$ rpki-client -vvf rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft File: u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft (raw, json) Hash identifier: neFs2COTLCYp/58Qs5l71jcT2GoDDJYPHIhnsFHXZ0w= Subject key identifier: 22:B8:05:47:32:C6:4A:59:4B:20:CE:EE:4F:DD:33:3E:F3:98:38:12 Authority key identifier: BB:5A:BB:59:F3:17:AB:7C:E9:55:41:CA:5A:C5:2F:21:7F:E9:59:31 Certificate issuer: /CN=A91F75E9/serialNumber=BB5ABB59F317AB7CE95541CA5AC52F217FE95931 Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft Manifest number: 0817 Signing time: Sun 02 Nov 2025 20:54:16 +0000 Manifest this update: Sun 02 Nov 2025 20:54:16 +0000 Manifest next update: Sun 09 Nov 2025 20:54:16 +0000 Files and hashes: 1: u1q7WfMXq3zpVUHKWsUvIX_pWTE.crl (hash: tlbjQ4tnk+wxIW/RYRvJayzQF0XJZUxLhyi1cBcNUlI=) 2: B3A2D41A071211F0B9531F0DC4F9AE02.roa (hash: E1N7tCSXkYyikP/pVQaGRW+aRkcNsE4Fu7zEh2kYF1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.crl rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F75E9, serialNumber=BB5ABB59F317AB7CE95541CA5AC52F217FE95931 Validity Not Before: Nov 2 20:54:16 2025 GMT Not After : Nov 9 20:54:16 2025 GMT Subject: CN=6907c4f8-8a4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3e:52:72:9c:1c:53:1a:70:b4:79:79:3d:df: f6:36:c1:64:be:cc:1a:c8:2e:1b:43:f4:9a:62:d5: 17:ad:94:b2:2e:12:a0:b1:e9:0c:57:e3:e8:d1:a3: c1:18:75:08:23:c8:f4:e2:33:20:fc:f3:b7:ed:1d: c6:e2:d8:44:16:87:3a:ca:1b:44:50:75:1c:d9:5b: 4e:b5:0f:8d:eb:a7:24:c3:24:85:7b:03:18:e6:e9: 7f:d9:61:1a:18:f5:57:3b:9a:39:c7:e7:14:99:58: 79:31:ba:03:28:e2:26:d2:51:fc:f2:b9:4f:d4:87: 76:af:0c:2a:64:07:c6:21:76:59:a2:6d:60:ec:4e: 00:be:b6:e8:88:a0:12:8f:27:9c:6c:20:01:e9:77: dc:18:02:a0:3f:6e:47:75:6f:8d:f3:a5:8f:dd:56: 2c:43:75:af:89:e7:e8:fd:39:de:71:77:2c:f3:86: 29:44:44:71:8a:09:7a:e8:be:09:7a:bd:51:8e:87: c2:a4:64:0d:30:12:e7:63:e6:8e:57:3b:f5:e5:04: 5c:44:06:f6:c8:c8:20:90:28:70:af:e9:53:c4:f8: bd:05:51:9e:de:71:25:de:1c:2a:0c:85:c6:73:a8: 78:aa:2b:46:10:0b:f3:24:1e:7c:ca:e0:b5:39:5f: 66:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B8:05:47:32:C6:4A:59:4B:20:CE:EE:4F:DD:33:3E:F3:98:38:12 X509v3 Authority Key Identifier: keyid:BB:5A:BB:59:F3:17:AB:7C:E9:55:41:CA:5A:C5:2F:21:7F:E9:59:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:77:a7:f6:60:f4:c7:53:51:69:6e:f4:0b:17:7c:80:59:20: 35:63:04:06:cd:ab:50:0e:a0:1d:dd:2b:a1:e1:8c:d3:a4:03: 9d:3d:52:a0:da:d4:cd:19:f1:89:90:e4:aa:6a:a8:b5:b2:d2: 0b:35:f5:6a:15:e3:ee:b6:36:00:15:d1:f8:a3:b7:e2:e7:f6: ab:5f:05:7d:20:f8:a7:05:de:0a:99:14:33:3a:d6:87:74:bc: 09:7f:7f:44:16:ee:37:71:ff:9b:2c:ee:5a:67:c2:6f:42:af: 11:33:cd:e8:1d:bc:32:32:1f:ec:85:ea:ec:8e:20:aa:11:05: e4:b7:3b:8e:dd:04:17:59:52:70:65:ea:fc:0c:41:30:b1:02: 48:87:b3:af:43:cd:ea:5f:05:a3:3f:21:59:42:55:24:69:eb: 64:60:7b:b7:5a:44:bb:e3:3b:d8:ba:3c:29:4e:a3:bc:83:ed: ab:9c:fc:2f:71:c6:59:c8:b4:f0:d1:2e:3e:0b:f3:69:38:f3: 79:5b:ab:f5:39:21:95:ee:41:29:4c:aa:14:eb:6e:3a:fe:3e: c1:03:87:3e:6f:74:91:71:53:a4:61:78:3d:3d:f1:6c:62:a7: 2e:40:6e:1d:6e:55:0d:bf:21:63:42:aa:bb:c0:91:ff:6d:73: ac:9e:f9:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc1RTkxMTAvBgNVBAUTKEJCNUFCQjU5RjMxN0FCN0NFOTU1NDFDQTVBQzUyRjIx N0ZFOTU5MzEwHhcNMjUxMTAyMjA1NDE2WhcNMjUxMTA5MjA1NDE2WjAYMRYwFAYD VQQDEw02OTA3YzRmOC04YTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6j5ScpwcUxpwtHl5Pd/2NsFkvswayC4bQ/SaYtUXrZSyLhKgsekMV+Po0aPB GHUII8j04jMg/PO37R3G4thEFoc6yhtEUHUc2VtOtQ+N66ckwySFewMY5ul/2WEa GPVXO5o5x+cUmVh5MboDKOIm0lH88rlP1Id2rwwqZAfGIXZZom1g7E4AvrboiKAS jyecbCAB6XfcGAKgP25HdW+N86WP3VYsQ3Wviefo/TnecXcs84YpRERxigl66L4J er1RjofCpGQNMBLnY+aOVzv15QRcRAb2yMggkChwr+lTxPi9BVGe3nEl3hwqDIXG c6h4qitGEAvzJB58yuC1OV9m0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCK4BUcy xkpZSyDO7k/dMz7zmDgSMB8GA1UdIwQYMBaAFLtau1nzF6t86VVBylrFLyF/6Vkx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzVFOS9FNjk0RkM0QUZC RDcxMUVBQkZFRTUyNDZDNEY5QUUwMi91MXE3V2ZNWHEzenBWVUhLV3NVdklYX3BX VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxcTdXZk1YcTN6cFZVSEtXc1V2SVhfcFdURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzVFOS9FNjk0RkM0QUZCRDcxMUVBQkZFRTUyNDZDNEY5QUUwMi91MXE3V2ZNWHEz enBWVUhLV3NVdklYX3BXVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8d6f2YPTHU1FpbvQLF3yAWSA1YwQGzatQDqAd3Suh4YzTpAOdPVKg 2tTNGfGJkOSqaqi1stILNfVqFePutjYAFdH4o7fi5/arXwV9IPinBd4KmRQzOtaH dLwJf39EFu43cf+bLO5aZ8JvQq8RM83oHbwyMh/shersjiCqEQXktzuO3QQXWVJw Zer8DEEwsQJIh7OvQ83qXwWjPyFZQlUkaetkYHu3WkS74zvYujwpTqO8g+2rnPwv ccZZyLTw0S4+C/NpOPN5W6v1OSGV7kEpTKoU6246/j7BA4c+b3SRcVOkYXg9PfFs YqcuQG4dblUNvyFjQqq7wJH/bXOsnvnz -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:16 2025 by rpki-client