$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: GcAaJkYlX/DxHe/U5itnkwwH7AbMMNyy5oR/UjkomtQ= Subject key identifier: C5:47:00:A2:47:D4:D7:6E:EB:36:29:A8:BC:5C:56:26:D2:19:26:00 Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 0143 Signing time: Mon 03 Nov 2025 04:20:38 +0000 Manifest this update: Mon 03 Nov 2025 04:20:37 +0000 Manifest next update: Mon 10 Nov 2025 04:20:37 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: 8opaoZRHOqoJjckhJ5E4bTryEjUnbuFe+F9PbxzW6pg=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:20:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Nov 3 04:20:37 2025 GMT Not After : Nov 10 04:20:37 2025 GMT Subject: CN=69082d96-b74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:1a:2e:b5:cf:c6:3c:ba:20:48:80:61:48: 45:08:a2:ef:6e:2d:6f:f5:e8:1c:ef:b3:6c:a9:ae: 6e:f1:8f:ab:d7:e4:6e:70:ea:dc:f7:53:6b:5d:26: f9:87:d1:97:17:a9:c9:5e:55:e1:aa:31:14:bf:6a: ec:ab:49:e2:e8:51:71:e2:cb:3e:6d:d2:c7:26:ee: f5:c2:d1:ad:cd:5c:9e:61:b9:cb:b6:38:e4:e0:5e: ff:d9:45:42:55:57:2d:dc:58:aa:30:10:34:70:b8: f7:00:75:e6:6e:5e:00:8e:9e:35:25:9a:c6:f8:db: 46:70:e3:07:02:c5:05:23:56:2a:7b:d1:3f:93:2c: f3:7e:ed:66:68:75:bb:0d:c2:95:7f:0f:a7:66:dc: 31:f0:0d:f2:1d:4b:79:b4:44:41:5a:73:6a:b1:7e: 44:40:59:19:33:fb:e9:6e:10:bc:c7:20:50:86:b7: ad:e0:4c:17:4e:22:d2:1a:19:2d:23:4f:2e:dd:28: 3f:2c:a4:7c:30:3f:8d:ce:93:f4:cd:16:62:46:3f: bc:16:03:1f:13:9d:b2:49:6e:fe:19:4f:d5:7a:5a: 35:b9:b5:90:8b:b5:aa:e5:d1:fd:83:d8:b8:0b:db: c0:8c:07:8a:bd:13:e6:8b:f2:a6:3e:b2:38:12:50: 16:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:47:00:A2:47:D4:D7:6E:EB:36:29:A8:BC:5C:56:26:D2:19:26:00 X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:33:ea:fb:31:46:73:72:c6:b2:63:e6:01:9d:04:13:73:c9: 62:0e:48:09:83:a5:51:84:77:09:59:04:5a:5d:08:3f:f2:48: 1f:4b:42:dd:e4:64:ab:19:ee:91:73:94:ed:da:5c:a5:fd:94: e3:e3:8d:4d:50:6a:ea:64:e9:37:62:9a:3e:3f:ee:5d:9e:49: 80:e8:dc:b9:33:fe:9b:6d:1e:f0:f1:52:19:b2:ec:d8:bd:53: 85:9f:ff:4e:ea:50:41:12:fb:c2:87:52:3b:c5:fd:60:15:40: e4:5c:c9:e2:3e:63:59:3b:7f:60:71:f1:ce:67:61:6a:d4:94: 26:8b:a0:4a:11:8b:7a:17:f7:6d:e6:e7:98:c3:74:18:a2:5b: e8:0f:76:45:2d:c0:6e:bc:eb:f0:6b:4f:8d:e7:cf:56:a0:7b: 28:17:55:11:94:6d:7b:7a:2d:90:e8:a6:64:2d:0d:0e:7b:d7: 64:2f:f0:4e:f5:21:08:a2:b8:47:32:b9:a4:73:3a:67:ab:40: d9:0a:d7:ee:cb:99:27:f1:7a:34:61:56:ca:f0:e9:82:d1:c3: 9d:df:01:8d:b5:ea:bd:bf:8a:58:74:e4:d4:93:e0:ad:95:a2: 87:3a:03:ce:31:43:96:03:36:67:df:ce:dd:39:97:7e:30:cc: 6a:f0:22:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUxMTAzMDQyMDM3WhcNMjUxMTEwMDQyMDM3WjAYMRYwFAYD VQQDEw02OTA4MmQ5Ni1iNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXgaLrXPxjy6IEiAYUhFCKLvbi1v9egc77Nsqa5u8Y+r1+RucOrc91NrXSb5 h9GXF6nJXlXhqjEUv2rsq0ni6FFx4ss+bdLHJu71wtGtzVyeYbnLtjjk4F7/2UVC VVct3FiqMBA0cLj3AHXmbl4Ajp41JZrG+NtGcOMHAsUFI1Yqe9E/kyzzfu1maHW7 DcKVfw+nZtwx8A3yHUt5tERBWnNqsX5EQFkZM/vpbhC8xyBQhret4EwXTiLSGhkt I08u3Sg/LKR8MD+NzpP0zRZiRj+8FgMfE52ySW7+GU/Velo1ubWQi7Wq5dH9g9i4 C9vAjAeKvRPmi/KmPrI4ElAWcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVHAKJH 1Ndu6zYpqLxcVibSGSYAMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZM+r7MUZzcsayY+YBnQQTc8liDkgJg6VRhHcJWQRaXQg/8kgfS0Ld 5GSrGe6Rc5Tt2lyl/ZTj441NUGrqZOk3Ypo+P+5dnkmA6Ny5M/6bbR7w8VIZsuzY vVOFn/9O6lBBEvvCh1I7xf1gFUDkXMniPmNZO39gcfHOZ2Fq1JQmi6BKEYt6F/dt 5ueYw3QYolvoD3ZFLcBuvOvwa0+N589WoHsoF1URlG17ei2Q6KZkLQ0Oe9dkL/BO 9SEIorhHMrmkczpnq0DZCtfuy5kn8Xo0YVbK8OmC0cOd3wGNteq9v4pYdOTUk+Ct laKHOgPOMUOWAzZn387dOZd+MMxq8CIr -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:49 2025 by rpki-client