$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: EOqa4PdIE3UHFPk6paI4q3uOEIC9BpOUfzzjvQCHh/A= Subject key identifier: 7A:1B:AB:62:44:0C:56:6A:04:17:C6:BF:FF:13:DD:45:38:1A:F7:7D Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: AD Signing time: Mon 03 Nov 2025 02:43:35 +0000 Manifest this update: Mon 03 Nov 2025 02:43:34 +0000 Manifest next update: Mon 10 Nov 2025 02:43:34 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: 3YoKDNQF4/qOkOTAPtkwcGQJnqB1PAeAnkHUQ/LtK+M=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Nov 3 02:43:34 2025 GMT Not After : Nov 10 02:43:34 2025 GMT Subject: CN=690816d7-acc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fc:06:e9:9f:c9:62:fc:2e:1b:57:2b:78:24: 94:25:87:94:32:06:0b:c3:a2:c6:6a:53:29:10:53: 25:ee:a4:ec:3b:b5:d0:68:63:d2:6e:5e:3a:fd:13: 90:ba:77:f3:69:4c:a3:ce:c7:e1:de:5a:33:ce:f5: 95:be:04:db:e0:c7:6e:bc:08:e9:2f:b5:4d:da:f2: c4:1a:72:e0:17:75:2f:e3:49:87:ed:60:03:3c:0f: e9:78:de:77:f6:4c:b1:2a:29:55:56:52:6d:61:91: f1:24:69:01:27:46:fa:51:fd:c1:37:22:75:8e:dd: b4:5a:7b:2d:cb:2c:b3:58:47:fb:de:3a:c5:76:30: 23:54:c4:0b:35:02:47:80:1a:b8:ce:a0:58:5c:6d: ed:7b:a4:b5:54:08:07:a5:79:6f:10:4f:dc:08:88: 00:c4:74:cb:ba:10:0e:8b:3e:62:33:85:cb:b1:2f: 98:40:8b:b6:34:40:69:bf:f1:da:17:34:b1:6b:fe: fe:9f:e4:09:c8:a2:51:d0:c3:07:db:62:26:22:14: 89:85:db:db:fa:ba:25:b0:c1:70:e9:57:ac:df:8a: 46:6d:a1:dd:58:81:5f:58:aa:ed:7d:b6:d2:d2:cb: 58:c5:66:3a:a4:46:c1:fe:38:2f:94:14:80:dd:74: ec:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1B:AB:62:44:0C:56:6A:04:17:C6:BF:FF:13:DD:45:38:1A:F7:7D X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b6:cd:45:00:a1:39:fa:2e:94:3f:84:70:e7:67:7e:33:66: e3:9b:01:0b:a3:bc:56:76:97:e4:6d:a0:47:8a:e2:64:d6:f2: c3:03:cd:df:87:6f:31:a3:7b:1a:44:85:46:b4:0b:c5:2c:da: 0f:b4:be:a7:37:08:7b:ae:45:11:af:4c:cb:d3:fd:82:2d:a2: 2b:48:1e:03:21:3b:42:b4:40:e9:94:1d:ca:4b:1f:68:5d:92: 03:d4:8f:31:08:b2:b9:94:65:fa:f5:49:70:30:b2:c9:b3:70: 4b:54:97:94:79:7b:76:35:0e:bd:d2:e8:ff:22:eb:a7:f7:d0: e9:f2:3a:30:e9:e8:93:bd:9e:74:b0:04:22:80:d1:c5:0f:05: 03:2b:71:06:54:bf:2e:f4:aa:c1:3c:af:a8:f7:06:46:67:20: f9:b4:95:83:43:b3:f7:f9:78:f2:51:72:c3:5d:c5:34:6a:6a: e2:ac:16:9a:94:f9:c7:e9:88:1f:0e:3b:2a:d7:25:e4:70:61: 45:ea:36:1a:14:0a:d0:bc:b2:ab:4e:4e:7e:14:ae:fe:8d:1f: 32:f9:0e:2b:08:57:28:5c:ab:64:6f:cb:ae:7b:d9:70:a4:6e: 63:5b:c6:0e:32:ac:64:d6:7f:fc:1a:08:7c:f0:c8:5f:5a:15: 42:ad:ca:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMTAzMDI0MzM0WhcNMjUxMTEwMDI0MzM0WjAYMRYwFAYD VQQDEw02OTA4MTZkNy1hY2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPwG6Z/JYvwuG1creCSUJYeUMgYLw6LGalMpEFMl7qTsO7XQaGPSbl46/ROQ unfzaUyjzsfh3lozzvWVvgTb4MduvAjpL7VN2vLEGnLgF3Uv40mH7WADPA/peN53 9kyxKilVVlJtYZHxJGkBJ0b6Uf3BNyJ1jt20WnstyyyzWEf73jrFdjAjVMQLNQJH gBq4zqBYXG3te6S1VAgHpXlvEE/cCIgAxHTLuhAOiz5iM4XLsS+YQIu2NEBpv/Ha FzSxa/7+n+QJyKJR0MMH22ImIhSJhdvb+rolsMFw6Ves34pGbaHdWIFfWKrtfbbS 0stYxWY6pEbB/jgvlBSA3XTsxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHobq2JE DFZqBBfGv/8T3UU4Gvd9MB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWts1FAKE5+i6UP4Rw52d+M2bjmwELo7xWdpfkbaBHiuJk1vLDA83f h28xo3saRIVGtAvFLNoPtL6nNwh7rkURr0zL0/2CLaIrSB4DITtCtEDplB3KSx9o XZID1I8xCLK5lGX69UlwMLLJs3BLVJeUeXt2NQ690uj/Iuun99Dp8jow6eiTvZ50 sAQigNHFDwUDK3EGVL8u9KrBPK+o9wZGZyD5tJWDQ7P3+XjyUXLDXcU0amrirBaa lPnH6YgfDjsq1yXkcGFF6jYaFArQvLKrTk5+FK7+jR8y+Q4rCFcoXKtkb8uue9lw pG5jW8YOMqxk1n/8Ggh88MhfWhVCrcqz -----END CERTIFICATE-----Generated at Tue Nov 4 18:55:56 2025 by rpki-client