$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: 3dwPiKzaauMRliE+cWX4o3So/QDoy28chKnmhr9xs3g= Subject key identifier: 78:77:10:17:8C:A0:A4:AA:3D:7C:A7:03:D5:5F:D3:D1:8A:1B:65:67 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 075F Signing time: Sun 02 Nov 2025 21:37:53 +0000 Manifest this update: Sun 02 Nov 2025 21:37:53 +0000 Manifest next update: Sun 09 Nov 2025 21:37:53 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: atc/dq5YpY5fp/NHkGXBcWGJmjub6BUlpd9r+6pebSQ=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Nov 2 21:37:53 2025 GMT Not After : Nov 9 21:37:53 2025 GMT Subject: CN=6907cf31-5f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:30:6c:b9:2e:be:1b:86:7f:67:09:c2:84:71: 46:8c:fa:6b:da:15:32:5f:39:e1:98:23:21:72:8e: 80:11:a8:c5:6d:7d:56:7f:30:98:54:43:91:09:f6: 57:b1:b2:57:ee:89:1f:04:e3:e2:02:15:2f:c6:7b: ed:1c:11:9f:66:2f:78:d9:95:de:eb:97:9e:71:e8: 83:c2:79:63:8c:d0:0e:67:84:5f:45:31:b5:e6:0d: c1:40:48:60:15:57:7e:10:67:bb:43:7d:56:46:50: e3:21:3b:2d:bc:af:4c:29:7b:41:b0:70:6d:c5:dd: 04:22:09:e7:ef:58:fb:4f:68:40:69:95:d0:ef:a7: ff:88:68:03:fa:01:13:bc:6d:d6:85:2d:0a:af:10: d6:ae:fb:02:fe:37:00:77:46:a7:e5:1b:b0:c1:9f: 4f:01:12:8f:aa:83:e8:9c:80:11:a4:2e:89:6d:8e: cf:d2:28:c7:90:9c:82:71:2b:ff:21:8e:c2:9b:0a: 52:1d:75:a4:5d:00:b5:09:55:47:3d:14:54:c6:fb: 51:e0:7b:29:4f:02:71:db:cf:f9:14:46:57:93:77: 51:1b:63:91:e4:b4:d8:c7:a5:12:cc:26:cc:34:5e: e6:be:a0:6c:1c:64:24:65:30:e5:52:37:68:04:0a: 94:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:77:10:17:8C:A0:A4:AA:3D:7C:A7:03:D5:5F:D3:D1:8A:1B:65:67 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:c8:77:59:e0:a9:54:1f:b1:51:f1:06:87:43:82:f4:da:82: 18:3c:f0:4a:0a:c6:9e:24:08:dc:af:fd:fd:19:fc:29:14:8b: 77:f1:4a:10:7e:49:f5:46:da:c5:40:91:5d:18:5b:d0:30:be: 36:93:fc:9c:d7:98:6d:cc:a7:a6:37:b3:c9:09:4f:57:66:19: 08:98:b1:71:f2:d6:3b:9c:9c:97:bf:b3:6b:2f:ce:db:01:0c: 4f:b7:cd:c4:4b:ad:42:d2:d4:86:ec:8e:b5:bc:1d:50:39:75: 8b:48:ba:80:c5:94:92:5b:0a:93:2c:97:a0:35:e4:f2:50:1c: 48:ac:85:87:9d:4a:d6:bb:6b:00:ce:25:d5:4b:78:82:c8:75: 69:3d:e9:8b:fd:3c:c0:5a:04:23:6e:3f:a3:d0:77:6e:27:b0: f0:3c:c5:c8:0d:2d:6c:92:d0:0d:d4:3e:4c:b0:24:8f:55:1c: 9c:43:dc:b7:ac:eb:e7:01:c4:e1:97:a9:ae:68:91:6c:d2:7f: f9:92:1c:6d:31:87:75:c7:24:01:40:93:a2:97:f0:65:43:b2: 29:0f:a8:71:a0:a4:a6:0f:64:c9:80:f1:26:46:40:30:73:b5: fe:1b:78:54:b0:f8:ad:1c:e5:c4:9a:d7:39:e9:a5:ae:40:b5: f4:e2:8c:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUxMTAyMjEzNzUzWhcNMjUxMTA5MjEzNzUzWjAYMRYwFAYD VQQDEw02OTA3Y2YzMS01ZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzBsuS6+G4Z/ZwnChHFGjPpr2hUyXznhmCMhco6AEajFbX1WfzCYVEORCfZX sbJX7okfBOPiAhUvxnvtHBGfZi942ZXe65eeceiDwnljjNAOZ4RfRTG15g3BQEhg FVd+EGe7Q31WRlDjITstvK9MKXtBsHBtxd0EIgnn71j7T2hAaZXQ76f/iGgD+gET vG3WhS0KrxDWrvsC/jcAd0an5RuwwZ9PARKPqoPonIARpC6JbY7P0ijHkJyCcSv/ IY7CmwpSHXWkXQC1CVVHPRRUxvtR4HspTwJx28/5FEZXk3dRG2OR5LTYx6USzCbM NF7mvqBsHGQkZTDlUjdoBAqUnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHh3EBeM oKSqPXynA9Vf09GKG2VnMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTyHdZ4KlUH7FR8QaHQ4L02oIYPPBKCsaeJAjcr/39GfwpFIt38UoQ fkn1RtrFQJFdGFvQML42k/yc15htzKemN7PJCU9XZhkImLFx8tY7nJyXv7NrL87b AQxPt83ES61C0tSG7I61vB1QOXWLSLqAxZSSWwqTLJegNeTyUBxIrIWHnUrWu2sA ziXVS3iCyHVpPemL/TzAWgQjbj+j0HduJ7DwPMXIDS1sktAN1D5MsCSPVRycQ9y3 rOvnAcThl6muaJFs0n/5khxtMYd1xyQBQJOil/BlQ7IpD6hxoKSmD2TJgPEmRkAw c7X+G3hUsPitHOXEmtc56aWuQLX04oxK -----END CERTIFICATE-----Generated at Tue Nov 4 18:53:37 2025 by rpki-client