$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: NaXZub7l62CGmxw543M/mlPbNlp3+OM8n6UDbB4mA2M= Subject key identifier: B8:3E:4E:FA:F2:D6:01:40:F9:FA:32:BC:AF:0A:AD:FC:43:47:E8:CF Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: 011A Signing time: Mon 03 Nov 2025 04:46:52 +0000 Manifest this update: Mon 03 Nov 2025 04:46:52 +0000 Manifest next update: Mon 10 Nov 2025 04:46:52 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: bLqackn1zjZd9g1K3MStWMR/4HeANw9C1q7lu05RV28=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: g7/I1107TKCwjJnWd7arEQMGj8EBr7MRJOF1ZUaFXNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:46:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Nov 3 04:46:52 2025 GMT Not After : Nov 10 04:46:52 2025 GMT Subject: CN=690833bc-4717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b3:37:a2:45:be:29:a9:ed:1a:47:32:e3:a2: 97:4f:2d:2f:29:d9:85:bb:50:a5:7a:8b:02:81:76: d4:e8:22:2d:5a:9a:0c:02:0d:cc:a8:35:42:03:79: 8e:9c:a0:08:a5:43:72:c0:09:8c:b5:4a:17:77:62: 26:c4:9e:1b:b8:7f:7f:74:cf:12:6e:67:af:59:d3: ad:bf:f4:c7:0e:ba:c2:01:5e:84:84:41:78:b1:a8: 19:91:4d:fb:7a:01:d7:98:5f:1b:a9:5a:20:d8:ed: 36:1f:85:59:77:49:3e:ef:25:da:8b:52:ce:9f:78: c6:be:67:50:7e:aa:39:f0:65:c6:18:ea:8f:bd:87: 9c:a7:45:88:56:26:4f:4e:29:51:9b:15:67:52:07: 8b:69:0d:cb:3a:57:f4:8f:bf:de:57:3d:a8:89:c9: 5a:b5:02:4e:9b:29:32:b0:1e:2a:48:ff:ea:1b:c3: 47:0e:9a:e5:de:ef:77:7a:d3:6b:24:94:09:52:f0: cf:34:ce:bf:85:f1:85:41:13:18:ec:82:70:f0:52: 25:6a:2e:63:a4:9e:c4:b0:de:8a:81:3f:e6:f3:b7: 28:ab:e9:72:52:db:1f:eb:ce:f8:3e:83:ff:32:ca: 42:2f:c4:3d:80:87:de:38:47:14:f0:fb:65:37:a4: f9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3E:4E:FA:F2:D6:01:40:F9:FA:32:BC:AF:0A:AD:FC:43:47:E8:CF X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:29:09:ab:e9:db:42:90:9b:f7:ac:f8:3a:88:d8:13:3d:b5: 79:58:17:60:59:95:b5:ed:28:51:19:9a:9e:1e:09:e9:57:0c: 50:c3:13:3e:28:4b:dd:63:37:51:3c:1a:a6:95:b1:b3:68:ab: 2f:8a:95:3d:6b:b6:59:6e:32:ba:47:0d:84:49:36:8e:62:e7: d9:1a:c2:d9:3a:fc:2b:8a:be:a3:e0:31:69:75:8e:6b:5f:c3: 47:7d:e6:67:8b:4c:6d:d8:08:c0:54:48:a4:5d:ba:06:66:1e: cc:ea:61:0a:a1:1e:9a:8b:50:3a:b4:bd:33:fb:e0:0a:02:88: 5b:fe:d5:b1:c5:3a:0f:17:98:a3:58:53:ab:f6:25:f7:0e:8d: 32:18:72:99:d7:e3:bb:1a:db:d5:ff:a4:fa:b5:ec:03:65:71: 52:db:29:1e:ac:9f:6f:88:99:bb:2f:08:61:2f:cf:7b:d9:ec: ba:fe:2f:96:ff:27:12:84:be:84:01:31:37:f7:f0:6d:91:54: 16:32:e7:75:10:47:a6:8b:82:a8:96:2e:9c:92:c9:b4:d0:7c: 97:b3:40:53:9f:d1:25:80:a4:72:cf:96:38:30:62:5a:a0:2d: 8e:94:ce:51:8a:d3:2a:ab:28:1a:01:43:c9:60:ad:19:f5:16: 9d:ea:8e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUxMTAzMDQ0NjUyWhcNMjUxMTEwMDQ0NjUyWjAYMRYwFAYD VQQDEw02OTA4MzNiYy00NzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrM3okW+KantGkcy46KXTy0vKdmFu1CleosCgXbU6CItWpoMAg3MqDVCA3mO nKAIpUNywAmMtUoXd2ImxJ4buH9/dM8SbmevWdOtv/THDrrCAV6EhEF4sagZkU37 egHXmF8bqVog2O02H4VZd0k+7yXai1LOn3jGvmdQfqo58GXGGOqPvYecp0WIViZP TilRmxVnUgeLaQ3LOlf0j7/eVz2oiclatQJOmykysB4qSP/qG8NHDprl3u93etNr JJQJUvDPNM6/hfGFQRMY7IJw8FIlai5jpJ7EsN6KgT/m87coq+lyUtsf6874PoP/ MspCL8Q9gIfeOEcU8PtlN6T5RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLg+Tvry 1gFA+foyvK8KrfxDR+jPMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4KQmr6dtCkJv3rPg6iNgTPbV5WBdgWZW17ShRGZqeHgnpVwxQwxM+ KEvdYzdRPBqmlbGzaKsvipU9a7ZZbjK6Rw2ESTaOYufZGsLZOvwrir6j4DFpdY5r X8NHfeZni0xt2AjAVEikXboGZh7M6mEKoR6ai1A6tL0z++AKAohb/tWxxToPF5ij WFOr9iX3Do0yGHKZ1+O7GtvV/6T6tewDZXFS2ykerJ9viJm7LwhhL8972ey6/i+W /ycShL6EATE39/BtkVQWMud1EEemi4Koli6cksm00HyXs0BTn9ElgKRyz5Y4MGJa oC2OlM5RitMqqygaAUPJYK0Z9Rad6o50 -----END CERTIFICATE-----Generated at Tue Nov 4 08:07:10 2025 by rpki-client