$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft File: Op4IQWhX5XRXw49Tbg1usjbf-2E.mft (raw, json) Hash identifier: 1B4no+GBF3D97ZsFjTGO9Z6abEE4EqpXIHpR7WnByzg= Subject key identifier: 89:77:EB:AF:70:3C:86:01:23:EB:1A:05:A8:EC:0F:1F:64:EF:B4:03 Authority key identifier: 3A:9E:08:41:68:57:E5:74:57:C3:8F:53:6E:0D:6E:B2:36:DF:FB:61 Certificate issuer: /CN=A9197CED/serialNumber=3A9E08416857E57457C38F536E0D6EB236DFFB61 Certificate serial: 3691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Op4IQWhX5XRXw49Tbg1usjbf-2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft Manifest number: 35C7 Signing time: Tue 04 Nov 2025 14:24:30 +0000 Manifest this update: Tue 04 Nov 2025 14:24:29 +0000 Manifest next update: Tue 11 Nov 2025 14:24:29 +0000 Files and hashes: 1: Op4IQWhX5XRXw49Tbg1usjbf-2E.crl (hash: IKiFz1zPZksZKsBepAiuHscS3e1mBjXkq41sPQh82MA=) 2: AEA729F2978611F092A35C80C4F9AE02.roa (hash: kxKIhewVnzrURW/58CmuEcgn3F+G19QIgRvpMtuBPy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.crl rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Op4IQWhX5XRXw49Tbg1usjbf-2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13969 (0x3691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CED, serialNumber=3A9E08416857E57457C38F536E0D6EB236DFFB61 Validity Not Before: Nov 4 14:24:29 2025 GMT Not After : Nov 11 14:24:29 2025 GMT Subject: CN=690a0c9e-824a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9c:7a:b9:b7:94:29:12:d0:53:af:f5:6f:75: 3d:75:94:b0:81:73:d5:cf:10:96:24:2c:03:5c:f6: ec:e8:08:dc:af:71:56:f6:71:a8:2e:fd:cd:55:ae: a7:26:b8:b6:00:f5:7d:b4:bc:43:9c:2d:c7:2b:7f: 88:ff:ef:48:95:8c:72:76:07:80:41:78:f6:e1:0d: ce:38:bf:77:79:d7:66:78:ce:50:12:bb:0b:79:4e: 4c:a4:ee:20:03:01:7b:95:d9:6c:57:a8:c8:bd:8e: 9a:5d:dd:83:fb:c8:de:27:7b:54:5a:07:c3:9d:03: c3:7f:84:15:5b:5a:65:81:fc:0d:11:f8:d3:39:a8: a2:76:25:4e:ac:d0:0e:03:00:28:49:58:bc:29:73: 1f:5f:54:43:c0:ff:ff:86:00:12:78:f0:fc:19:1e: f5:73:5d:35:81:d4:a4:8a:2a:12:9a:9f:21:3e:26: e1:21:0c:59:5c:1b:c6:fd:15:3a:b3:6f:b1:48:74: 96:f0:b0:a1:4f:4d:95:90:98:69:65:ac:e5:e2:04: 1b:17:06:99:48:77:61:2a:e3:ba:36:34:d9:3e:db: 1e:50:9c:69:87:f9:20:c2:a1:34:31:4e:92:75:c4: d2:b6:e4:5c:d6:6e:d9:11:0d:1d:54:96:7a:68:3d: 6c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:77:EB:AF:70:3C:86:01:23:EB:1A:05:A8:EC:0F:1F:64:EF:B4:03 X509v3 Authority Key Identifier: keyid:3A:9E:08:41:68:57:E5:74:57:C3:8F:53:6E:0D:6E:B2:36:DF:FB:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Op4IQWhX5XRXw49Tbg1usjbf-2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:b3:96:8a:a4:5d:e9:bf:c3:76:8d:ec:5c:b7:70:3d:92:35: 92:d3:4d:21:9f:94:98:5c:2c:31:4b:a2:8a:cb:2a:05:ea:bb: 46:fd:06:cb:a3:09:17:7e:c0:a7:bc:cb:5f:42:6e:fa:4c:ac: d4:c0:17:3f:a5:bd:27:0c:26:eb:58:00:d9:24:fd:47:54:b9: 1c:48:f0:a1:84:d0:3c:e7:ab:fa:d6:89:71:a6:dd:ad:22:94: c4:5f:be:02:35:9a:4e:89:ce:92:e4:ac:7f:c8:68:4c:a0:6a: ac:a9:dc:33:64:cd:e4:c4:bb:c5:f4:7b:96:ec:f6:7a:1c:dd: c1:17:fc:b7:8e:a4:3b:d1:38:b3:85:c1:f6:f8:a3:5a:81:7b: 2c:ad:2e:e6:57:a8:e0:39:b8:e7:1a:9d:b4:38:3f:15:37:9d: ae:00:d8:1e:15:90:ae:95:ce:15:0a:74:36:dd:0a:c8:e1:4c: 8e:39:d4:98:40:4d:f7:40:ec:79:6b:b2:0c:e4:07:34:e3:62: e3:e1:e3:ad:36:13:1f:c9:ea:64:46:61:ef:2e:21:69:5a:de: 53:fb:88:3f:52:f5:98:34:26:2b:d6:c6:7e:86:2d:dc:e9:3f: 81:14:1c:a4:c8:ea:b3:12:ae:37:d6:e1:9c:9e:6c:94:8e:54: 55:72:0e:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDRUQxMTAvBgNVBAUTKDNBOUUwODQxNjg1N0U1NzQ1N0MzOEY1MzZFMEQ2RUIy MzZERkZCNjEwHhcNMjUxMTA0MTQyNDI5WhcNMjUxMTExMTQyNDI5WjAYMRYwFAYD VQQDEw02OTBhMGM5ZS04MjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZx6ubeUKRLQU6/1b3U9dZSwgXPVzxCWJCwDXPbs6Ajcr3FW9nGoLv3NVa6n Jri2APV9tLxDnC3HK3+I/+9IlYxydgeAQXj24Q3OOL93eddmeM5QErsLeU5MpO4g AwF7ldlsV6jIvY6aXd2D+8jeJ3tUWgfDnQPDf4QVW1plgfwNEfjTOaiidiVOrNAO AwAoSVi8KXMfX1RDwP//hgASePD8GR71c101gdSkiioSmp8hPibhIQxZXBvG/RU6 s2+xSHSW8LChT02VkJhpZazl4gQbFwaZSHdhKuO6NjTZPtseUJxph/kgwqE0MU6S dcTStuRc1m7ZEQ0dVJZ6aD1s3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl3669w PIYBI+saBajsDx9k77QDMB8GA1UdIwQYMBaAFDqeCEFoV+V0V8OPU24NbrI23/th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NFRC84M0Y1NkRBQzFE ODQxMUUyOTEwNjg5REEwOEIwMkNEMi9PcDRJUVdoWDVYUlh3NDlUYmcxdXNqYmYt MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09wNElRV2hYNVhSWHc0OVRiZzF1c2piZi0yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NFRC84M0Y1NkRBQzFEODQxMUUyOTEwNjg5REEwOEIwMkNEMi9PcDRJUVdoWDVY Ulh3NDlUYmcxdXNqYmYtMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjs5aKpF3pv8N2jexct3A9kjWS000hn5SYXCwxS6KKyyoF6rtG/QbL owkXfsCnvMtfQm76TKzUwBc/pb0nDCbrWADZJP1HVLkcSPChhNA856v61olxpt2t IpTEX74CNZpOic6S5Kx/yGhMoGqsqdwzZM3kxLvF9HuW7PZ6HN3BF/y3jqQ70Tiz hcH2+KNagXssrS7mV6jgObjnGp20OD8VN52uANgeFZCulc4VCnQ23QrI4UyOOdSY QE33QOx5a7IM5Ac042Lj4eOtNhMfyepkRmHvLiFpWt5T+4g/UvWYNCYr1sZ+hi3c 6T+BFBykyOqzEq431uGcnmyUjlRVcg5q -----END CERTIFICATE-----Generated at Wed Nov 5 13:02:35 2025 by rpki-client