$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft File: o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json) Hash identifier: 3qav+F2EV1X3GVy0pqiDQrw/Dp3sYeFDjJb95xa4eWg= Subject key identifier: F2:00:F2:7F:9D:D5:D0:D3:03:31:C6:4A:81:5A:2B:0E:D3:16:17:52 Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A Certificate issuer: /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft Manifest number: FE Signing time: Wed 05 Nov 2025 05:19:18 +0000 Manifest this update: Wed 05 Nov 2025 05:19:17 +0000 Manifest next update: Wed 12 Nov 2025 05:19:17 +0000 Files and hashes: 1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: /JDS4ozTi4ToJZVTrdl/g0Lj4KUfMIUXI/t/ahGF2c8=) 2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: +fFDWaDnFu7mpfAvBElCeG8uNXNIs5iwZjBDkX/SJz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD4DF, serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Validity Not Before: Nov 5 05:19:17 2025 GMT Not After : Nov 12 05:19:17 2025 GMT Subject: CN=690ade56-4890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:f8:4f:52:7a:e6:7e:36:c6:4b:90:a9:ca: 28:72:e6:40:b8:74:08:c4:83:b7:df:46:97:2e:ae: 3c:22:10:49:64:4c:55:80:3c:b9:ce:4e:56:0d:e3: 35:f6:70:36:c4:f1:fb:79:62:9f:9a:9c:94:23:a4: ab:30:47:ff:12:11:6a:eb:48:e6:e5:59:b4:06:8a: 68:12:78:92:f9:49:36:c7:96:fd:e6:9f:b3:89:15: c1:77:b5:ee:9f:51:c0:dc:f9:62:bd:08:f8:0d:4f: 05:76:21:eb:cf:1a:2b:b7:be:3c:fd:b6:e6:36:32: 62:41:0e:90:24:1a:e3:54:c5:f8:30:bc:c7:ec:e2: 4c:40:25:a9:ec:a7:7c:8f:23:01:08:61:71:dc:f1: d1:73:21:d0:2b:a7:61:63:c3:30:25:2f:2c:a5:77: 46:cb:3f:ed:fa:63:e5:92:1c:95:a3:52:9d:96:88: fd:3a:f5:32:b6:1f:e4:50:9b:cc:97:bb:16:3a:be: ba:7d:e4:f9:bd:a3:0c:14:5e:7e:fe:5f:ed:62:8c: 20:56:26:c8:20:9c:f0:98:6a:79:03:c8:9d:a8:c6: 97:49:aa:55:5d:3a:73:d3:be:f7:8f:93:a0:4e:ef: a6:e4:9f:cb:b6:cf:65:35:6f:9f:b9:5f:64:2c:74: f6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:00:F2:7F:9D:D5:D0:D3:03:31:C6:4A:81:5A:2B:0E:D3:16:17:52 X509v3 Authority Key Identifier: keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:21:1e:f9:41:ac:ab:0c:c3:1a:4e:2b:58:c4:04:0d:6e:97: cf:a0:61:69:29:63:65:e7:c5:32:a5:72:71:e6:23:bd:00:23: 49:af:9f:a8:f1:7e:1d:34:a9:c9:c6:2e:a4:2c:ae:dc:0a:0c: 82:b2:ee:87:13:57:19:bd:a2:cc:20:ca:eb:16:87:d1:85:11: 9c:b6:67:9a:9d:48:58:05:fc:a9:b7:c4:3d:b2:da:ac:64:bb: ed:64:86:24:9e:7e:b8:32:c4:6e:ef:8d:12:37:7a:de:cd:31: ca:98:06:0f:24:79:56:dc:c2:7d:24:86:c6:ce:94:95:92:31: b5:79:f0:d2:5c:c0:9a:6c:db:0e:d4:e6:dd:1a:32:bf:5b:5b: 6f:d7:3c:5a:88:83:40:86:60:8d:57:4a:67:bd:bb:20:b1:09: b6:31:12:2c:e6:f5:74:83:6d:6a:91:f3:e9:a2:28:32:45:2b: 4e:38:25:24:d2:9f:f9:14:23:f8:74:69:10:eb:cb:52:eb:59: 0e:3c:06:c6:78:65:8d:57:9f:6a:27:32:29:95:d8:f6:ad:b8: 56:ad:8b:8c:fd:c7:65:b4:59:66:cc:06:7f:ce:ed:64:12:7f: 28:22:90:60:7e:0c:9a:43:eb:c2:e9:a3:76:e4:25:c4:f9:76: b2:1b:f1:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ0REYxMTAvBgNVBAUTKEEzNkRCNkI1Rjk3MTIzNzU1RTU0NDFGQUM1NkFBNkJC QTA1QjA4MEEwHhcNMjUxMTA1MDUxOTE3WhcNMjUxMTEyMDUxOTE3WjAYMRYwFAYD VQQDEw02OTBhZGU1Ni00ODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXv4T1J65n42xkuQqcoocuZAuHQIxIO330aXLq48IhBJZExVgDy5zk5WDeM1 9nA2xPH7eWKfmpyUI6SrMEf/EhFq60jm5Vm0BopoEniS+Uk2x5b95p+ziRXBd7Xu n1HA3PlivQj4DU8FdiHrzxort748/bbmNjJiQQ6QJBrjVMX4MLzH7OJMQCWp7Kd8 jyMBCGFx3PHRcyHQK6dhY8MwJS8spXdGyz/t+mPlkhyVo1Kdloj9OvUyth/kUJvM l7sWOr66feT5vaMMFF5+/l/tYowgVibIIJzwmGp5A8idqMaXSapVXTpz0773j5Og Tu+m5J/Lts9lNW+fuV9kLHT2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIA8n+d 1dDTAzHGSoFaKw7TFhdSMB8GA1UdIwQYMBaAFKNttrX5cSN1XlRB+sVqprugWwgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDRERi8zMTBEMzU0MjM5 OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkzVmVWRUg2eFdxbXU2QmJD QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yMjJ0Zmx4STNWZVZFSDZ4V3FtdTZCYkNBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDRERi8zMTBEMzU0MjM5OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkz VmVWRUg2eFdxbXU2QmJDQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbIR75QayrDMMaTitYxAQNbpfPoGFpKWNl58UypXJx5iO9ACNJr5+o 8X4dNKnJxi6kLK7cCgyCsu6HE1cZvaLMIMrrFofRhRGctmeanUhYBfypt8Q9stqs ZLvtZIYknn64MsRu740SN3rezTHKmAYPJHlW3MJ9JIbGzpSVkjG1efDSXMCabNsO 1ObdGjK/W1tv1zxaiINAhmCNV0pnvbsgsQm2MRIs5vV0g21qkfPpoigyRStOOCUk 0p/5FCP4dGkQ68tS61kOPAbGeGWNV59qJzIpldj2rbhWrYuM/cdltFlmzAZ/zu1k En8oIpBgfgyaQ+vC6aN25CXE+XayG/HI -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:52 2025 by rpki-client