$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: nyD+9b8jz+hFzEpJxe4pN0W5ILq13qMZsq8PwEnN6mo= Subject key identifier: 55:31:74:0D:06:A5:E3:ED:7B:D4:13:B1:CC:AD:BD:34:B6:B0:DB:32 Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 08B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 08A3 Signing time: Tue 04 Nov 2025 20:38:00 +0000 Manifest this update: Tue 04 Nov 2025 20:38:00 +0000 Manifest next update: Tue 11 Nov 2025 20:38:00 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: ei2GO/E7qk0dIvPDy6XRBB90ODWvpHnelk8TXgohBmI=) 2: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: jS53WXHjCoys1e1t5l2xcO16jh1u3l1FTq8ZOUzIH88=) 3: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: kbQycqq6uhbmllHh50J5L3MKomIfAJJoAz4btbBqKyw=) 4: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: /uldeOBBVv+zaXl5jNRHeGbB+ckh7FIYfUU0p3GU20E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Nov 4 20:38:00 2025 GMT Not After : Nov 11 20:38:00 2025 GMT Subject: CN=690a6428-0d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:8d:37:60:22:4d:d9:ba:ef:ac:41:3f:3a: 8b:24:ad:28:40:52:14:d8:4d:30:7a:07:a1:fe:0d: 74:0d:81:0d:3e:96:d6:4f:8e:c3:f2:cb:fa:05:87: 4e:11:11:f9:5d:c9:ca:f0:a4:02:a7:80:d7:d0:91: f5:9e:ca:70:fd:fa:bc:fa:8b:dc:4a:2d:2d:62:71: c5:ee:37:81:af:f6:b3:d9:70:a6:ac:9a:da:86:f8: dd:d6:af:df:56:14:bd:48:4d:9e:1c:e8:8f:32:aa: 46:b1:49:6e:11:d0:53:94:0b:e3:d0:a9:34:e5:26: 39:42:58:39:da:74:fd:3d:c6:1f:94:c6:a9:da:12: 88:98:1c:d5:87:da:8c:63:03:28:33:27:e9:b5:c4: e1:a9:b3:40:58:71:ca:c4:39:43:00:19:74:2e:b4: 20:05:b2:1b:5a:5c:01:a1:e5:f2:b3:74:0e:1a:45: 6a:de:68:88:1b:6d:e5:53:cd:62:6b:43:96:9a:f7: 4a:42:36:99:65:12:b8:69:ee:6f:68:5e:ae:6d:6a: 3f:a3:7c:85:fc:ea:a6:32:41:f4:82:4a:ff:10:26: 28:17:57:5f:e3:e8:e9:6b:4d:ef:23:d8:54:6c:64: 23:f9:d8:5f:fa:97:d3:e7:d5:e4:c4:cf:1d:55:d3: fa:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:31:74:0D:06:A5:E3:ED:7B:D4:13:B1:CC:AD:BD:34:B6:B0:DB:32 X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:aa:b1:c2:a5:8b:38:e4:96:3e:30:d6:77:b8:70:5d:22:fc: 42:f2:70:5f:ea:36:31:5f:6a:2a:73:69:c3:25:84:8a:9f:32: d5:27:a9:15:e2:0f:4c:05:89:03:3e:9d:6e:cb:2a:d3:b2:e0: d1:c0:d1:41:96:da:6e:3b:5e:3b:9b:2f:a0:8c:8a:a5:f7:97: 9b:6a:c0:24:24:c3:ab:47:f9:72:66:2e:56:10:16:40:10:1d: e7:69:28:88:67:08:7c:4c:07:73:3f:c1:e9:14:74:cf:ed:30: 1f:91:20:79:95:17:a4:d2:0c:17:61:28:57:ce:1c:20:fd:3c: db:f8:69:cf:be:0a:c4:89:06:85:f0:21:ae:68:86:83:09:73: 33:51:1f:ea:cc:e1:f0:a4:4b:8b:9d:7e:21:40:18:ad:26:2a: da:da:81:4a:db:98:1f:94:1c:c3:d5:76:a4:8e:0a:65:f6:68: 6d:b6:74:0f:e3:e1:40:ca:12:1d:27:04:3d:09:39:64:0c:6e: 54:19:de:08:31:f6:31:53:a8:bb:6a:d1:27:40:c2:32:e3:58: 57:91:27:c3:86:ca:f5:79:02:6a:c4:17:a4:c2:bf:45:66:b2: 53:21:eb:c2:ad:1a:2c:2b:76:7e:08:86:52:5a:b0:9c:6c:46: 22:23:f3:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUxMTA0MjAzODAwWhcNMjUxMTExMjAzODAwWjAYMRYwFAYD VQQDEw02OTBhNjQyOC0wZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5SNN2AiTdm676xBPzqLJK0oQFIU2E0wegeh/g10DYENPpbWT47D8sv6BYdO ERH5XcnK8KQCp4DX0JH1nspw/fq8+ovcSi0tYnHF7jeBr/az2XCmrJrahvjd1q/f VhS9SE2eHOiPMqpGsUluEdBTlAvj0Kk05SY5Qlg52nT9PcYflMap2hKImBzVh9qM YwMoMyfptcThqbNAWHHKxDlDABl0LrQgBbIbWlwBoeXys3QOGkVq3miIG23lU81i a0OWmvdKQjaZZRK4ae5vaF6ubWo/o3yF/OqmMkH0gkr/ECYoF1df4+jpa03vI9hU bGQj+dhf+pfT59XkxM8dVdP6lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUxdA0G pePte9QTscytvTS2sNsyMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVqrHCpYs45JY+MNZ3uHBdIvxC8nBf6jYxX2oqc2nDJYSKnzLVJ6kV 4g9MBYkDPp1uyyrTsuDRwNFBltpuO147my+gjIql95ebasAkJMOrR/lyZi5WEBZA EB3naSiIZwh8TAdzP8HpFHTP7TAfkSB5lRek0gwXYShXzhwg/Tzb+GnPvgrEiQaF 8CGuaIaDCXMzUR/qzOHwpEuLnX4hQBitJira2oFK25gflBzD1Xakjgpl9mhttnQP 4+FAyhIdJwQ9CTlkDG5UGd4IMfYxU6i7atEnQMIy41hXkSfDhsr1eQJqxBekwr9F ZrJTIevCrRosK3Z+CIZSWrCcbEYiI/PW -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:00 2025 by rpki-client