$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft File: owBvXZI9TJzDuBs4ocpnEnR9RAY.mft (raw, json) Hash identifier: dy8CkGqtyMMcvwrBV7AhrqcVxpHrn13Ekgg9k4QAxaI= Subject key identifier: 47:3D:B6:90:16:89:6F:53:43:43:C8:48:9B:8B:43:37:C8:52:1E:11 Authority key identifier: A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 Certificate issuer: /CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft Manifest number: 01F0 Signing time: Mon 03 Nov 2025 02:29:49 +0000 Manifest this update: Mon 03 Nov 2025 02:29:48 +0000 Manifest next update: Mon 10 Nov 2025 02:29:48 +0000 Files and hashes: 1: owBvXZI9TJzDuBs4ocpnEnR9RAY.crl (hash: JoZwOPzVn0ZYiTxKzEjySdUi1BxqPIEUgudv+ga/VyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Validity Not Before: Nov 3 02:29:48 2025 GMT Not After : Nov 10 02:29:48 2025 GMT Subject: CN=6908139c-797d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ed:6c:2a:db:1e:26:25:de:66:28:68:23:57: 52:ad:7c:4d:ec:a3:cf:41:16:ee:37:c3:4b:d5:8f: b8:27:d3:b2:19:9e:22:df:30:76:bc:d8:32:1b:ec: b5:6f:44:cd:f4:b2:54:8d:6f:7b:13:e5:ca:c1:7a: 5a:0a:01:88:ab:c8:28:63:e4:94:4d:19:31:d4:53: 28:fd:05:58:6f:d2:3b:d0:53:3b:bb:c4:9e:23:20: 67:77:40:fa:d3:68:8a:2b:38:9b:8c:2e:2d:ed:92: ae:ec:9c:35:41:58:ec:37:51:13:b2:87:3d:b4:ec: 43:1f:ed:f3:f3:39:1a:99:2f:e2:bf:3c:c9:34:bc: 01:05:59:ef:d9:b4:44:78:69:be:4f:ea:41:2e:6e: b9:1c:95:fc:f2:bb:1e:53:52:49:cd:a6:e6:3d:16: de:e5:dd:6c:d2:27:db:0a:6f:45:d3:c8:fe:63:b4: 0e:25:cf:de:47:84:59:01:52:12:c6:13:35:ad:a0: 5e:09:97:73:a5:be:f0:75:80:3c:3b:bf:40:35:31: 0e:bf:7a:90:c8:16:ec:7d:d6:84:b6:13:03:ae:33: a7:04:6a:8e:24:61:58:65:7d:c3:3c:fa:dd:25:a1: 10:89:a3:98:07:1d:95:0c:1d:86:b4:9c:4f:2e:93: 33:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3D:B6:90:16:89:6F:53:43:43:C8:48:9B:8B:43:37:C8:52:1E:11 X509v3 Authority Key Identifier: keyid:A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:88:3e:45:5a:39:3d:4f:e7:b4:0c:db:f2:5b:fe:cb:67:20: 5d:5d:e1:d4:76:e6:01:ad:62:e1:0c:4a:53:86:6c:d5:df:5c: eb:7b:e1:76:a8:81:8b:80:1e:23:48:15:63:a1:e3:bf:4a:8d: 22:4a:c5:15:75:0a:d3:9e:3a:23:54:11:f1:6f:33:9c:5a:40: e6:d9:cd:33:00:bb:a1:5a:8e:3e:36:96:70:ac:1c:74:7a:d0: a9:dd:51:90:9d:53:06:2d:45:2d:e6:11:87:93:09:33:d9:fe: 85:eb:72:69:34:73:33:c2:b4:93:be:35:0a:e6:9d:af:7a:53: de:80:d9:eb:7e:97:da:e1:be:93:d3:47:d5:07:10:a4:49:03: c7:2b:9e:8a:50:2c:b8:2b:2b:91:fb:f8:70:33:35:68:90:4f: 90:ab:57:86:46:bf:75:aa:9e:37:97:b2:fe:d8:79:3e:df:4a: ee:49:97:a8:e9:8a:73:e9:aa:3f:27:82:91:02:9e:20:a6:0b: 4a:ed:99:01:43:42:d5:71:5b:ed:e5:f7:22:82:c8:a9:9a:ec: 70:fd:b0:94:ee:be:a1:18:07:fc:26:74:b0:09:f8:dc:ff:18: bb:8d:0e:30:4b:bd:63:bc:ee:10:41:d8:70:db:36:ac:d3:ff: ed:b9:71:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKEEzMDA2RjVEOTIzRDRDOUNDM0I4MUIzOEExQ0E2NzEy NzQ3RDQ0MDYwHhcNMjUxMTAzMDIyOTQ4WhcNMjUxMTEwMDIyOTQ4WjAYMRYwFAYD VQQDEw02OTA4MTM5Yy03OTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApO1sKtseJiXeZihoI1dSrXxN7KPPQRbuN8NL1Y+4J9OyGZ4i3zB2vNgyG+y1 b0TN9LJUjW97E+XKwXpaCgGIq8goY+SUTRkx1FMo/QVYb9I70FM7u8SeIyBnd0D6 02iKKzibjC4t7ZKu7Jw1QVjsN1ETsoc9tOxDH+3z8zkamS/ivzzJNLwBBVnv2bRE eGm+T+pBLm65HJX88rseU1JJzabmPRbe5d1s0ifbCm9F08j+Y7QOJc/eR4RZAVIS xhM1raBeCZdzpb7wdYA8O79ANTEOv3qQyBbsfdaEthMDrjOnBGqOJGFYZX3DPPrd JaEQiaOYBx2VDB2GtJxPLpMzNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEc9tpAW iW9TQ0PISJuLQzfIUh4RMB8GA1UdIwQYMBaAFKMAb12SPUycw7gbOKHKZxJ0fUQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9EOUJGNDM5NEJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRKekR1QnM0b2NwbkVuUjlS QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293QnZYWkk5VEp6RHVCczRvY3BuRW5SOVJBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9EOUJGNDM5NEJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRK ekR1QnM0b2NwbkVuUjlSQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGiD5FWjk9T+e0DNvyW/7LZyBdXeHUduYBrWLhDEpThmzV31zre+F2 qIGLgB4jSBVjoeO/So0iSsUVdQrTnjojVBHxbzOcWkDm2c0zALuhWo4+NpZwrBx0 etCp3VGQnVMGLUUt5hGHkwkz2f6F63JpNHMzwrSTvjUK5p2velPegNnrfpfa4b6T 00fVBxCkSQPHK56KUCy4KyuR+/hwMzVokE+Qq1eGRr91qp43l7L+2Hk+30ruSZeo 6Ypz6ao/J4KRAp4gpgtK7ZkBQ0LVcVvt5fcigsipmuxw/bCU7r6hGAf8JnSwCfjc /xi7jQ4wS71jvO4QQdhw2zas0//tuXFL -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:57 2025 by rpki-client