$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: M83ooDnG6No8T5KlwEaIDNYG2QG5VqqxZ8PrryrQ0vA= Subject key identifier: 8D:CE:9E:61:84:69:92:90:5A:72:0B:7A:46:66:EC:35:A8:F1:DB:14 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 01E4 Signing time: Wed 05 Nov 2025 03:06:19 +0000 Manifest this update: Wed 05 Nov 2025 03:06:19 +0000 Manifest next update: Wed 12 Nov 2025 03:06:19 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: acBYuj7UtPwulMWyhnql92ypUevcnU7Vxnm/zVNUoIk=) 2: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: 1SKbx2XsDMYzA80POo6zzafuauDwKbPNh6n7Ob5AjVA=) 3: D0103496FD6611EE9188C568C4F9AE02.roa (hash: PxpNeamT7nJAO8ypf86mF4tTFHjbBgphhBI0WaQ2K6I=) 4: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: 8ceZRP/XUhaUyTjeioD/K4mCivFkQCLXcH6cjJ7JFq0=) 5: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: e/dOTjn5zjRzl7VVF4lYBqEjUR3aP4ajbLKyVpxXtqo=) 6: 803597528D5911F087734E0BC4F9AE02.roa (hash: nE7csU7wzmCX2AbBS7z4n8sEfZSzQpZLx/oSC0wZ/sk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Nov 5 03:06:19 2025 GMT Not After : Nov 12 03:06:19 2025 GMT Subject: CN=690abf2b-c1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cc:ae:ce:95:c6:bf:f7:d0:cb:91:f8:ef:e5: 35:e7:85:41:cb:42:0e:47:a8:50:9f:dc:2c:59:85: 15:d7:88:76:94:96:83:3f:21:a4:25:e7:0b:86:95: 4d:20:18:50:bb:fa:ab:00:7c:0c:a2:33:25:51:07: 53:e2:b0:9b:aa:f4:9b:ce:a7:9f:46:55:60:c4:bd: 66:69:f6:1b:b7:26:c6:1d:01:9d:c1:30:40:2c:a8: 15:3f:3c:72:ab:a7:09:7d:fb:67:88:33:ad:c4:f1: 74:ae:dc:55:e8:12:89:ea:6d:1c:5d:04:60:d2:4f: e5:10:ac:e5:54:e3:ad:e1:52:84:f4:80:31:fb:02: 77:96:a7:83:aa:22:f1:75:64:0f:93:36:0c:7d:5b: 32:95:32:4a:44:08:38:1b:a1:60:1f:8f:cb:b1:c0: 93:e3:74:19:41:60:d8:1b:9a:02:fd:e9:ca:8e:97: 3b:92:2e:ce:7b:fe:6f:50:8f:a0:11:a5:e1:e1:d5: 2f:0f:b4:7f:61:c7:8e:b8:22:dd:47:33:83:2e:50: ee:c0:61:62:ef:48:3c:f2:96:79:a1:43:91:26:21: 19:51:c8:78:89:ff:d9:bc:0d:06:cc:4a:6f:91:09: dc:5c:27:08:f7:43:85:1f:05:c5:52:07:db:70:d7: 0a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CE:9E:61:84:69:92:90:5A:72:0B:7A:46:66:EC:35:A8:F1:DB:14 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b0:7f:2a:52:fc:70:cf:b6:e1:80:66:fa:f7:5a:ea:eb:88: 5b:42:a2:db:87:c2:00:d3:bd:ea:11:69:d7:d9:d7:49:1f:b7: 8a:ca:6b:79:87:bc:c7:6a:c2:89:4a:31:66:22:6c:03:5d:92: 79:46:ac:6f:0b:0e:6b:e4:ce:48:e1:61:ab:2d:01:cc:98:3a: 78:14:79:0d:9a:b1:33:b1:6e:04:64:8b:b6:20:05:52:34:9a: 06:c8:23:39:e3:b8:7c:43:d2:42:d9:80:35:ae:5f:12:06:e3: 78:53:51:fb:a6:be:11:df:3d:2d:41:95:f6:40:2d:64:02:7c: 02:2f:e4:98:ae:34:9d:0f:76:98:06:91:7a:47:de:55:45:bd: f7:f3:06:19:07:b3:f5:f4:3a:61:ae:dc:87:3c:7a:29:b4:86: 9c:90:73:64:1d:3f:72:1c:8e:f9:04:18:6f:ae:35:87:64:af: 8d:3f:b9:67:e7:8a:04:f4:67:c3:c4:cc:c8:75:46:f6:1a:30: 57:43:f8:73:b3:8c:0c:99:06:4f:8a:be:34:18:2a:62:e2:51: 8d:fc:1f:5d:5a:82:d0:3c:1f:09:2d:b4:a5:7c:69:fc:87:b3: 00:65:83:2f:83:76:7b:c8:9e:6b:a8:24:e0:cd:6e:2a:f4:91: 31:83:26:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjUxMTA1MDMwNjE5WhcNMjUxMTEyMDMwNjE5WjAYMRYwFAYD VQQDEw02OTBhYmYyYi1jMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMyuzpXGv/fQy5H47+U154VBy0IOR6hQn9wsWYUV14h2lJaDPyGkJecLhpVN IBhQu/qrAHwMojMlUQdT4rCbqvSbzqefRlVgxL1mafYbtybGHQGdwTBALKgVPzxy q6cJfftniDOtxPF0rtxV6BKJ6m0cXQRg0k/lEKzlVOOt4VKE9IAx+wJ3lqeDqiLx dWQPkzYMfVsylTJKRAg4G6FgH4/LscCT43QZQWDYG5oC/enKjpc7ki7Oe/5vUI+g EaXh4dUvD7R/YceOuCLdRzODLlDuwGFi70g88pZ5oUORJiEZUch4if/ZvA0GzEpv kQncXCcI90OFHwXFUgfbcNcKHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3OnmGE aZKQWnILekZm7DWo8dsUMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisH8qUvxwz7bhgGb691rq64hbQqLbh8IA073qEWnX2ddJH7eKymt5 h7zHasKJSjFmImwDXZJ5RqxvCw5r5M5I4WGrLQHMmDp4FHkNmrEzsW4EZIu2IAVS NJoGyCM547h8Q9JC2YA1rl8SBuN4U1H7pr4R3z0tQZX2QC1kAnwCL+SYrjSdD3aY BpF6R95VRb338wYZB7P19DphrtyHPHoptIackHNkHT9yHI75BBhvrjWHZK+NP7ln 54oE9GfDxMzIdUb2GjBXQ/hzs4wMmQZPir40GCpi4lGN/B9dWoLQPB8JLbSlfGn8 h7MAZYMvg3Z7yJ5rqCTgzW4q9JExgybv -----END CERTIFICATE-----Generated at Wed Nov 5 05:17:43 2025 by rpki-client