$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft File: OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft (raw, json) Hash identifier: 9hrhFBhCbh7IHQZ43bq51tZLPt51pbI0zZ7/Y04xH6Q= Subject key identifier: ED:EE:38:A6:F7:50:A0:7B:6A:5A:ED:DC:2F:B8:4E:37:E9:9C:F1:9B Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1EF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft Manifest number: 1EE5 Signing time: Tue 04 Nov 2025 16:08:03 +0000 Manifest this update: Tue 04 Nov 2025 16:08:02 +0000 Manifest next update: Tue 11 Nov 2025 16:08:02 +0000 Files and hashes: 1: OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl (hash: /qlWomPpnjQ4l9+A5n17fgKfgDugnR4vfMtqQLzV4Hw=) 2: BFF7726E6EF711E69FBC340BC4F9AE02.roa (hash: W0ZWmGkhW06fRZVPw8jscLCIBobXeY3y+SwBDvJ1Z0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7921 (0x1ef1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C, serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: Nov 4 16:08:02 2025 GMT Not After : Nov 11 16:08:02 2025 GMT Subject: CN=690a24e3-2e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:01:39:e9:dc:44:18:09:59:d5:fb:18:ea:d0: 57:89:af:e2:ef:ad:f6:20:43:7f:fb:4f:f1:1e:e0: af:65:3e:f0:fe:e7:c2:ce:f4:74:95:57:60:54:86: 30:50:d2:0d:ed:80:20:2a:09:d7:80:48:c6:06:26: 34:0d:05:8e:bd:e0:fb:66:7f:17:d4:9f:3b:e7:b7: 41:ea:92:d3:ab:86:6d:39:4e:14:db:dc:83:17:22: 64:83:6a:c7:ec:62:38:c8:4c:7a:47:c3:e5:a3:1f: 86:72:12:52:a6:aa:68:ab:bb:ca:c9:ec:e3:f5:f2: 38:d3:f1:05:1e:07:8e:54:3a:3f:ef:22:7a:6f:0e: 01:60:18:52:73:0a:8e:dd:2f:6f:28:ad:a8:85:8e: fb:c4:3f:c0:b6:7d:45:e4:15:99:13:aa:ca:aa:26: b6:3e:6e:48:e8:8d:fc:32:d7:2b:69:49:e1:4f:47: 78:15:33:f9:97:33:73:bf:80:09:5a:50:62:29:cd: 40:1d:a4:da:cb:43:f8:ff:fd:23:05:cb:94:b9:a3: 87:f7:28:bc:49:13:44:41:f9:a1:e0:c5:d3:bb:a6: 82:4a:80:1e:ce:1c:92:1f:2e:b8:9b:79:7a:25:1c: f1:7f:ff:8a:c7:4c:ad:c6:f5:cf:3c:d4:ca:17:46: 3a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:EE:38:A6:F7:50:A0:7B:6A:5A:ED:DC:2F:B8:4E:37:E9:9C:F1:9B X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:e7:3f:7d:82:47:6f:87:57:c1:e3:51:2c:c1:27:3f:49:0c: 62:5c:4d:67:95:00:0d:bf:0c:78:da:e2:48:e1:a6:50:7f:c1: 73:b8:19:63:91:b5:91:37:07:ac:e0:e6:56:1b:22:2a:62:d8: 8f:6a:d8:62:e9:c2:f4:d4:3e:02:78:10:71:8d:44:42:68:a5: 07:39:d3:fb:14:4e:e0:97:4f:17:00:f7:c6:15:c5:a0:b4:9a: 28:07:b6:c0:e8:51:8a:83:ac:fc:f9:18:3c:ac:92:76:57:36: 41:a8:d4:81:94:1f:03:e0:cb:76:fc:0d:04:51:c2:d8:1e:c9: 31:24:81:90:e3:10:c6:2a:c4:a7:60:16:a7:75:67:2e:e9:10: f1:41:b0:85:7b:17:4e:e1:7c:ff:b4:e3:e3:7c:91:66:48:a4: 55:1b:30:d3:cb:4e:16:1f:b5:34:87:b3:a0:77:4a:de:a9:d0: a7:1e:b3:ca:88:43:75:1e:33:2c:7a:01:75:9d:1e:00:fd:08: 44:46:bc:19:0c:7a:fe:2e:8e:40:3d:09:61:81:5e:4b:e4:38: ac:32:c8:c0:d6:82:7d:4b:9b:1e:33:4f:1b:22:89:5f:ea:cd: 1e:54:cc:33:35:71:79:f0:bf:3a:53:a3:b0:2a:f1:8c:b8:08: e0:14:ed:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjUxMTA0MTYwODAyWhcNMjUxMTExMTYwODAyWjAYMRYwFAYD VQQDEw02OTBhMjRlMy0yZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAE56dxEGAlZ1fsY6tBXia/i7632IEN/+0/xHuCvZT7w/ufCzvR0lVdgVIYw UNIN7YAgKgnXgEjGBiY0DQWOveD7Zn8X1J8757dB6pLTq4ZtOU4U29yDFyJkg2rH 7GI4yEx6R8Plox+GchJSpqpoq7vKyezj9fI40/EFHgeOVDo/7yJ6bw4BYBhScwqO 3S9vKK2ohY77xD/Atn1F5BWZE6rKqia2Pm5I6I38MtcraUnhT0d4FTP5lzNzv4AJ WlBiKc1AHaTay0P4//0jBcuUuaOH9yi8SRNEQfmh4MXTu6aCSoAezhySHy64m3l6 JRzxf/+Kx0ytxvXPPNTKF0Y6dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3uOKb3 UKB7alrt3C+4TjfpnPGbMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEM3Qy8yOUY3QTA0MDZFRjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtU VXdsRmcyR05iTUI1eURET0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR5z99gkdvh1fB41EswSc/SQxiXE1nlQANvwx42uJI4aZQf8FzuBlj kbWRNwes4OZWGyIqYtiPathi6cL01D4CeBBxjURCaKUHOdP7FE7gl08XAPfGFcWg tJooB7bA6FGKg6z8+Rg8rJJ2VzZBqNSBlB8D4Mt2/A0EUcLYHskxJIGQ4xDGKsSn YBandWcu6RDxQbCFexdO4Xz/tOPjfJFmSKRVGzDTy04WH7U0h7Ogd0reqdCnHrPK iEN1HjMsegF1nR4A/QhERrwZDHr+Lo5APQlhgV5L5DisMsjA1oJ9S5seM08bIolf 6s0eVMwzNXF58L86U6OwKvGMuAjgFO3F -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:27 2025 by rpki-client