$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: mC0Igjcc87m4yJXnvTvFdrwRRDMQfgy2mRG60Z10Bko= Subject key identifier: DE:AB:A3:76:BC:0A:39:BC:56:13:10:6B:49:68:DC:8E:95:BA:71:0D Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: AE Signing time: Wed 05 Nov 2025 02:51:53 +0000 Manifest this update: Wed 05 Nov 2025 02:51:52 +0000 Manifest next update: Wed 12 Nov 2025 02:51:52 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: uLgPQnglnwMF6yNkDco//uEgZi7aruIenz/DN0+YpHo=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Nov 5 02:51:52 2025 GMT Not After : Nov 12 02:51:52 2025 GMT Subject: CN=690abbc9-6ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:93:3b:81:15:1a:d3:d8:a1:5e:27:d1:d9:45: 9e:e1:2b:84:94:ad:df:c7:74:29:71:21:2c:4e:8b: 5b:2c:1c:50:c9:db:22:92:7d:36:fe:24:00:22:dd: 2a:1b:cd:c3:c4:1b:f6:71:a1:66:0a:d6:3d:ef:03: b3:fb:b6:59:d2:52:b3:8e:da:51:25:90:b1:1d:b0: 13:56:ab:ec:09:b4:68:cd:44:bf:15:01:58:c4:3e: 53:dd:7f:51:52:2f:3d:5a:05:92:e2:7c:8e:0b:23: 85:24:82:b2:c3:e3:12:c0:90:44:14:0e:6b:db:0b: fa:d9:a8:5d:7d:0a:1a:17:85:66:42:61:4a:12:d4: 0e:fe:84:f1:a6:ce:ca:f4:a3:0d:6f:37:9a:33:8e: e4:bf:a3:bf:c5:11:dc:28:d1:96:83:2a:84:2f:9c: 02:84:af:92:a4:03:49:63:27:fe:44:12:a3:fb:0d: c0:0c:20:83:f9:b1:68:2e:17:cf:cf:ae:57:da:03: 37:c5:c0:45:6d:c7:4f:1f:f8:0c:a8:2b:82:60:70: cf:36:36:94:5b:41:56:fa:b1:03:64:ce:08:c1:8e: 57:f5:51:b8:65:92:7c:70:03:00:b8:87:e5:ab:21: da:83:06:23:a8:a9:e4:4e:2a:69:c8:27:d8:88:f2: 7b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AB:A3:76:BC:0A:39:BC:56:13:10:6B:49:68:DC:8E:95:BA:71:0D X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:3e:b6:c1:d5:f9:2a:c1:9f:45:9e:70:67:f3:e7:ce:f9:cd: cc:11:51:2a:83:85:22:06:52:07:74:52:2f:9a:b7:d8:73:52: 01:e7:e5:af:3e:fa:26:79:c8:35:6c:43:3a:ab:5b:bb:23:26: 4b:f5:7d:85:79:f6:29:25:3b:fe:05:8b:67:0a:8c:b5:15:56: 56:9f:a3:e9:39:20:65:33:2f:98:98:25:74:de:77:11:b0:59: b8:8f:a1:38:1d:45:25:4e:63:d9:5c:26:43:18:a8:11:3f:03: 49:b9:8e:42:06:4b:74:0b:03:7f:bb:f7:ab:c3:53:b8:51:5b: 56:42:25:9f:ad:01:2f:d5:4d:17:ff:9e:53:39:9c:71:74:b2: a5:80:3d:e5:78:ca:7d:78:b3:89:fc:38:0c:42:41:05:f0:4c: 2e:ee:68:d8:5c:ee:19:bd:8c:7d:20:d5:76:1b:c8:a0:d7:ec: 61:fc:87:2f:b7:e8:17:6a:01:f3:b5:c7:c6:70:f4:88:fc:3a: 0f:de:b3:8a:33:21:2b:13:d9:65:3f:e5:d9:7b:a2:ee:b9:e4: 5d:57:50:ad:53:f3:33:64:c6:94:26:9c:df:50:51:0b:62:3b: 4e:5b:21:d6:ae:2b:9a:3e:5c:fa:18:22:6a:67:f4:88:d7:bc: 98:12:1d:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMTA1MDI1MTUyWhcNMjUxMTEyMDI1MTUyWjAYMRYwFAYD VQQDEw02OTBhYmJjOS02ZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55M7gRUa09ihXifR2UWe4SuElK3fx3QpcSEsTotbLBxQydsikn02/iQAIt0q G83DxBv2caFmCtY97wOz+7ZZ0lKzjtpRJZCxHbATVqvsCbRozUS/FQFYxD5T3X9R Ui89WgWS4nyOCyOFJIKyw+MSwJBEFA5r2wv62ahdfQoaF4VmQmFKEtQO/oTxps7K 9KMNbzeaM47kv6O/xRHcKNGWgyqEL5wChK+SpANJYyf+RBKj+w3ADCCD+bFoLhfP z65X2gM3xcBFbcdPH/gMqCuCYHDPNjaUW0FW+rEDZM4IwY5X9VG4ZZJ8cAMAuIfl qyHagwYjqKnkTippyCfYiPJ7KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6ro3a8 Cjm8VhMQa0lo3I6VunENMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsPrbB1fkqwZ9FnnBn8+fO+c3MEVEqg4UiBlIHdFIvmrfYc1IB5+Wv Pvomecg1bEM6q1u7IyZL9X2FefYpJTv+BYtnCoy1FVZWn6PpOSBlMy+YmCV03ncR sFm4j6E4HUUlTmPZXCZDGKgRPwNJuY5CBkt0CwN/u/erw1O4UVtWQiWfrQEv1U0X /55TOZxxdLKlgD3leMp9eLOJ/DgMQkEF8Ewu7mjYXO4ZvYx9INV2G8ig1+xh/Icv t+gXagHztcfGcPSI/DoP3rOKMyErE9llP+XZe6LuueRdV1CtU/MzZMaUJpzfUFEL YjtOWyHWriuaPlz6GCJqZ/SI17yYEh22 -----END CERTIFICATE-----Generated at Wed Nov 5 11:14:38 2025 by rpki-client