99:A6:A9:12:77:77:14 X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b6:c5:30:c1:c0:36:3f:5a:02:0c:18:94:c6:4f:c8:72:99: d8:2c:48:11:aa:f1:12:9f:9f:06:70:f3:0c:00:02:ff:1a:c6: 98:01:6a:7a:23:e3:18:e7:23:d9:5e:17:22:69:22:3b:9b:96: 24:fb:cc:f3:93:8a:1e:c5:30:0b:24:3d:4f:ca:a9:cd:f7:b9: a2:79:a1:a2:fa:8c:78:28:c2:c4:1a:60:5c:69:bc:90:4e:71: 90:8d:5c:10:a7:52:c0:c5:47:0f:cc:36:a9:33:9e:6c:8e:e9: 62:54:98:b1:57:bd:e0:72:dc:46:b3:45:26:b0:94:95:6e:c0: bc:9d:86:91:4f:d5:0e:cd:60:7f:a1:13:39:d3:90:70:fa:33: db:2d:e1:ff:36:53:3b:06:3c:6a:a6:29:bf:12:82:91:54:43: 6f:3e:31:9d:cd:d0:58:f3:dd:36:62:02:93:58:d2:a4:a3:74: 00:f0:8c:99:27:7f:12:a1:1b:90:09:45:35:fc:84:24:b3:d0: d5:92:f8:aa:1b:3d:f5:69:33:72:d1:1c:fe:cd:4c:93:63:5d: 06:99:a5:a5:49:f3:9b:8a:53:7f:12:1c:d2:08:bf:cd:06:be: 5e:86:60:54:e5:05:1a:e6:13:53:12:8a:de:e6:ee:75:dc:b0: 4a:64:34:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUxMTA0MTg1NTE0WhcNMjUxMTExMTg1NTE0WjAYMRYwFAYD VQQDEw02OTBhNGMxMi1iYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnmXmLup70kdRq1eHA/jh6Paheela+7ysVqjU+9iQBv2jwliihrkm4kkAVyC zDbY6bjF5jqGXXx5NhpsGGonI2Ifir4rCz0u2BIP8mVS6mKiaxDltZJMvqDevR1r Kir+ds2rYSVVyP27lHHk5IvE2Qc7l77ix7ZiSGu+p9iNZLJo0TacX0Kixm2W6fz7 +XRkKcUEmIDVYdXBZiytddIN+xvwUIy5limbb1WWqlcfJN9UCrPbrzcwG2wFUi+6 mfMFt6TSCiLgEw6libiTnqoDl4KUp4yRTyYyROKtKVCqITwrTvHWdPIpagRmpspL p4/SZZRQwMGybVnQZe5NkRmAuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBe0thd+ ddRw4QdRhLaZpqkSd3cUMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArtsUwwcA2P1oCDBiUxk/IcpnYLEgRqvESn58GcPMMAAL/GsaYAWp6 I+MY5yPZXhciaSI7m5Yk+8zzk4oexTALJD1PyqnN97mieaGi+ox4KMLEGmBcabyQ TnGQjVwQp1LAxUcPzDapM55sjuliVJixV73gctxGs0UmsJSVbsC8nYaRT9UOzWB/ oRM505Bw+jPbLeH/NlM7Bjxqpim/EoKRVENvPjGdzdBY8902YgKTWNKko3QA8IyZ J38SoRuQCUU1/IQks9DVkviqGz31aTNy0Rz+zUyTY10GmaWlSfObilN/EhzSCL/N Br5ehmBU5QUa5hNTEore5u513LBKZDR4 -----END CERTIFICATE-----Generated at Wed Nov 5 13:32:10 2025 by rpki-client