$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: ARSaUNRbZWimb5nrPERtw+/z1t2b4eQ+Huqa4UM30XM= Subject key identifier: 44:28:26:66:67:4D:B6:91:8B:B1:8D:CB:10:91:6F:2F:0B:77:38:9B Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 065E Signing time: Tue 04 Nov 2025 22:43:27 +0000 Manifest this update: Tue 04 Nov 2025 22:43:27 +0000 Manifest next update: Tue 11 Nov 2025 22:43:27 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: bNdkDrtph8Vw0reMwIldLm+7hNR/LIoaKxIQbZlgs60=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: BLYldDR5zxqTMcX8NQEJYFIKVTzk5VrQGbTFGjfROjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Nov 4 22:43:27 2025 GMT Not After : Nov 11 22:43:27 2025 GMT Subject: CN=690a818f-804e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7c:4f:c9:ff:a1:03:61:16:6b:05:44:b9:72: 39:bc:17:2c:eb:66:55:f9:e6:c5:36:1c:74:a9:14: e6:34:7a:b5:e2:bf:f7:7b:fa:6f:3a:9d:bd:6f:fa: 29:b9:74:2e:a0:28:4e:b9:3b:6f:0a:4d:9a:d4:48: 3a:77:56:fd:50:5b:4e:85:02:d9:9e:af:5d:91:cc: 74:9b:e3:0f:80:a2:7b:10:ec:c9:e1:38:c8:0a:11: c7:17:27:9e:fa:8e:ef:3f:bb:eb:d8:a6:28:0a:5d: c7:22:16:f6:86:31:81:57:4a:f7:d3:b0:00:36:58: ad:27:66:83:fa:29:62:f8:cd:9a:4c:67:b0:a4:16: 33:78:28:b3:39:d2:57:d9:af:2f:2f:96:5d:ab:6d: 67:22:20:94:d6:1b:6b:75:1c:8c:43:54:62:96:1e: f5:e4:17:bd:3e:9d:c9:8d:cf:ec:0f:d0:24:eb:c6: c9:b4:38:77:f8:84:b6:da:08:8b:03:66:55:e9:0b: 2a:f9:16:32:de:ed:7b:a9:cd:13:10:56:ef:38:09: 6a:a3:7d:19:f2:7c:c1:65:b9:be:cd:c5:2e:a0:38: ab:da:76:65:55:23:8c:f8:93:45:f2:3b:93:35:f4: 11:4c:5f:1b:22:b6:47:94:84:07:99:39:a2:99:63: e2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:28:26:66:67:4D:B6:91:8B:B1:8D:CB:10:91:6F:2F:0B:77:38:9B X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:32:1a:12:d0:b4:e7:b4:d2:57:72:54:fd:08:ab:7b:49:df: ce:f8:00:64:ee:4a:3d:9b:08:c9:c4:3a:99:bf:c8:21:31:ce: 5f:74:ce:8d:02:65:eb:71:f2:b4:3f:14:36:26:14:a5:59:6a: b2:81:7d:3a:df:f9:62:75:dd:e0:47:82:e6:f4:22:80:2a:94: a0:d5:3b:62:1e:a4:92:44:bf:bf:c8:67:31:7d:b4:dc:39:7e: 8f:8a:fc:41:63:5d:3a:c0:a7:f6:bc:00:ac:79:b2:0b:3f:72: d5:2d:3a:19:d3:45:e4:9c:5e:a9:80:2f:a1:4c:67:a7:43:d6: 22:62:12:a9:3a:43:f2:10:e4:86:4f:3f:ec:12:83:4e:cb:81: f1:24:d1:b4:96:36:40:df:b4:93:df:b2:5c:2b:42:e6:f7:fd: fd:5a:23:9d:c2:18:97:cb:d7:9c:ac:77:20:2a:ba:62:70:21: e4:7e:cb:4d:39:29:b8:13:52:fa:0f:e5:2b:81:83:fc:60:a4: 23:2b:a8:df:4a:21:14:35:cb:2c:52:c1:79:72:43:20:f1:e3: 36:9c:6f:34:25:91:b1:69:4a:4c:2b:73:1c:d2:9f:76:d6:da: d2:c8:23:49:80:a9:3e:30:27:b2:48:9c:50:7f:0a:02:66:8f: d6:bb:32:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjUxMTA0MjI0MzI3WhcNMjUxMTExMjI0MzI3WjAYMRYwFAYD VQQDEw02OTBhODE4Zi04MDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XxPyf+hA2EWawVEuXI5vBcs62ZV+ebFNhx0qRTmNHq14r/3e/pvOp29b/op uXQuoChOuTtvCk2a1Eg6d1b9UFtOhQLZnq9dkcx0m+MPgKJ7EOzJ4TjIChHHFyee +o7vP7vr2KYoCl3HIhb2hjGBV0r307AANlitJ2aD+ili+M2aTGewpBYzeCizOdJX 2a8vL5Zdq21nIiCU1htrdRyMQ1Rilh715Be9Pp3Jjc/sD9Ak68bJtDh3+IS22giL A2ZV6Qsq+RYy3u17qc0TEFbvOAlqo30Z8nzBZbm+zcUuoDir2nZlVSOM+JNF8juT NfQRTF8bIrZHlIQHmTmimWPifQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQoJmZn TbaRi7GNyxCRby8LdzibMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEMhoS0LTntNJXclT9CKt7Sd/O+ABk7ko9mwjJxDqZv8ghMc5fdM6N AmXrcfK0PxQ2JhSlWWqygX063/lidd3gR4Lm9CKAKpSg1TtiHqSSRL+/yGcxfbTc OX6PivxBY106wKf2vACsebILP3LVLToZ00XknF6pgC+hTGenQ9YiYhKpOkPyEOSG Tz/sEoNOy4HxJNG0ljZA37ST37JcK0Lm9/39WiOdwhiXy9ecrHcgKrpicCHkfstN OSm4E1L6D+UrgYP8YKQjK6jfSiEUNcssUsF5ckMg8eM2nG80JZGxaUpMK3Mc0p92 1trSyCNJgKk+MCeySJxQfwoCZo/WuzLl -----END CERTIFICATE-----Generated at Wed Nov 5 17:08:00 2025 by rpki-client