$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: 13COu9oWEoSIGIkmGqW5px+bmsowFHw1Ygnzy5tffwM= Subject key identifier: B2:BA:B0:CD:AC:64:0F:8C:20:53:47:5B:2A:04:A5:B4:F1:EC:ED:74 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0137 Signing time: Mon 03 Nov 2025 04:31:34 +0000 Manifest this update: Mon 03 Nov 2025 04:31:34 +0000 Manifest next update: Mon 10 Nov 2025 04:31:34 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: EEKZCSJpWL6+PKofYww8lKlMjiCK3NnwXBCXsB6dZeE=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Nov 3 04:31:34 2025 GMT Not After : Nov 10 04:31:34 2025 GMT Subject: CN=69083026-0168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:9a:d5:bd:ab:43:9e:28:70:fd:46:68:50: 3c:e0:cf:45:6d:da:5a:47:bc:d4:ff:4a:53:16:53: a0:84:d6:2a:7e:f5:b1:80:0c:7f:6e:bc:15:72:e2: 80:3c:3a:c0:5f:1e:c6:81:99:8e:2b:a1:f5:b4:35: 29:3b:e5:63:9d:e5:9b:20:52:b8:d1:cd:76:28:6f: 9d:0f:72:f3:5a:b0:4f:07:fb:d0:5b:97:21:f5:7f: 67:19:d4:d7:c3:9f:ab:a6:de:1d:19:ae:8d:d6:bb: 3a:5c:95:38:9b:37:11:a2:5a:34:d9:ec:dd:d5:47: 51:c3:93:4d:dd:eb:8d:ce:df:51:0b:9f:5d:4f:e3: 6a:da:db:82:d5:ec:93:6b:15:3e:f6:3a:e4:18:f4: 32:47:23:b7:00:3a:cb:10:01:01:7d:27:b1:c8:a8: 63:07:a8:84:7d:70:ef:81:7e:0e:8d:8e:83:f2:9f: 85:51:36:a0:f6:f4:cd:92:54:18:35:b4:15:6b:2f: 33:1f:b6:68:fb:65:c7:8a:5a:5f:49:1b:33:0e:47: 94:2d:8d:c1:66:1f:6a:41:fd:10:21:b4:dc:ce:f9: 3b:85:4a:ab:0b:ea:9f:a3:39:b8:3c:66:ab:fe:2d: 05:4d:f2:c7:5d:ac:0b:6c:10:68:dc:c6:6e:6a:08: 2b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BA:B0:CD:AC:64:0F:8C:20:53:47:5B:2A:04:A5:B4:F1:EC:ED:74 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:01:4f:72:c1:84:d5:57:de:d1:31:9f:46:c5:1d:9a:6d:d0: 07:33:d0:46:57:bd:b6:33:d9:0c:67:9e:8b:d2:c3:08:35:1d: a9:9c:11:39:90:9a:40:52:45:9d:8e:e2:8d:68:95:6f:bd:48: be:67:1e:d4:27:c1:0b:7c:9f:d7:0c:c2:a9:53:f1:c1:e9:48: af:bc:53:7b:d0:03:f7:d4:12:21:a0:4a:08:63:5c:e3:52:22: 3e:fd:be:bf:1f:04:62:e6:2a:8e:ca:d6:f9:b5:6f:d0:09:16: 4a:2c:96:db:0c:c1:f7:c8:2c:2b:cf:91:59:9d:99:db:1f:e1: c3:b6:7a:b0:ce:5a:76:db:f5:98:b5:8c:6c:5f:c7:37:4f:ee: 54:0d:d0:f7:ce:ab:f8:c9:01:29:5b:c2:36:5f:2e:73:88:73: 17:f5:39:15:63:24:2a:91:90:07:16:23:a7:06:4d:e2:fc:8b: 0e:6b:65:b3:c4:24:6d:7e:1e:5e:f7:82:e4:be:fe:a6:22:6f: ae:80:01:cd:18:dc:59:67:1d:fc:fd:4d:9d:fe:33:39:68:6c: d7:97:45:ee:cc:1c:b4:5d:a2:4a:6c:e3:41:82:f9:11:ca:3f: 05:50:3a:ad:c1:5e:04:d5:e8:ec:95:90:b2:10:34:28:20:f2: 8d:b0:67:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUxMTAzMDQzMTM0WhcNMjUxMTEwMDQzMTM0WjAYMRYwFAYD VQQDEw02OTA4MzAyNi0wMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZia1b2rQ54ocP1GaFA84M9FbdpaR7zU/0pTFlOghNYqfvWxgAx/brwVcuKA PDrAXx7GgZmOK6H1tDUpO+VjneWbIFK40c12KG+dD3LzWrBPB/vQW5ch9X9nGdTX w5+rpt4dGa6N1rs6XJU4mzcRolo02ezd1UdRw5NN3euNzt9RC59dT+Nq2tuC1eyT axU+9jrkGPQyRyO3ADrLEAEBfSexyKhjB6iEfXDvgX4OjY6D8p+FUTag9vTNklQY NbQVay8zH7Zo+2XHilpfSRszDkeULY3BZh9qQf0QIbTczvk7hUqrC+qfozm4PGar /i0FTfLHXawLbBBo3MZuaggr8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLK6sM2s ZA+MIFNHWyoEpbTx7O10MB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXAU9ywYTVV97RMZ9GxR2abdAHM9BGV722M9kMZ56L0sMINR2pnBE5 kJpAUkWdjuKNaJVvvUi+Zx7UJ8ELfJ/XDMKpU/HB6UivvFN70AP31BIhoEoIY1zj UiI+/b6/HwRi5iqOytb5tW/QCRZKLJbbDMH3yCwrz5FZnZnbH+HDtnqwzlp22/WY tYxsX8c3T+5UDdD3zqv4yQEpW8I2Xy5ziHMX9TkVYyQqkZAHFiOnBk3i/IsOa2Wz xCRtfh5e94Lkvv6mIm+ugAHNGNxZZx38/U2d/jM5aGzXl0XuzBy0XaJKbONBgvkR yj8FUDqtwV4E1ejslZCyEDQoIPKNsGeB -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:41 2025 by rpki-client