$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: UyTBe5904PviRnQSwS5myLY9iYBGXn3Hl1ZfewJ90sU= Subject key identifier: 27:07:AB:26:7A:2F:D7:55:9E:64:4D:DA:D9:C3:62:C1:01:55:DD:79 Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 037E Signing time: Mon 27 Oct 2025 02:16:32 +0000 Manifest this update: Mon 27 Oct 2025 02:16:31 +0000 Manifest next update: Mon 03 Nov 2025 02:16:31 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: efRSx1XgdhZbfi/c7mGcObZusPmm3WzDmfSpuY4w2vM=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: hW5FiSV5239AbImQE/mYJwi40OATdFzGCdVUMZFhemo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Oct 27 02:16:31 2025 GMT Not After : Nov 3 02:16:31 2025 GMT Subject: CN=68fed5ff-e9a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:0e:0a:0b:fd:3a:a7:46:8a:fe:07:99:04: cc:0b:88:c0:fb:6c:75:2d:8e:8d:26:28:72:35:56: ca:10:55:06:cf:16:5c:fb:74:6f:2b:9d:de:03:33: 56:05:40:a8:d8:37:52:c9:2f:52:c1:fc:05:92:bc: d4:d1:a7:9f:ad:6d:d1:cd:10:f7:46:21:e1:4a:ef: 60:cd:c9:bc:ae:e9:d9:28:69:06:7f:32:a8:0e:ee: 97:d2:f7:28:1d:92:da:94:54:d7:48:da:3d:b1:64: 52:95:cf:ae:af:97:2c:02:91:79:43:2d:ef:a8:6f: 34:af:f0:6a:f4:88:17:2f:71:d0:4f:2d:30:e8:80: 6e:73:bc:87:54:64:98:8f:45:21:b4:c2:c4:be:b8: d9:07:01:ce:11:00:a6:49:11:3c:de:41:52:04:5c: 97:b4:ed:8f:11:a3:a7:15:c3:25:3c:db:ca:0d:44: eb:71:0d:0e:80:a9:89:b6:ca:6a:f0:88:f4:63:36: 92:b9:3a:8d:82:70:5f:9d:0e:02:a3:cd:0e:05:2c: 56:b0:2c:39:f1:56:65:dc:3b:d0:db:c3:4c:3d:26: 5c:26:a1:8f:ff:21:af:33:67:c0:fe:07:d1:dd:d6: 9a:74:0f:fd:fc:ae:2f:bc:1c:25:9d:b2:10:4b:16: 5b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:07:AB:26:7A:2F:D7:55:9E:64:4D:DA:D9:C3:62:C1:01:55:DD:79 X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:74:17:1c:6a:1e:ef:8b:ee:33:ea:2a:4c:55:cf:8f:01:c3: f0:4d:ad:d5:41:04:69:0e:3e:b2:0b:75:da:5c:6d:98:59:f4: 54:61:e0:6c:7f:61:13:a6:9b:84:73:33:b7:19:7c:35:14:44: 19:c2:90:63:5e:e2:c4:3f:16:83:ee:1c:d1:9c:29:b7:28:f2: f0:8a:71:db:25:18:ae:ea:75:5b:df:0b:ff:e0:57:e2:35:bf: fb:46:5d:84:ca:4d:71:b9:fc:5f:cc:52:76:3c:9f:f8:14:3e: c3:47:f6:f2:1c:62:d0:7d:a2:13:9d:c1:7e:0d:7b:a7:21:f4: 12:63:b5:be:f1:e0:c0:d6:bd:30:b0:62:55:0d:a9:16:48:65: 87:d2:e9:2f:63:c8:ff:f2:91:a4:a2:4f:57:a1:ab:ad:d7:1e: e5:3b:4f:47:7c:4b:fe:2f:7f:3a:58:4c:16:9c:2d:86:11:e1: 18:8e:50:26:5b:6c:a0:b8:fb:b4:09:5c:79:87:9a:2f:c7:df: aa:b6:cf:e5:2d:57:75:e2:d4:65:69:d0:b2:52:c7:5b:6d:51: be:7c:89:f6:7e:bd:17:37:42:47:5f:96:20:cc:33:0d:3a:96: db:d5:af:1e:c8:ec:78:ad:09:7d:4a:c4:90:0a:2f:f9:68:0f: fd:bc:4e:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUxMDI3MDIxNjMxWhcNMjUxMTAzMDIxNjMxWjAYMRYwFAYD VQQDEw02OGZlZDVmZi1lOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDIOCgv9OqdGiv4HmQTMC4jA+2x1LY6NJihyNVbKEFUGzxZc+3RvK53eAzNW BUCo2DdSyS9SwfwFkrzU0aefrW3RzRD3RiHhSu9gzcm8runZKGkGfzKoDu6X0vco HZLalFTXSNo9sWRSlc+ur5csApF5Qy3vqG80r/Bq9IgXL3HQTy0w6IBuc7yHVGSY j0UhtMLEvrjZBwHOEQCmSRE83kFSBFyXtO2PEaOnFcMlPNvKDUTrcQ0OgKmJtspq 8Ij0YzaSuTqNgnBfnQ4Co80OBSxWsCw58VZl3DvQ28NMPSZcJqGP/yGvM2fA/gfR 3daadA/9/K4vvBwlnbIQSxZbiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcHqyZ6 L9dVnmRN2tnDYsEBVd15MB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJdBccah7vi+4z6ipMVc+PAcPwTa3VQQRpDj6yC3XaXG2YWfRUYeBs f2ETppuEczO3GXw1FEQZwpBjXuLEPxaD7hzRnCm3KPLwinHbJRiu6nVb3wv/4Ffi Nb/7Rl2Eyk1xufxfzFJ2PJ/4FD7DR/byHGLQfaITncF+DXunIfQSY7W+8eDA1r0w sGJVDakWSGWH0ukvY8j/8pGkok9Xoaut1x7lO09HfEv+L386WEwWnC2GEeEYjlAm W2yguPu0CVx5h5ovx9+qts/lLVd14tRladCyUsdbbVG+fIn2fr0XN0JHX5YgzDMN Opbb1a8eyOx4rQl9SsSQCi/5aA/9vE68 -----END CERTIFICATE-----Generated at Mon Oct 27 17:36:58 2025 by rpki-client