$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: rXIaVGMsJMRjyy1ZS7JB8BKnVlqiIzmFjN+B2RKxnyg= Subject key identifier: CE:00:6B:4F:63:28:96:0F:57:BC:67:01:77:2F:E4:33:BC:C2:F0:63 Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 02FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 02F8 Signing time: Wed 05 Nov 2025 01:19:04 +0000 Manifest this update: Wed 05 Nov 2025 01:19:03 +0000 Manifest next update: Wed 12 Nov 2025 01:19:03 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: D5Uc6RLOCP9JkPFWqFbG9LzQHV4YQfBcoMGPdNsPwjw=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Nov 5 01:19:03 2025 GMT Not After : Nov 12 01:19:03 2025 GMT Subject: CN=690aa607-3207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b9:00:3a:2e:f1:46:27:95:f0:10:c6:5b:8f: f5:f9:93:d3:79:f5:26:5f:76:c9:7d:25:aa:32:0d: d9:69:c7:4a:3d:53:5b:30:34:b5:5e:a9:cb:d6:4d: e2:c8:72:0f:a5:5e:f5:5a:ad:11:3d:92:19:14:bb: a2:e5:6c:3c:61:eb:b1:ec:44:b2:36:70:4a:eb:af: 6e:8c:7a:37:a8:3a:d8:5b:61:4c:2e:66:18:90:2b: 4f:01:54:b1:40:ab:34:67:5e:43:45:e3:d5:69:9e: 44:10:7d:93:37:52:f0:6d:2b:60:32:0f:58:6b:49: 7d:11:8a:d8:35:d1:9a:40:84:54:95:4f:8a:60:45: eb:ee:57:86:aa:0d:fc:55:5f:57:c7:0d:ef:5e:58: c2:c5:74:1a:8f:2e:2e:51:46:34:1c:19:45:6f:7a: 21:f2:a3:35:6e:3a:b3:3d:4b:45:b9:04:15:be:c4: 04:92:24:21:f1:30:b9:70:4a:c9:e1:c6:c1:ce:2b: 68:43:ad:63:f3:72:7e:31:d5:be:5a:36:86:76:f4: 2a:20:a9:ab:a0:b6:0c:71:36:b8:d0:53:db:33:9e: da:7c:1a:54:61:ae:05:8f:f9:ae:13:22:5c:a5:70: 10:9c:4a:55:bf:15:21:23:f5:e0:58:f4:25:d7:ce: 4e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:00:6B:4F:63:28:96:0F:57:BC:67:01:77:2F:E4:33:BC:C2:F0:63 X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:d7:6f:9d:d4:db:41:72:66:a8:dc:c7:e3:c4:d7:c9:aa:19: 0c:1d:ba:90:68:88:9d:67:cf:c2:54:30:7c:5b:4b:92:ff:ee: 60:46:a6:7d:46:de:05:47:5c:f4:01:0d:a6:40:da:bb:9f:44: aa:d0:94:41:c3:6c:27:4f:ca:59:e8:4e:33:3f:e4:de:10:4b: 4d:dd:d0:b6:f3:67:21:3c:f5:df:03:20:8c:f4:22:0f:ce:c3: c1:2a:c7:34:25:4c:fe:2f:80:83:d3:db:07:38:e4:61:72:e8: e3:36:69:76:b0:31:ec:b9:ad:6c:23:70:0e:ac:2c:79:9c:e8: 06:97:6f:7a:26:df:71:db:7e:e1:cf:55:f6:08:2e:51:ee:b9: c3:61:5e:ec:f0:8e:fc:fc:ba:20:b8:c5:01:9a:ac:82:a3:f3: f4:6d:54:05:63:16:13:25:9d:6a:64:4c:3d:ef:92:26:53:b1: 73:4d:c0:fe:8e:4b:22:ea:af:73:0c:02:9e:51:5a:d8:1c:4e: a2:6e:fc:8f:b9:e0:0b:c1:3a:64:32:67:03:42:b2:cd:bb:c1: 5f:42:c5:d0:5f:88:e7:20:cc:16:1f:ba:d2:51:5f:be:3c:ab: 89:cb:15:b7:83:d7:1f:fe:90:68:ba:4a:b1:ac:47:1a:30:06: b5:80:93:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUxMTA1MDExOTAzWhcNMjUxMTEyMDExOTAzWjAYMRYwFAYD VQQDEw02OTBhYTYwNy0zMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9bkAOi7xRieV8BDGW4/1+ZPTefUmX3bJfSWqMg3ZacdKPVNbMDS1XqnL1k3i yHIPpV71Wq0RPZIZFLui5Ww8Yeux7ESyNnBK669ujHo3qDrYW2FMLmYYkCtPAVSx QKs0Z15DRePVaZ5EEH2TN1LwbStgMg9Ya0l9EYrYNdGaQIRUlU+KYEXr7leGqg38 VV9Xxw3vXljCxXQajy4uUUY0HBlFb3oh8qM1bjqzPUtFuQQVvsQEkiQh8TC5cErJ 4cbBzitoQ61j83J+MdW+WjaGdvQqIKmroLYMcTa40FPbM57afBpUYa4Fj/muEyJc pXAQnEpVvxUhI/XgWPQl185OIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4Aa09j KJYPV7xnAXcv5DO8wvBjMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA412+d1NtBcmao3MfjxNfJqhkMHbqQaIidZ8/CVDB8W0uS/+5gRqZ9 Rt4FR1z0AQ2mQNq7n0Sq0JRBw2wnT8pZ6E4zP+TeEEtN3dC282chPPXfAyCM9CIP zsPBKsc0JUz+L4CD09sHOORhcujjNml2sDHsua1sI3AOrCx5nOgGl296Jt9x237h z1X2CC5R7rnDYV7s8I78/LoguMUBmqyCo/P0bVQFYxYTJZ1qZEw975ImU7FzTcD+ jksi6q9zDAKeUVrYHE6ibvyPueALwTpkMmcDQrLNu8FfQsXQX4jnIMwWH7rSUV++ PKuJyxW3g9cf/pBoukqxrEcaMAa1gJMU -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:20 2025 by rpki-client