$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: Sdev4D1qh26iRqsrzCSGQJ2xasNhfur2ctqMId4MFNM= Subject key identifier: E1:1C:4A:E9:39:A3:9F:61:C9:8D:30:F8:0F:65:6C:51:56:1B:9C:FA Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 1792 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 177D Signing time: Sun 02 Nov 2025 16:35:45 +0000 Manifest this update: Sun 02 Nov 2025 16:35:44 +0000 Manifest next update: Sun 09 Nov 2025 16:35:44 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: 6G9z7ARgl2CHzqhq/OUNXHcH2SrSsWXs9sDD1KU8EkM=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6034 (0x1792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Nov 2 16:35:44 2025 GMT Not After : Nov 9 16:35:44 2025 GMT Subject: CN=69078860-3287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:64:4e:c7:61:b1:67:38:49:b1:ff:27:6e:c4: 86:b2:60:f7:a3:1e:c4:94:e3:10:d0:03:cd:0e:0c: c9:54:17:31:f5:23:34:a5:e5:ba:53:a0:8a:62:45: 81:55:d5:b9:13:d0:22:7c:4a:46:bc:1e:5e:5c:92: 5e:ac:a8:2b:dc:e1:a8:a4:5d:49:b5:2d:23:91:48: 6d:78:87:d9:fd:93:a2:09:d3:d4:59:94:46:b2:ad: 23:f4:e0:7d:6d:b0:9b:4c:8e:b4:da:61:78:22:cc: bd:34:04:b5:81:2f:1a:44:ec:ee:1d:ad:51:ee:f0: cc:43:77:97:5b:15:68:d4:6a:6a:07:29:fd:20:b5: bf:19:7c:4a:75:27:b7:fa:f3:87:da:0d:f4:7c:60: a1:ce:cd:8c:6c:4d:6e:6c:a3:25:66:b0:cb:52:82: 2e:ee:fa:ab:09:a0:3f:80:86:80:91:b8:26:c0:bd: 88:af:0e:13:ad:bd:40:43:fd:db:c4:ee:26:18:09: 9d:a3:fd:fd:46:5c:6f:07:9b:5d:5b:ac:3d:20:10: b1:d3:e0:fc:ff:04:67:7c:48:80:91:48:16:d6:f9: c1:84:d0:42:28:40:d2:73:27:47:15:e7:b0:8d:0f: 92:88:2e:a1:f4:32:56:fd:92:3f:ca:57:b5:9d:97: 4c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1C:4A:E9:39:A3:9F:61:C9:8D:30:F8:0F:65:6C:51:56:1B:9C:FA X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:37:31:26:c5:49:2d:d1:fb:74:8f:4e:ad:34:26:b4:85:05: a2:d9:d4:34:c2:8a:8b:21:d5:1f:17:36:bf:96:66:37:d0:bf: 58:95:b1:20:ba:22:21:0b:9c:3a:c3:76:5b:66:2e:39:98:ab: 67:ba:2b:8f:38:f2:9b:ef:b8:d1:18:33:96:26:51:8f:86:89: 53:af:a6:55:42:37:e4:2a:19:a2:63:e3:0e:95:e4:1d:df:9a: de:77:ec:18:91:b1:aa:5a:d8:2d:75:05:af:d6:f9:d5:ce:be: a5:50:4f:24:04:22:b5:f3:a5:8b:2b:8d:b8:9d:87:2d:5d:9a: ba:e2:3d:37:46:c5:f6:3a:e0:58:54:12:dc:34:2d:67:7a:98: 99:c0:5e:cc:29:48:50:8f:1c:c3:34:04:1f:0e:99:60:f4:f8: aa:4f:67:99:37:ec:ad:0b:4d:40:4d:32:02:7b:04:7b:0a:2a: 85:22:a2:e6:41:28:d2:38:4f:62:57:13:35:bd:26:ec:44:04: fc:53:3d:0e:3d:15:40:4c:c2:e7:72:d8:3c:8f:4c:93:af:3a: cc:8f:b0:c3:20:0b:0e:06:2c:4e:8c:60:9e:42:87:3a:53:9a: d6:ae:44:9c:0e:12:d9:21:39:89:a2:45:57:6f:af:a5:46:7c: 47:66:bf:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUxMTAyMTYzNTQ0WhcNMjUxMTA5MTYzNTQ0WjAYMRYwFAYD VQQDEw02OTA3ODg2MC0zMjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2ROx2GxZzhJsf8nbsSGsmD3ox7ElOMQ0APNDgzJVBcx9SM0peW6U6CKYkWB VdW5E9AifEpGvB5eXJJerKgr3OGopF1JtS0jkUhteIfZ/ZOiCdPUWZRGsq0j9OB9 bbCbTI602mF4Isy9NAS1gS8aROzuHa1R7vDMQ3eXWxVo1GpqByn9ILW/GXxKdSe3 +vOH2g30fGChzs2MbE1ubKMlZrDLUoIu7vqrCaA/gIaAkbgmwL2Irw4Trb1AQ/3b xO4mGAmdo/39RlxvB5tdW6w9IBCx0+D8/wRnfEiAkUgW1vnBhNBCKEDScydHFeew jQ+SiC6h9DJW/ZI/yle1nZdM6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEcSuk5 o59hyY0w+A9lbFFWG5z6MB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVNzEmxUkt0ft0j06tNCa0hQWi2dQ0woqLIdUfFza/lmY30L9YlbEg uiIhC5w6w3ZbZi45mKtnuiuPOPKb77jRGDOWJlGPholTr6ZVQjfkKhmiY+MOleQd 35red+wYkbGqWtgtdQWv1vnVzr6lUE8kBCK186WLK424nYctXZq64j03RsX2OuBY VBLcNC1nepiZwF7MKUhQjxzDNAQfDplg9PiqT2eZN+ytC01ATTICewR7CiqFIqLm QSjSOE9iVxM1vSbsRAT8Uz0OPRVATMLnctg8j0yTrzrMj7DDIAsOBixOjGCeQoc6 U5rWrkScDhLZITmJokVXb6+lRnxHZr+Q -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:14 2025 by rpki-client