$ rpki-client -vvf rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft File: oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft (raw, json) Hash identifier: Z7oMxL4KFgtfK/q/fyWaDiMWtPYm5GkVS4miY1+bwas= Subject key identifier: 5D:99:EC:A6:D4:82:95:E2:7F:97:A6:B6:7D:ED:FC:41:5E:CF:33:0F Authority key identifier: A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 Certificate issuer: /CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Certificate serial: 09A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft Manifest number: 099A Signing time: Tue 04 Nov 2025 20:08:50 +0000 Manifest this update: Tue 04 Nov 2025 20:08:50 +0000 Manifest next update: Tue 11 Nov 2025 20:08:50 +0000 Files and hashes: 1: oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl (hash: AXTp0Q6zM+D4/kwHp+uXcI/PuOVq6wr/6gACF0+QCM8=) 2: 311647C0896C11EBA85B0747C4F9AE02.roa (hash: MVtlwW2sU7CkBdehjteFY61IQnaVOAPQQ+etloBMPo4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2467 (0x9a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138B72, serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Validity Not Before: Nov 4 20:08:50 2025 GMT Not After : Nov 11 20:08:50 2025 GMT Subject: CN=690a5d52-03fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:0c:fc:63:60:1d:93:a2:db:52:bd:33:61: 86:b8:27:6c:12:54:57:5b:f9:e9:95:be:ae:87:c2: 57:b7:8c:7c:6a:fc:fe:a2:b6:23:23:54:dd:70:4c: 0a:de:15:f7:2f:48:e5:c8:fe:11:a7:53:a6:87:ca: b6:76:ff:8a:1d:29:cc:d9:d6:73:6a:8f:54:ba:da: d4:1e:9f:7a:42:c6:ab:ff:c4:fe:76:63:e8:61:75: 41:d6:74:29:22:7f:3e:62:18:8e:13:6b:97:5a:f5: 13:47:cf:9c:e8:d7:09:d2:98:77:62:10:c4:df:d1: f5:ce:26:cf:38:0f:bd:bc:09:07:b7:c4:95:2e:81: 3c:ea:df:ee:9e:34:16:0b:71:d5:0b:78:e8:e3:87: 02:3c:e8:90:d4:eb:f9:b2:ec:7c:90:3a:d8:fa:6f: 8f:b8:fb:38:8f:83:5b:b5:82:09:17:a1:8a:75:07: 2a:0a:cc:10:d1:a6:78:49:69:87:5d:21:71:70:4b: 92:38:cf:db:8f:9f:d5:27:83:02:bd:d5:0f:0f:36: e3:97:a2:04:30:a8:37:cc:a3:1c:bd:7c:1e:bc:59: 33:39:28:21:10:2c:81:82:fa:b4:eb:65:ac:ea:af: f4:84:df:ce:26:c5:46:9b:2c:a7:44:04:c5:f8:09: e3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:99:EC:A6:D4:82:95:E2:7F:97:A6:B6:7D:ED:FC:41:5E:CF:33:0F X509v3 Authority Key Identifier: keyid:A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:0a:5e:cd:12:61:ec:44:0a:48:0a:e6:7b:88:3d:9e:9f:fd: 1e:6c:b4:a4:86:d0:fb:38:d5:cd:9c:1d:82:6c:a5:5d:5d:81: de:8e:2e:b9:43:95:01:a6:16:1b:5f:77:8f:ff:8f:80:8a:32: ff:78:9f:ce:ac:6c:81:89:e8:b2:cb:61:65:e3:7b:89:45:9f: fe:68:61:23:bd:6f:4c:c4:ce:d0:a7:38:1f:77:e3:64:bf:b9: cc:f2:07:cd:51:b1:f5:cf:84:f0:cb:86:3a:f8:47:81:bc:c3: 2a:53:5e:6d:9f:b8:81:57:86:8d:cf:39:7a:f6:6b:2e:e6:c2: 6c:f1:5b:2a:9c:c2:57:07:7c:64:d9:0a:2a:a4:f6:c3:93:54: c5:7a:75:4b:c2:96:76:d5:73:7d:ed:5c:99:e0:35:c5:76:6e: 51:8f:c2:b4:53:d2:f6:d9:41:3d:91:6f:df:ab:b4:4d:6b:57: d6:81:43:25:04:34:fb:25:ae:52:3b:a7:cc:43:32:2c:0e:07: df:05:b7:2b:ba:63:3d:25:f4:b9:e3:56:bf:ea:03:b9:31:6c: 55:14:16:98:4f:0e:42:ec:23:3f:ad:e2:51:90:fb:30:81:f8: c6:ff:3d:98:d7:5f:09:63:10:23:33:9b:2f:38:b4:c9:09:83: 54:c0:2d:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhCNzIxMTAvBgNVBAUTKEEwQ0JCMkNGN0FFRDgzQzIxOTczQzcwQjY0QzBBNDE1 NkM1QkY1RDIwHhcNMjUxMTA0MjAwODUwWhcNMjUxMTExMjAwODUwWjAYMRYwFAYD VQQDEw02OTBhNWQ1Mi0wM2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreAM/GNgHZOi21K9M2GGuCdsElRXW/nplb6uh8JXt4x8avz+orYjI1TdcEwK 3hX3L0jlyP4Rp1Omh8q2dv+KHSnM2dZzao9UutrUHp96Qsar/8T+dmPoYXVB1nQp In8+YhiOE2uXWvUTR8+c6NcJ0ph3YhDE39H1zibPOA+9vAkHt8SVLoE86t/unjQW C3HVC3jo44cCPOiQ1Ov5sux8kDrY+m+PuPs4j4NbtYIJF6GKdQcqCswQ0aZ4SWmH XSFxcEuSOM/bj5/VJ4MCvdUPDzbjl6IEMKg3zKMcvXwevFkzOSghECyBgvq062Ws 6q/0hN/OJsVGmyynRATF+Anj5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2Z7KbU gpXif5emtn3t/EFezzMPMB8GA1UdIwQYMBaAFKDLss967YPCGXPHC2TApBVsW/XS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEI3Mi8xRTQwMEE5QTlB QjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4SVpjOGNMWk1Da0ZXeGI5 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NdXl6M3J0ZzhJWmM4Y0xaTUNrRld4YjlkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEI3Mi8xRTQwMEE5QTlBQjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4 SVpjOGNMWk1Da0ZXeGI5ZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxCl7NEmHsRApICuZ7iD2en/0ebLSkhtD7ONXNnB2CbKVdXYHeji65 Q5UBphYbX3eP/4+AijL/eJ/OrGyBieiyy2Fl43uJRZ/+aGEjvW9MxM7Qpzgfd+Nk v7nM8gfNUbH1z4Twy4Y6+EeBvMMqU15tn7iBV4aNzzl69msu5sJs8VsqnMJXB3xk 2QoqpPbDk1TFenVLwpZ21XN97VyZ4DXFdm5Rj8K0U9L22UE9kW/fq7RNa1fWgUMl BDT7Ja5SO6fMQzIsDgffBbcrumM9JfS541a/6gO5MWxVFBaYTw5C7CM/reJRkPsw gfjG/z2Y118JYxAjM5svOLTJCYNUwC3H -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:20 2025 by rpki-client