$ rpki-client -vvf rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft File: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft (raw, json) Hash identifier: OcuteFDJEE14JatPYt/4ALLo2NlXvlK0D+e7/cqw6mI= Subject key identifier: 30:7E:34:07:F6:C1:64:53:02:00:F0:2A:E9:61:77:B6:5B:11:54:03 Authority key identifier: 3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 Certificate issuer: /CN=A91579E2/serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft Manifest number: 01CE Signing time: Wed 05 Nov 2025 02:57:06 +0000 Manifest this update: Wed 05 Nov 2025 02:57:05 +0000 Manifest next update: Wed 12 Nov 2025 02:57:05 +0000 Files and hashes: 1: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl (hash: l93hHS7+qg6oHku1mKShQSNsjJn1n+1ugNaJFhESIUk=) 2: 62923A1EF2B711EDAA29717AC4F9AE02.roa (hash: oxGjZ2qP5KAlzJWT8zUJKcB63LEiuvqe3on36ROaH3g=) 3: 631D6D82F2B711EDAA29717AC4F9AE02.roa (hash: Ugoz9OgYhjx5n/wKBryzHZ0lteBuyiXAGZkUzpN/sg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91579E2, serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Validity Not Before: Nov 5 02:57:05 2025 GMT Not After : Nov 12 02:57:05 2025 GMT Subject: CN=690abd02-bd2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6c:1c:be:89:7f:33:4a:0a:b4:94:f3:20:bb: 85:4a:a2:03:21:4b:51:5a:da:96:0d:f3:2c:f3:76: b4:7e:cb:47:28:c8:91:be:73:82:0f:d9:55:2d:92: 8c:c1:ac:13:be:1a:f1:c9:4b:62:f7:f0:cb:ef:74: 4e:18:d4:b4:38:81:ad:51:7b:3d:5a:d8:69:bd:b9: 41:d3:72:84:80:af:86:b5:9a:3c:b2:7b:1b:09:2b: 8f:81:a0:64:61:2b:81:f4:98:bf:bf:62:10:b2:8d: be:2f:9f:bf:c1:1c:2c:9f:15:03:73:17:29:b5:ec: a3:e2:a0:fd:27:2c:5f:45:0c:27:eb:d7:50:cb:a8: 6b:17:72:4c:94:83:df:a5:cc:fb:48:bc:90:74:f2: 75:17:f2:34:93:d3:b1:e0:4d:4e:08:2e:59:d9:14: c0:a6:fc:e6:b0:2f:d4:5c:29:3e:85:46:41:6e:75: f0:23:59:fc:3b:49:6b:4c:7f:11:3f:78:62:f0:5f: 9d:8e:9a:1c:e6:e8:2e:51:0f:da:35:18:62:f0:57: 41:64:7c:91:9a:6d:88:27:d4:01:25:f8:71:4a:b9: fc:03:c9:b0:6e:73:5f:2c:59:89:f7:c8:b8:08:ac: f0:aa:38:3c:7f:33:11:c4:e7:9e:67:ae:11:9f:89: c9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7E:34:07:F6:C1:64:53:02:00:F0:2A:E9:61:77:B6:5B:11:54:03 X509v3 Authority Key Identifier: keyid:3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:fa:73:56:d1:87:e6:e8:f7:9d:d5:9a:3f:d0:ef:84:8f:7a: 8a:ec:ed:8d:dd:f7:0d:e5:bd:76:9e:0c:ac:8a:db:bf:f4:a8: 13:92:ac:74:74:3e:e6:bb:1a:54:73:f2:4d:94:8a:b6:37:3c: 8a:92:76:4b:a2:bf:ca:4a:70:7f:7f:b2:18:19:96:c2:99:84: 82:a7:16:42:6c:b9:18:b5:22:99:70:97:ab:77:2e:c3:85:a2: 1b:57:a7:25:32:06:94:1c:c2:fe:05:a3:a2:b0:5c:88:bf:16: 6e:99:51:5f:c9:38:99:07:45:d5:82:50:b1:0f:5c:5d:82:b2: e6:8d:a2:da:5a:09:14:69:19:26:b4:e8:15:a5:25:69:d7:be: 6f:54:2d:63:0c:d8:1a:8d:7c:ac:86:54:82:14:19:b6:4e:d4: 1e:9b:40:2e:1b:c1:39:df:e7:ae:78:8f:2a:53:47:97:7a:d9: 37:37:42:81:91:c5:a8:f5:a8:0f:b1:e4:90:f6:b9:48:a8:2f: b2:b6:4f:d1:b9:4a:3e:13:21:38:a2:c8:e5:33:bf:3e:b5:24: 86:c9:71:7c:c8:84:ee:b2:96:4f:36:b4:9e:e5:e3:8c:60:ef: 42:82:a7:7e:a8:69:00:cd:73:55:39:9e:1d:2a:e9:9e:81:f1: 02:53:27:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc5RTIxMTAvBgNVBAUTKDNCNjI0MDdFMkU1NEY0MkY4MDkwRTJDMEQ4NkZEMkMz QTYxMzMwQjMwHhcNMjUxMTA1MDI1NzA1WhcNMjUxMTEyMDI1NzA1WjAYMRYwFAYD VQQDEw02OTBhYmQwMi1iZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Gwcvol/M0oKtJTzILuFSqIDIUtRWtqWDfMs83a0fstHKMiRvnOCD9lVLZKM wawTvhrxyUti9/DL73ROGNS0OIGtUXs9WthpvblB03KEgK+GtZo8snsbCSuPgaBk YSuB9Ji/v2IQso2+L5+/wRwsnxUDcxcpteyj4qD9JyxfRQwn69dQy6hrF3JMlIPf pcz7SLyQdPJ1F/I0k9Ox4E1OCC5Z2RTApvzmsC/UXCk+hUZBbnXwI1n8O0lrTH8R P3hi8F+djpoc5uguUQ/aNRhi8FdBZHyRmm2IJ9QBJfhxSrn8A8mwbnNfLFmJ98i4 CKzwqjg8fzMRxOeeZ64Rn4nJ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDB+NAf2 wWRTAgDwKulhd7ZbEVQDMB8GA1UdIwQYMBaAFDtiQH4uVPQvgJDiwNhv0sOmEzCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzlFMi83M0FGMkY3QUYy QjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlDLUFrT0xBMkdfU3c2WVRN TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08ySkFmaTVVOUMtQWtPTEEyR19TdzZZVE1MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzlFMi83M0FGMkY3QUYyQjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlD LUFrT0xBMkdfU3c2WVRNTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa+nNW0Yfm6Ped1Zo/0O+Ej3qK7O2N3fcN5b12ngysitu/9KgTkqx0 dD7muxpUc/JNlIq2NzyKknZLor/KSnB/f7IYGZbCmYSCpxZCbLkYtSKZcJerdy7D haIbV6clMgaUHML+BaOisFyIvxZumVFfyTiZB0XVglCxD1xdgrLmjaLaWgkUaRkm tOgVpSVp175vVC1jDNgajXyshlSCFBm2TtQem0AuG8E53+eueI8qU0eXetk3N0KB kcWo9agPseSQ9rlIqC+ytk/RuUo+EyE4osjlM78+tSSGyXF8yITuspZPNrSe5eOM YO9Cgqd+qGkAzXNVOZ4dKumegfECUyc5 -----END CERTIFICATE-----Generated at Wed Nov 5 07:43:42 2025 by rpki-client