$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: mY3THjdRHqsUGxQQDI4Lz3b9rMocJm4IIIKEKTx2S0g= Subject key identifier: 47:D6:4E:EC:A7:13:16:7B:D9:7C:C2:C8:E3:9B:15:3A:DD:A4:F1:87 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 0937 Signing time: Sun 02 Nov 2025 20:10:47 +0000 Manifest this update: Sun 02 Nov 2025 20:10:46 +0000 Manifest next update: Sun 09 Nov 2025 20:10:46 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: dKdSUlFQ4125GhAsX/emX/5mkKeIeLSEqAKZVqlukZU=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jBS/1Hlfhun69e6e4ZHEVPi7ipp4H+jsjI8X7M9ZNQw=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: /W7jNuOZe0YfOd8yIagbqgnCN+PhgeGc0tSQIMsMPPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Nov 2 20:10:46 2025 GMT Not After : Nov 9 20:10:46 2025 GMT Subject: CN=6907bac7-dfda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:61:76:a3:07:e4:59:cc:02:7e:30:02:de: a1:de:21:01:c2:7b:7b:80:95:79:aa:e4:3a:16:f9: 7d:4e:d3:ff:29:4d:8f:0c:9f:02:32:cd:4e:34:b0: 9a:4d:54:b5:9f:a6:06:ec:0d:f2:cd:86:ee:d3:da: 6e:2d:00:84:2d:98:9b:a8:17:2b:e2:44:73:1e:33: fe:3c:35:7a:27:c4:4d:29:04:21:86:6a:fd:f7:6e: 79:92:56:2a:4a:0a:e1:3d:6e:9d:af:da:fb:44:f7: 91:88:81:0e:7c:2b:cd:5a:d0:65:e5:84:19:85:7e: f2:eb:f7:4b:fc:89:d3:d9:ce:88:4b:af:83:66:41: a5:81:a3:11:25:4a:32:e5:f5:fb:55:c1:e4:5d:6d: 0f:c5:5e:d5:46:47:08:de:39:ac:ba:b9:50:07:7a: a9:fc:ef:ce:ac:a6:b2:db:91:cb:c7:cb:df:c8:0a: 52:24:13:9e:6b:0b:15:94:be:79:54:e1:e4:79:70: ad:e2:08:b7:8c:97:43:0c:ac:38:90:0d:95:81:5b: 06:c4:de:79:aa:87:f1:72:0a:08:1a:83:70:62:ad: cb:9e:be:cc:8a:70:b9:32:18:b9:a9:52:1a:e3:92: 89:60:33:c2:44:87:f7:77:75:89:39:c6:76:65:76: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D6:4E:EC:A7:13:16:7B:D9:7C:C2:C8:E3:9B:15:3A:DD:A4:F1:87 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:c7:9f:1c:0a:61:b3:d8:83:5b:29:8e:0b:29:b2:73:79:89: 9f:7e:f8:15:01:84:e8:aa:7e:a2:85:42:34:06:75:1c:59:5c: 16:68:49:15:e5:2c:09:20:ad:bb:9b:35:4a:0a:c3:df:ce:20: cd:81:45:75:2f:5d:1e:95:55:a9:cc:8f:33:ea:7f:40:25:c0: 50:a1:76:76:7f:a7:6a:8f:0a:5b:03:ae:4c:b3:58:a7:3d:9e: 33:0f:e8:11:9b:af:7a:0b:a6:b6:50:57:90:ac:78:fa:b8:a9: d5:49:a1:70:af:36:16:ce:61:f9:33:3d:f8:aa:94:ef:48:61: 9c:0c:95:8f:6c:09:55:68:f5:22:86:d6:61:dd:f1:22:06:ea: 04:48:e6:38:76:bb:f6:89:ef:b9:2a:46:8d:46:14:30:0a:da: 3f:9a:b1:d5:12:25:35:cc:c3:26:5b:2c:bd:64:cd:94:f1:f1: 64:c2:91:a7:7e:cb:92:74:e8:a0:19:01:67:fa:62:84:e5:64: b1:83:27:86:91:38:6b:e3:c6:91:e0:bc:ce:db:cd:68:be:09: 80:5b:ca:8c:fb:c9:4d:24:4a:5a:92:01:db:ad:db:d3:66:a7: 0b:16:3a:53:c1:b1:4d:d8:f4:30:94:4b:5a:cc:3d:ed:27:7f: 14:77:49:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUxMTAyMjAxMDQ2WhcNMjUxMTA5MjAxMDQ2WjAYMRYwFAYD VQQDEw02OTA3YmFjNy1kZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDVhdqMH5FnMAn4wAt6h3iEBwnt7gJV5quQ6Fvl9TtP/KU2PDJ8CMs1ONLCa TVS1n6YG7A3yzYbu09puLQCELZibqBcr4kRzHjP+PDV6J8RNKQQhhmr99255klYq SgrhPW6dr9r7RPeRiIEOfCvNWtBl5YQZhX7y6/dL/InT2c6IS6+DZkGlgaMRJUoy 5fX7VcHkXW0PxV7VRkcI3jmsurlQB3qp/O/OrKay25HLx8vfyApSJBOeawsVlL55 VOHkeXCt4gi3jJdDDKw4kA2VgVsGxN55qofxcgoIGoNwYq3Lnr7MinC5Mhi5qVIa 45KJYDPCRIf3d3WJOcZ2ZXZB2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfWTuyn ExZ72XzCyOObFTrdpPGHMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8x58cCmGz2INbKY4LKbJzeYmffvgVAYToqn6ihUI0BnUcWVwWaEkV 5SwJIK27mzVKCsPfziDNgUV1L10elVWpzI8z6n9AJcBQoXZ2f6dqjwpbA65Ms1in PZ4zD+gRm696C6a2UFeQrHj6uKnVSaFwrzYWzmH5Mz34qpTvSGGcDJWPbAlVaPUi htZh3fEiBuoESOY4drv2ie+5KkaNRhQwCto/mrHVEiU1zMMmWyy9ZM2U8fFkwpGn fsuSdOigGQFn+mKE5WSxgyeGkThr48aR4LzO281ovgmAW8qM+8lNJEpakgHbrdvT ZqcLFjpTwbFN2PQwlEtazD3tJ38Ud0mL -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:48 2025 by rpki-client