$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: zM9XK3Oq/rvSlvvPhes4zYzfsAbjPeji/nCOBSQH8yc= Subject key identifier: 77:EE:C4:D1:71:2B:E7:64:C5:3B:C9:DA:58:3E:B3:4B:55:FC:7B:CC Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 079F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 0798 Signing time: Sun 02 Nov 2025 21:25:31 +0000 Manifest this update: Sun 02 Nov 2025 21:25:31 +0000 Manifest next update: Sun 09 Nov 2025 21:25:31 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: ClepV32a+w91p4OGseAWO7CN8tnyY2PIixri4ksabEM=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: USU8pNkMAdz6WSNLBXiulBGQVhWKRWb5vA71xaDbimA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1951 (0x79f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23, serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: Nov 2 21:25:31 2025 GMT Not After : Nov 9 21:25:31 2025 GMT Subject: CN=6907cc4b-13a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:61:1f:92:6b:02:ef:f4:eb:fd:c7:98:84:be: a9:11:d7:69:3c:8a:b4:e1:ac:82:46:8e:5b:08:c6: 0a:77:bb:cf:2b:81:43:05:72:cd:b9:85:85:38:bd: 8d:66:38:7a:52:69:f6:79:39:89:86:3f:1a:d4:9a: 34:55:07:3f:10:c8:62:7a:b0:85:d4:6b:59:18:c4: 7f:c3:6e:b8:fd:dd:76:62:ea:d6:81:d3:58:40:71: 7d:a9:22:c6:db:2a:1e:67:ba:1c:86:4b:a8:56:d8: d6:f8:ed:ad:ac:ad:fb:d6:9a:50:4b:dc:37:fc:71: 16:76:b2:77:92:dd:1d:c9:22:1b:aa:8c:18:11:ba: bb:a8:1e:24:7d:5f:e8:46:88:e8:bb:48:a9:6b:4e: c0:d4:79:d4:b4:b9:4c:81:54:94:06:1f:2b:29:f8: 5e:cf:c3:75:fb:ad:48:00:11:49:d6:df:42:10:79: 2a:d1:72:e0:99:2a:28:85:69:8c:47:cf:3c:ad:6a: 4e:02:3d:c9:06:30:65:98:5e:fc:1c:7f:d9:48:21: 05:88:c3:a8:d2:32:af:b5:5d:05:9f:f2:cd:d6:c7: 78:44:8e:84:13:2f:1c:e1:b2:ce:e4:a1:32:42:72: 88:77:c2:dc:8a:3e:40:82:f6:7b:f0:0e:e4:dc:2f: f3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EE:C4:D1:71:2B:E7:64:C5:3B:C9:DA:58:3E:B3:4B:55:FC:7B:CC X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:73:14:e1:05:7e:74:f6:35:f0:3c:21:36:d2:8a:b3:bd:9e: c9:4d:13:b2:e8:36:27:e8:db:ac:d9:61:54:47:90:34:6b:c1: e7:9b:0b:b9:40:04:ad:b3:50:e7:60:41:9a:4d:c4:6a:21:08: d5:dd:98:28:cf:e2:b2:45:52:c9:b8:69:b9:a7:79:a6:26:af: d6:4f:45:0c:24:4e:3c:00:a6:ee:fc:f9:e2:75:05:f9:c0:cd: ea:25:6f:52:94:9e:08:97:af:cb:a7:80:9f:fe:fc:0d:2a:c5: ba:f5:0f:17:4b:3d:7f:1a:40:5a:0d:6e:d9:fb:27:e9:31:e3: 0e:28:7e:97:7d:d2:56:19:b1:11:f7:0e:12:c2:54:85:a5:bb: db:8b:ad:9d:6e:3c:d7:36:77:31:7a:45:59:83:39:ca:f9:d1: cc:12:02:0d:07:f5:1b:51:ab:2d:d2:5a:6f:70:c9:00:ee:f0: 7f:54:30:2a:a3:f3:6c:26:ee:c2:e1:85:4c:37:21:b0:4b:34: a3:9f:de:64:99:c7:5b:02:e4:4e:f0:af:d8:ec:4d:5c:21:30: 8a:84:c5:c3:98:44:91:a1:76:64:38:99:34:81:ee:e6:eb:7c: 99:51:67:67:33:96:80:76:d8:9e:22:21:3e:be:66:a9:36:96: a2:10:d9:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjUxMTAyMjEyNTMxWhcNMjUxMTA5MjEyNTMxWjAYMRYwFAYD VQQDEw02OTA3Y2M0Yi0xM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGEfkmsC7/Tr/ceYhL6pEddpPIq04ayCRo5bCMYKd7vPK4FDBXLNuYWFOL2N Zjh6Umn2eTmJhj8a1Jo0VQc/EMhierCF1GtZGMR/w264/d12YurWgdNYQHF9qSLG 2yoeZ7ochkuoVtjW+O2trK371ppQS9w3/HEWdrJ3kt0dySIbqowYEbq7qB4kfV/o Rojou0ipa07A1HnUtLlMgVSUBh8rKfhez8N1+61IABFJ1t9CEHkq0XLgmSoohWmM R888rWpOAj3JBjBlmF78HH/ZSCEFiMOo0jKvtV0Fn/LN1sd4RI6EEy8c4bLO5KEy QnKId8Lcij5AgvZ78A7k3C/zOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfuxNFx K+dkxTvJ2lg+s0tV/HvMMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIcxThBX509jXwPCE20oqzvZ7JTROy6DYn6Nus2WFUR5A0a8Hnmwu5 QASts1DnYEGaTcRqIQjV3Zgoz+KyRVLJuGm5p3mmJq/WT0UMJE48AKbu/PnidQX5 wM3qJW9SlJ4Il6/Lp4Cf/vwNKsW69Q8XSz1/GkBaDW7Z+yfpMeMOKH6XfdJWGbER 9w4SwlSFpbvbi62dbjzXNncxekVZgznK+dHMEgINB/UbUast0lpvcMkA7vB/VDAq o/NsJu7C4YVMNyGwSzSjn95kmcdbAuRO8K/Y7E1cITCKhMXDmESRoXZkOJk0ge7m 63yZUWdnM5aAdtieIiE+vmapNpaiENm2 -----END CERTIFICATE-----Generated at Tue Nov 4 01:07:18 2025 by rpki-client