$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: Ptm7vlmAoVMIVyNa+YUKW0OCsNzZgNOX3tQbQvBnAv4= Subject key identifier: 4D:D0:77:B5:1D:9D:C9:D6:8A:E3:05:22:79:72:6D:8F:05:49:B5:9E Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 02F7 Signing time: Mon 03 Nov 2025 01:11:20 +0000 Manifest this update: Mon 03 Nov 2025 01:11:20 +0000 Manifest next update: Mon 10 Nov 2025 01:11:20 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: SuSJBov3EfpLOeTnOZZvsSpTw9tdbZzHPtCMIcFMvsk=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Nov 3 01:11:20 2025 GMT Not After : Nov 10 01:11:20 2025 GMT Subject: CN=69080138-437e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:62:0b:e6:d5:e1:c1:a4:98:08:34:92:03: c1:15:2f:79:f9:90:9a:32:4b:72:36:f1:41:b0:9f: 7c:a0:17:ee:4a:94:72:a3:f4:98:d8:8d:d1:39:b6: 2b:84:9f:59:9c:8a:72:14:99:ee:87:0d:50:e5:f0: a9:33:a2:3c:db:a1:c0:af:b8:37:cb:58:b4:fe:6e: 72:b8:6d:b6:3d:52:ae:d8:db:9e:63:9d:89:fe:8a: 5e:75:48:f5:a4:9d:1c:c9:db:5e:17:8b:d3:9a:53: d8:28:7e:ef:da:67:d8:10:d9:84:9e:68:58:70:4b: 59:40:2b:20:0d:94:17:87:af:e3:79:85:71:77:c9: ec:32:ed:71:0e:b6:1e:cf:1f:9f:35:5f:69:10:16: cd:f9:c0:f7:37:00:19:cc:b9:3b:ed:e3:ec:5b:c8: 0a:38:82:f6:33:5d:ca:14:f8:2e:46:45:85:80:41: 9c:ec:b4:10:83:a7:1c:d1:3b:49:b0:5d:c0:79:20: 56:3e:1a:45:c9:3e:0f:f5:4d:54:62:41:61:f3:74: cd:3e:08:98:7a:28:3e:1a:58:25:83:5f:98:c9:1a: 1e:ab:b7:57:24:e2:b0:50:0c:bc:a8:da:ae:a9:6d: 38:46:06:1a:5f:57:db:03:9a:f9:86:96:41:2a:7e: 0b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D0:77:B5:1D:9D:C9:D6:8A:E3:05:22:79:72:6D:8F:05:49:B5:9E X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:7d:a7:b9:84:0b:a0:ef:e1:2b:4a:95:e6:94:b7:68:f3:67: bc:b6:03:9c:57:88:c0:b6:49:77:52:51:6a:01:67:54:50:37: cf:cb:ca:98:58:81:2e:52:39:ef:1e:f5:e4:e6:44:ac:0e:65: 71:14:0a:d7:ea:2f:95:c0:fa:0f:bd:b5:b1:ab:6d:31:36:57: 5f:8c:8b:21:10:6b:c4:8a:43:1b:b5:44:97:06:23:55:bf:64: 16:54:b0:33:eb:a0:a3:b6:4c:2e:41:e5:b4:d6:61:95:0d:7e: e0:c4:29:30:92:95:e3:0c:13:02:3b:0c:62:10:17:d3:fa:3a: 86:01:eb:6a:8d:68:08:ae:f8:7d:8d:44:82:08:cd:14:16:cf: f9:1e:85:2b:a6:61:8f:8a:68:3d:7d:d7:e4:02:82:ba:00:ac: 9b:fa:0c:d8:f8:0e:ff:c3:0f:2c:de:69:26:ed:40:5c:11:02: 19:0e:5d:89:f4:0f:da:0b:8d:f1:7f:90:f6:bf:aa:2c:5f:94: 11:ad:bb:f7:04:70:89:8c:39:ce:3d:b9:98:10:40:6f:b0:83: 4f:da:78:09:35:3e:f0:52:53:f5:db:27:1f:41:ba:97:17:8c: 84:97:c9:cc:95:d9:b5:a0:cb:bd:1b:5b:9c:40:74:cf:70:59: d9:45:e4:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUxMTAzMDExMTIwWhcNMjUxMTEwMDExMTIwWjAYMRYwFAYD VQQDEw02OTA4MDEzOC00MzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3xiC+bV4cGkmAg0kgPBFS95+ZCaMktyNvFBsJ98oBfuSpRyo/SY2I3RObYr hJ9ZnIpyFJnuhw1Q5fCpM6I826HAr7g3y1i0/m5yuG22PVKu2NueY52J/opedUj1 pJ0cydteF4vTmlPYKH7v2mfYENmEnmhYcEtZQCsgDZQXh6/jeYVxd8nsMu1xDrYe zx+fNV9pEBbN+cD3NwAZzLk77ePsW8gKOIL2M13KFPguRkWFgEGc7LQQg6cc0TtJ sF3AeSBWPhpFyT4P9U1UYkFh83TNPgiYeig+Glglg1+YyRoeq7dXJOKwUAy8qNqu qW04RgYaX1fbA5r5hpZBKn4L5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3Qd7Ud ncnWiuMFInlybY8FSbWeMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAufae5hAug7+ErSpXmlLdo82e8tgOcV4jAtkl3UlFqAWdUUDfPy8qY WIEuUjnvHvXk5kSsDmVxFArX6i+VwPoPvbWxq20xNldfjIshEGvEikMbtUSXBiNV v2QWVLAz66CjtkwuQeW01mGVDX7gxCkwkpXjDBMCOwxiEBfT+jqGAetqjWgIrvh9 jUSCCM0UFs/5HoUrpmGPimg9fdfkAoK6AKyb+gzY+A7/ww8s3mkm7UBcEQIZDl2J 9A/aC43xf5D2v6osX5QRrbv3BHCJjDnOPbmYEEBvsINP2ngJNT7wUlP12ycfQbqX F4yEl8nMldm1oMu9G1ucQHTPcFnZReSR -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:44 2025 by rpki-client