$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: ulFblKQWs7U8yBLmbC99hbVX1ZC9iMEBY6FsVCU9d4k= Subject key identifier: 37:EC:B8:EA:63:2B:30:DD:79:2C:51:A1:C1:E0:A1:1D:87:07:6B:46 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: BD Signing time: Mon 03 Nov 2025 05:59:11 +0000 Manifest this update: Mon 03 Nov 2025 05:59:11 +0000 Manifest next update: Mon 10 Nov 2025 05:59:11 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: JKaa3G3ipmaO3AYG0HKicOML+qsGw4CZqtZb6Y/pu3M=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: X6VArMN74z4tgeDbEQQzHaT88BAEASciUle7rIza6xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Nov 3 05:59:11 2025 GMT Not After : Nov 10 05:59:11 2025 GMT Subject: CN=690844af-b6a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:20:c7:ec:fe:6a:27:f2:45:f2:dc:81:6d:63: 80:0b:2d:ad:18:70:d5:62:d0:17:5d:38:e5:11:b9: d3:32:18:cd:38:4b:aa:65:8e:ca:5b:4d:16:71:e1: 95:94:44:1c:80:d3:77:8d:c6:be:2a:bb:0b:5a:b9: 52:ce:60:50:88:b7:2a:54:1d:56:11:71:50:92:ec: 09:47:58:38:6c:e2:eb:91:78:b5:3e:f6:05:48:6e: cb:f5:a2:3d:75:24:ae:23:1b:f2:d4:75:5e:83:11: 41:a8:8d:c4:e2:2b:0c:ec:c2:6d:32:1a:a7:56:8e: 5f:6d:7e:87:6d:75:d6:df:cc:87:2b:b0:85:1f:31: 2b:ca:af:b7:b1:cd:96:3b:0e:f9:4f:8f:78:34:60: 8b:3f:bf:13:36:88:6d:91:5b:35:71:4d:36:f7:41: fb:05:3c:af:d6:4c:4f:7f:80:2f:12:62:20:50:ae: fd:da:77:36:dc:fa:af:d8:dc:fc:bd:7d:21:28:a9: 31:cb:47:79:b6:43:4e:ef:74:a8:45:04:90:ad:a8: 8f:4c:e8:9a:27:af:11:b8:ff:82:0c:9f:3a:60:7f: 64:56:e7:f9:64:cc:bc:3c:77:a5:76:09:99:d9:6c: e0:6f:9f:1b:65:4e:5c:60:e9:ac:66:0d:04:d8:2c: 9f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EC:B8:EA:63:2B:30:DD:79:2C:51:A1:C1:E0:A1:1D:87:07:6B:46 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ae:54:7c:27:ec:65:f4:cd:9c:f4:b0:68:03:74:bd:66:1b: e3:2f:e0:25:c8:1d:1c:98:60:b3:e9:6b:ab:58:e8:1d:02:ac: e9:6c:81:df:b8:ed:ad:cb:f6:9e:a7:44:c3:da:d8:fb:80:99: ab:bf:8a:36:68:1e:67:41:b3:a9:ca:ac:fa:e7:75:cb:ec:fd: 85:6c:00:e3:31:c0:37:2d:a2:a3:7f:40:3f:ab:c8:6f:48:4e: dd:a1:21:85:4d:bc:ee:c4:a5:17:b3:22:e7:8c:b3:eb:78:a5: 00:09:11:44:c1:b8:28:06:40:e8:1c:f7:a4:b9:5b:52:69:14: 15:8a:19:6e:8b:33:f4:37:43:bc:fd:8e:33:57:87:43:c5:fd: ec:dc:d9:4f:9c:b9:55:63:8c:89:ad:bc:5b:8e:e3:3e:6e:ea: c4:9d:c3:a5:e0:9b:80:58:33:e0:33:8d:6b:db:6a:63:77:8a: 0f:f9:78:54:f0:24:5f:43:d3:ba:fa:58:7e:52:5b:dd:55:b8: 67:72:98:a9:b6:45:81:0d:f3:90:46:e9:ce:f4:17:a4:53:01: 2a:49:1d:af:96:61:c2:af:d8:d3:4d:b0:96:5d:13:67:ca:d5: 5e:ad:61:0b:53:09:8a:19:b5:37:07:3e:46:7b:2a:77:3c:87: e7:91:1c:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjUxMTAzMDU1OTExWhcNMjUxMTEwMDU1OTExWjAYMRYwFAYD VQQDEw02OTA4NDRhZi1iNmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CDH7P5qJ/JF8tyBbWOACy2tGHDVYtAXXTjlEbnTMhjNOEuqZY7KW00WceGV lEQcgNN3jca+KrsLWrlSzmBQiLcqVB1WEXFQkuwJR1g4bOLrkXi1PvYFSG7L9aI9 dSSuIxvy1HVegxFBqI3E4isM7MJtMhqnVo5fbX6HbXXW38yHK7CFHzEryq+3sc2W Ow75T494NGCLP78TNohtkVs1cU0290H7BTyv1kxPf4AvEmIgUK792nc23Pqv2Nz8 vX0hKKkxy0d5tkNO73SoRQSQraiPTOiaJ68RuP+CDJ86YH9kVuf5ZMy8PHeldgmZ 2Wzgb58bZU5cYOmsZg0E2CyfMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfsuOpj KzDdeSxRocHgoR2HB2tGMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAerlR8J+xl9M2c9LBoA3S9ZhvjL+AlyB0cmGCz6WurWOgdAqzpbIHf uO2ty/aep0TD2tj7gJmrv4o2aB5nQbOpyqz653XL7P2FbADjMcA3LaKjf0A/q8hv SE7doSGFTbzuxKUXsyLnjLPreKUACRFEwbgoBkDoHPekuVtSaRQVihluizP0N0O8 /Y4zV4dDxf3s3NlPnLlVY4yJrbxbjuM+burEncOl4JuAWDPgM41r22pjd4oP+XhU 8CRfQ9O6+lh+UlvdVbhncpiptkWBDfOQRunO9BekUwEqSR2vlmHCr9jTTbCWXRNn ytVerWELUwmKGbU3Bz5Geyp3PIfnkRwc -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:16 2025 by rpki-client