$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: fpaEpQ9ex0o+D4CVBOUwhWd9EYbIMtoj/kU7moBtBfg= Subject key identifier: CD:BE:B7:F0:03:68:B5:43:CA:8E:49:2D:DC:CC:4C:08:72:E7:A3:E0 Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 038C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0383 Signing time: Wed 05 Nov 2025 00:55:52 +0000 Manifest this update: Wed 05 Nov 2025 00:55:52 +0000 Manifest next update: Wed 12 Nov 2025 00:55:52 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: CpteErQUFgIbJXjXE/b4RUvJRbCLqvqc5ZdRxLa4A8k=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: hW5FiSV5239AbImQE/mYJwi40OATdFzGCdVUMZFhemo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 908 (0x38c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Nov 5 00:55:52 2025 GMT Not After : Nov 12 00:55:52 2025 GMT Subject: CN=690aa098-01f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:16:20:46:5c:b3:fa:d0:4a:a8:8b:0e:ed: f6:17:c2:96:b7:1e:f1:24:20:cc:70:95:7b:81:13: 14:51:8b:15:1b:c9:3b:c6:d3:81:8d:40:73:2d:ad: 43:4f:ef:e5:c6:e6:5f:10:9f:f8:21:da:26:5c:44: 26:c3:f1:ad:76:ae:99:73:98:de:9b:41:dc:b0:42: 1e:52:66:05:fd:b5:54:6d:05:47:73:84:e2:f7:76: 10:d3:43:a6:3f:72:6f:ab:03:f7:c3:c1:06:17:4e: 72:05:d6:9b:cd:c8:7f:de:1f:eb:67:b8:7e:51:f1: 2c:3d:aa:d0:c4:42:34:59:86:37:c4:8b:35:47:05: 5c:ee:f8:fa:69:11:e5:00:37:78:d4:97:7c:6f:38: 02:15:1c:ad:00:02:9f:b7:e4:b5:3e:16:e3:08:81: 8d:41:22:c6:9d:96:38:ae:d5:3e:5e:18:0f:5d:9f: 31:97:eb:5c:ff:c6:a7:28:08:8d:79:7f:2c:c7:bd: c9:13:50:a1:a0:f2:da:28:28:c8:35:94:70:af:05: ab:01:70:2c:00:35:d8:e0:4b:79:48:2e:6a:12:06: f6:b9:01:f8:0c:22:21:d6:56:52:67:aa:53:68:69: 7d:5e:fd:65:ef:c1:bc:87:73:de:c8:fc:23:d9:79: 25:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BE:B7:F0:03:68:B5:43:CA:8E:49:2D:DC:CC:4C:08:72:E7:A3:E0 X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:bf:f9:86:cf:eb:3a:50:f2:3f:ea:a3:f3:40:1f:e6:f0:a8: 80:c6:f5:4e:0d:df:d2:28:27:6a:a8:1d:f4:28:f3:6f:6b:2b: 9b:ab:77:b7:28:c2:f1:26:3f:ad:3a:83:6a:56:9f:d8:1f:70: ba:a7:af:8d:7b:68:4c:b8:d8:9b:ff:04:34:15:24:1d:7b:41: ab:80:57:f1:5f:17:a3:ea:69:a3:a7:70:b2:d8:a7:be:20:d5: 43:37:14:b5:17:f3:d0:fc:6a:aa:94:57:67:3d:18:9b:a8:95: 77:4f:8d:7e:ed:6d:5f:60:1a:77:4d:7d:0d:8a:bb:5d:25:d6: 88:58:56:40:c6:ae:0a:46:1d:f5:76:e0:64:ff:2f:94:39:cf: bf:71:9f:60:fc:82:4e:a7:d4:4d:c7:e4:72:5b:96:37:b0:49: 93:9e:2c:6e:d3:9b:1c:51:28:a7:56:ff:f9:e7:93:ae:23:ab: 59:1f:e8:56:74:af:96:a9:e5:69:b2:3a:32:df:ea:59:b4:06: 09:d5:9f:da:da:97:71:42:81:43:ed:49:65:9f:45:b4:e6:48: d4:0a:75:d3:20:1f:27:d6:e5:ce:ea:05:0d:45:de:fa:38:57: 3c:ab:e4:91:f8:0d:57:b7:95:6d:de:1c:5b:ed:5e:a7:5d:25: 9e:1e:1c:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUxMTA1MDA1NTUyWhcNMjUxMTEyMDA1NTUyWjAYMRYwFAYD VQQDEw02OTBhYTA5OC0wMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHUWIEZcs/rQSqiLDu32F8KWtx7xJCDMcJV7gRMUUYsVG8k7xtOBjUBzLa1D T+/lxuZfEJ/4IdomXEQmw/Gtdq6Zc5jem0HcsEIeUmYF/bVUbQVHc4Ti93YQ00Om P3JvqwP3w8EGF05yBdabzch/3h/rZ7h+UfEsParQxEI0WYY3xIs1RwVc7vj6aRHl ADd41Jd8bzgCFRytAAKft+S1PhbjCIGNQSLGnZY4rtU+XhgPXZ8xl+tc/8anKAiN eX8sx73JE1ChoPLaKCjINZRwrwWrAXAsADXY4Et5SC5qEgb2uQH4DCIh1lZSZ6pT aGl9Xv1l78G8h3PeyPwj2Xkl0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2+t/AD aLVDyo5JLdzMTAhy56PgMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRv/mGz+s6UPI/6qPzQB/m8KiAxvVODd/SKCdqqB30KPNvayubq3e3 KMLxJj+tOoNqVp/YH3C6p6+Ne2hMuNib/wQ0FSQde0GrgFfxXxej6mmjp3Cy2Ke+ INVDNxS1F/PQ/GqqlFdnPRibqJV3T41+7W1fYBp3TX0NirtdJdaIWFZAxq4KRh31 duBk/y+UOc+/cZ9g/IJOp9RNx+RyW5Y3sEmTnixu05scUSinVv/555OuI6tZH+hW dK+WqeVpsjoy3+pZtAYJ1Z/a2pdxQoFD7Ulln0W05kjUCnXTIB8n1uXO6gUNRd76 OFc8q+SR+A1Xt5Vt3hxb7V6nXSWeHhxP -----END CERTIFICATE-----Generated at Wed Nov 5 13:06:13 2025 by rpki-client