$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: ysskXXoWDd+PUq9mhuuDIhJr5ldVhlMZW27zv8pzFkk= Subject key identifier: 4E:53:F8:78:EC:90:ED:2C:47:C8:E9:44:7F:6A:9F:96:70:F5:3D:F1 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: AE Signing time: Mon 03 Nov 2025 06:21:32 +0000 Manifest this update: Mon 03 Nov 2025 06:21:32 +0000 Manifest next update: Mon 10 Nov 2025 06:21:32 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: +sHP++Ls+wiT0sl6rw72aKa52C2C/GpX9asqvE12DYg=) 2: 8CC6B54CB44011F0ACFB4D45C4F9AE02.roa (hash: dqRzvsYYzS0ot/6HGxMcWMe4B7L97QuQgSdCQiuHa2U=) 3: 4B34CDD888EB11F09EC0EE50C4F9AE02.roa (hash: p4wINUwzjfYN0Bo2oW/pH90dIns+xH2+FFOhnoxyjpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Nov 3 06:21:32 2025 GMT Not After : Nov 10 06:21:32 2025 GMT Subject: CN=690849ec-b278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e6:c9:57:84:66:95:b7:1b:fa:0d:92:94:27: 85:6f:84:d6:64:1e:21:8f:ac:cc:8e:93:64:09:43: 7b:28:4a:a3:8e:28:b8:d5:ef:53:13:42:11:ca:96: 37:0a:1c:65:bb:08:f3:34:83:58:0c:42:8e:80:4b: 71:2a:da:58:76:3d:9a:9e:c6:ff:e9:df:27:10:16: e3:d4:ff:7c:3c:98:ff:68:df:ca:35:fd:19:21:3e: b5:27:eb:65:5a:55:1b:b5:92:9f:81:51:7f:5e:62: 91:b4:68:36:fb:36:1e:87:ee:09:6e:01:0d:0f:f4: 71:7d:1d:01:55:1c:a5:98:fb:78:0c:32:91:80:cb: b5:c0:a9:92:75:42:4e:df:36:8f:9c:3f:29:c1:22: b3:1c:46:fb:ef:99:3f:a0:b3:1b:72:eb:67:72:3b: a1:a6:e8:f8:13:51:40:ef:86:14:7c:89:ea:65:95: 15:1a:10:20:4f:65:24:88:92:05:95:d9:2a:3f:db: 4e:be:f7:96:f6:98:0c:f7:85:be:8a:1d:a2:04:8f: 68:46:f0:b4:bf:3f:42:9c:61:54:d0:1f:e3:01:54: 88:ee:df:b8:46:46:dc:24:05:19:2b:5a:f5:fd:8d: 46:75:02:1f:3b:0a:eb:72:2d:ce:f8:03:c1:d3:a7: 0f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:53:F8:78:EC:90:ED:2C:47:C8:E9:44:7F:6A:9F:96:70:F5:3D:F1 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fe:a8:6c:cf:07:3e:ed:6f:87:3b:28:1a:bb:86:b5:ff:73: 20:81:e0:19:b0:0f:a5:cf:7f:3f:9f:b0:a1:4c:02:13:5d:fb: 4a:16:61:8b:0f:99:15:44:fb:69:be:b2:b8:73:63:f0:73:3b: 91:fa:59:2f:c4:02:51:bd:7e:e9:eb:e4:dc:c3:fc:19:08:b2: be:90:02:51:68:10:5d:e6:06:b3:a7:5e:1b:f3:95:d7:33:26: 66:b9:7e:0a:46:4c:06:f9:64:3d:cc:47:92:67:41:44:83:58: 0a:9f:96:dc:3c:10:b9:81:01:05:9c:88:b6:ee:1d:a0:b4:09: 4f:9f:9b:8b:b1:e1:53:81:38:42:20:b3:77:f1:19:3b:4a:55: 0e:0e:00:19:e0:be:81:d3:80:bd:d0:ca:6a:cd:70:98:3f:b2: 91:8c:9b:28:28:32:1a:08:fe:64:4b:d4:53:54:bc:30:93:b6: de:d4:53:1a:58:70:ed:3e:d0:e6:76:d7:e8:6c:7f:06:11:27: be:e3:0c:b6:17:cf:5d:8f:e2:33:15:55:86:09:79:58:02:45: 07:7a:ac:f1:4c:1b:dd:6d:0a:e0:67:ce:bc:1f:ab:8c:f3:e2: db:0f:cc:43:f6:bd:53:1a:42:2b:20:19:48:c5:ee:ba:b7:78: 73:92:34:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKDM5MEEzODM3QUJBNjkxMkEyQ0YyOUU2MTBEQTQ5NTU1 REYyQzZGQTUwHhcNMjUxMTAzMDYyMTMyWhcNMjUxMTEwMDYyMTMyWjAYMRYwFAYD VQQDEw02OTA4NDllYy1iMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+bJV4Rmlbcb+g2SlCeFb4TWZB4hj6zMjpNkCUN7KEqjjii41e9TE0IRypY3 ChxluwjzNINYDEKOgEtxKtpYdj2ansb/6d8nEBbj1P98PJj/aN/KNf0ZIT61J+tl WlUbtZKfgVF/XmKRtGg2+zYeh+4JbgEND/RxfR0BVRylmPt4DDKRgMu1wKmSdUJO 3zaPnD8pwSKzHEb775k/oLMbcutncjuhpuj4E1FA74YUfInqZZUVGhAgT2UkiJIF ldkqP9tOvveW9pgM94W+ih2iBI9oRvC0vz9CnGFU0B/jAVSI7t+4RkbcJAUZK1r1 /Y1GdQIfOwrrci3O+APB06cPVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5T+Hjs kO0sR8jpRH9qn5Zw9T3xMB8GA1UdIwQYMBaAFDkKODerppEqLPKeYQ2klVXfLG+l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9ERTdFMzIxRUNC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtTb3M4cDVoRGFTVlZkOHNi NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtT b3M4cDVoRGFTVlZkOHNiNlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa/qhszwc+7W+HOygau4a1/3MggeAZsA+lz38/n7ChTAITXftKFmGL D5kVRPtpvrK4c2PwczuR+lkvxAJRvX7p6+Tcw/wZCLK+kAJRaBBd5gazp14b85XX MyZmuX4KRkwG+WQ9zEeSZ0FEg1gKn5bcPBC5gQEFnIi27h2gtAlPn5uLseFTgThC ILN38Rk7SlUODgAZ4L6B04C90MpqzXCYP7KRjJsoKDIaCP5kS9RTVLwwk7be1FMa WHDtPtDmdtfobH8GESe+4wy2F89dj+IzFVWGCXlYAkUHeqzxTBvdbQrgZ868H6uM 8+LbD8xD9r1TGkIrIBlIxe66t3hzkjTc -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:31 2025 by rpki-client