$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: BoLfiDvx2ZGGxzdJgvDXTv0SqFfCwTp3InJZUXorBaE= Subject key identifier: DD:7C:2A:B2:CC:3C:3F:6C:F4:66:48:03:49:37:84:84:4C:B9:C0:20 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 129B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 1282 Signing time: Tue 04 Nov 2025 17:11:20 +0000 Manifest this update: Tue 04 Nov 2025 17:11:20 +0000 Manifest next update: Tue 11 Nov 2025 17:11:20 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: 40EthI+aLO3yyEAf7B6WBtZkCN1/9qw4TP82SLu1Uio=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: u2n7hXJfpPkswx+8ZUw3IUUcjyPvy2JG1QnFE+FNubg=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: Xzla+9ppUwpzAJZ58gGvDCqRc3koCm2xr8tcv9e/5Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4763 (0x129b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Nov 4 17:11:20 2025 GMT Not After : Nov 11 17:11:20 2025 GMT Subject: CN=690a33b8-7dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:07:92:fc:d9:27:73:d3:70:eb:6e:ab:10: 6e:63:80:1f:99:01:e7:83:1c:33:16:1e:f0:21:e9: 89:f0:19:41:5c:20:04:02:94:65:54:53:b8:b7:1f: b5:40:1e:90:ac:1e:28:92:98:87:96:4c:74:b1:68: 70:7a:c6:04:64:8f:78:06:16:1f:34:6d:77:e7:a0: d4:62:13:79:ec:11:a3:04:07:c4:9e:a3:e3:1b:c2: 60:8e:52:41:7d:4c:52:6d:52:c8:a5:77:e2:af:e1: 08:4e:05:5e:7a:73:ad:e4:b0:b0:7d:f3:6c:1f:c5: 42:b1:c6:2f:54:77:8d:fd:37:84:48:a6:50:7b:3e: c0:8d:7c:02:46:00:56:e2:26:64:cd:1d:2e:5a:55: e9:b3:21:61:72:dc:47:4f:32:99:67:d5:b3:5e:f5: 58:38:5e:2c:57:39:3f:da:d6:a3:62:e6:80:9e:7e: 67:82:f3:c3:37:b9:cf:f8:2c:83:65:03:f3:b5:e8: 7a:6d:6e:c9:0a:58:00:70:7f:8e:71:58:be:04:19: 85:6e:fe:29:39:2e:cc:8c:24:3c:5a:1b:30:4c:dd: 6a:f7:76:44:ff:ed:3f:a9:72:d5:a4:6b:1b:c5:44: 94:91:ab:2f:6f:39:f5:bb:fe:57:28:44:64:93:6e: ee:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7C:2A:B2:CC:3C:3F:6C:F4:66:48:03:49:37:84:84:4C:B9:C0:20 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:2a:ed:e9:ea:a8:81:58:7d:0e:62:81:2c:8b:0c:14:56:6e: f2:ab:c7:a9:60:af:cc:66:18:b7:65:9b:b2:d7:ea:3d:9b:47: 90:04:11:15:c1:81:36:37:11:80:1d:af:58:39:4a:c7:2f:a6: 41:68:5e:cd:a0:37:8c:1d:23:d0:cb:6c:f5:4e:2c:31:89:bd: 2c:c0:e7:3e:8a:7e:ad:1b:cb:ef:6e:94:04:2b:24:8d:9a:17: b5:2b:c7:41:53:fe:04:1f:09:69:16:30:0f:72:47:2c:28:89: 77:5f:26:5f:b4:d0:27:89:d1:62:70:f7:8a:af:83:75:50:ee: 36:96:3c:4e:aa:8c:2d:d0:2b:df:ca:8f:a2:60:35:c2:f4:c7: f0:f5:7d:d8:c3:00:18:94:59:87:30:a1:b8:e3:dd:dd:ec:d4: 6d:8e:2f:ad:b8:89:3c:1d:ff:8a:00:53:1d:57:86:07:c8:3b: 59:1f:c0:68:e8:23:9e:28:00:c8:b6:43:9b:2f:4e:e1:f6:e0: c5:ac:22:84:ac:71:68:57:93:59:b4:40:f5:f7:da:19:f7:59: 0e:ca:1a:68:fb:b2:26:76:03:a1:0c:aa:3e:73:ac:bb:54:5c: 26:58:0b:e6:68:e8:da:9c:b2:6e:73:66:84:23:fc:20:1f:b6: 1d:b4:bb:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUxMTA0MTcxMTIwWhcNMjUxMTExMTcxMTIwWjAYMRYwFAYD VQQDEw02OTBhMzNiOC03ZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwd8HkvzZJ3PTcOtuqxBuY4AfmQHngxwzFh7wIemJ8BlBXCAEApRlVFO4tx+1 QB6QrB4okpiHlkx0sWhwesYEZI94BhYfNG1356DUYhN57BGjBAfEnqPjG8JgjlJB fUxSbVLIpXfir+EITgVeenOt5LCwffNsH8VCscYvVHeN/TeESKZQez7AjXwCRgBW 4iZkzR0uWlXpsyFhctxHTzKZZ9WzXvVYOF4sVzk/2tajYuaAnn5ngvPDN7nP+CyD ZQPzteh6bW7JClgAcH+OcVi+BBmFbv4pOS7MjCQ8WhswTN1q93ZE/+0/qXLVpGsb xUSUkasvbzn1u/5XKERkk27uaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN18KrLM PD9s9GZIA0k3hIRMucAgMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsKu3p6qiBWH0OYoEsiwwUVm7yq8epYK/MZhi3ZZuy1+o9m0eQBBEV wYE2NxGAHa9YOUrHL6ZBaF7NoDeMHSPQy2z1Tiwxib0swOc+in6tG8vvbpQEKySN mhe1K8dBU/4EHwlpFjAPckcsKIl3XyZftNAnidFicPeKr4N1UO42ljxOqowt0Cvf yo+iYDXC9Mfw9X3YwwAYlFmHMKG4493d7NRtji+tuIk8Hf+KAFMdV4YHyDtZH8Bo 6COeKADItkObL07h9uDFrCKErHFoV5NZtED199oZ91kOyhpo+7ImdgOhDKo+c6y7 VFwmWAvmaOjanLJuc2aEI/wgH7YdtLvN -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:34 2025 by rpki-client