$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: /pVPciGLZgensbBAzwZtatp0hjgU9LLrT8S81+rJUow= Subject key identifier: E4:B2:21:EF:19:8A:3D:2B:6E:AC:38:72:AE:E9:F6:A1:D2:D5:9A:A6 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 03AB Signing time: Mon 03 Nov 2025 00:41:48 +0000 Manifest this update: Mon 03 Nov 2025 00:41:47 +0000 Manifest next update: Mon 10 Nov 2025 00:41:47 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: noj/FXNsWcxOn2shJm2HFF+YDQiGnKksvTZNi7pVY3k=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Nov 3 00:41:47 2025 GMT Not After : Nov 10 00:41:47 2025 GMT Subject: CN=6907fa4b-3fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:44:cc:9b:17:20:33:01:36:a2:15:72:7a:f0: a2:d6:41:55:8f:a4:97:86:44:45:3e:f8:a7:5a:52: ad:7a:c1:c4:69:bc:40:4b:8d:73:77:63:f9:7e:5e: 71:22:f0:7d:63:6c:d5:7a:54:c4:f1:04:e1:0c:33: 35:c8:3f:02:45:69:5d:ec:d7:a7:51:c1:3e:a3:17: 96:9b:cc:55:a6:35:12:a3:e1:e4:90:6e:56:d3:99: 9b:45:a6:64:ab:84:79:ec:0b:1d:7d:ac:a3:50:79: ee:ec:0b:d6:5f:41:ef:01:46:5f:80:f9:79:ae:0f: f9:82:5f:0d:13:be:2b:8c:99:5a:10:b1:70:7f:cb: a5:66:97:f4:09:59:ba:a8:fb:b5:d6:3f:49:a8:f0: 19:fd:f9:69:a7:34:90:05:85:b3:6d:a1:45:6a:91: 6f:d9:6e:48:fe:e9:b6:15:99:0a:df:68:fc:17:9f: c8:25:2d:ef:57:9b:ab:19:ba:9e:73:a1:a7:9a:e6: 2a:42:b3:4e:75:94:94:2d:4e:2b:96:13:c3:95:c7: b8:b0:95:38:ca:5f:37:d5:96:e9:44:99:c0:a7:1e: 07:75:e5:17:df:65:b3:37:b0:ab:93:bc:d1:59:79: bc:6d:cd:8f:8c:6c:89:84:a5:1f:fc:71:b4:fd:bf: 9a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B2:21:EF:19:8A:3D:2B:6E:AC:38:72:AE:E9:F6:A1:D2:D5:9A:A6 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:90:e4:36:10:64:d8:03:fb:dc:e2:3a:f8:f9:ab:2b:fd:8d: 84:6e:ca:7a:41:bf:63:bc:4a:9e:15:bf:4a:9b:fc:31:1d:14: e4:c4:d1:42:81:21:a7:3e:a0:56:8e:d1:54:82:df:4f:06:90: f1:69:b4:3a:c8:56:e5:6b:2e:d4:58:7b:90:12:fd:d3:9a:3d: 3b:78:6b:fe:0c:18:66:8d:42:d1:cc:2e:61:b9:9c:15:3a:db: 26:1c:ff:14:c4:23:93:ba:a8:52:c2:1f:ac:a4:39:35:c7:4e: 7d:c9:6d:32:e6:f0:44:5c:dd:72:70:0c:30:80:8b:a8:8c:44: f9:db:7e:03:dc:66:e7:59:20:ce:61:3a:5e:b7:93:4d:fa:86: fd:7f:90:84:a8:84:58:af:9f:44:60:f6:82:4f:f8:00:de:18: 58:af:d3:a8:23:bb:2a:ec:7c:7c:9a:6b:ac:15:47:8d:9a:6f: 71:89:b5:53:24:b7:12:e3:1d:63:48:2d:f7:fb:c4:6d:c0:31: e1:0d:ef:02:2b:58:b2:c2:ed:7c:c4:81:64:2c:eb:ea:71:e1: 97:cc:98:48:01:d1:2e:03:5e:b3:46:6e:f8:c0:d2:ef:10:85: d8:bb:8e:02:e2:e1:ba:42:5d:ee:ff:14:5c:a8:0f:82:ce:be: 36:a7:f8:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUxMTAzMDA0MTQ3WhcNMjUxMTEwMDA0MTQ3WjAYMRYwFAYD VQQDEw02OTA3ZmE0Yi0zZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkTMmxcgMwE2ohVyevCi1kFVj6SXhkRFPvinWlKtesHEabxAS41zd2P5fl5x IvB9Y2zVelTE8QThDDM1yD8CRWld7NenUcE+oxeWm8xVpjUSo+HkkG5W05mbRaZk q4R57AsdfayjUHnu7AvWX0HvAUZfgPl5rg/5gl8NE74rjJlaELFwf8ulZpf0CVm6 qPu11j9JqPAZ/flppzSQBYWzbaFFapFv2W5I/um2FZkK32j8F5/IJS3vV5urGbqe c6GnmuYqQrNOdZSULU4rlhPDlce4sJU4yl831ZbpRJnApx4HdeUX32WzN7Crk7zR WXm8bc2PjGyJhKUf/HG0/b+adQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSyIe8Z ij0rbqw4cq7p9qHS1ZqmMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8kOQ2EGTYA/vc4jr4+asr/Y2Ebsp6Qb9jvEqeFb9Km/wxHRTkxNFC gSGnPqBWjtFUgt9PBpDxabQ6yFblay7UWHuQEv3Tmj07eGv+DBhmjULRzC5huZwV OtsmHP8UxCOTuqhSwh+spDk1x059yW0y5vBEXN1ycAwwgIuojET5234D3GbnWSDO YTpet5NN+ob9f5CEqIRYr59EYPaCT/gA3hhYr9OoI7sq7Hx8mmusFUeNmm9xibVT JLcS4x1jSC33+8RtwDHhDe8CK1iywu18xIFkLOvqceGXzJhIAdEuA16zRm74wNLv EIXYu44C4uG6Ql3u/xRcqA+Czr42p/hW -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:43 2025 by rpki-client