$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft File: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft (raw, json) Hash identifier: l5QKmbF78ZEtxnz9lef9dqpV1NiCBi2zEfVHb+FOTvw= Subject key identifier: B2:77:71:72:5A:AE:2B:85:B5:9B:AB:29:CE:58:78:41:F0:12:26:7F Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft Manifest number: 068C Signing time: Tue 04 Nov 2025 22:32:19 +0000 Manifest this update: Tue 04 Nov 2025 22:32:19 +0000 Manifest next update: Tue 11 Nov 2025 22:32:19 +0000 Files and hashes: 1: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl (hash: WsCOdD5jGCrgQESNZs4yGFY4mQPtuSjvGAWbLAGeKGM=) 2: 91F7C78A7F1711F089227832C4F9AE02.roa (hash: FY5Gy5Y1iXEZUxEVUrYPbqyjzId5K+fC2igE4uNXrvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897, serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Nov 4 22:32:19 2025 GMT Not After : Nov 11 22:32:19 2025 GMT Subject: CN=690a7ef3-30dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:b1:c4:51:bf:fd:06:53:1a:fe:3e:0d:1a: d0:3b:97:92:5b:6c:bb:71:72:91:1f:32:44:4d:c8: 59:73:bf:77:8c:fb:3a:bd:32:b2:27:cc:64:c1:47: 44:1d:ce:f5:8b:41:56:4a:e8:c4:21:4f:40:a7:37: 97:43:be:56:5f:68:6e:8f:af:10:f7:2d:e8:bd:82: ae:40:13:eb:47:e1:d0:ec:af:b3:29:29:9b:3a:ba: e0:a2:aa:c3:37:4b:45:c5:7f:b0:e2:f5:8a:1c:92: 76:ac:52:c0:25:96:9a:d6:72:0b:15:53:4e:03:df: 5d:ff:a8:30:9b:3c:3b:64:f9:9e:e2:0c:51:64:cb: 0a:56:76:d2:5c:44:b3:6d:51:d4:65:cd:4e:87:f8: b1:74:49:2a:30:2a:bd:11:a0:49:f4:52:1f:5b:51: 95:99:ad:69:c7:7b:1a:56:47:02:15:d3:7c:6c:21: 2c:30:f9:f6:45:87:e8:c0:4c:83:5f:54:70:98:94: d5:9f:65:fa:39:c9:64:73:a0:a4:5f:20:dd:9e:d8: 10:22:fb:5d:10:ad:b4:e0:05:08:f2:50:0b:7b:f3: 2b:64:82:e4:5e:4f:38:aa:1c:4a:16:be:d4:a3:f1: b1:a7:55:05:10:b2:43:d8:1a:fe:39:07:46:34:b0: 1e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:77:71:72:5A:AE:2B:85:B5:9B:AB:29:CE:58:78:41:F0:12:26:7F X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:4f:e9:97:91:b5:06:3c:46:41:c3:53:7d:81:e5:25:1a:ba: ab:c7:d2:ad:96:89:a8:78:4f:98:5b:1b:9b:db:48:41:4a:81: 2a:4a:ad:53:db:5b:80:3d:79:49:93:16:32:e0:98:f7:81:9f: b0:ef:5b:4a:97:90:c4:d4:7a:5a:4e:d3:4d:b6:b2:52:86:83: 5b:5a:f0:e4:8f:1f:b7:10:df:eb:4a:38:4a:bf:d4:24:bf:c8: 42:0c:86:2c:59:1d:de:34:43:a7:dd:0c:0e:45:65:79:ac:9c: b1:94:5a:57:91:25:38:2e:d0:b5:f9:60:7e:bb:dd:3e:68:a9: e9:06:52:75:95:f9:3d:81:2f:f3:6c:82:ef:6a:a3:3b:a9:57: 45:40:2c:3a:b3:54:f4:77:b4:14:cc:8c:b2:86:98:f0:d0:06: 0b:ea:e9:e6:3b:80:e3:2b:ef:c8:80:32:6c:ee:8c:d8:02:45: c5:a7:2e:67:e3:01:6e:8a:ee:39:d7:be:54:78:75:a6:6b:7f: af:9c:00:44:84:36:9d:a5:b9:4c:27:e4:93:27:e1:a4:33:92: dd:65:78:64:f0:17:c0:ac:80:dc:d1:c9:c5:cd:83:b9:5a:05: cc:1a:32:fe:d5:60:45:68:da:b5:48:22:5e:7a:e9:ba:fb:c6: a2:39:91:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjUxMTA0MjIzMjE5WhcNMjUxMTExMjIzMjE5WjAYMRYwFAYD VQQDEw02OTBhN2VmMy0zMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSSxxFG//QZTGv4+DRrQO5eSW2y7cXKRHzJETchZc793jPs6vTKyJ8xkwUdE Hc71i0FWSujEIU9ApzeXQ75WX2huj68Q9y3ovYKuQBPrR+HQ7K+zKSmbOrrgoqrD N0tFxX+w4vWKHJJ2rFLAJZaa1nILFVNOA99d/6gwmzw7ZPme4gxRZMsKVnbSXESz bVHUZc1Oh/ixdEkqMCq9EaBJ9FIfW1GVma1px3saVkcCFdN8bCEsMPn2RYfowEyD X1RwmJTVn2X6Oclkc6CkXyDdntgQIvtdEK204AUI8lALe/MrZILkXk84qhxKFr7U o/Gxp1UFELJD2Br+OQdGNLAeZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJ3cXJa riuFtZurKc5YeEHwEiZ/MB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTg5Ny9FMUQxMTc3MDk1QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4 VHhTUzBHTGJEWkdVNmZVSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkT+mXkbUGPEZBw1N9geUlGrqrx9KtlomoeE+YWxub20hBSoEqSq1T 21uAPXlJkxYy4Jj3gZ+w71tKl5DE1HpaTtNNtrJShoNbWvDkjx+3EN/rSjhKv9Qk v8hCDIYsWR3eNEOn3QwORWV5rJyxlFpXkSU4LtC1+WB+u90+aKnpBlJ1lfk9gS/z bILvaqM7qVdFQCw6s1T0d7QUzIyyhpjw0AYL6unmO4DjK+/IgDJs7ozYAkXFpy5n 4wFuiu45175UeHWma3+vnABEhDadpblMJ+STJ+GkM5LdZXhk8BfArIDc0cnFzYO5 WgXMGjL+1WBFaNq1SCJeeum6+8aiOZFT -----END CERTIFICATE-----Generated at Wed Nov 5 15:03:43 2025 by rpki-client