$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft File: i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json) Hash identifier: dPio2Jv1P4D206C8ne1WW3/jmnU//jjDFpXJKitOAbk= Subject key identifier: 00:2D:DF:77:7E:16:2E:40:49:6D:FB:6C:1E:95:7E:43:02:3B:3A:F2 Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A Certificate issuer: /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft Manifest number: CE Signing time: Mon 03 Nov 2025 05:43:34 +0000 Manifest this update: Mon 03 Nov 2025 05:43:33 +0000 Manifest next update: Mon 10 Nov 2025 05:43:33 +0000 Files and hashes: 1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: cCV60xbAIgvqeCs+04KN/EEeTnIYbwYJOP9OCLpm5oE=) 2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: sJiJ1naY/4cR2Pgo/DEru8iJf9KG6T1eb6PbQmIPhNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF, serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Validity Not Before: Nov 3 05:43:33 2025 GMT Not After : Nov 10 05:43:33 2025 GMT Subject: CN=69084106-8fb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:70:11:49:9d:72:5c:f9:c0:6f:73:ff:b6: ed:f7:f1:d8:d0:e0:9b:6f:46:3f:de:0f:b7:2d:07: 9e:2c:41:40:90:da:18:b3:91:09:7b:8f:de:75:f1: 54:c4:63:ce:00:a5:2d:c2:99:3d:74:87:0e:27:3d: b0:ee:58:9e:ef:fb:ac:89:04:ee:49:8c:e4:97:99: ed:1f:57:d2:3b:7c:45:57:7c:7b:5e:f5:b9:9a:8d: ef:a6:9c:c4:2f:49:5e:92:cc:24:e8:f1:7f:5a:96: d6:da:67:ca:91:2c:db:01:86:90:e2:32:90:aa:80: e6:0b:94:dd:dc:30:39:b7:48:8a:24:bc:cd:12:1e: 55:85:60:6d:96:ff:2b:35:62:ec:b1:90:d3:be:cb: b7:d3:ca:96:b8:0d:10:02:c3:ee:00:1f:31:23:13: 01:88:17:f5:20:5a:e3:97:c0:ff:e4:7c:e1:f7:5f: f6:ce:ac:2c:1a:40:61:7a:73:3a:98:8d:a9:78:8a: 90:78:1e:77:f4:b8:f2:62:49:a0:ad:4d:bf:4d:80: 1b:90:6e:6f:2c:ff:f1:ad:b0:dd:1b:c4:4a:5f:e3: d3:42:67:7e:85:60:62:86:a8:50:31:9d:68:66:09: 8f:fa:02:80:2e:44:c1:89:00:5b:d9:dd:84:db:7e: 8d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2D:DF:77:7E:16:2E:40:49:6D:FB:6C:1E:95:7E:43:02:3B:3A:F2 X509v3 Authority Key Identifier: keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:d1:81:39:92:aa:a6:c1:27:4e:41:14:68:5c:e6:b2:3a:a2: 18:35:d5:51:ae:bd:0a:8f:19:5b:4d:61:93:6f:24:af:db:2e: f4:1a:72:aa:4c:f5:51:62:d9:9a:48:71:db:6e:87:cf:67:f9: c1:72:b3:f0:0f:30:c3:c6:c5:5c:9d:db:25:75:45:01:69:48: 95:b0:09:b0:1a:5e:ca:3e:5b:7a:0b:9a:dc:84:9b:5d:46:46: 45:40:ad:73:fa:ff:19:33:a0:08:e2:09:ad:26:18:bb:d5:cc: a2:e5:32:e4:09:c0:bf:33:8c:58:2c:5d:2b:71:21:3e:0d:a4: 9a:60:55:f6:9c:23:b6:4f:a6:dc:6c:5a:02:0d:14:c7:ac:e1: e1:54:14:6c:01:46:a1:a1:36:a6:c2:b6:17:0a:55:8f:ad:20: 74:d4:39:5f:d5:31:f7:b6:e0:c2:0d:34:f7:d1:36:c8:c8:66: fc:79:33:80:83:ef:a1:aa:f6:1c:2e:22:ad:b5:a2:c5:17:f9: 8f:98:e8:28:18:73:a8:61:65:4e:74:7c:13:2d:d0:6e:fd:9c: 05:d1:19:53:a6:6f:49:ec:37:7f:7b:be:b5:ce:82:b4:c1:93: a5:c4:79:bf:59:a8:ce:f1:3a:f1:4e:34:8f:bf:6c:0d:93:d2: d9:b0:3e:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM2REYxMTAvBgNVBAUTKDhCNUU4RUJBQkUwOUExRjQ5M0QxMDI1M0MxQTNCOTM5 MzlCRkNBOEEwHhcNMjUxMTAzMDU0MzMzWhcNMjUxMTEwMDU0MzMzWjAYMRYwFAYD VQQDEw02OTA4NDEwNi04ZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwhwEUmdclz5wG9z/7bt9/HY0OCbb0Y/3g+3LQeeLEFAkNoYs5EJe4/edfFU xGPOAKUtwpk9dIcOJz2w7lie7/usiQTuSYzkl5ntH1fSO3xFV3x7XvW5mo3vppzE L0lekswk6PF/WpbW2mfKkSzbAYaQ4jKQqoDmC5Td3DA5t0iKJLzNEh5VhWBtlv8r NWLssZDTvsu308qWuA0QAsPuAB8xIxMBiBf1IFrjl8D/5Hzh91/2zqwsGkBhenM6 mI2peIqQeB539LjyYkmgrU2/TYAbkG5vLP/xrbDdG8RKX+PTQmd+hWBihqhQMZ1o ZgmP+gKALkTBiQBb2d2E236NWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAt33d+ Fi5ASW37bB6VfkMCOzryMB8GA1UdIwQYMBaAFItejrq+CaH0k9ECU8GjuTk5v8qK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzZERi8xQTM2MkE1Njgx M0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9pMTZPdXI0Sm9mU1QwUUpUd2FPNU9UbV95 b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kxNk91cjRKb2ZTVDBRSlR3YU81T1RtX3lvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzZERi8xQTM2MkE1NjgxM0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9pMTZPdXI0Sm9m U1QwUUpUd2FPNU9UbV95b28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI0YE5kqqmwSdOQRRoXOayOqIYNdVRrr0KjxlbTWGTbySv2y70GnKq TPVRYtmaSHHbbofPZ/nBcrPwDzDDxsVcndsldUUBaUiVsAmwGl7KPlt6C5rchJtd RkZFQK1z+v8ZM6AI4gmtJhi71cyi5TLkCcC/M4xYLF0rcSE+DaSaYFX2nCO2T6bc bFoCDRTHrOHhVBRsAUahoTamwrYXClWPrSB01Dlf1TH3tuDCDTT30TbIyGb8eTOA g++hqvYcLiKttaLFF/mPmOgoGHOoYWVOdHwTLdBu/ZwF0RlTpm9J7Dd/e761zoK0 wZOlxHm/WajO8TrxTjSPv2wNk9LZsD6q -----END CERTIFICATE-----Generated at Tue Nov 4 14:06:07 2025 by rpki-client