$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft File: P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft (raw, json) Hash identifier: YgEwHIufcccJp6JK1/uHKi2W/UMvM62BtK+JL0Nle4E= Subject key identifier: F3:F7:B1:C3:3F:C9:6A:1C:10:85:B8:31:39:DE:89:E1:9E:D5:AC:59 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft Manifest number: 0123 Signing time: Mon 03 Nov 2025 04:48:13 +0000 Manifest this update: Mon 03 Nov 2025 04:48:13 +0000 Manifest next update: Mon 10 Nov 2025 04:48:13 +0000 Files and hashes: 1: P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl (hash: GPiFx9k5SEgOC2GYsSA0d4GBsM2Va/6SRNgdLyAAG+A=) 2: 8670D60E096611EF99F30750C4F9AE02.roa (hash: sT0cMmz3LwTY9msFrBTT0GIkbrL7Fs7LTvjg3aLQ9/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD, serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Validity Not Before: Nov 3 04:48:13 2025 GMT Not After : Nov 10 04:48:13 2025 GMT Subject: CN=6908340d-f7e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:12:18:ec:45:07:38:86:9c:aa:f0:9d:9e:ee: 50:c7:a3:d6:32:e4:c5:05:04:cd:34:29:74:3b:6e: 87:95:09:2e:dd:9d:69:cd:3f:f6:d5:98:09:0d:f1: 3a:90:a4:bd:2d:36:d9:cc:f5:40:38:9b:7f:7c:d4: 91:33:bc:79:32:81:bf:14:f4:8c:7b:89:c9:15:ef: e4:9b:04:fc:ea:1f:16:59:f3:8b:65:cc:2f:da:17: fa:aa:4c:bc:79:42:10:5a:35:3d:06:d6:80:7a:b2: 68:d0:57:bf:14:d7:07:0d:95:94:aa:82:ab:ed:9d: f0:c5:fd:2c:b1:04:15:cb:3a:8b:97:be:44:e8:a7: ff:49:8b:c5:35:01:b5:61:23:3c:15:9e:d9:56:64: 50:9d:95:82:82:db:cd:93:00:88:c4:8c:ea:fa:b8: d0:25:16:e4:5d:ea:ac:72:25:a8:26:6a:f2:d6:96: 3e:5d:39:15:1a:64:1d:cb:09:75:c4:fe:6a:cd:88: 89:e7:10:03:e1:28:02:7c:96:9a:2d:3e:77:09:40: d7:41:c1:f6:2b:f0:bf:e4:ba:ab:d5:19:62:42:b6: 81:b1:af:37:04:e0:43:08:37:a4:97:39:3d:16:f9: 3f:bf:d8:44:14:ad:b3:61:5f:9f:51:2a:37:d6:90: a2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:F7:B1:C3:3F:C9:6A:1C:10:85:B8:31:39:DE:89:E1:9E:D5:AC:59 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ec:1c:79:92:71:26:e6:59:9f:c2:a4:08:8c:31:5e:3c:f9: d5:ef:8a:45:b2:a6:aa:5c:79:d2:21:8d:6f:1e:6e:ba:87:d5: 1a:af:c4:91:5f:2c:2c:00:74:e5:50:54:56:8d:3e:25:93:ee: 81:f9:62:17:56:80:98:ad:66:5a:f4:0f:66:4a:56:ee:da:43: e8:f8:30:ed:85:13:10:41:26:37:db:1d:98:e0:39:33:55:99: 0a:18:7e:52:72:5c:21:cd:84:c3:e0:e3:56:2e:ae:29:94:34: 90:f4:f5:f4:66:98:f2:a6:9b:7d:2c:2f:14:76:4d:37:03:8d: 12:ae:f4:a1:0f:c0:33:fd:0c:c2:42:a0:d3:e2:c1:31:88:7d: 5d:b2:50:52:4a:8c:c6:95:21:39:33:98:ce:cc:7c:37:e1:96: e7:ff:01:e2:00:84:85:8f:8f:b4:42:fe:5c:ab:e0:3a:a2:a4: 21:67:cb:81:23:d0:86:c8:70:c8:94:6e:d8:e6:d7:6c:43:19: cb:3f:fb:fc:91:28:f2:07:e3:1a:a3:a3:77:32:a6:ca:00:d7: 8d:47:4b:5e:10:d5:a4:af:05:ad:5e:36:10:eb:a2:cf:8f:04: d1:40:da:18:be:ab:f4:d8:7f:e4:68:35:c5:27:63:0b:d0:39: d0:a1:69:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM3REQxMTAvBgNVBAUTKDNGRTNBRTM1NUE5Mjc3QjkxRDczRTJBQzUyRjUzODdG MDk1RjE4OUEwHhcNMjUxMTAzMDQ0ODEzWhcNMjUxMTEwMDQ0ODEzWjAYMRYwFAYD VQQDEw02OTA4MzQwZC1mN2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBIY7EUHOIacqvCdnu5Qx6PWMuTFBQTNNCl0O26HlQku3Z1pzT/21ZgJDfE6 kKS9LTbZzPVAOJt/fNSRM7x5MoG/FPSMe4nJFe/kmwT86h8WWfOLZcwv2hf6qky8 eUIQWjU9BtaAerJo0Fe/FNcHDZWUqoKr7Z3wxf0ssQQVyzqLl75E6Kf/SYvFNQG1 YSM8FZ7ZVmRQnZWCgtvNkwCIxIzq+rjQJRbkXeqsciWoJmry1pY+XTkVGmQdywl1 xP5qzYiJ5xAD4SgCfJaaLT53CUDXQcH2K/C/5Lqr1RliQraBsa83BOBDCDeklzk9 Fvk/v9hEFK2zYV+fUSo31pCivQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPP3scM/ yWocEIW4MTneieGe1axZMB8GA1UdIwQYMBaAFD/jrjVakne5HXPirFL1OH8JXxia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzdERC8yNDg1NUQ4MDA5 NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3a2RjLUtzVXZVNGZ3bGZH Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzdERC8yNDg1NUQ4MDA5NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3 a2RjLUtzVXZVNGZ3bGZHSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn7Bx5knEm5lmfwqQIjDFePPnV74pFsqaqXHnSIY1vHm66h9Uar8SR XywsAHTlUFRWjT4lk+6B+WIXVoCYrWZa9A9mSlbu2kPo+DDthRMQQSY32x2Y4Dkz VZkKGH5SclwhzYTD4ONWLq4plDSQ9PX0Zpjyppt9LC8Udk03A40SrvShD8Az/QzC QqDT4sExiH1dslBSSozGlSE5M5jOzHw34Zbn/wHiAISFj4+0Qv5cq+A6oqQhZ8uB I9CGyHDIlG7Y5tdsQxnLP/v8kSjyB+Mao6N3MqbKANeNR0teENWkrwWtXjYQ66LP jwTRQNoYvqv02H/kaDXFJ2ML0DnQoWkr -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:34 2025 by rpki-client