$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: c1wlwZvAzq5lIFH/IcM4Ya7oLwspIxQl6xltQeKNqxE= Subject key identifier: 3A:C6:6C:DF:39:E4:F3:58:03:3C:ED:C5:27:9F:41:D1:B2:16:F4:3A Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 088C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 0873 Signing time: Sun 02 Nov 2025 20:35:46 +0000 Manifest this update: Sun 02 Nov 2025 20:35:45 +0000 Manifest next update: Sun 09 Nov 2025 20:35:45 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: F4lweOwIMv3aQgXgxGHED3cqPdS50Zh+mqx+8SqeDm8=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: Wvwkw2qq7X3gm9ipfWCc3BGdmbxdjnrv9dxFhs0Hnp4=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: DAWoyEN2Fc3h4hex7mVD7U45759qmKwV9gi2n6Era6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Nov 2 20:35:45 2025 GMT Not After : Nov 9 20:35:45 2025 GMT Subject: CN=6907c0a2-3e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:05:12:e8:3f:9e:5b:82:20:f6:a1:76:28:65: 3e:b8:b8:c6:dd:3b:af:27:ba:c6:9d:21:35:cc:13: 84:9d:c6:08:9c:5b:c7:cb:2d:8f:93:16:37:1a:65: ce:0d:c5:1a:ef:2a:85:d0:52:db:ab:be:29:82:a5: 17:72:da:8b:96:c9:48:69:1e:5f:f0:08:79:85:a5: d8:5d:f6:af:0b:61:c7:c4:a2:b5:af:14:84:c0:9b: 30:ae:21:9d:55:cd:06:c7:44:29:8c:3e:41:86:94: 11:ed:17:a0:83:28:1b:34:e0:43:e7:4c:2f:5b:98: 25:47:4e:ef:0e:08:a7:ee:e2:69:6f:df:2f:e2:13: f7:27:a9:e6:d6:22:c6:2a:95:7f:24:fc:8b:5b:f2: ae:2c:52:99:24:b8:05:8c:b7:2e:08:c8:55:9e:b8: 9f:0e:94:1a:a3:39:95:d9:ea:33:4a:26:82:9c:2c: 5b:ec:62:da:4c:e5:a6:0f:0f:2d:f3:7d:f4:c7:f7: 01:03:89:f0:2b:0f:2e:f9:1a:75:ab:82:dc:af:4e: ae:bf:2f:0c:83:e9:0d:de:4b:58:87:11:dc:b1:a4: d0:53:57:ac:c8:89:c2:cc:08:53:b9:0a:2d:7c:78: d7:54:46:43:52:94:58:69:0c:6e:6a:4b:ef:bb:57: 7d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C6:6C:DF:39:E4:F3:58:03:3C:ED:C5:27:9F:41:D1:B2:16:F4:3A X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:b4:87:c8:8d:9b:f0:69:f5:ad:e1:67:79:cc:f1:fd:94:fd: 0b:c5:7c:25:b2:eb:50:a3:60:94:57:be:de:f2:29:d7:16:50: 38:a6:7f:8b:45:af:7f:13:7b:ee:c7:d1:33:92:a8:d3:d9:8d: c7:ae:3e:af:b1:e4:c9:37:83:50:44:66:c2:fa:79:ce:76:1e: b4:a3:83:42:e8:12:32:22:12:9f:29:11:bf:3c:82:91:99:f7: 86:fb:bf:ff:97:8b:44:4e:bc:ee:9f:d2:11:f0:4c:3f:f5:74: 71:e4:4f:40:88:f2:07:24:93:ad:4c:9c:c2:6a:72:f3:8e:74: c8:67:16:bd:88:a8:29:ed:aa:df:f8:ee:cd:e7:f3:a1:93:ff: f4:49:b8:77:85:fd:27:45:23:ce:91:ac:97:86:78:c4:18:cb: 0d:79:43:f3:ec:ba:96:e2:46:87:d7:51:e1:e1:f1:e0:33:5b: a1:10:47:64:7e:46:57:02:1f:38:32:5c:94:25:e8:d7:64:cb: bb:1c:16:87:e6:ab:75:44:7e:7b:0f:29:10:be:54:89:96:4f: eb:2d:6a:83:5c:d2:a8:58:23:b6:a2:9e:d2:4f:1b:b2:a8:2c: a2:6e:0a:05:13:c1:87:22:00:7c:5d:79:8b:62:ae:3d:8d:3b: e6:e5:57:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUxMTAyMjAzNTQ1WhcNMjUxMTA5MjAzNTQ1WjAYMRYwFAYD VQQDEw02OTA3YzBhMi0zZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAUS6D+eW4Ig9qF2KGU+uLjG3TuvJ7rGnSE1zBOEncYInFvHyy2PkxY3GmXO DcUa7yqF0FLbq74pgqUXctqLlslIaR5f8Ah5haXYXfavC2HHxKK1rxSEwJswriGd Vc0Gx0QpjD5BhpQR7ReggygbNOBD50wvW5glR07vDgin7uJpb98v4hP3J6nm1iLG KpV/JPyLW/KuLFKZJLgFjLcuCMhVnrifDpQaozmV2eozSiaCnCxb7GLaTOWmDw8t 8330x/cBA4nwKw8u+Rp1q4Lcr06uvy8Mg+kN3ktYhxHcsaTQU1esyInCzAhTuQot fHjXVEZDUpRYaQxuakvvu1d9YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrGbN85 5PNYAzztxSefQdGyFvQ6MB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADtIfIjZvwafWt4Wd5zPH9lP0LxXwlsutQo2CUV77e8inXFlA4pn+L Ra9/E3vux9EzkqjT2Y3Hrj6vseTJN4NQRGbC+nnOdh60o4NC6BIyIhKfKRG/PIKR mfeG+7//l4tETrzun9IR8Ew/9XRx5E9AiPIHJJOtTJzCanLzjnTIZxa9iKgp7arf +O7N5/Ohk//0Sbh3hf0nRSPOkayXhnjEGMsNeUPz7LqW4kaH11Hh4fHgM1uhEEdk fkZXAh84MlyUJejXZMu7HBaH5qt1RH57DykQvlSJlk/rLWqDXNKoWCO2op7STxuy qCyibgoFE8GHIgB8XXmLYq49jTvm5Vd6 -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:37 2025 by rpki-client