$ rpki-client -vvf rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft File: omYWegT6_uWuGlDgRXCtX9RO1pI.mft (raw, json) Hash identifier: 0VCrbEkJOeLAUqavfg1fxLG6bmmdvV5NJGSRr3dglHs= Subject key identifier: 14:38:33:DD:37:17:51:F9:95:13:20:04:EA:FC:35:96:C7:ED:C1:8E Authority key identifier: A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 Certificate issuer: /CN=A917A0C0/serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft Manifest number: AC Signing time: Wed 05 Nov 2025 06:24:19 +0000 Manifest this update: Wed 05 Nov 2025 06:24:18 +0000 Manifest next update: Wed 12 Nov 2025 06:24:18 +0000 Files and hashes: 1: omYWegT6_uWuGlDgRXCtX9RO1pI.crl (hash: gt2RDX4UEmpfBL+/AeaLAonGd4auYVJ2tPto39HlQPM=) 2: B4A76FC8B5EC11EF9287020CC4F9AE02.roa (hash: JQfh1u+kukwSEqZawoJIJYKiGmFwuaaFjBW+kzrVtks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A0C0, serialNumber=A266167A04FAFEE5AE1A50E04570AD5FD44ED692 Validity Not Before: Nov 5 06:24:18 2025 GMT Not After : Nov 12 06:24:18 2025 GMT Subject: CN=690aed92-87ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:93:4d:6b:9e:f5:6c:30:a9:c9:41:6b:ec: 36:29:d8:56:3a:be:65:e4:19:82:3d:40:2a:a9:ce: 4c:57:2d:0a:34:4f:6f:56:5d:72:4b:22:f6:7a:13: 8c:1f:a2:5d:fd:42:d0:ed:6d:6c:5c:40:89:4f:66: 74:7c:a4:6d:52:2d:33:b2:19:84:31:00:3f:c9:af: 3e:e1:d7:ff:c6:3a:fc:38:d6:43:e0:5f:57:84:21: 7b:01:e2:9c:83:3a:77:3b:7b:05:8e:e3:40:8c:d2: 31:59:0a:5a:74:a0:40:d7:45:c8:65:8b:66:97:72: 2b:c1:ef:d7:49:11:67:3c:57:ba:de:27:a0:8d:32: 0b:21:c6:5a:a3:3e:ee:a5:14:7c:9c:8a:ef:6a:bf: dc:22:c7:2c:77:92:f7:21:05:89:9b:9a:97:4d:ee: e1:a9:b2:96:8b:6e:c4:da:77:7f:5c:c8:0d:cf:ee: 19:8d:33:6e:08:ad:9a:2e:39:ff:bc:43:16:37:fb: a6:68:8b:9d:fb:6f:9d:6c:13:6b:be:99:0d:dd:a2: 94:84:f9:9e:b9:b6:29:6d:bc:84:f0:84:b8:7d:73: c5:01:bb:1a:1d:6b:a3:1a:71:d4:e2:5b:a2:54:c7: 6a:ed:c6:0c:b9:b4:89:92:06:aa:85:af:69:84:92: 2e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:38:33:DD:37:17:51:F9:95:13:20:04:EA:FC:35:96:C7:ED:C1:8E X509v3 Authority Key Identifier: keyid:A2:66:16:7A:04:FA:FE:E5:AE:1A:50:E0:45:70:AD:5F:D4:4E:D6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/omYWegT6_uWuGlDgRXCtX9RO1pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A0C0/4A2EDC80B5EC11EFB02EC10AC4F9AE02/omYWegT6_uWuGlDgRXCtX9RO1pI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:76:20:28:1e:d9:7e:bd:12:72:55:90:fc:b2:85:56:bd:41: 99:0c:5c:b0:6d:30:da:5e:70:b8:1f:10:59:00:13:7f:66:a7: 83:2e:50:0b:d5:c6:ab:8e:2a:b9:31:57:78:19:e6:ba:1d:3f: 4f:b3:02:ff:ed:00:55:90:38:7a:1a:87:89:4c:53:52:5d:98: 88:18:f3:4f:da:5f:08:07:01:4d:9b:57:a4:7f:ba:a3:3a:5c: 62:1e:0d:b3:d6:f7:86:dc:98:9a:f4:3c:e2:c0:42:41:f4:51: f1:ba:ae:de:1b:13:fe:3d:aa:d9:81:a8:22:51:f2:01:36:f0: ec:7b:af:fe:10:47:90:b6:ea:fd:85:d1:b1:d7:72:a5:1d:09: 0a:13:8e:b4:76:c0:9e:49:17:02:26:1b:ac:b1:5a:f7:e2:c2: e0:74:ac:ff:4d:fd:54:2f:c8:67:1f:64:00:9f:57:3d:6e:2b: 7c:59:70:01:47:85:b1:65:df:bd:40:93:3b:25:e4:da:4e:c3: ec:d5:6f:6b:f8:17:d3:6b:eb:37:d1:99:12:26:ff:2f:c6:6b: 19:ae:70:2e:60:18:b4:28:41:df:a1:f6:7e:5c:e1:5e:c7:18: 4c:16:2e:45:a9:c0:f4:38:f4:f9:37:14:a4:cc:0d:28:75:c3: d4:af:e6:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EwQzAxMTAvBgNVBAUTKEEyNjYxNjdBMDRGQUZFRTVBRTFBNTBFMDQ1NzBBRDVG RDQ0RUQ2OTIwHhcNMjUxMTA1MDYyNDE4WhcNMjUxMTEyMDYyNDE4WjAYMRYwFAYD VQQDEw02OTBhZWQ5Mi04N2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsR6TTWue9WwwqclBa+w2KdhWOr5l5BmCPUAqqc5MVy0KNE9vVl1ySyL2ehOM H6Jd/ULQ7W1sXECJT2Z0fKRtUi0zshmEMQA/ya8+4df/xjr8ONZD4F9XhCF7AeKc gzp3O3sFjuNAjNIxWQpadKBA10XIZYtml3Irwe/XSRFnPFe63iegjTILIcZaoz7u pRR8nIrvar/cIscsd5L3IQWJm5qXTe7hqbKWi27E2nd/XMgNz+4ZjTNuCK2aLjn/ vEMWN/umaIud+2+dbBNrvpkN3aKUhPmeubYpbbyE8IS4fXPFAbsaHWujGnHU4lui VMdq7cYMubSJkgaqha9phJIuzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQ4M903 F1H5lRMgBOr8NZbH7cGOMB8GA1UdIwQYMBaAFKJmFnoE+v7lrhpQ4EVwrV/UTtaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTBDMC80QTJFREM4MEI1 RUMxMUVGQjAyRUMxMEFDNEY5QUUwMi9vbVlXZWdUNl91V3VHbERnUlhDdFg5Uk8x cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29tWVdlZ1Q2X3VXdUdsRGdSWEN0WDlSTzFwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTBDMC80QTJFREM4MEI1RUMxMUVGQjAyRUMxMEFDNEY5QUUwMi9vbVlXZWdUNl91 V3VHbERnUlhDdFg5Uk8xcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANdiAoHtl+vRJyVZD8soVWvUGZDFywbTDaXnC4HxBZABN/ZqeDLlAL 1carjiq5MVd4Gea6HT9PswL/7QBVkDh6GoeJTFNSXZiIGPNP2l8IBwFNm1ekf7qj OlxiHg2z1veG3Jia9DziwEJB9FHxuq7eGxP+ParZgagiUfIBNvDse6/+EEeQtur9 hdGx13KlHQkKE460dsCeSRcCJhussVr34sLgdKz/Tf1UL8hnH2QAn1c9bit8WXAB R4WxZd+9QJM7JeTaTsPs1W9r+BfTa+s30ZkSJv8vxmsZrnAuYBi0KEHfofZ+XOFe xxhMFi5FqcD0OPT5NxSkzA0odcPUr+bc -----END CERTIFICATE-----Generated at Wed Nov 5 12:16:30 2025 by rpki-client