$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft File: O6JVjKXxoDfZaW9WeugTZ8buNeY.mft (raw, json) Hash identifier: whWnuY2pGBEzWPa/ul9gmO06Sby/jofo2OCDvtVU+Ns= Subject key identifier: CF:21:77:98:E1:50:CD:13:7B:2A:B3:E0:97:03:6F:34:F5:E7:A8:FE Authority key identifier: 3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 Certificate issuer: /CN=A91C022C/serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft Manifest number: 94 Signing time: Mon 03 Nov 2025 06:27:36 +0000 Manifest this update: Mon 03 Nov 2025 06:27:35 +0000 Manifest next update: Mon 10 Nov 2025 06:27:35 +0000 Files and hashes: 1: O6JVjKXxoDfZaW9WeugTZ8buNeY.crl (hash: NGKgrJ7P4lXSL5N69oFeQPiupZ/a52gPzHWXmp0hwSM=) 2: 372B21F6D4BA11EFA5BAA345C4F9AE02.roa (hash: 0VQHEL6AI7GrKoKG052X6QJW7qwnCtlNzYdHLuxNwGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C, serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Validity Not Before: Nov 3 06:27:35 2025 GMT Not After : Nov 10 06:27:35 2025 GMT Subject: CN=69084b57-cdfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ad:8a:7b:a5:d8:f3:ba:ba:90:4d:cf:21:14: 59:56:8f:36:d9:92:45:a4:73:4b:b9:84:93:ed:de: 54:69:ad:2f:c0:d7:29:e5:7f:41:c2:c5:ba:64:11: 37:db:1e:82:b2:36:9d:52:35:ef:93:60:c0:21:cd: f7:96:1b:68:50:d6:ee:c0:3f:e2:a8:8f:35:8d:a8: 66:e3:c5:4f:36:16:c1:58:31:4b:ef:7b:84:2b:0a: 14:e7:d6:4c:32:48:a3:8d:b1:d4:88:2e:f0:e9:f1: 73:72:4e:23:aa:70:68:30:65:23:ce:ef:78:2f:19: 3d:5c:d2:b6:3a:da:54:7e:0e:f1:46:46:b2:e5:33: 7e:25:04:77:3b:96:b5:be:9d:b8:f9:cc:39:45:c2: fb:1d:8d:a2:84:4f:5a:bb:f5:74:db:bb:72:a0:bb: 3d:fc:07:bc:6f:bd:33:7b:3d:13:d0:10:52:64:e4: 7f:f5:a3:42:7b:76:aa:71:f1:d8:22:19:a5:54:b9: 07:1b:87:0e:2b:8e:55:81:07:78:d3:12:6a:41:dc: e0:f6:b0:ac:3f:fb:62:11:7d:84:a9:e4:5a:57:7a: 24:a8:6a:c0:45:54:36:16:bc:02:4f:0e:a9:7e:1f: 5f:f4:e8:09:50:ef:21:6a:70:e8:70:82:61:3c:32: d5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:21:77:98:E1:50:CD:13:7B:2A:B3:E0:97:03:6F:34:F5:E7:A8:FE X509v3 Authority Key Identifier: keyid:3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:3c:52:cf:3c:1c:f5:d2:03:1b:c2:86:1b:14:48:91:06:bf: 76:a8:e7:24:f7:90:e3:22:c5:5f:7a:89:b7:b3:13:10:a9:77: 14:fd:e1:08:26:cf:5e:89:7a:b0:1b:5f:78:3d:56:5e:7e:cf: a3:03:7d:6e:fa:dc:ec:72:44:0e:78:9e:1a:6f:ed:f0:e0:80: 69:fd:23:4d:ee:1f:f0:fa:57:68:80:32:96:5f:a7:28:76:f1: ec:29:47:cf:b7:45:70:45:03:f2:45:93:ea:c3:a4:30:83:4c: 55:ba:33:23:ab:0b:bd:02:8b:9a:61:e4:7c:7b:aa:90:1e:32: 14:31:99:ce:8a:96:f4:0e:3a:3c:08:61:0e:08:8b:e0:b9:b4: 87:33:ef:a2:a5:79:df:dc:4a:24:ec:77:b1:ee:ae:4a:ab:4c: a5:9f:62:4f:fa:a0:a9:c6:53:c1:cc:21:c0:cd:cf:15:70:77: 2f:a4:f3:da:89:77:2a:59:c5:22:4f:4b:4f:37:fe:ea:e1:97: 38:ee:ac:d2:8c:ed:b2:7c:5d:d8:eb:db:3b:bf:f9:47:9f:a2: 59:34:fd:9c:3b:10:02:a3:e3:c3:69:57:51:d3:7c:30:46:c9: 3e:2e:4f:8a:e5:42:b5:5a:e7:6e:15:f7:a5:56:10:d2:87:cf: c1:09:95:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyMkMxMTAvBgNVBAUTKDNCQTI1NThDQTVGMUEwMzdEOTY5NkY1NjdBRTgxMzY3 QzZFRTM1RTYwHhcNMjUxMTAzMDYyNzM1WhcNMjUxMTEwMDYyNzM1WjAYMRYwFAYD VQQDEw02OTA4NGI1Ny1jZGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA262Ke6XY87q6kE3PIRRZVo822ZJFpHNLuYST7d5Uaa0vwNcp5X9BwsW6ZBE3 2x6CsjadUjXvk2DAIc33lhtoUNbuwD/iqI81jahm48VPNhbBWDFL73uEKwoU59ZM MkijjbHUiC7w6fFzck4jqnBoMGUjzu94Lxk9XNK2OtpUfg7xRkay5TN+JQR3O5a1 vp24+cw5RcL7HY2ihE9au/V027tyoLs9/Ae8b70zez0T0BBSZOR/9aNCe3aqcfHY IhmlVLkHG4cOK45VgQd40xJqQdzg9rCsP/tiEX2EqeRaV3okqGrARVQ2FrwCTw6p fh9f9OgJUO8hanDocIJhPDLVLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8hd5jh UM0Teyqz4JcDbzT156j+MB8GA1UdIwQYMBaAFDuiVYyl8aA32WlvVnroE2fG7jXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDIyQy9CMUMxODIzMEQ0 QjkxMUVGOUZBOEUyNEZDNEY5QUUwMi9PNkpWaktYeG9EZlphVzlXZXVnVFo4YnVO ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL082SlZqS1h4b0RmWmFXOVdldWdUWjhidU5lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDIyQy9CMUMxODIzMEQ0QjkxMUVGOUZBOEUyNEZDNEY5QUUwMi9PNkpWaktYeG9E ZlphVzlXZXVnVFo4YnVOZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8PFLPPBz10gMbwoYbFEiRBr92qOck95DjIsVfeom3sxMQqXcU/eEI Js9eiXqwG194PVZefs+jA31u+tzsckQOeJ4ab+3w4IBp/SNN7h/w+ldogDKWX6co dvHsKUfPt0VwRQPyRZPqw6Qwg0xVujMjqwu9AouaYeR8e6qQHjIUMZnOipb0Djo8 CGEOCIvgubSHM++ipXnf3Eok7Hex7q5Kq0yln2JP+qCpxlPBzCHAzc8VcHcvpPPa iXcqWcUiT0tPN/7q4Zc47qzSjO2yfF3Y69s7v/lHn6JZNP2cOxACo+PDaVdR03ww Rsk+Lk+K5UK1WuduFfelVhDSh8/BCZVh -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:50 2025 by rpki-client