$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: 5/Ey48QXqzQiE3jchEgD40c16kbGBGu39b0MudpApp4= Subject key identifier: 5F:37:45:87:D7:91:67:FC:EA:06:E4:01:53:08:E1:73:97:3A:3D:9E Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 08A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 089D Signing time: Sun 02 Nov 2025 20:30:36 +0000 Manifest this update: Sun 02 Nov 2025 20:30:35 +0000 Manifest next update: Sun 09 Nov 2025 20:30:35 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: DEDWo15FMAZcbS+8hiDy/A84dFMuer0I1P1S7TNaPus=) 2: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: LYF+KadzZ69diyD5rWiKHJlYkwO/eA/Z250K04w+xPI=) 3: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: +w6DPiK2iGC1sFd6+H0KMfGyjFvRHYPwKc/prnzBHkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: Nov 2 20:30:35 2025 GMT Not After : Nov 9 20:30:35 2025 GMT Subject: CN=6907bf6b-c718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:27:a1:ac:7a:ad:d8:34:d9:4d:00:44:c5:60: d9:96:43:07:7a:5c:f9:07:b4:48:76:a4:2c:91:65: 05:db:18:81:23:cb:b7:f7:c4:2c:d5:a3:09:18:1b: ea:c4:96:d3:04:28:8a:91:3b:50:87:0b:9e:cc:d5: 01:33:33:7c:19:29:53:3e:52:a2:4b:12:d6:c4:de: c8:c7:a0:ed:41:4a:fd:9a:b5:62:8b:64:d6:c8:b9: 60:eb:c6:fb:60:4c:d0:9a:34:de:84:19:77:64:2d: 9a:fc:ce:33:4e:c5:24:b1:8a:eb:32:08:8f:b5:f1: 1d:29:c0:49:12:e0:f8:eb:10:f8:fe:15:2f:81:11: fa:e7:96:d3:9c:28:5d:fc:28:ac:bf:51:c6:2a:a0: 74:4e:46:36:d7:92:ba:61:e6:6b:f1:b9:05:fa:4d: 58:7f:ec:35:92:38:cb:47:1a:42:77:0a:07:8c:bb: 19:35:20:bc:51:51:56:88:f3:79:39:a7:35:80:f7: c0:75:22:82:a2:62:70:b7:52:87:cd:30:97:5b:fe: e4:80:31:ca:0e:5e:6d:e6:c0:43:ea:dc:6c:bc:01: 51:11:ef:bc:63:99:6e:b9:38:6d:fe:ee:79:9c:52: 27:28:31:62:18:0d:06:cd:af:c4:cb:fa:3f:a1:ad: 48:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:37:45:87:D7:91:67:FC:EA:06:E4:01:53:08:E1:73:97:3A:3D:9E X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:52:d4:6d:a5:87:b5:71:ea:ce:4c:98:73:e5:50:8a:28:95: fd:92:6d:c2:1c:93:8f:d8:cd:1a:e9:74:c7:0f:5f:a7:70:ed: 2d:9d:82:0f:fa:d0:64:14:94:aa:23:84:7a:2a:7c:11:15:62: c0:3b:c1:2b:bf:5b:85:20:65:a8:04:84:41:9b:d9:a3:1c:e8: e1:5f:d0:fb:a2:60:05:67:d2:b7:38:7b:72:42:e5:17:66:f4: 63:7e:1d:26:4b:d8:5e:1f:65:72:38:04:a5:ca:ac:b2:d8:91: 5a:72:43:d6:aa:59:5c:49:44:42:4b:9d:00:d7:f1:8a:83:96: f2:da:23:6e:ea:81:09:72:e5:70:80:58:63:d7:1b:18:e9:cd: b6:b1:30:f8:86:d6:29:c2:b7:e4:4d:36:1a:44:40:33:87:fc: 74:32:fa:1f:81:19:1b:0e:1a:1d:5d:26:ca:7d:3e:63:dc:0b: 1a:5c:c6:71:8d:3a:47:e3:d5:c9:21:99:fb:e8:0d:c7:7f:db: 1e:74:9a:27:f3:65:8a:73:74:e9:84:9d:5b:d6:45:a1:11:0e: 09:25:ae:93:71:d8:e4:3d:58:43:ff:16:39:fd:9a:ec:18:1f: f0:17:c1:48:7a:67:e7:97:60:9c:9a:d3:76:c5:66:66:13:a4: 14:24:e5:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjUxMTAyMjAzMDM1WhcNMjUxMTA5MjAzMDM1WjAYMRYwFAYD VQQDEw02OTA3YmY2Yi1jNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCehrHqt2DTZTQBExWDZlkMHelz5B7RIdqQskWUF2xiBI8u398Qs1aMJGBvq xJbTBCiKkTtQhwuezNUBMzN8GSlTPlKiSxLWxN7Ix6DtQUr9mrVii2TWyLlg68b7 YEzQmjTehBl3ZC2a/M4zTsUksYrrMgiPtfEdKcBJEuD46xD4/hUvgRH655bTnChd /Cisv1HGKqB0TkY215K6YeZr8bkF+k1Yf+w1kjjLRxpCdwoHjLsZNSC8UVFWiPN5 Oac1gPfAdSKComJwt1KHzTCXW/7kgDHKDl5t5sBD6txsvAFREe+8Y5luuTht/u55 nFInKDFiGA0Gza/Ey/o/oa1IsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF83RYfX kWf86gbkAVMI4XOXOj2eMB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJUtRtpYe1cerOTJhz5VCKKJX9km3CHJOP2M0a6XTHD1+ncO0tnYIP +tBkFJSqI4R6KnwRFWLAO8Erv1uFIGWoBIRBm9mjHOjhX9D7omAFZ9K3OHtyQuUX ZvRjfh0mS9heH2VyOASlyqyy2JFackPWqllcSURCS50A1/GKg5by2iNu6oEJcuVw gFhj1xsY6c22sTD4htYpwrfkTTYaREAzh/x0MvofgRkbDhodXSbKfT5j3AsaXMZx jTpH49XJIZn76A3Hf9sedJon82WKc3TphJ1b1kWhEQ4JJa6TcdjkPVhD/xY5/Zrs GB/wF8FIemfnl2CcmtN2xWZmE6QUJOWb -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:25 2025 by rpki-client