$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: O3Cs1i8YWgjbxXof6O9U4Z6Zsmerytv8mQvRvs8DiZU= Subject key identifier: E9:E8:54:BD:49:8D:56:CA:CD:6D:8F:34:86:39:0F:29:14:2B:9B:E5 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0A09 Signing time: Sun 02 Nov 2025 19:49:04 +0000 Manifest this update: Sun 02 Nov 2025 19:49:04 +0000 Manifest next update: Sun 09 Nov 2025 19:49:04 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: s8jw6rUfmhl6AWZv+eAuSkJS3v5Gsa+kkwnXPI088QA=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: WlJN5u1oi9WPrD229vbsWsLGL/hLS+xCYNJ5+hmxu8E=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: Jhv7IIpmMM0oZ7iAKkds1Qiv2p8w6iMgKtc0KDhD18s=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: 9Z+s94Y5T1K7IVPTPlx/BgDTI68R9a8i/jpS5x1Nr4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2592 (0xa20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Nov 2 19:49:04 2025 GMT Not After : Nov 9 19:49:04 2025 GMT Subject: CN=6907b5b0-9d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f1:3f:f9:31:a0:7e:1e:4e:8f:ce:27:1e:ea: c5:d9:74:d3:30:1b:ae:d9:b4:bd:aa:c3:d7:62:bd: bd:64:9c:eb:93:3c:df:5e:06:70:32:b0:4f:01:44: 87:cc:d1:98:44:db:65:0b:bb:41:52:23:60:39:05: f5:8d:0d:4b:33:ab:0c:b3:c4:39:77:d2:f6:dd:16: 68:ee:f2:19:03:7e:20:dd:61:b4:e3:4e:ea:ff:17: 0d:d7:df:42:12:b5:a5:de:d6:fd:cb:23:83:28:44: 02:c3:cb:57:69:36:ad:0b:44:f1:72:ce:22:04:ce: fa:51:c2:4f:83:f8:b7:2f:8b:fb:a4:1d:e8:68:e4: 5e:c3:be:6b:fd:4a:7e:a7:00:ae:5c:bc:4b:f1:14: ff:f7:e1:f3:bd:71:70:1d:4e:1a:6c:e0:f4:7a:a4: e4:15:96:a3:d5:31:2e:43:c9:aa:7c:be:91:33:5a: ca:39:37:29:41:7e:77:c8:d2:49:a2:4c:67:e1:ca: 08:c4:1f:54:52:91:4c:c2:db:9f:9a:0a:88:f6:7e: 39:19:85:16:46:9d:fc:7b:0f:1b:f5:be:72:a8:da: fc:70:76:50:55:0e:b2:3e:fc:ae:15:38:3d:97:d9: 17:e1:0b:43:a2:e2:88:84:d5:05:15:46:0d:28:53: ae:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E8:54:BD:49:8D:56:CA:CD:6D:8F:34:86:39:0F:29:14:2B:9B:E5 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:68:33:9a:28:5a:4d:3d:8e:35:bf:74:e9:b5:30:7b:bd:71: fc:39:ef:42:22:e3:be:9f:2e:e4:6a:3c:a0:12:5d:47:ae:e1: 08:f5:05:42:9a:77:b5:10:4f:c0:74:36:c1:e9:9b:72:d9:ce: 52:43:0e:13:7c:53:2d:83:50:d3:35:2a:f2:78:72:ad:70:d4: 73:8b:f9:26:3b:56:2c:b7:22:ce:fe:80:2e:71:8a:da:6d:57: ca:27:40:b5:15:5d:e1:db:43:ad:d1:bb:c8:fb:86:d8:c3:48: f1:9e:85:88:c9:29:4b:8e:dc:26:3c:a6:bd:eb:1f:9d:1c:90: 76:b2:bd:14:c5:a9:a9:ed:cc:b3:b8:c5:01:45:87:fd:65:bc: 6b:0e:bf:50:6a:95:cc:1e:ec:2a:58:83:4b:be:da:e4:d2:f5: bd:16:9e:f1:75:04:06:7b:f7:2a:ce:40:94:01:da:06:1a:a4: de:f8:ba:45:a5:d3:2c:60:12:99:d7:e1:8d:86:9e:8d:86:a9: 69:52:61:83:93:73:2e:fb:44:d3:68:28:4b:95:92:d4:78:4e: 67:85:2b:3e:2c:10:87:13:90:c9:a3:1d:95:b8:de:e2:32:82: 87:d2:b4:c5:6a:f7:8e:14:7c:d9:7a:7e:9d:32:d3:5a:fa:95: fa:fa:50:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUxMTAyMTk0OTA0WhcNMjUxMTA5MTk0OTA0WjAYMRYwFAYD VQQDEw02OTA3YjViMC05ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/E/+TGgfh5Oj84nHurF2XTTMBuu2bS9qsPXYr29ZJzrkzzfXgZwMrBPAUSH zNGYRNtlC7tBUiNgOQX1jQ1LM6sMs8Q5d9L23RZo7vIZA34g3WG0407q/xcN199C ErWl3tb9yyODKEQCw8tXaTatC0Txcs4iBM76UcJPg/i3L4v7pB3oaORew75r/Up+ pwCuXLxL8RT/9+HzvXFwHU4abOD0eqTkFZaj1TEuQ8mqfL6RM1rKOTcpQX53yNJJ okxn4coIxB9UUpFMwtufmgqI9n45GYUWRp38ew8b9b5yqNr8cHZQVQ6yPvyuFTg9 l9kX4QtDouKIhNUFFUYNKFOuzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnoVL1J jVbKzW2PNIY5DykUK5vlMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSaDOaKFpNPY41v3TptTB7vXH8Oe9CIuO+ny7kajygEl1HruEI9QVC mne1EE/AdDbB6Zty2c5SQw4TfFMtg1DTNSryeHKtcNRzi/kmO1YstyLO/oAucYra bVfKJ0C1FV3h20Ot0bvI+4bYw0jxnoWIySlLjtwmPKa96x+dHJB2sr0Uxamp7cyz uMUBRYf9ZbxrDr9QapXMHuwqWINLvtrk0vW9Fp7xdQQGe/cqzkCUAdoGGqTe+LpF pdMsYBKZ1+GNhp6NhqlpUmGDk3Mu+0TTaChLlZLUeE5nhSs+LBCHE5DJox2VuN7i MoKH0rTFaveOFHzZen6dMtNa+pX6+lCc -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:02 2025 by rpki-client