$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: 6OiyfBac/J7h52Z50084wXLlQhZKypfk2lGFIbiWNNw= Subject key identifier: 86:27:82:66:08:53:47:C0:24:43:19:E9:DB:33:FC:C4:F7:9F:C6:D9 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 076B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2DA7 Signing time: Tue 04 Nov 2025 15:46:27 +0000 Manifest this update: Tue 04 Nov 2025 15:46:26 +0000 Manifest next update: Tue 11 Nov 2025 15:46:26 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: IGSK0nFzE0wYgsRn6utm0djk56NHjE9wRHyh9xmB+QM=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: ekyxreCpgMcKP34usIZn12GGqR3mbNPPXZzJX4hQpac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Nov 4 15:46:26 2025 GMT Not After : Nov 11 15:46:26 2025 GMT Subject: CN=690a1fd3-d8f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:29:a5:e2:4f:75:e7:13:d3:5c:93:6d:ca:78: 68:0d:c0:e3:68:d8:f0:2b:0f:14:6e:a4:d1:32:87: e4:c8:13:42:68:03:a9:67:c7:70:a3:23:a2:77:20: 78:22:2d:04:b7:91:36:87:e3:65:54:2f:09:68:73: ce:b2:d3:29:e6:e0:b5:1e:ba:8b:4c:08:fd:b2:36: fe:23:83:69:53:ce:c6:1c:36:43:f4:0c:fe:28:b4: 72:f0:0b:76:e6:6a:7c:b3:38:25:b0:b0:f3:da:f9: 68:3d:48:cb:15:c1:78:cb:f9:bc:ef:c5:3c:98:9a: d0:38:79:b6:8a:5b:f0:24:36:db:25:70:63:74:2b: de:96:7b:b1:67:ff:a4:44:04:11:5a:87:1c:d6:20: a2:39:87:80:e9:75:e4:2a:59:13:20:d5:e4:60:12: e3:06:bd:d7:75:ca:44:38:ba:18:d7:b7:70:ac:5b: 32:19:23:34:a3:68:e6:3c:4d:3f:0f:ad:29:b4:bf: f4:d2:f4:82:b9:c0:fe:58:6a:08:8c:7b:cf:55:eb: e3:52:5f:11:4f:18:72:f7:6e:6c:1e:94:46:97:42: f5:75:21:4e:11:6c:d2:9a:c7:69:4e:6f:70:e2:22: d7:3f:de:2a:e7:d5:73:83:a7:e1:6a:9a:2b:84:1b: ac:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:27:82:66:08:53:47:C0:24:43:19:E9:DB:33:FC:C4:F7:9F:C6:D9 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ac:50:56:c6:9f:43:e9:2d:60:54:95:48:31:51:0a:07:5b: 75:23:7b:94:2e:0e:fa:44:fc:8d:30:61:33:37:57:37:7f:fa: ad:e8:ae:96:67:8d:ef:b4:d4:22:9a:6d:9f:1a:e3:f4:42:d0: b9:2e:42:4b:b5:d9:99:04:fe:41:2b:6e:e5:df:93:88:b6:81: 32:27:e8:a7:b4:ae:78:32:0c:e4:70:8b:37:aa:92:75:02:6b: 27:f0:de:25:ab:6f:ac:f2:90:c1:fa:40:a4:a2:56:fe:ae:43: b2:c1:e9:8b:17:69:41:42:0a:9a:71:fe:f5:ad:ca:58:3c:74: dc:ad:45:75:54:e6:02:66:93:e2:c1:a8:d6:0f:48:0a:be:b1: 6d:6f:9d:81:5c:a0:40:aa:be:01:2d:ea:11:65:2e:15:67:59: 0e:59:c2:08:db:94:2b:1a:7b:de:cd:44:93:0d:bf:30:64:ee: df:f5:1c:c9:ed:73:76:31:d1:ec:32:c1:3d:5e:c3:66:d9:8b: 32:da:8c:30:d0:55:ab:d2:bd:7c:ed:33:01:15:c3:fe:11:59: a3:1d:ac:7a:ba:7b:c3:f1:8c:af:19:c0:d9:be:dc:56:d4:01: 8f:5a:81:6a:4b:d2:da:4c:40:0d:6d:6f:a7:aa:d3:31:4d:df: 1b:73:c5:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUxMTA0MTU0NjI2WhcNMjUxMTExMTU0NjI2WjAYMRYwFAYD VQQDEw02OTBhMWZkMy1kOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviml4k915xPTXJNtynhoDcDjaNjwKw8UbqTRMofkyBNCaAOpZ8dwoyOidyB4 Ii0Et5E2h+NlVC8JaHPOstMp5uC1HrqLTAj9sjb+I4NpU87GHDZD9Az+KLRy8At2 5mp8szglsLDz2vloPUjLFcF4y/m878U8mJrQOHm2ilvwJDbbJXBjdCvelnuxZ/+k RAQRWocc1iCiOYeA6XXkKlkTINXkYBLjBr3XdcpEOLoY17dwrFsyGSM0o2jmPE0/ D60ptL/00vSCucD+WGoIjHvPVevjUl8RTxhy925sHpRGl0L1dSFOEWzSmsdpTm9w 4iLXP94q59Vzg6fhaporhBusbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYngmYI U0fAJEMZ6dsz/MT3n8bZMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzrFBWxp9D6S1gVJVIMVEKB1t1I3uULg76RPyNMGEzN1c3f/qt6K6W Z43vtNQimm2fGuP0QtC5LkJLtdmZBP5BK27l35OItoEyJ+intK54MgzkcIs3qpJ1 Amsn8N4lq2+s8pDB+kCkolb+rkOywemLF2lBQgqacf71rcpYPHTcrUV1VOYCZpPi wajWD0gKvrFtb52BXKBAqr4BLeoRZS4VZ1kOWcII25QrGnvezUSTDb8wZO7f9RzJ 7XN2MdHsMsE9XsNm2Ysy2oww0FWr0r187TMBFcP+EVmjHax6unvD8YyvGcDZvtxW 1AGPWoFqS9LaTEANbW+nqtMxTd8bc8VN -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:42 2025 by rpki-client