$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: 7EjHzVexQce4y5rku/IcTih85J8lqL7nMchxQRTp9Zw= Subject key identifier: EA:5A:63:DC:92:6A:62:4E:CE:EC:46:29:C7:E3:3A:22:3D:4A:08:90 Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 1496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 147A Signing time: Tue 04 Nov 2025 16:59:24 +0000 Manifest this update: Tue 04 Nov 2025 16:59:24 +0000 Manifest next update: Tue 11 Nov 2025 16:59:24 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: Pg1Pmuq19z/atMbdsiMLHVKNuNRFspnPa/LAcKzxZ0A=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5270 (0x1496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Nov 4 16:59:24 2025 GMT Not After : Nov 11 16:59:24 2025 GMT Subject: CN=690a30ec-d2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7c:6f:01:61:4f:e3:4e:d7:4e:d2:04:d3:cf: 03:f7:05:f3:c9:03:c7:9d:ce:31:8f:da:b6:ce:6e: 25:db:04:17:5c:39:f3:55:47:10:61:b1:ce:e5:4b: 79:4e:05:e8:0d:b4:7b:10:79:40:39:ba:97:16:3a: 4d:70:b4:d0:b5:d2:8d:48:d1:07:b7:0b:d0:50:d2: f9:5e:14:b2:93:e8:dc:8f:5b:25:ae:94:4b:07:64: 9c:99:61:b8:43:97:a6:81:c6:87:70:f0:7c:72:96: b4:21:f0:3b:06:62:48:c5:0b:e5:9f:8d:03:9c:1b: ac:1e:27:30:51:36:e1:5a:f5:a4:9b:9b:b0:9b:35: 93:b3:1f:6c:24:41:80:c7:bd:34:80:cc:ff:97:d2: 09:c4:55:00:66:d6:a2:ea:08:59:72:03:43:bd:03: 83:ae:88:5c:c0:c3:f4:5e:dd:59:1b:1e:17:5a:43: b7:1c:33:6e:06:5c:aa:21:8a:82:19:a0:be:a2:7c: 43:58:9b:39:ed:f8:48:21:e7:45:75:68:3c:28:dc: d8:69:c5:1e:a6:22:de:79:b6:fe:06:b3:cc:47:90: 55:34:78:84:55:00:84:1c:c2:68:de:34:fb:c1:3b: dd:6e:90:1c:a6:2c:de:0e:e9:ca:67:28:aa:93:be: d3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5A:63:DC:92:6A:62:4E:CE:EC:46:29:C7:E3:3A:22:3D:4A:08:90 X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:8d:2f:4f:d9:b3:ac:47:83:7d:0c:74:76:e7:d0:00:fb:80: 57:2b:5c:c4:c5:ec:b6:87:12:92:76:f8:26:ca:be:89:fa:90: 91:e4:f9:0e:14:dd:e7:d7:dc:ef:ed:b9:6b:f2:15:e9:44:ed: 77:4e:6f:1e:1c:2f:0c:a1:44:f3:74:7b:54:09:4a:f8:86:99: 88:07:1f:a0:76:b2:4b:82:22:e5:7c:38:2c:12:80:34:2a:27: d8:af:70:6b:6c:41:a8:f7:ae:79:04:73:a1:a4:42:7d:62:88: df:f6:45:3e:7a:8f:2d:11:bc:90:fc:fd:45:85:73:69:98:2b: 95:be:d3:ea:94:90:b8:7f:f9:31:ed:ee:97:de:a9:c7:a3:12: ca:4f:90:79:9f:b0:76:be:28:c8:db:43:00:08:5e:c5:1e:68: c4:fe:b8:5b:ee:d9:1f:7e:ea:7f:2f:f0:2b:de:be:1d:35:a7: 07:52:ad:69:00:1f:d3:3a:e2:29:48:f8:a9:59:56:84:57:26: 51:23:60:ba:03:3a:26:98:6c:05:48:c7:71:58:d2:5f:6e:4e: b7:a7:83:e7:3b:42:e8:81:1d:4b:b9:ef:79:a9:57:b6:ea:8c: 57:d7:74:01:7f:a7:82:2e:f8:8d:f9:c1:0d:1d:99:b8:82:d4: d6:bc:ff:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUxMTA0MTY1OTI0WhcNMjUxMTExMTY1OTI0WjAYMRYwFAYD VQQDEw02OTBhMzBlYy1kMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnxvAWFP407XTtIE088D9wXzyQPHnc4xj9q2zm4l2wQXXDnzVUcQYbHO5Ut5 TgXoDbR7EHlAObqXFjpNcLTQtdKNSNEHtwvQUNL5XhSyk+jcj1slrpRLB2ScmWG4 Q5emgcaHcPB8cpa0IfA7BmJIxQvln40DnBusHicwUTbhWvWkm5uwmzWTsx9sJEGA x700gMz/l9IJxFUAZtai6ghZcgNDvQODrohcwMP0Xt1ZGx4XWkO3HDNuBlyqIYqC GaC+onxDWJs57fhIIedFdWg8KNzYacUepiLeebb+BrPMR5BVNHiEVQCEHMJo3jT7 wTvdbpAcpizeDunKZyiqk77TjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpaY9yS amJOzuxGKcfjOiI9SgiQMB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0jS9P2bOsR4N9DHR259AA+4BXK1zExey2hxKSdvgmyr6J+pCR5PkO FN3n19zv7blr8hXpRO13Tm8eHC8MoUTzdHtUCUr4hpmIBx+gdrJLgiLlfDgsEoA0 KifYr3BrbEGo9655BHOhpEJ9Yojf9kU+eo8tEbyQ/P1FhXNpmCuVvtPqlJC4f/kx 7e6X3qnHoxLKT5B5n7B2vijI20MACF7FHmjE/rhb7tkffup/L/Ar3r4dNacHUq1p AB/TOuIpSPipWVaEVyZRI2C6AzommGwFSMdxWNJfbk63p4PnO0LogR1Lue95qVe2 6oxX13QBf6eCLviN+cENHZm4gtTWvP/l -----END CERTIFICATE-----Generated at Wed Nov 5 13:20:53 2025 by rpki-client