$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: iLd2jwGUbsZujrX3I2WVbD9F49nj7N4Y4Q6vLUnM0K4= Subject key identifier: D7:33:D6:01:49:E5:B1:40:A8:79:A9:7F:6D:7B:E0:F3:9F:58:43:46 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 011F Signing time: Mon 03 Nov 2025 02:43:39 +0000 Manifest this update: Mon 03 Nov 2025 02:43:38 +0000 Manifest next update: Mon 10 Nov 2025 02:43:38 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: /X5VOem0bOE+cxx09Csz9z16jfWZ4xKvDVCYUeTIejU=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: nFQQw/dyghkb1sXKy9uupZRqxzdAPtcnxFOFgRiXGi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Nov 3 02:43:38 2025 GMT Not After : Nov 10 02:43:38 2025 GMT Subject: CN=690816db-1cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:db:fa:71:58:15:a7:d2:e8:1e:f0:44:6d:85: 9b:9e:6b:6e:49:48:0e:2c:a0:71:46:3c:97:64:1f: 4b:ac:a3:af:40:3a:77:34:b9:c1:19:4d:f8:0d:53: 41:dc:dd:36:d2:ab:ad:96:21:14:eb:86:68:b6:da: 4a:79:48:fb:67:60:ad:ab:16:a8:da:26:05:da:a6: d8:8a:c3:3a:26:c1:c3:c4:7e:ac:0e:aa:0e:af:e6: d3:31:f1:16:f5:bf:05:c3:ec:e0:0b:4e:8e:4b:1d: f8:83:bb:d6:cb:61:b2:c6:6e:fc:6e:b3:01:32:bf: c8:5b:c1:f1:e7:07:07:09:89:b3:a3:68:3e:20:0c: 1d:86:7a:b8:23:62:28:05:8c:6f:1a:6f:ea:38:ca: c9:bb:ac:90:30:69:49:92:3a:83:13:be:fa:a7:48: df:ce:2b:16:61:bf:3b:a3:19:cb:b6:0f:5b:4b:89: 60:65:60:f3:67:d5:47:5a:ed:ae:a2:82:0d:10:d2: fd:4c:ce:28:15:88:23:ab:68:a4:b8:36:95:4c:d2: 56:3f:45:ed:b0:da:c7:76:01:6e:92:59:99:f4:6f: bb:c6:b1:91:a0:94:a9:9a:1f:18:87:9d:c0:55:eb: da:dd:e9:16:1f:b1:5a:3a:c3:61:1f:ef:e6:03:f7: 80:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:33:D6:01:49:E5:B1:40:A8:79:A9:7F:6D:7B:E0:F3:9F:58:43:46 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:47:13:89:90:39:fb:3f:67:b2:70:35:f0:d2:e8:f3:1b:c6: 83:9f:ed:d0:d9:9c:1f:eb:da:0b:1e:0f:15:22:35:6d:1c:5a: cc:f1:14:bb:06:14:16:fb:45:5f:6a:f0:c9:f2:2f:12:0b:ea: b5:67:cc:70:d9:7b:f8:a7:7d:03:be:f7:ff:bc:59:52:ee:bf: a1:db:7c:92:ed:aa:ea:75:34:4b:f9:9d:39:b1:89:02:5f:be: e6:3f:c2:c6:1b:01:2e:71:69:a7:cf:41:58:9d:f0:ef:7e:8a: d9:9e:af:85:8a:6f:a0:e6:f0:5d:fb:2e:9e:20:ee:7c:21:11: 2a:1a:4e:0d:9c:ca:c1:6d:36:6f:c7:51:77:d6:e5:fd:d1:88: a0:de:54:1a:0c:65:3c:dc:6d:97:a1:f5:c1:2a:a2:7d:82:2f: 46:c4:79:f6:0b:8e:0c:cb:82:10:0c:e1:27:7e:16:65:75:b0: 4f:47:71:15:e7:83:d5:0d:ee:fe:fb:5c:f1:a3:76:8c:01:20: d4:36:d3:cd:7b:e3:74:36:6c:a1:d5:1f:3c:0d:e6:41:93:3a: b8:17:d8:34:13:59:48:23:5b:75:d0:63:fc:6b:e5:97:48:21: 87:81:10:5c:d9:2d:0b:49:b0:05:6c:5a:96:c0:0e:08:81:9f: ff:ea:24:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUxMTAzMDI0MzM4WhcNMjUxMTEwMDI0MzM4WjAYMRYwFAYD VQQDEw02OTA4MTZkYi0xY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstv6cVgVp9LoHvBEbYWbnmtuSUgOLKBxRjyXZB9LrKOvQDp3NLnBGU34DVNB 3N020qutliEU64ZottpKeUj7Z2Ctqxao2iYF2qbYisM6JsHDxH6sDqoOr+bTMfEW 9b8Fw+zgC06OSx34g7vWy2Gyxm78brMBMr/IW8Hx5wcHCYmzo2g+IAwdhnq4I2Io BYxvGm/qOMrJu6yQMGlJkjqDE776p0jfzisWYb87oxnLtg9bS4lgZWDzZ9VHWu2u ooINENL9TM4oFYgjq2ikuDaVTNJWP0XtsNrHdgFuklmZ9G+7xrGRoJSpmh8Yh53A Veva3ekWH7FaOsNhH+/mA/eAuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcz1gFJ 5bFAqHmpf2174POfWENGMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBORxOJkDn7P2eycDXw0ujzG8aDn+3Q2Zwf69oLHg8VIjVtHFrM8RS7 BhQW+0VfavDJ8i8SC+q1Z8xw2Xv4p30Dvvf/vFlS7r+h23yS7arqdTRL+Z05sYkC X77mP8LGGwEucWmnz0FYnfDvforZnq+Fim+g5vBd+y6eIO58IREqGk4NnMrBbTZv x1F31uX90Yig3lQaDGU83G2XofXBKqJ9gi9GxHn2C44My4IQDOEnfhZldbBPR3EV 54PVDe7++1zxo3aMASDUNtPNe+N0Nmyh1R88DeZBkzq4F9g0E1lII1t10GP8a+WX SCGHgRBc2S0LSbAFbFqWwA4IgZ//6iT6 -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:34 2025 by rpki-client