$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: 1e+Qq6ZSHBxXwZVpA5GQ/ILoW7Rrhau31cQU0oO+9vU= Subject key identifier: 5E:DC:65:2B:C4:D1:ED:7F:44:5A:10:F4:26:B4:87:F9:D4:2C:6A:04 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 10B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 10AD Signing time: Tue 04 Nov 2025 17:25:14 +0000 Manifest this update: Tue 04 Nov 2025 17:25:13 +0000 Manifest next update: Tue 11 Nov 2025 17:25:13 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: 5q9EnpMuyHOJfHhS3NP25heYQZU85XwNt7qCL88/elQ=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4278 (0x10b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Nov 4 17:25:13 2025 GMT Not After : Nov 11 17:25:13 2025 GMT Subject: CN=690a36f9-bc34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:00:57:fe:93:d5:32:63:91:e5:88:5a:ef: f6:99:4b:54:dc:80:db:50:05:d4:a1:db:25:a1:f2: b8:17:d0:1f:9f:70:c4:c0:19:c2:1c:19:7e:ab:2b: e8:2f:60:82:00:49:fb:38:6a:23:16:8a:01:31:e6: 54:39:93:9f:80:0f:bc:9e:14:73:7b:14:3d:18:df: 3b:5f:56:0f:1d:4a:70:73:66:b3:d1:b2:98:9f:af: 1c:69:f8:94:f5:81:2f:01:da:63:37:87:79:fb:33: a4:97:6b:74:d1:bd:dc:6f:4e:b4:16:a2:00:af:ff: 04:cd:34:79:43:ce:39:19:fb:bc:19:3e:f5:d5:03: d6:22:75:0b:a3:3c:05:17:e4:3f:9e:9c:25:be:5d: 20:f7:c0:64:9c:e0:25:bd:1b:1c:4c:78:4a:45:9c: 54:0e:f6:bb:5e:4b:18:41:65:d3:e9:1b:25:2e:02: b2:4a:4c:19:75:e6:11:82:01:91:66:4b:2f:92:93: fe:60:de:58:69:e0:6a:98:a6:10:c0:95:d8:d8:37: b4:25:77:3c:54:c9:94:93:97:66:56:33:31:67:bb: b0:fd:50:c9:1d:5a:a5:83:13:12:f4:4c:55:28:e7: 07:7a:75:9d:95:03:ac:fe:d6:de:95:66:7f:c7:8a: 18:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:DC:65:2B:C4:D1:ED:7F:44:5A:10:F4:26:B4:87:F9:D4:2C:6A:04 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:95:0a:e0:fb:54:46:62:20:fc:f7:d3:2f:c9:0b:34:a9:c6: a8:22:0d:35:13:01:7a:2b:ac:c0:42:33:8c:dd:e4:ba:1f:31: c0:fa:35:6a:43:82:09:5e:77:ea:16:f5:a8:f7:53:67:da:53: ef:65:53:32:45:c9:24:cf:d6:fe:d7:0c:17:a2:b4:46:4a:5c: 06:5b:e8:d9:a3:92:55:ea:6b:3d:ed:a3:9a:56:6f:77:15:72: 5f:9e:27:3f:b7:26:bd:42:fc:9b:c9:93:25:b1:f0:d4:e8:78: 53:6d:fa:53:7a:82:21:bd:e5:11:75:8a:72:be:49:13:8f:99: 82:b4:ac:28:3b:f2:04:cf:ef:17:08:2d:c9:21:2b:52:18:30: 5d:be:5a:09:3f:0a:f0:6c:a6:33:63:59:7b:07:bd:01:5c:6f: be:b5:d6:f5:ec:ac:39:a2:79:3a:3f:c2:b5:60:fe:bf:36:4b: f4:88:b1:19:27:e0:98:cb:23:a3:1b:28:63:02:7f:df:d3:52: 57:5f:65:ee:ff:4b:e6:05:6c:e0:8f:71:f1:fa:36:2a:2f:78: 93:8c:2c:49:20:13:ba:3d:59:3a:34:cb:25:60:79:44:92:a8: 6b:8f:ca:07:71:57:b8:f9:3f:fb:d5:d6:d6:41:f2:70:49:dc: 53:7d:ff:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUxMTA0MTcyNTEzWhcNMjUxMTExMTcyNTEzWjAYMRYwFAYD VQQDEw02OTBhMzZmOS1iYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDoAV/6T1TJjkeWIWu/2mUtU3IDbUAXUodslofK4F9Afn3DEwBnCHBl+qyvo L2CCAEn7OGojFooBMeZUOZOfgA+8nhRzexQ9GN87X1YPHUpwc2az0bKYn68cafiU 9YEvAdpjN4d5+zOkl2t00b3cb060FqIAr/8EzTR5Q845Gfu8GT711QPWInULozwF F+Q/npwlvl0g98BknOAlvRscTHhKRZxUDva7XksYQWXT6RslLgKySkwZdeYRggGR ZksvkpP+YN5YaeBqmKYQwJXY2De0JXc8VMmUk5dmVjMxZ7uw/VDJHVqlgxMS9ExV KOcHenWdlQOs/tbelWZ/x4oYWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7cZSvE 0e1/RFoQ9Ca0h/nULGoEMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjlQrg+1RGYiD899MvyQs0qcaoIg01EwF6K6zAQjOM3eS6HzHA+jVq Q4IJXnfqFvWo91Nn2lPvZVMyRckkz9b+1wwXorRGSlwGW+jZo5JV6ms97aOaVm93 FXJfnic/tya9QvybyZMlsfDU6HhTbfpTeoIhveURdYpyvkkTj5mCtKwoO/IEz+8X CC3JIStSGDBdvloJPwrwbKYzY1l7B70BXG++tdb17Kw5onk6P8K1YP6/Nkv0iLEZ J+CYyyOjGyhjAn/f01JXX2Xu/0vmBWzgj3Hx+jYqL3iTjCxJIBO6PVk6NMslYHlE kqhrj8oHcVe4+T/71dbWQfJwSdxTff8J -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:49 2025 by rpki-client