$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft File: ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft (raw, json) Hash identifier: I3AcdWDjKdTXLWqprpITkT931byO8AP/aBqCsbkFa8A= Subject key identifier: 37:7F:F9:E0:30:D6:A1:F0:37:B9:F8:F7:15:37:27:92:A8:92:9D:47 Authority key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 Certificate issuer: /CN=A91E7656/serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Certificate serial: 0C62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft Manifest number: 0C61 Signing time: Sun 02 Nov 2025 18:31:15 +0000 Manifest this update: Sun 02 Nov 2025 18:31:14 +0000 Manifest next update: Sun 09 Nov 2025 18:31:14 +0000 Files and hashes: 1: ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl (hash: FbFSZtvZ38QyM3ZdQJ8qBvNs8CdmbvRegCedw1ZG/aQ=) 2: AF73E1423D2011F0ACC34F2BC4F9AE02.roa (hash: 6z4IvdKelJy7fw7SK3RJpHNkKU/zaX8zdMWrochmqvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7656, serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Validity Not Before: Nov 2 18:31:14 2025 GMT Not After : Nov 9 18:31:14 2025 GMT Subject: CN=6907a373-8d75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fe:fe:6a:1f:0e:a8:af:ee:cc:ca:8c:f8:b0: d2:01:20:e6:2f:2b:f8:91:74:e6:48:bf:97:b2:27: 3b:1a:f1:2d:93:9c:dc:c5:dd:47:18:b0:5c:20:aa: be:07:2f:bf:38:32:d2:4d:ee:90:6e:40:af:4c:34: 11:ba:4a:15:81:f6:c3:63:96:90:00:1b:0d:8d:a4: 15:34:42:da:8b:2b:18:22:0f:a2:3c:5d:53:59:c1: 93:4e:1f:62:ee:73:9c:4c:bd:90:0c:92:25:4c:61: 22:7a:c0:cb:6d:f2:ce:50:d7:70:00:e3:32:10:05: 02:bb:8c:9e:ac:e3:23:ad:6e:14:f4:a9:98:bd:de: 8b:c9:22:23:a0:08:be:da:dd:12:be:6d:d6:e1:a2: a4:26:48:f2:c9:ee:a6:eb:f4:61:7d:b0:ce:40:8f: 50:0a:a4:b0:ab:6b:02:f4:4f:78:c8:e5:91:56:4c: 5e:71:08:64:f7:61:f7:30:0d:15:70:97:69:74:6b: 60:43:fb:e2:05:cf:c1:da:10:c9:d5:d2:0e:70:72: 39:a1:ce:8b:0d:b1:40:5c:fa:0d:a6:e2:df:9f:9f: 45:2a:13:72:b7:03:c9:b8:53:5e:c1:20:76:07:b5: d5:79:7a:f3:a5:a5:cd:8d:ed:6b:b5:d6:6f:9d:23: 35:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7F:F9:E0:30:D6:A1:F0:37:B9:F8:F7:15:37:27:92:A8:92:9D:47 X509v3 Authority Key Identifier: keyid:A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:57:16:61:a3:1d:dd:ef:75:0f:41:a9:8b:56:cb:a7:8f:2f: df:d1:46:5e:c2:65:fb:7b:e2:00:cc:f6:01:73:bf:32:45:b2: ea:f1:2c:fb:54:ec:1d:e5:f2:69:56:2b:4e:5d:94:e7:08:35: 88:df:b8:56:5e:de:2f:02:50:d8:f3:8a:13:05:73:0a:35:42: da:33:e1:32:eb:78:ca:60:4d:8d:67:0b:03:8c:5c:47:e9:e5: 8c:c3:84:13:2e:cd:f9:5f:fa:2a:d8:6e:8f:98:87:9d:b3:31: 1f:69:8b:42:6e:34:87:ab:ca:97:6e:d6:98:9b:bc:47:c6:b6: 0b:d3:d3:94:f1:c9:23:f0:99:51:5b:11:79:ba:61:f9:6a:cf: f4:ce:00:69:6e:84:79:7e:c9:8c:c0:1d:7b:60:36:d9:b2:55: 32:ab:76:3b:8c:63:7b:a8:6e:ae:db:9b:14:37:04:c1:51:c0: 87:9e:06:13:55:d9:22:a1:c2:ee:8f:f5:40:ca:76:66:da:f9: 00:e3:b5:b3:11:ae:48:4a:eb:cb:96:ac:55:46:7f:89:c8:35: d5:3e:69:65:c2:c1:66:0a:ac:8e:1c:4f:25:29:71:0f:d5:16: 41:15:82:3a:52:3c:8b:47:fc:2d:4a:dd:bf:c9:22:a5:fd:6a: 33:26:dc:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYyNTBFNEE0Njcw ODExQjUwNzYwHhcNMjUxMTAyMTgzMTE0WhcNMjUxMTA5MTgzMTE0WjAYMRYwFAYD VQQDEw02OTA3YTM3My04ZDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuf7+ah8OqK/uzMqM+LDSASDmLyv4kXTmSL+Xsic7GvEtk5zcxd1HGLBcIKq+ By+/ODLSTe6QbkCvTDQRukoVgfbDY5aQABsNjaQVNELaiysYIg+iPF1TWcGTTh9i 7nOcTL2QDJIlTGEiesDLbfLOUNdwAOMyEAUCu4yerOMjrW4U9KmYvd6LySIjoAi+ 2t0Svm3W4aKkJkjyye6m6/RhfbDOQI9QCqSwq2sC9E94yOWRVkxecQhk92H3MA0V cJdpdGtgQ/viBc/B2hDJ1dIOcHI5oc6LDbFAXPoNpuLfn59FKhNytwPJuFNewSB2 B7XVeXrzpaXNje1rtdZvnSM1pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDd/+eAw 1qHwN7n49xU3J5Kokp1HMB8GA1UdIwQYMBaAFKIMV/Us6YyISPY2JQ5KRnCBG1B2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzY1Ni8wRUUzQTVCQzBD RDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJaEk5allsRGtwR2NJRWJV SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29neFg5U3pwakloSTlqWWxEa3BHY0lFYlVIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzY1Ni8wRUUzQTVCQzBDRDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJ aEk5allsRGtwR2NJRWJVSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmVxZhox3d73UPQamLVsunjy/f0UZewmX7e+IAzPYBc78yRbLq8Sz7 VOwd5fJpVitOXZTnCDWI37hWXt4vAlDY84oTBXMKNULaM+Ey63jKYE2NZwsDjFxH 6eWMw4QTLs35X/oq2G6PmIedszEfaYtCbjSHq8qXbtaYm7xHxrYL09OU8ckj8JlR WxF5umH5as/0zgBpboR5fsmMwB17YDbZslUyq3Y7jGN7qG6u25sUNwTBUcCHngYT VdkiocLuj/VAynZm2vkA47WzEa5ISuvLlqxVRn+JyDXVPmllwsFmCqyOHE8lKXEP 1RZBFYI6UjyLR/wtSt2/ySKl/WozJtxu -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:51 2025 by rpki-client