$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft File: OGxcstbg7GFBrrc_STUhsFIKPPo.mft (raw, json) Hash identifier: yZFkC+gxbxlNcjP1BEEnovM9bS/eW7FF+ckUdaQ3nX8= Subject key identifier: 7F:46:97:F1:8D:84:D5:26:30:52:FA:21:41:BE:DE:2F:B4:59:C6:8F Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1D94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft Manifest number: 1D85 Signing time: Tue 04 Nov 2025 16:13:21 +0000 Manifest this update: Tue 04 Nov 2025 16:13:21 +0000 Manifest next update: Tue 11 Nov 2025 16:13:21 +0000 Files and hashes: 1: OGxcstbg7GFBrrc_STUhsFIKPPo.crl (hash: NwW4gvwJ0DdVZc9f20GEmlfetLioH9HpFD1ytGSkdpE=) 2: DE5B018C8D8B11EBB959991DC4F9AE02.roa (hash: GTYplA3+/oqNyhCsSIMGIT62xAe/H3EJbhvf29oZLZM=) 3: DD9C07828D8B11EBB959991DC4F9AE02.roa (hash: KcmqJfHxUpDuc0ECvYHJhDG4s7ZruYPj6RgZ3nxOtpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7572 (0x1d94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4, serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Nov 4 16:13:21 2025 GMT Not After : Nov 11 16:13:21 2025 GMT Subject: CN=690a2621-fb83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:db:ba:a0:14:e7:ad:e5:cd:07:3d:1d:12:ef: 37:3a:9f:d4:a2:47:35:e5:20:d5:10:78:40:93:d0: 6b:11:76:f1:88:a1:aa:e3:b8:d5:a1:fd:aa:7a:0e: a7:e2:25:41:1b:ff:f9:5e:f5:41:b2:73:79:f0:00: 8b:ab:49:97:eb:82:8b:1e:87:ca:89:c0:f3:fb:a3: b0:e4:2a:b6:9e:0a:46:3b:b2:1d:40:eb:3b:c4:57: 80:4b:42:27:ed:51:7c:30:d3:c7:e7:c8:79:83:21: af:06:37:1b:6e:e2:2e:e0:53:43:3a:c3:c7:ac:1e: 0d:c1:16:58:14:19:4f:c5:95:16:6e:6d:db:52:27: 2f:59:44:62:26:71:de:d0:db:2c:c9:a7:2d:e1:c7: 75:24:f0:1e:3e:07:d0:db:27:7c:54:a8:33:92:e0: 7d:5f:90:64:3c:12:e0:e8:61:9d:a8:04:8e:59:fe: 75:59:90:1c:5a:e0:13:97:03:7f:fb:12:20:86:a8: 5a:b0:2c:b3:f3:56:9c:e0:3c:b1:f1:b6:17:6e:29: 8f:c9:86:2b:ef:99:93:10:90:25:23:2c:69:34:a3: 61:df:dc:47:28:66:ce:d1:7e:5a:a7:26:a4:89:b0: 87:77:17:d3:63:aa:7b:a8:17:ce:d0:15:a8:95:e3: 1c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:46:97:F1:8D:84:D5:26:30:52:FA:21:41:BE:DE:2F:B4:59:C6:8F X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:9a:8e:a4:1a:82:75:a5:1d:bc:8f:dd:2d:02:0f:0b:bb:93: 57:f6:2d:54:1d:7c:2a:b6:e6:74:c7:7d:2b:54:da:be:ce:ce: 5a:56:b5:62:7c:15:49:9f:c6:d1:60:aa:76:c2:36:7d:83:ad: 77:9e:ff:45:e4:00:01:c7:99:76:2f:98:59:bd:f5:bb:a1:fe: d3:83:67:c3:14:a8:18:8a:6d:44:bd:f8:e7:88:a2:14:b7:2b: c7:5d:d7:c5:e1:ab:f3:af:8a:79:aa:fc:e9:10:1a:f1:60:eb: c9:41:fd:ae:20:a1:0b:c7:e3:f2:4c:15:0b:b4:ca:04:5d:98: fb:a8:b2:78:72:08:00:54:a5:f8:f9:a5:82:e9:5d:88:73:99: fb:eb:81:c6:d0:e0:c7:9b:19:b3:5b:11:3a:f9:b0:4f:38:97: 04:d1:f6:09:7f:4e:b7:45:13:a6:0f:d6:5f:8a:58:9e:29:00: be:be:c2:b2:bb:3f:14:bc:b5:1a:4c:b5:0f:78:46:68:91:f0: 37:a1:e5:af:b9:d9:7f:07:ec:27:af:ea:e0:94:63:52:66:3e: 1e:73:d8:f9:49:0a:12:9b:64:f0:11:ad:2a:29:df:54:a6:ce: d6:84:26:ec:27:b9:e8:b9:66:20:58:d6:5c:61:93:f8:7c:b3: 28:b0:c6:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjUxMTA0MTYxMzIxWhcNMjUxMTExMTYxMzIxWjAYMRYwFAYD VQQDEw02OTBhMjYyMS1mYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtu6oBTnreXNBz0dEu83Op/Uokc15SDVEHhAk9BrEXbxiKGq47jVof2qeg6n 4iVBG//5XvVBsnN58ACLq0mX64KLHofKicDz+6Ow5Cq2ngpGO7IdQOs7xFeAS0In 7VF8MNPH58h5gyGvBjcbbuIu4FNDOsPHrB4NwRZYFBlPxZUWbm3bUicvWURiJnHe 0Nssyact4cd1JPAePgfQ2yd8VKgzkuB9X5BkPBLg6GGdqASOWf51WZAcWuATlwN/ +xIghqhasCyz81ac4Dyx8bYXbimPyYYr75mTEJAlIyxpNKNh39xHKGbO0X5apyak ibCHdxfTY6p7qBfO0BWoleMcdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9Gl/GN hNUmMFL6IUG+3i+0WcaPMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0FCNC8xRkIwNDBBMEIxNzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdH RkJycmNfU1RVaHNGSUtQUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBimo6kGoJ1pR28j90tAg8Lu5NX9i1UHXwqtuZ0x30rVNq+zs5aVrVi fBVJn8bRYKp2wjZ9g613nv9F5AABx5l2L5hZvfW7of7Tg2fDFKgYim1EvfjniKIU tyvHXdfF4avzr4p5qvzpEBrxYOvJQf2uIKELx+PyTBULtMoEXZj7qLJ4cggAVKX4 +aWC6V2Ic5n764HG0ODHmxmzWxE6+bBPOJcE0fYJf063RROmD9ZfilieKQC+vsKy uz8UvLUaTLUPeEZokfA3oeWvudl/B+wnr+rglGNSZj4ec9j5SQoSm2TwEa0qKd9U ps7WhCbsJ7nouWYgWNZcYZP4fLMosMYe -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:53 2025 by rpki-client