$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: Tm4vtxCEH9dgivOc6PlhTSYIaAEpuNOhofMQ6sJj3h4= Subject key identifier: FC:55:19:80:FF:DB:83:99:7D:B8:5A:B6:3D:BE:FC:96:BE:45:D4:D9 Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0C24 Signing time: Tue 04 Nov 2025 18:48:04 +0000 Manifest this update: Tue 04 Nov 2025 18:48:04 +0000 Manifest next update: Tue 11 Nov 2025 18:48:04 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: kOp9eVI6kuzhUht+Xm81K00fI6GeNOx8tn71QWFEOlo=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: j0DWhsEHoal3Q4LsD1CyE+J4i6jhKjEMjW9pXFwYCvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205, serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: Nov 4 18:48:04 2025 GMT Not After : Nov 11 18:48:04 2025 GMT Subject: CN=690a4a64-8f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:04:e0:88:dd:d4:23:68:8a:9e:fe:5e:c4:96: 55:7f:29:c2:7b:db:fb:13:a4:82:02:0f:e7:01:29: 9c:94:22:bd:96:17:40:0a:34:9e:6c:34:ce:73:ab: 4f:a5:6f:27:85:1b:df:de:6c:d3:8b:09:48:e0:82: 5e:7e:b0:aa:b4:75:6a:27:82:43:28:42:ad:a3:19: 98:dc:05:26:3b:ce:10:aa:25:b4:a1:09:88:55:36: 96:d8:6f:f2:07:e7:7f:f0:fb:9e:a6:80:db:9d:0c: 9d:3e:8d:98:a3:5c:69:c4:29:c9:a7:6f:52:6f:c4: e8:b4:be:2e:a6:ce:bb:a3:7f:d5:38:87:a6:45:f6: d1:5a:11:a5:94:25:0f:17:eb:d1:f5:2f:08:30:70: 85:4c:37:86:a0:db:43:71:f3:41:3e:df:6e:24:8f: bf:3b:c6:14:b8:4e:28:0b:19:3a:df:c7:f4:11:9b: d5:c1:6c:05:b4:e4:4f:ce:0e:ec:94:2e:27:e0:fb: 44:c8:55:92:54:d3:42:ae:67:cc:ce:ac:c6:86:53: 2a:f1:6f:a6:d3:dc:45:76:8b:a5:26:b7:de:fe:eb: cc:75:66:f9:f3:47:9f:f6:35:34:1e:98:09:d9:65: 68:cf:e5:3b:ee:7a:31:c8:eb:c9:e4:54:4a:d9:79: 50:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:55:19:80:FF:DB:83:99:7D:B8:5A:B6:3D:BE:FC:96:BE:45:D4:D9 X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:6e:a6:2a:55:8e:42:ca:d4:4f:0c:9e:35:e7:36:66:dc:1d: 16:20:6d:b3:f0:2b:b6:0a:38:c6:fb:21:6c:84:c0:c7:b0:f1: d9:10:e7:f2:fb:e0:ba:ed:16:48:bc:4d:83:69:59:90:24:4e: 71:eb:2b:7a:c1:f1:7f:db:c4:92:30:83:a0:a7:25:b2:19:90: 46:23:8b:ef:9f:e7:4a:79:56:36:93:9c:1c:66:f0:69:87:fa: 05:ae:77:68:1d:5c:85:00:2c:e7:b9:e1:fb:bb:f5:10:76:3f: 39:41:6f:a2:7e:20:ea:54:dc:8a:6f:36:32:19:1d:a2:f3:d9: 16:14:f9:0f:9c:2b:ff:48:bc:cc:eb:82:45:17:ed:ee:9b:74: b5:4c:42:79:20:eb:50:a8:2a:c2:3c:d1:1b:6a:f1:74:e9:0e: 42:10:f6:04:f3:b5:cb:ca:51:32:82:4e:6d:e8:0f:9d:02:f8: 2b:c9:bf:de:60:32:32:66:77:1c:6b:fc:9d:38:22:3d:7b:0e: 82:18:f1:1c:1e:8a:4c:fd:2d:94:84:2d:a8:50:1a:ff:37:5c: fe:c8:37:fe:b4:8e:27:28:9b:22:62:03:f2:0c:48:f6:d6:2b: ef:78:98:e0:f1:51:a7:71:78:5e:cb:53:98:87:d8:9a:8b:2b: 99:17:75:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjUxMTA0MTg0ODA0WhcNMjUxMTExMTg0ODA0WjAYMRYwFAYD VQQDEw02OTBhNGE2NC04ZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgTgiN3UI2iKnv5exJZVfynCe9v7E6SCAg/nASmclCK9lhdACjSebDTOc6tP pW8nhRvf3mzTiwlI4IJefrCqtHVqJ4JDKEKtoxmY3AUmO84QqiW0oQmIVTaW2G/y B+d/8PuepoDbnQydPo2Yo1xpxCnJp29Sb8TotL4ups67o3/VOIemRfbRWhGllCUP F+vR9S8IMHCFTDeGoNtDcfNBPt9uJI+/O8YUuE4oCxk638f0EZvVwWwFtORPzg7s lC4n4PtEyFWSVNNCrmfMzqzGhlMq8W+m09xFdoulJrfe/uvMdWb580ef9jU0HpgJ 2WVoz+U77noxyOvJ5FRK2XlQEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxVGYD/ 24OZfbhatj2+/Ja+RdTZMB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRbqYqVY5CytRPDJ415zZm3B0WIG2z8Cu2CjjG+yFshMDHsPHZEOfy ++C67RZIvE2DaVmQJE5x6yt6wfF/28SSMIOgpyWyGZBGI4vvn+dKeVY2k5wcZvBp h/oFrndoHVyFACznueH7u/UQdj85QW+ifiDqVNyKbzYyGR2i89kWFPkPnCv/SLzM 64JFF+3um3S1TEJ5IOtQqCrCPNEbavF06Q5CEPYE87XLylEygk5t6A+dAvgryb/e YDIyZncca/ydOCI9ew6CGPEcHopM/S2UhC2oUBr/N1z+yDf+tI4nKJsiYgPyDEj2 1ivveJjg8VGncXhey1OYh9iaiyuZF3Vr -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:30 2025 by rpki-client