$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: FuRcLsmrLIo4dGxnA70qWrbsWdWmg6YPYDoLWrwRw6U= Subject key identifier: D9:EC:A2:01:5C:93:9B:B2:E6:D9:BF:87:0C:D5:50:DC:C4:21:DD:3F Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: 0151 Signing time: Mon 03 Nov 2025 04:23:27 +0000 Manifest this update: Mon 03 Nov 2025 04:23:27 +0000 Manifest next update: Mon 10 Nov 2025 04:23:27 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: WU9La5nIL9DTdKTJFuu3jlopc9TItQajrGPZniM6Cno=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: Nov 3 04:23:27 2025 GMT Not After : Nov 10 04:23:27 2025 GMT Subject: CN=69082e3f-88fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:21:d9:0d:18:32:14:ca:a2:2a:9c:2f:77:ad: 73:fc:5f:6d:ed:d9:f8:b8:1b:6d:b5:12:cd:7a:6f: 73:11:bc:4b:b1:aa:cf:05:9a:e1:3a:de:ee:6d:11: b3:1f:f9:70:e3:c8:8d:f4:d8:82:47:7d:fb:13:69: 27:f5:eb:75:ea:33:82:f8:f9:eb:2e:96:35:c8:d7: d2:0b:6f:82:01:4f:c7:2c:8e:9d:5b:d0:f4:fe:db: 31:7a:2f:f6:1d:62:79:a0:bc:e0:1b:69:a7:db:25: 51:96:f4:a0:ef:c5:aa:eb:f8:e9:b1:29:55:2c:6c: c4:53:1c:94:c9:4c:20:50:54:ef:fe:54:4a:1c:26: 1d:86:37:7b:ab:1b:7d:1c:e7:30:b7:f4:8d:b7:0e: 2e:4b:5d:f9:f4:0f:0c:34:7f:6f:32:94:21:78:dd: 40:6f:24:78:b1:c9:35:80:17:f9:cb:87:e8:d2:6b: c1:09:f8:aa:b5:8e:9d:58:66:79:b6:71:fa:53:7f: af:39:03:48:2a:70:3a:d2:1b:b1:63:25:03:38:df: e8:69:88:29:ca:9f:36:23:70:dc:55:da:65:46:a4: 59:94:cf:8d:1d:e5:c7:71:7f:8d:f3:fc:ec:47:e8: 84:b0:61:60:8f:03:4e:fa:00:a7:3f:d1:c0:17:12: ef:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:EC:A2:01:5C:93:9B:B2:E6:D9:BF:87:0C:D5:50:DC:C4:21:DD:3F X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:0a:37:52:9a:fa:f1:9f:28:ab:c2:40:f4:19:fc:1f:cc:27: ef:de:cc:65:04:15:7f:61:02:6a:ad:4b:84:4f:67:d5:4f:3c: 9e:92:5c:ba:1b:cb:29:a7:4e:6d:a0:fe:64:1b:17:af:3c:73: 2c:8c:c7:19:41:50:62:01:5d:b5:aa:b8:be:7e:c1:68:13:dd: 82:4d:79:8d:ec:60:30:e0:94:89:98:c0:1f:7c:ed:5b:d5:92: 0a:8b:28:d5:4a:77:68:a3:a7:b2:5b:bc:18:c9:83:d8:a8:34: 99:b1:9d:5c:dc:9b:27:c0:d1:3d:e0:11:86:ef:ce:b3:48:22: 83:ae:22:b4:f5:98:9e:bf:4d:e1:1a:3a:90:52:8e:c5:74:f1: 5d:18:83:2e:d6:30:9c:7c:70:e6:a1:84:35:56:98:71:e9:c6: e3:c4:f3:21:c1:c3:9d:ac:81:6d:95:5b:7c:4b:d7:1d:7a:1b: fd:78:95:69:ee:7e:f1:6d:b9:9d:76:52:00:98:4e:93:29:8c: 0b:bb:bd:e8:f6:7f:f6:90:c9:da:60:0c:7b:08:39:55:e5:64: 0d:88:2a:84:aa:79:d9:4c:8a:38:ac:84:15:38:67:60:2a:1f: 25:96:b6:d9:3a:aa:b4:82:89:cd:96:92:1e:6d:79:34:1d:d3: c2:84:4d:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUxMTAzMDQyMzI3WhcNMjUxMTEwMDQyMzI3WjAYMRYwFAYD VQQDEw02OTA4MmUzZi04OGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSHZDRgyFMqiKpwvd61z/F9t7dn4uBtttRLNem9zEbxLsarPBZrhOt7ubRGz H/lw48iN9NiCR337E2kn9et16jOC+PnrLpY1yNfSC2+CAU/HLI6dW9D0/tsxei/2 HWJ5oLzgG2mn2yVRlvSg78Wq6/jpsSlVLGzEUxyUyUwgUFTv/lRKHCYdhjd7qxt9 HOcwt/SNtw4uS1359A8MNH9vMpQheN1AbyR4sck1gBf5y4fo0mvBCfiqtY6dWGZ5 tnH6U3+vOQNIKnA60huxYyUDON/oaYgpyp82I3DcVdplRqRZlM+NHeXHcX+N8/zs R+iEsGFgjwNO+gCnP9HAFxLvdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnsogFc k5uy5tm/hwzVUNzEId0/MB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0CjdSmvrxnyirwkD0GfwfzCfv3sxlBBV/YQJqrUuET2fVTzyekly6 G8spp05toP5kGxevPHMsjMcZQVBiAV21qri+fsFoE92CTXmN7GAw4JSJmMAffO1b 1ZIKiyjVSndoo6eyW7wYyYPYqDSZsZ1c3JsnwNE94BGG786zSCKDriK09Ziev03h GjqQUo7FdPFdGIMu1jCcfHDmoYQ1Vphx6cbjxPMhwcOdrIFtlVt8S9cdehv9eJVp 7n7xbbmddlIAmE6TKYwLu73o9n/2kMnaYAx7CDlV5WQNiCqEqnnZTIo4rIQVOGdg Kh8llrbZOqq0gonNlpIebXk0HdPChE1y -----END CERTIFICATE-----Generated at Wed Nov 5 00:01:03 2025 by rpki-client