$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft File: O9MC-nouhmpnmxtglttnRToDq4Y.mft (raw, json) Hash identifier: tBpZaRk/B786aZbh8QFhxK81zEpTBpWU2nmpofOn54E= Subject key identifier: 3C:77:C4:FC:79:0A:AA:CA:6C:B8:30:B1:34:87:D2:35:99:71:DE:6E Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0A85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft Manifest number: 0A6B Signing time: Tue 04 Nov 2025 19:44:44 +0000 Manifest this update: Tue 04 Nov 2025 19:44:44 +0000 Manifest next update: Tue 11 Nov 2025 19:44:44 +0000 Files and hashes: 1: O9MC-nouhmpnmxtglttnRToDq4Y.crl (hash: pQcfSrrcI/0eBziS4T8MUdMOSB9KWMjU67505ezY6jg=) 2: 0791DE6034A511ED9D82D13BC4F9AE02.roa (hash: YgLuhvSqEin+i5SUp1az8jMscHcAbxhVSlyBc8B1vlM=) 3: 62512E2C73D311EABC99D63AC4F9AE02.roa (hash: DPmiaEz6M1OneZ4z1YKj44DcnnHVGKuSYV+vSNBuquw=) 4: 27323072FF0E11EFB014CB3CC4F9AE02.roa (hash: wxcY42YjsuRVvMQ/m7CB1YYbOqzcrhZ00l1RvoVq8ek=) 5: 855AECF29B3A11EB9B73EB7BC4F9AE02.roa (hash: NLByGRv6anI6tIVcb5p+1Xch3v2zcxtkN/xSf48UIQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2693 (0xa85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Nov 4 19:44:44 2025 GMT Not After : Nov 11 19:44:44 2025 GMT Subject: CN=690a57ac-8468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4d:e7:7d:ec:0c:f4:ce:ca:c2:e0:82:d5:7e: a8:e8:49:b7:c8:5b:15:01:ff:20:dd:0d:55:a8:5b: 04:dd:76:60:c1:c8:f9:9c:2f:bf:aa:84:88:79:fd: 6b:62:3f:b7:b4:46:01:88:8e:93:5e:eb:92:e9:e2: 80:fb:b6:2d:4f:d9:58:fa:fd:0f:fc:49:28:c8:ac: ab:a3:f2:a8:24:14:63:f3:59:d2:76:4d:41:ad:65: 6c:cc:ac:5b:37:ed:5a:d9:83:38:a7:b4:ec:b2:75: c0:47:b0:f9:ba:3f:76:bf:fc:34:16:75:09:bc:f9: 1d:a9:04:4f:5a:e7:28:a2:e6:eb:62:1e:48:83:0a: 19:3d:85:6c:5e:c1:09:60:0a:53:e6:d8:7b:59:d3: a2:f7:1f:e7:2b:5f:20:08:f8:15:0f:77:69:e7:48: 89:96:38:3e:d6:c8:ee:d7:6f:39:6a:d1:16:b4:58: a4:b6:1f:c1:9b:d2:bb:85:90:70:8f:80:46:ae:c9: 90:22:5c:ca:ee:09:da:fa:d9:0e:5f:e5:34:2c:b3: 58:69:ed:87:13:16:c0:bc:2f:bc:44:d8:90:73:68: ad:c0:78:2c:a4:26:2e:ad:e5:98:6b:d5:04:2c:24: 0d:4f:1f:a2:9a:76:36:aa:39:d2:65:2e:29:c2:fa: e3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:77:C4:FC:79:0A:AA:CA:6C:B8:30:B1:34:87:D2:35:99:71:DE:6E X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:11:70:03:f6:44:cb:fb:de:51:e3:97:b9:82:d3:9d:8c:bf: 61:3f:63:7c:22:26:79:67:c7:a2:a8:07:49:2c:23:fd:ad:7a: 1d:31:7c:8f:ba:38:a2:99:b4:f6:b2:b4:00:62:d4:cc:16:4c: b1:a0:d8:49:04:69:39:31:76:ad:52:e9:7c:f8:2c:2c:14:be: b0:76:4b:9b:ff:81:57:c1:70:15:c4:40:d1:b9:4d:8f:3f:18: 0f:79:66:2c:15:ff:3f:0b:d3:fa:47:b8:e2:5e:55:71:c6:19: b0:ba:39:bb:6d:e7:aa:74:08:b1:95:02:96:b9:5e:02:1d:c2: 2f:d8:22:21:a6:9f:a3:99:42:65:12:d7:2f:f8:ec:c2:31:9e: 2e:ba:34:f9:6e:84:ac:f2:90:33:7e:dc:c0:67:de:f3:85:64: 06:a0:a4:d0:93:6d:8d:3a:05:6a:b6:30:ec:f0:b0:ea:a2:70: c5:fc:56:4e:48:3c:44:f0:b1:18:b2:ab:d5:07:26:b3:1c:46: b1:0e:f1:da:8b:40:57:78:f0:17:aa:73:c9:b5:8c:68:ff:94: 40:2a:8b:b1:c3:28:cd:b7:4a:20:c7:7a:2c:ee:bb:52:e1:c4: 4d:a6:19:a3:33:e3:65:09:3e:d4:3c:e5:0e:e6:ac:f1:08:e9: 1d:59:88:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjUxMTA0MTk0NDQ0WhcNMjUxMTExMTk0NDQ0WjAYMRYwFAYD VQQDEw02OTBhNTdhYy04NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwk3nfewM9M7KwuCC1X6o6Em3yFsVAf8g3Q1VqFsE3XZgwcj5nC+/qoSIef1r Yj+3tEYBiI6TXuuS6eKA+7YtT9lY+v0P/EkoyKyro/KoJBRj81nSdk1BrWVszKxb N+1a2YM4p7TssnXAR7D5uj92v/w0FnUJvPkdqQRPWucooubrYh5IgwoZPYVsXsEJ YApT5th7WdOi9x/nK18gCPgVD3dp50iJljg+1sju1285atEWtFikth/Bm9K7hZBw j4BGrsmQIlzK7gna+tkOX+U0LLNYae2HExbAvC+8RNiQc2itwHgspCYureWYa9UE LCQNTx+imnY2qjnSZS4pwvrjqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDx3xPx5 CqrKbLgwsTSH0jWZcd5uMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RDRC84NDQyOEIwRTczRDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWht cG5teHRnbHR0blJUb0RxNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMEXAD9kTL+95R45e5gtOdjL9hP2N8IiZ5Z8eiqAdJLCP9rXodMXyP ujiimbT2srQAYtTMFkyxoNhJBGk5MXatUul8+CwsFL6wdkub/4FXwXAVxEDRuU2P PxgPeWYsFf8/C9P6R7jiXlVxxhmwujm7beeqdAixlQKWuV4CHcIv2CIhpp+jmUJl Etcv+OzCMZ4uujT5boSs8pAzftzAZ97zhWQGoKTQk22NOgVqtjDs8LDqonDF/FZO SDxE8LEYsqvVByazHEaxDvHai0BXePAXqnPJtYxo/5RAKouxwyjNt0ogx3os7rtS 4cRNphmjM+NlCT7UPOUO5qzxCOkdWYg1 -----END CERTIFICATE-----Generated at Wed Nov 5 13:03:10 2025 by rpki-client