$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: 0VZeozc8ZmASygVQES5VYvE6t6dTfrNvWtutjd/51WQ= Subject key identifier: EC:E2:90:0C:A5:88:2F:73:29:E3:4A:F3:45:FB:F7:24:F0:03:7D:A9 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05FC Signing time: Sun 02 Nov 2025 22:54:54 +0000 Manifest this update: Sun 02 Nov 2025 22:54:53 +0000 Manifest next update: Sun 09 Nov 2025 22:54:53 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: Bu+0dvlAUgW+x3VG5mHxhvZh6mMyxQzCT+1dbvOI13w=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Nov 2 22:54:53 2025 GMT Not After : Nov 9 22:54:53 2025 GMT Subject: CN=6907e13d-b460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:f2:4c:f8:8c:fa:cf:7a:f3:af:7c:c5:d7: 18:84:85:cd:04:c5:b8:61:f0:79:00:55:5b:54:e7: 66:56:1f:ad:30:dc:ad:4d:81:8e:f8:da:01:eb:9a: 88:36:64:b6:5d:37:8a:ed:9a:62:e4:c7:2c:2f:65: 24:3a:60:bb:f5:de:9a:38:ac:6c:f0:25:a9:34:c4: 00:ac:d9:76:c2:ef:22:f5:96:bc:69:e2:6e:4f:08: 47:05:83:dc:41:a8:73:7d:0f:f7:6b:04:c4:73:f2: 6a:d8:e8:83:75:59:6f:95:d2:33:90:79:d2:d7:57: 17:98:7e:cc:83:22:02:60:6d:06:b8:80:d4:12:4e: bc:c3:2e:17:1b:f1:4e:7d:16:e5:85:39:68:b6:a6: 43:9b:d4:b1:71:ad:24:c9:d4:79:cc:8e:ac:3f:04: a1:f4:c5:72:56:f0:d1:6c:f0:cc:32:5b:50:0c:69: 2e:b5:ff:9a:f2:4a:1d:09:82:0f:6b:ea:9a:c1:47: b8:db:7c:03:36:e2:da:49:6d:9f:1d:36:96:ec:77: 18:af:59:eb:4d:23:32:cd:fa:04:b5:d5:62:28:d8: 49:1f:54:d8:d0:ba:a2:55:4a:61:90:82:a6:81:ef: 6e:15:57:a1:84:30:2f:c7:cb:07:58:ad:a8:21:19: 0e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E2:90:0C:A5:88:2F:73:29:E3:4A:F3:45:FB:F7:24:F0:03:7D:A9 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:f0:00:8c:92:69:21:27:3a:c6:cf:bf:5b:e0:4b:6a:19:63: 24:93:d5:bd:6b:ba:d9:72:cb:5d:78:20:01:4f:22:7b:68:9a: 31:74:e3:e2:fc:a0:5e:d4:65:55:ca:da:69:56:0f:2a:71:2b: d0:d5:19:c6:d9:07:a1:2d:8c:92:e4:d8:50:21:f4:76:22:11: 81:9b:f3:88:85:68:f7:06:e3:1e:3f:1d:05:c8:23:01:3b:b7: 53:f5:ab:ec:7d:31:9e:02:fb:af:25:78:89:5f:9f:12:b6:09: 6c:72:df:98:7a:73:39:3f:87:e3:85:75:cc:cd:a9:d7:d1:39: 2a:9e:8e:8d:fb:40:b1:44:1c:2d:5e:38:99:2f:0f:28:40:e4: a6:2b:ef:7a:2d:83:2f:6d:cc:1e:0b:84:cc:02:8b:b2:e1:2c: 9b:27:d9:27:51:59:04:18:97:5a:78:21:db:66:a9:a9:7b:aa: 74:69:cc:10:9f:30:04:79:d0:c9:05:b6:25:1c:ad:62:66:82: 11:ab:88:28:63:1e:7f:5c:40:ae:f0:f4:49:f0:e9:43:d1:24: 33:b7:d5:4d:be:b9:a2:ba:b3:54:a9:49:be:81:e7:fa:73:26: f9:38:92:ca:f4:18:f2:c9:d9:a5:21:44:7b:80:00:c8:78:5f: b6:b8:45:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUxMTAyMjI1NDUzWhcNMjUxMTA5MjI1NDUzWjAYMRYwFAYD VQQDEw02OTA3ZTEzZC1iNDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAfyTPiM+s968698xdcYhIXNBMW4YfB5AFVbVOdmVh+tMNytTYGO+NoB65qI NmS2XTeK7Zpi5McsL2UkOmC79d6aOKxs8CWpNMQArNl2wu8i9Za8aeJuTwhHBYPc QahzfQ/3awTEc/Jq2OiDdVlvldIzkHnS11cXmH7MgyICYG0GuIDUEk68wy4XG/FO fRblhTlotqZDm9Sxca0kydR5zI6sPwSh9MVyVvDRbPDMMltQDGkutf+a8kodCYIP a+qawUe423wDNuLaSW2fHTaW7HcYr1nrTSMyzfoEtdViKNhJH1TY0LqiVUphkIKm ge9uFVehhDAvx8sHWK2oIRkO/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzikAyl iC9zKeNK80X79yTwA32pMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW8ACMkmkhJzrGz79b4EtqGWMkk9W9a7rZcstdeCABTyJ7aJoxdOPi /KBe1GVVytppVg8qcSvQ1RnG2QehLYyS5NhQIfR2IhGBm/OIhWj3BuMePx0FyCMB O7dT9avsfTGeAvuvJXiJX58Stglsct+YenM5P4fjhXXMzanX0Tkqno6N+0CxRBwt XjiZLw8oQOSmK+96LYMvbcweC4TMAouy4SybJ9knUVkEGJdaeCHbZqmpe6p0acwQ nzAEedDJBbYlHK1iZoIRq4goYx5/XECu8PRJ8OlD0SQzt9VNvrmiurNUqUm+gef6 cyb5OJLK9BjyydmlIUR7gADIeF+2uEXj -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:04 2025 by rpki-client