$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: tXWZpjyKJhBjbChq93q+gzWzpbtcFlcAfeCjsFi+uOE= Subject key identifier: A3:48:F4:64:06:F0:CB:88:EC:93:C2:CC:5D:B0:E9:43:31:BC:89:59 Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0B3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0B37 Signing time: Tue 04 Nov 2025 19:20:53 +0000 Manifest this update: Tue 04 Nov 2025 19:20:53 +0000 Manifest next update: Tue 11 Nov 2025 19:20:53 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: fcYMeY3tkkAznxaAn6g4cpb6AtosHI/ReGpk0YJmEl8=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2878 (0xb3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Nov 4 19:20:53 2025 GMT Not After : Nov 11 19:20:53 2025 GMT Subject: CN=690a5215-a01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:eb:b3:20:40:4b:bf:a5:de:2a:d5:55:04:8c: d5:be:ff:cf:49:93:34:e5:49:91:55:28:92:9a:91: b1:47:dd:aa:90:87:d8:7c:87:9c:9a:49:4d:43:71: 4a:84:6d:cd:81:51:08:cc:13:77:f2:92:eb:5e:c9: d8:b0:3f:1b:b2:99:33:29:30:a2:fc:c8:7f:d8:37: 40:7b:31:cc:d7:d7:cf:55:c1:f8:ed:0f:a3:50:e5: 83:db:31:f5:1c:24:55:ba:e6:02:8d:19:82:34:4b: eb:0b:25:c4:65:fa:02:8b:81:e2:d1:21:5f:92:f5: 5d:ca:ca:b4:ee:e2:c1:c0:68:45:93:cd:54:b3:b7: 4c:33:85:27:41:25:f4:7c:a8:bd:90:aa:47:e9:98: b5:0d:1e:02:75:a5:47:9f:51:56:d2:e0:96:5e:90: d2:cb:51:96:83:cf:8a:67:8c:25:90:13:dd:89:24: f0:c7:d7:36:9d:a6:f1:fe:6e:3b:14:be:f8:c4:43: 98:f0:66:c7:20:5b:91:a8:07:10:41:35:2e:65:ea: 98:1d:20:2f:f2:0b:4a:92:b9:3c:3c:ff:5b:d5:eb: 01:fd:cb:3a:d3:8d:9d:60:82:cd:0c:66:47:62:f0: 13:9e:0a:d6:17:3d:5c:96:d5:92:47:ac:df:2c:60: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:48:F4:64:06:F0:CB:88:EC:93:C2:CC:5D:B0:E9:43:31:BC:89:59 X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:75:9b:9d:e4:13:b6:e6:01:cb:ab:c9:d1:96:c3:f8:d8:e8: e4:7a:19:84:5e:e4:67:0c:88:9a:a4:2c:fb:51:0f:37:76:c4: 5b:03:fe:b8:c7:d6:48:7d:6f:34:7f:7e:0f:8b:3e:9b:d1:49: b6:b9:95:3b:b0:27:ff:0e:49:2a:f8:a7:ec:00:fc:0c:9a:51: e7:fc:d6:1c:cb:c9:92:91:29:7c:69:87:78:81:73:d4:83:1e: 5f:04:ee:c4:80:10:28:bc:da:7e:b8:58:1c:3c:60:14:16:4f: 6a:06:45:e0:3f:f1:52:24:ea:13:ab:f4:3c:a1:65:05:5c:3a: 80:f9:7c:8b:a6:7b:a8:19:3a:f6:c5:20:7e:fa:59:9f:7c:c1: 88:de:87:33:c9:3d:24:d6:78:6b:fd:8e:09:3c:22:8f:e8:41: b9:8a:28:b5:5b:61:f1:ab:d6:60:37:8e:db:8c:14:6a:e4:62: 32:20:b5:32:55:27:16:14:71:c0:20:fa:65:86:e2:ef:35:78: 6b:35:27:65:4a:28:c8:29:31:fd:5b:10:f8:61:e8:23:6a:a1: 24:a0:59:dc:c0:aa:94:f8:a8:06:65:58:da:8d:c3:5b:35:12: 73:4d:c9:49:a6:81:84:6c:f8:6a:8f:8d:77:07:11:1a:50:ad: 7f:f4:99:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUxMTA0MTkyMDUzWhcNMjUxMTExMTkyMDUzWjAYMRYwFAYD VQQDEw02OTBhNTIxNS1hMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OuzIEBLv6XeKtVVBIzVvv/PSZM05UmRVSiSmpGxR92qkIfYfIecmklNQ3FK hG3NgVEIzBN38pLrXsnYsD8bspkzKTCi/Mh/2DdAezHM19fPVcH47Q+jUOWD2zH1 HCRVuuYCjRmCNEvrCyXEZfoCi4Hi0SFfkvVdysq07uLBwGhFk81Us7dMM4UnQSX0 fKi9kKpH6Zi1DR4CdaVHn1FW0uCWXpDSy1GWg8+KZ4wlkBPdiSTwx9c2nabx/m47 FL74xEOY8GbHIFuRqAcQQTUuZeqYHSAv8gtKkrk8PP9b1esB/cs6042dYILNDGZH YvATngrWFz1cltWSR6zfLGBRDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNI9GQG 8MuI7JPCzF2w6UMxvIlZMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgdZud5BO25gHLq8nRlsP42OjkehmEXuRnDIiapCz7UQ83dsRbA/64 x9ZIfW80f34Piz6b0Um2uZU7sCf/Dkkq+KfsAPwMmlHn/NYcy8mSkSl8aYd4gXPU gx5fBO7EgBAovNp+uFgcPGAUFk9qBkXgP/FSJOoTq/Q8oWUFXDqA+XyLpnuoGTr2 xSB++lmffMGI3oczyT0k1nhr/Y4JPCKP6EG5iii1W2Hxq9ZgN47bjBRq5GIyILUy VScWFHHAIPplhuLvNXhrNSdlSijIKTH9WxD4YegjaqEkoFncwKqU+KgGZVjajcNb NRJzTclJpoGEbPhqj413BxEaUK1/9Jk4 -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:12 2025 by rpki-client