$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: 6pVRaw1xmaXNf+nfhQnmhYdAcaO2KlPxKEtlh2Wjn/4= Subject key identifier: BF:E8:6A:74:0B:64:F1:F9:8F:38:8F:42:87:1F:94:75:4E:BD:FB:7C Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 0438 Signing time: Wed 05 Nov 2025 00:21:31 +0000 Manifest this update: Wed 05 Nov 2025 00:21:31 +0000 Manifest next update: Wed 12 Nov 2025 00:21:31 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: USrTE1xu1jLuHKdUh9FMZv5vQFtW2D4mZLlYq77X5z4=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: 7VcZosPp1uH1LHkRjpyCPhzaiPyFOlncH9YUjxzCpg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D, serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Nov 5 00:21:31 2025 GMT Not After : Nov 12 00:21:31 2025 GMT Subject: CN=690a988b-7498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:25:9f:1b:1d:1b:fe:d2:dc:31:51:cf:fe:ac: 35:c6:67:fe:a1:e4:74:0e:89:cf:06:4c:bb:94:05: 7f:4b:16:44:7f:ef:c4:c3:ed:59:9c:7c:b4:d8:b3: 29:a6:e8:9e:4b:bd:44:ac:ab:34:0f:48:46:7f:81: a6:b6:df:36:c4:4d:0e:54:dc:ae:7d:64:a1:af:ee: 55:a2:16:c9:d6:b5:5b:c3:c3:b7:57:66:b5:1f:bb: f4:c3:10:79:ce:90:3f:e9:cd:31:37:23:d2:db:c5: 74:1a:f4:67:17:7f:75:d9:a3:f6:b3:27:8d:b9:f9: 37:43:d3:cb:77:7c:36:01:c7:c3:6c:13:ca:cc:3e: 09:71:01:2e:8b:62:dc:79:bc:83:d3:f8:1c:3b:ae: aa:6d:a5:52:6d:87:ad:53:a6:36:94:3f:d3:cd:60: 01:cf:ec:5b:3c:b4:ec:81:1f:2f:61:be:91:10:2c: 5e:7b:3d:18:e2:13:a0:b4:da:13:8c:da:bc:46:01: 86:00:00:97:9c:4d:a2:97:d2:9a:a9:3b:b0:77:3d: 1b:45:9c:10:ae:55:c8:23:c1:cf:23:1a:88:da:ad: 39:98:f2:9d:75:f9:25:c3:60:a8:e9:3f:1a:8d:a0: f4:1d:59:07:d5:1e:78:e1:8d:62:be:39:17:f3:12: 8f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E8:6A:74:0B:64:F1:F9:8F:38:8F:42:87:1F:94:75:4E:BD:FB:7C X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:30:b6:1a:ec:71:d6:a8:93:f3:21:1f:fd:82:7a:9f:57:c0: b8:32:d7:38:3f:17:1d:bb:f3:85:b3:58:0a:de:25:28:9a:26: 1a:67:36:d2:a5:f8:4d:ab:21:a5:4b:ec:74:f6:c4:da:65:10: ee:b6:34:2f:4b:7f:46:f5:b6:8a:64:32:04:03:55:54:ff:2e: ea:71:d6:69:37:97:91:94:86:56:a2:26:43:da:38:99:5f:00: 8c:93:40:20:7d:00:d7:68:89:19:8f:4d:0c:2d:c8:61:17:65: c8:82:6f:0a:de:83:0a:79:ba:00:fe:2d:07:dc:da:86:12:0b: 69:f9:42:04:00:e0:fa:2e:ea:ef:d6:13:d2:aa:de:89:2c:9a: 99:23:a0:7a:18:a5:d3:ec:9d:6a:54:f8:09:cf:7e:15:9e:24: df:15:ff:c7:89:ce:69:e0:49:91:64:0f:59:83:c9:63:72:32: 45:85:cb:11:0e:84:b2:39:3e:d5:70:b4:fa:c1:67:bd:29:34: f7:89:41:3a:f9:4e:2a:ad:50:09:12:89:3d:78:3f:66:00:c1: 21:f7:fe:27:26:4a:a0:08:3a:91:ff:7b:cc:cc:48:c8:67:1d: bb:d9:62:bb:79:ab:ec:6d:53:93:81:b7:08:e0:7c:5e:d9:6c: 82:87:ad:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjUxMTA1MDAyMTMxWhcNMjUxMTEyMDAyMTMxWjAYMRYwFAYD VQQDEw02OTBhOTg4Yi03NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCWfGx0b/tLcMVHP/qw1xmf+oeR0DonPBky7lAV/SxZEf+/Ew+1ZnHy02LMp puieS71ErKs0D0hGf4Gmtt82xE0OVNyufWShr+5VohbJ1rVbw8O3V2a1H7v0wxB5 zpA/6c0xNyPS28V0GvRnF3912aP2syeNufk3Q9PLd3w2AcfDbBPKzD4JcQEui2Lc ebyD0/gcO66qbaVSbYetU6Y2lD/TzWABz+xbPLTsgR8vYb6RECxeez0Y4hOgtNoT jNq8RgGGAACXnE2il9KaqTuwdz0bRZwQrlXII8HPIxqI2q05mPKddfklw2Co6T8a jaD0HVkH1R544Y1ivjkX8xKPYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/oanQL ZPH5jziPQocflHVOvft8MB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6MLYa7HHWqJPzIR/9gnqfV8C4Mtc4Pxcdu/OFs1gK3iUomiYaZzbS pfhNqyGlS+x09sTaZRDutjQvS39G9baKZDIEA1VU/y7qcdZpN5eRlIZWoiZD2jiZ XwCMk0AgfQDXaIkZj00MLchhF2XIgm8K3oMKeboA/i0H3NqGEgtp+UIEAOD6Lurv 1hPSqt6JLJqZI6B6GKXT7J1qVPgJz34VniTfFf/Hic5p4EmRZA9Zg8ljcjJFhcsR DoSyOT7VcLT6wWe9KTT3iUE6+U4qrVAJEok9eD9mAMEh9/4nJkqgCDqR/3vMzEjI Zx272WK7eavsbVOTgbcI4Hxe2WyCh63P -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:02 2025 by rpki-client