$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: 6skPhShr+GNF0o7993qDnUuYRND0WI2kTHuMmQ1JqLk= Subject key identifier: CA:FD:D5:41:14:D4:21:1E:5A:72:B2:23:CF:89:AD:44:C4:7B:F0:72 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 100A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 0FFB Signing time: Sun 02 Nov 2025 17:29:25 +0000 Manifest this update: Sun 02 Nov 2025 17:29:24 +0000 Manifest next update: Sun 09 Nov 2025 17:29:24 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: zM/Ayr/NUSUDFFC68ri0vsMjajX0k42c3+5r7AeDPxo=) 2: 68DA14E65BB211E9BF474F16C4F9AE02.roa (hash: +yhzJzGn+WxW2d4EtUHBstgfBIaoIoaYoJwg0N+/u2I=) 3: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: bOx/MaRmXB38ne/1h1RZYscRhBFAXmNorXwlc1KE7w8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4106 (0x100a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Nov 2 17:29:24 2025 GMT Not After : Nov 9 17:29:24 2025 GMT Subject: CN=690794f4-93c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d7:e6:b4:df:03:f5:5e:b7:11:be:e3:72:f8: 4b:08:00:73:76:b5:80:fc:11:51:3d:8a:b6:ef:12: 0d:a2:14:d7:9c:b0:bd:89:a1:72:08:18:cb:52:5d: 74:83:cf:47:ff:35:e9:2c:40:49:1f:d6:fa:f7:a7: d6:3a:04:b0:2a:79:d4:1e:6f:4a:8f:7d:b9:1b:59: 02:1e:9c:29:c8:2f:69:84:e0:9a:cb:90:ed:84:55: 44:44:3e:f6:35:38:e4:aa:bc:52:49:3a:bd:69:6d: aa:94:ef:d1:27:66:1c:30:74:26:f3:55:27:90:b2: 03:0c:1a:bc:a7:4a:98:b4:d4:57:bd:11:e0:6e:ae: e0:d7:8b:29:cb:cb:e5:d1:6e:a5:b1:3d:99:da:38: c6:e0:c5:bc:a8:63:ab:2d:60:bf:fe:ae:d4:22:5f: 8b:9d:fd:1e:30:5c:d6:36:23:cd:e0:b7:f0:89:2e: 2d:ba:c0:2d:fc:8c:ac:34:5b:2f:8a:ee:aa:fe:bb: 3b:2c:89:11:44:44:69:e8:1e:8e:24:4e:00:7c:bd: 0f:ba:fa:23:f0:ce:fe:e0:11:be:ce:af:74:a8:f4: 6f:f3:71:4a:d4:22:e3:39:87:a8:65:e5:15:3f:72: f0:5f:61:c1:ce:52:2e:fe:ad:16:5b:29:d3:16:d4: 75:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FD:D5:41:14:D4:21:1E:5A:72:B2:23:CF:89:AD:44:C4:7B:F0:72 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:9f:ae:74:e4:23:e7:76:29:e3:5e:05:21:a9:13:24:87:2e: 78:02:ed:7b:ad:d3:e1:e3:70:d3:b1:4b:93:fe:78:0b:21:3e: e7:4c:9e:56:a2:a7:62:90:f8:86:ff:94:6e:ab:c9:0b:1e:df: b0:62:7d:8d:0f:9f:b5:22:3a:6f:ee:d6:93:50:81:3c:68:49: d2:ac:84:16:e2:36:f5:77:16:25:33:42:9d:be:8f:7b:c4:c8: 0e:d7:09:0a:25:5a:1c:74:7d:39:29:3a:69:39:a0:87:86:ac: 43:91:c6:48:61:60:b6:0a:8b:57:9b:ab:4f:60:80:5b:de:7a: 27:87:11:c3:8e:57:30:a5:79:e9:c0:17:16:7a:ef:43:50:ca: 3b:a9:52:b1:6c:d4:d5:95:d1:33:10:71:42:cc:09:a1:3d:df: 22:08:00:d2:93:d0:38:09:78:c0:0b:af:37:ee:93:b8:01:b2: 40:94:bf:4c:9f:49:8f:b4:f6:8b:9f:d2:b5:66:f5:5e:94:be: 73:cf:63:4e:56:6c:c7:63:c7:95:3d:9c:29:c7:79:81:bd:5a: e8:c1:6b:b1:b1:24:5a:59:ee:21:48:01:d2:f6:7d:dc:76:3f: 10:4f:e9:ac:68:9c:1e:31:84:e1:6b:67:42:22:6a:68:cf:c0: 53:fa:5b:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjUxMTAyMTcyOTI0WhcNMjUxMTA5MTcyOTI0WjAYMRYwFAYD VQQDEw02OTA3OTRmNC05M2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dfmtN8D9V63Eb7jcvhLCABzdrWA/BFRPYq27xINohTXnLC9iaFyCBjLUl10 g89H/zXpLEBJH9b696fWOgSwKnnUHm9Kj325G1kCHpwpyC9phOCay5DthFVERD72 NTjkqrxSSTq9aW2qlO/RJ2YcMHQm81UnkLIDDBq8p0qYtNRXvRHgbq7g14spy8vl 0W6lsT2Z2jjG4MW8qGOrLWC//q7UIl+Lnf0eMFzWNiPN4LfwiS4tusAt/IysNFsv iu6q/rs7LIkRRERp6B6OJE4AfL0Puvoj8M7+4BG+zq90qPRv83FK1CLjOYeoZeUV P3LwX2HBzlIu/q0WWynTFtR1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr91UEU 1CEeWnKyI8+JrUTEe/ByMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgn6505CPndinjXgUhqRMkhy54Au17rdPh43DTsUuT/ngLIT7nTJ5W oqdikPiG/5Ruq8kLHt+wYn2ND5+1Ijpv7taTUIE8aEnSrIQW4jb1dxYlM0Kdvo97 xMgO1wkKJVocdH05KTppOaCHhqxDkcZIYWC2CotXm6tPYIBb3nonhxHDjlcwpXnp wBcWeu9DUMo7qVKxbNTVldEzEHFCzAmhPd8iCADSk9A4CXjAC6837pO4AbJAlL9M n0mPtPaLn9K1ZvVelL5zz2NOVmzHY8eVPZwpx3mBvVrowWuxsSRaWe4hSAHS9n3c dj8QT+msaJweMYTha2dCImpoz8BT+lvf -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:29 2025 by rpki-client