$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: Q19h1Nd+69pncfKy7b1Mt5bbzUVKAjPXMg7niWWfQBg= Subject key identifier: BB:10:C3:D7:1A:D1:F3:50:10:36:2A:94:51:62:8F:81:76:3C:E1:A0 Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 0667 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 065D Signing time: Sun 02 Nov 2025 22:38:25 +0000 Manifest this update: Sun 02 Nov 2025 22:38:25 +0000 Manifest next update: Sun 09 Nov 2025 22:38:25 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: SMIj/0unkhzOhneiEj4yup9m6DALprhCBrXL00Mxhy0=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: BLYldDR5zxqTMcX8NQEJYFIKVTzk5VrQGbTFGjfROjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8, serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Nov 2 22:38:25 2025 GMT Not After : Nov 9 22:38:25 2025 GMT Subject: CN=6907dd61-7437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9b:17:6b:3e:68:f8:91:a4:cd:23:49:3a:9b: e7:17:d0:b5:49:e8:71:72:ea:9c:f4:69:e8:a0:40: 77:ba:d9:d1:ca:8c:75:65:60:a4:46:26:65:c3:15: da:82:18:1d:5d:f5:3e:5a:41:b3:06:68:20:bd:f3: 84:f9:e6:6f:68:91:f2:6f:dd:f1:ed:eb:12:85:ec: 86:22:82:e3:0f:28:b0:00:1b:2c:43:1a:56:32:3a: 84:38:f2:50:2a:d4:e5:b0:55:bf:18:53:8f:ab:1c: 01:85:41:1c:f8:3c:20:a3:1f:ae:6d:38:4d:84:eb: 16:57:20:b8:dc:69:78:20:87:0d:6b:9f:2b:2d:8f: ea:6b:1e:04:4e:17:17:a3:ef:80:6e:73:d2:fa:37: c3:0a:5a:47:16:c9:dc:31:a7:bb:eb:0d:32:ed:b1: d0:75:e1:eb:9d:a4:ff:aa:83:08:82:14:8a:22:05: ba:4d:75:7c:c7:51:1b:f1:2b:88:07:25:26:4d:b6: 98:15:51:5e:43:fd:6d:7e:de:a7:af:8b:ce:f8:c6: f6:bb:2d:26:fd:e7:89:08:7a:6c:a6:70:0c:6a:a2: 68:a9:20:b2:15:88:e2:f0:65:ee:f3:47:bd:19:9f: bf:72:44:b1:93:ad:43:88:0e:4b:3e:61:8a:91:dc: e0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:10:C3:D7:1A:D1:F3:50:10:36:2A:94:51:62:8F:81:76:3C:E1:A0 X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ba:38:69:dd:e6:c5:80:40:45:0a:d3:a1:d9:2b:b2:02:a1: fb:74:13:30:cd:b2:38:43:a1:e1:69:4f:a4:da:6a:53:f9:56: 73:06:01:c3:c2:bd:b0:d2:9c:bd:30:44:9c:2b:27:cd:ba:26: bb:1a:0a:dd:83:80:e2:51:13:dd:00:fe:d8:e9:29:5c:08:7e: d6:5f:1c:13:40:ad:fc:f0:6f:9c:73:59:c5:77:f9:1f:d9:d9: 36:5b:45:4b:7d:63:58:14:ca:cb:ab:b3:36:08:97:76:09:5b: ee:cf:ec:74:e4:41:5b:6e:9a:2a:dc:8b:41:03:91:e0:d4:fe: 30:78:be:0d:a3:bd:07:dd:fb:02:88:a7:b1:b2:a9:6b:88:ba: 77:95:a8:f1:2f:e4:e6:b7:c6:06:d4:73:ac:26:b4:d7:a4:2d: d4:91:ef:fb:a8:ab:d5:64:71:13:7d:fb:47:36:b6:84:99:63: 64:40:35:4d:72:18:7e:dc:78:78:84:f0:ac:65:43:89:78:6a: 61:28:fc:c2:1e:0d:d4:f0:e8:fd:cf:72:8a:d0:1b:4e:8c:55: 16:87:96:c8:8b:76:d4:36:e2:4a:a7:f3:ce:16:bd:59:91:96: 48:8e:c9:dc:a8:f7:26:4a:8e:26:8f:b8:a6:f4:82:5b:36:97: ba:a8:d0:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjUxMTAyMjIzODI1WhcNMjUxMTA5MjIzODI1WjAYMRYwFAYD VQQDEw02OTA3ZGQ2MS03NDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05sXaz5o+JGkzSNJOpvnF9C1Sehxcuqc9GnooEB3utnRyox1ZWCkRiZlwxXa ghgdXfU+WkGzBmggvfOE+eZvaJHyb93x7esSheyGIoLjDyiwABssQxpWMjqEOPJQ KtTlsFW/GFOPqxwBhUEc+Dwgox+ubThNhOsWVyC43Gl4IIcNa58rLY/qax4EThcX o++AbnPS+jfDClpHFsncMae76w0y7bHQdeHrnaT/qoMIghSKIgW6TXV8x1Eb8SuI ByUmTbaYFVFeQ/1tft6nr4vO+Mb2uy0m/eeJCHpspnAMaqJoqSCyFYji8GXu80e9 GZ+/ckSxk61DiA5LPmGKkdzgaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsQw9ca 0fNQEDYqlFFij4F2POGgMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnujhp3ebFgEBFCtOh2SuyAqH7dBMwzbI4Q6HhaU+k2mpT+VZzBgHD wr2w0py9MEScKyfNuia7Ggrdg4DiURPdAP7Y6SlcCH7WXxwTQK388G+cc1nFd/kf 2dk2W0VLfWNYFMrLq7M2CJd2CVvuz+x05EFbbpoq3ItBA5Hg1P4weL4No70H3fsC iKexsqlriLp3lajxL+Tmt8YG1HOsJrTXpC3Uke/7qKvVZHETfftHNraEmWNkQDVN chh+3Hh4hPCsZUOJeGphKPzCHg3U8Oj9z3KK0BtOjFUWh5bIi3bUNuJKp/POFr1Z kZZIjsncqPcmSo4mj7im9IJbNpe6qNC1 -----END CERTIFICATE-----Generated at Tue Nov 4 12:21:22 2025 by rpki-client