$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft File: oSTS0QT3ck-7jw8maUnikFSMAbE.mft (raw, json) Hash identifier: jTgvN6Q3k1HjJQJwA6JFdJdT0ITjg2y22/5MFu8HDeo= Subject key identifier: 19:EE:1E:71:9E:F0:B0:FD:D8:E5:35:A6:13:29:93:9A:B5:F3:47:30 Authority key identifier: A1:24:D2:D1:04:F7:72:4F:BB:8F:0F:26:69:49:E2:90:54:8C:01:B1 Certificate issuer: /CN=A91CD0DE/serialNumber=A124D2D104F7724FBB8F0F266949E290548C01B1 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft Manifest number: 0B Signing time: Mon 03 Nov 2025 07:59:03 +0000 Manifest this update: Mon 03 Nov 2025 07:59:02 +0000 Manifest next update: Mon 10 Nov 2025 07:59:02 +0000 Files and hashes: 1: oSTS0QT3ck-7jw8maUnikFSMAbE.crl (hash: cLk10qYvbkqQ0EaKytqFv2jvxv1GXnPlI5WSF5M5iJA=) 2: 60F50042A99411F0A4CF2116C4F9AE02.roa (hash: Ws+o5lfxkWBzbjla9ZUB6K0ykZgSsGy7AqspFs8FAvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=A124D2D104F7724FBB8F0F266949E290548C01B1 Validity Not Before: Nov 3 07:59:02 2025 GMT Not After : Nov 10 07:59:02 2025 GMT Subject: CN=690860c7-fb52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:93:f6:fa:16:a8:79:99:ff:a6:45:3c:e6:b5: 25:00:cf:3b:58:1b:cb:6f:6d:ce:ff:22:9e:53:c8: 5d:0e:21:50:5d:47:2f:c1:e3:d7:ed:82:46:81:75: b7:20:05:a8:85:af:bd:d2:e2:20:ba:24:3d:8d:83: 47:46:44:28:b1:cd:4f:9a:14:af:7a:36:f0:a8:b1: 65:e3:00:45:31:3f:8e:22:b0:f8:73:78:5f:ab:01: 4a:2a:b9:ac:59:0b:e0:15:58:59:22:a6:32:71:b2: e2:24:ec:64:39:c3:e9:04:20:39:d1:83:67:e1:9a: 47:04:08:b6:d0:51:e6:0d:d1:b9:4b:0f:11:f3:fe: 36:f3:67:c1:dc:19:2f:e1:db:4a:10:c9:eb:81:a0: 9b:ee:b5:e9:d8:9a:11:c9:f4:7d:c5:85:28:66:60: f2:21:67:c0:9e:7b:54:19:a7:6f:8f:af:e3:e7:ba: fe:84:5b:46:b4:2b:1b:60:76:60:61:16:e1:48:3c: 1a:65:89:28:62:40:84:63:5f:a7:eb:88:e3:7e:a9: 07:c0:e2:4d:73:c9:ac:4d:50:df:8a:04:f6:fd:8f: 7b:d8:54:d0:39:29:80:77:47:9b:09:ad:08:2d:a7: 39:61:74:30:08:f8:c1:51:64:5f:df:bc:ed:a3:78: 13:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EE:1E:71:9E:F0:B0:FD:D8:E5:35:A6:13:29:93:9A:B5:F3:47:30 X509v3 Authority Key Identifier: keyid:A1:24:D2:D1:04:F7:72:4F:BB:8F:0F:26:69:49:E2:90:54:8C:01:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:79:72:5c:8b:f9:ad:91:bd:8b:27:3b:8e:d4:7e:eb:36:94: 00:cf:09:4b:f6:51:e9:8d:96:fa:34:bd:3e:3e:a0:8a:0f:bb: c9:1f:31:5c:b0:b9:c5:bc:94:aa:dc:1a:b4:dd:3a:79:45:ba: 67:29:89:6a:c2:90:84:b0:df:8f:7b:a2:05:48:a8:fe:6f:9d: 37:cc:0f:8a:e4:1c:2c:7f:bd:3f:60:f5:af:97:a0:77:eb:44: e0:ef:ce:12:30:fb:04:63:d1:99:9f:ba:df:62:a1:75:d9:af: 64:09:01:91:a8:a1:5e:c7:72:d7:9d:f3:8c:60:da:0a:40:62: a9:85:dd:9c:47:7e:2d:19:89:e0:88:67:34:6f:8f:6f:f3:60: 38:23:2b:1f:84:44:c1:72:27:82:80:5c:e3:56:9a:a7:08:6c: 26:1d:b1:c5:be:e0:62:a9:6b:18:c1:44:ad:89:8d:00:55:6e: a2:10:a4:2f:12:d6:01:b0:e5:94:f5:51:21:db:2f:16:e1:6b: f9:89:45:15:62:40:a9:e9:2c:cd:e5:b3:73:62:d3:f2:a5:0a: 40:5b:c7:35:88:20:38:6c:de:c8:64:52:c1:86:49:b7:50:b3: b9:c5:e1:80:e0:73:cc:f6:76:c2:08:07:e9:52:3e:d5:80:09: 82:dc:75:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQTEyNEQyRDEwNEY3NzI0RkJCOEYwRjI2Njk0OUUyOTA1 NDhDMDFCMTAeFw0yNTExMDMwNzU5MDJaFw0yNTExMTAwNzU5MDJaMBgxFjAUBgNV BAMTDTY5MDg2MGM3LWZiNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3k/b6Fqh5mf+mRTzmtSUAzztYG8tvbc7/Ip5TyF0OIVBdRy/B49ftgkaBdbcg BaiFr73S4iC6JD2Ng0dGRCixzU+aFK96NvCosWXjAEUxP44isPhzeF+rAUoquaxZ C+AVWFkipjJxsuIk7GQ5w+kEIDnRg2fhmkcECLbQUeYN0blLDxHz/jbzZ8HcGS/h 20oQyeuBoJvutenYmhHJ9H3FhShmYPIhZ8Cee1QZp2+Pr+Pnuv6EW0a0KxtgdmBh FuFIPBpliShiQIRjX6friON+qQfA4k1zyaxNUN+KBPb9j3vYVNA5KYB3R5sJrQgt pzlhdDAI+MFRZF/fvO2jeBOpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGe4ecZ7w sP3Y5TWmEymTmrXzRzAwHwYDVR0jBBgwFoAUoSTS0QT3ck+7jw8maUnikFSMAbEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzVCNUY0NTE2QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL29TVFMwUVQzY2stN2p3OG1hVW5pa0ZTTUFi RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1NUUzBRVDNjay03anc4bWFVbmlrRlNNQWJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MERFLzVCNUY0NTE2QTk4RjExRjBCMUZBNTA2NkM0RjlBRTAyL29TVFMwUVQzY2st N2p3OG1hVW5pa0ZTTUFiRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEl5clyL+a2RvYsnO47Ufus2lADPCUv2UemNlvo0vT4+oIoPu8kfMVyw ucW8lKrcGrTdOnlFumcpiWrCkISw3497ogVIqP5vnTfMD4rkHCx/vT9g9a+XoHfr RODvzhIw+wRj0Zmfut9ioXXZr2QJAZGooV7Hcted84xg2gpAYqmF3ZxHfi0ZieCI ZzRvj2/zYDgjKx+ERMFyJ4KAXONWmqcIbCYdscW+4GKpaxjBRK2JjQBVbqIQpC8S 1gGw5ZT1USHbLxbha/mJRRViQKnpLM3ls3Ni0/KlCkBbxzWIIDhs3shkUsGGSbdQ s7nF4YDgc8z2dsIIB+lSPtWACYLcdUA= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:29 2025 by rpki-client