$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: V3RKA4PZxkWtBydav0f+Kr0lhRt3/6410MpOcBYhA/g= Subject key identifier: 78:C5:48:E2:4F:E7:08:1A:20:E6:F8:95:EB:28:FA:8B:7A:3A:96:15 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 07D8 Signing time: Sun 02 Nov 2025 21:09:37 +0000 Manifest this update: Sun 02 Nov 2025 21:09:36 +0000 Manifest next update: Sun 09 Nov 2025 21:09:36 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: Vtk47IWOdSX+pDsRFptqCSA+JSLtNIPFlCaMBpbKAtE=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Nov 2 21:09:36 2025 GMT Not After : Nov 9 21:09:36 2025 GMT Subject: CN=6907c890-552a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f6:60:91:1b:76:91:06:63:f6:71:44:de:3d: ce:20:2f:54:d6:6b:a8:8b:2b:e2:4e:c0:9c:08:a4: d6:ba:b2:d1:29:6a:b4:6b:64:54:04:42:f8:45:88: c8:83:1c:ef:29:26:3f:44:a1:48:e9:18:f7:6a:0e: 16:24:2f:2d:91:63:1a:3a:ab:c2:e8:d1:fd:76:14: 90:9a:ec:9c:e2:1d:65:c1:18:f7:cb:de:6e:e4:6c: 22:66:db:42:ba:d6:3e:33:15:bd:9e:4f:0d:55:1c: 72:31:0c:31:0a:f2:b0:32:ca:09:e1:b3:10:e0:95: 20:42:6a:d1:08:e2:0f:46:87:10:a7:67:f1:ba:6a: b6:2b:8b:0e:b1:5c:c6:8e:62:59:87:f5:27:9e:69: 7c:7a:d5:fc:c9:c3:d9:6e:5b:68:e7:ae:da:42:29: 65:c7:fb:7d:0f:87:7b:4a:2d:6d:4d:79:50:6c:34: 72:8d:8c:bc:3d:93:f8:02:6d:01:6b:6e:60:ef:32: f4:04:f9:a8:b8:2f:6d:25:16:72:fa:cf:0b:80:58: 03:18:c1:98:79:66:c7:55:f2:4a:77:55:a5:35:c9: 85:87:b3:cb:7e:8e:2a:e5:0f:87:ab:92:68:0d:08: e4:be:6a:f1:94:22:9e:3b:b4:b0:de:d7:27:eb:4a: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C5:48:E2:4F:E7:08:1A:20:E6:F8:95:EB:28:FA:8B:7A:3A:96:15 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:7f:cb:0d:6f:f6:b8:cf:ef:3d:1f:95:64:15:81:f9:3c:11: a4:3a:7e:f0:d1:b9:3e:dd:0e:1e:26:9b:e7:f4:b2:42:63:bc: 30:28:2b:56:eb:c8:f9:0f:70:16:3f:27:8d:c6:c0:2e:7a:02: 77:f1:3c:40:e7:0a:57:e4:e1:ad:b0:b6:ba:2a:4c:90:59:82: 23:3e:c8:b7:5e:ee:5f:aa:47:14:f2:df:82:9c:98:5d:e0:8d: fb:27:67:f3:00:b6:b0:79:72:36:4a:09:48:66:f5:86:65:1c: 7c:36:35:24:b2:a9:5c:45:81:3c:60:54:91:59:72:81:3f:48: dc:b6:92:2a:b8:af:37:e7:52:20:6d:d4:8d:57:16:1e:6c:38: 72:0f:17:79:92:39:76:dd:b0:93:23:35:ea:84:ce:e8:62:2f: 02:cb:dd:e0:cb:25:8e:3a:c2:2d:cf:35:27:26:5f:05:eb:6b: 5f:84:15:d3:1d:d1:57:35:09:b5:0b:a8:47:de:f4:55:83:1d: ef:c8:a0:01:60:b3:42:8a:2b:67:97:4b:3c:d0:a3:98:45:77: 40:12:cd:fd:d6:41:b1:d7:db:08:37:ed:22:98:f3:dd:cf:5b: 00:34:56:56:aa:37:4e:c7:17:c9:8f:a9:c6:38:a1:e2:bd:30: 09:d4:1d:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUxMTAyMjEwOTM2WhcNMjUxMTA5MjEwOTM2WjAYMRYwFAYD VQQDEw02OTA3Yzg5MC01NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/ZgkRt2kQZj9nFE3j3OIC9U1muoiyviTsCcCKTWurLRKWq0a2RUBEL4RYjI gxzvKSY/RKFI6Rj3ag4WJC8tkWMaOqvC6NH9dhSQmuyc4h1lwRj3y95u5GwiZttC utY+MxW9nk8NVRxyMQwxCvKwMsoJ4bMQ4JUgQmrRCOIPRocQp2fxumq2K4sOsVzG jmJZh/Unnml8etX8ycPZblto567aQillx/t9D4d7Si1tTXlQbDRyjYy8PZP4Am0B a25g7zL0BPmouC9tJRZy+s8LgFgDGMGYeWbHVfJKd1WlNcmFh7PLfo4q5Q+Hq5Jo DQjkvmrxlCKeO7Sw3tcn60o8YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjFSOJP 5wgaIOb4leso+ot6OpYVMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMf8sNb/a4z+89H5VkFYH5PBGkOn7w0bk+3Q4eJpvn9LJCY7wwKCtW 68j5D3AWPyeNxsAuegJ38TxA5wpX5OGtsLa6KkyQWYIjPsi3Xu5fqkcU8t+CnJhd 4I37J2fzALaweXI2SglIZvWGZRx8NjUksqlcRYE8YFSRWXKBP0jctpIquK8351Ig bdSNVxYebDhyDxd5kjl23bCTIzXqhM7oYi8Cy93gyyWOOsItzzUnJl8F62tfhBXT HdFXNQm1C6hH3vRVgx3vyKABYLNCiitnl0s80KOYRXdAEs391kGx19sIN+0imPPd z1sANFZWqjdOxxfJj6nGOKHivTAJ1B2E -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:31 2025 by rpki-client