$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json) Hash identifier: UumtTIrDz9d7/hlwz6wE7F/7VYBgZk/ISweoWMXAgt4= Subject key identifier: 2F:90:2B:1A:B5:52:A8:89:3D:47:F6:19:DE:D1:E9:FE:66:0C:F7:C5 Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft Manifest number: 01A2 Signing time: Sat 25 Oct 2025 06:44:10 +0000 Manifest this update: Sat 25 Oct 2025 06:44:09 +0000 Manifest next update: Sat 01 Nov 2025 06:44:09 +0000 Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: Ikt+1UzQp3mDYpilwrOas5T7vYDA8Wt21GG/18noeYc=) 2: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: n7d+wfVovpgFh/VPuHK0Be+tZJiAokXkxVBH6z58Cdo=) 3: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: qRwojUTlxnLhuw/Mk800h2tw73R4wHeoNMLoVaIWLSQ=) 4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: FSryM40tOFsx9/9SakfMh/QfDHk+qmxC9WGqNR/nxQA=) 5: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: O7wU5uPOsDFh8TlK1r/cSTqhuO+kftwlxz4zNibCfJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 06:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C74B5, serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Validity Not Before: Oct 25 06:44:09 2025 GMT Not After : Nov 1 06:44:09 2025 GMT Subject: CN=68fc71ba-b68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:94:ea:e6:a3:a2:a5:7a:0f:73:6a:eb:78:88: 49:71:08:d5:ec:5e:14:db:59:0d:e8:8d:4a:48:30: 64:66:8a:19:3d:e5:85:f8:8b:6c:6c:ba:64:5b:1e: 84:6e:43:ca:50:1e:36:76:bc:2e:9f:74:c4:17:5c: ee:ba:bb:b4:03:17:0b:96:8b:2b:9e:6f:a3:f2:9c: 5d:78:28:3c:ab:e9:4d:83:7b:9c:c6:05:da:37:d4: a2:fc:e1:85:41:4e:67:74:59:06:cc:a6:38:35:05: 3a:e0:80:68:b0:5e:a7:de:1d:d9:c3:63:77:92:ef: 98:43:7e:0a:f8:83:d9:f4:7a:92:b3:05:fd:98:34: f1:d8:30:11:23:68:4e:00:b9:c9:44:e8:1e:ab:a6: b2:8a:e7:21:82:5a:07:f0:96:d4:1c:c0:cc:b7:fe: 9f:44:fe:7f:d3:8f:63:76:8c:f3:cc:73:18:f0:6c: 55:c6:d1:f0:29:1d:5c:11:b8:a3:fa:51:d4:23:fc: 73:e1:80:59:e3:d2:e5:64:97:9b:09:ea:bf:a5:b1: b1:1f:66:eb:fc:27:4a:19:bd:10:c8:8d:17:c0:85: 0e:d3:7e:6e:28:65:2a:b9:35:a5:3b:98:df:2b:42: 27:c7:68:0f:19:66:a0:09:2e:be:3c:3e:26:3b:7e: a8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:90:2B:1A:B5:52:A8:89:3D:47:F6:19:DE:D1:E9:FE:66:0C:F7:C5 X509v3 Authority Key Identifier: keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:fb:fb:df:78:7d:2b:5d:29:b1:21:ff:fa:f5:99:17:1c:8c: 13:59:0e:d7:38:d5:49:b0:74:db:64:50:e2:8c:57:cb:1f:a1: b8:48:89:60:09:96:43:3d:24:ac:fd:9d:41:2c:ce:d5:ed:69: b7:1d:f2:5c:ee:84:b9:ca:6c:e5:b3:b2:88:17:0c:08:e7:59: d4:26:05:c5:84:ea:41:91:c7:00:74:49:fd:61:50:77:89:c7: 76:75:50:30:d2:4a:68:0a:56:9e:e4:e9:55:50:67:8b:f4:5e: b8:c6:95:f3:4d:4c:b9:fe:5f:f2:db:85:91:79:ce:24:4e:42: 3f:3e:01:dc:6b:09:c4:e9:cc:bc:b1:09:06:62:bb:7e:11:35: e7:80:47:e2:da:c9:26:ea:65:46:1b:36:65:8a:c1:3e:d8:43: 04:ac:53:8c:34:46:f3:59:89:80:0c:15:d0:06:a8:91:bf:37: e6:f1:1e:89:ed:db:bf:cd:b7:2e:4f:0d:3e:f7:34:5d:2b:30: 20:95:d9:52:e7:b0:c8:89:27:55:24:7b:82:bb:c1:46:34:f7: 8b:29:b5:ec:9b:35:e0:f8:0e:5c:2d:43:c9:8d:01:2a:03:4f: 91:a5:71:2f:08:37:a6:57:13:3e:c9:ba:27:d9:fc:45:ab:66: 9d:8f:d5:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0QjUxMTAvBgNVBAUTKEUwRUNBN0JDNUIyNUEwQ0EzNzREOUE4M0NDNENGOTBE RDZDRjIyMDkwHhcNMjUxMDI1MDY0NDA5WhcNMjUxMTAxMDY0NDA5WjAYMRYwFAYD VQQDEw02OGZjNzFiYS1iNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJTq5qOipXoPc2rreIhJcQjV7F4U21kN6I1KSDBkZooZPeWF+ItsbLpkWx6E bkPKUB42drwun3TEF1zuuru0AxcLlosrnm+j8pxdeCg8q+lNg3ucxgXaN9Si/OGF QU5ndFkGzKY4NQU64IBosF6n3h3Zw2N3ku+YQ34K+IPZ9HqSswX9mDTx2DARI2hO ALnJROgeq6ayiuchgloH8JbUHMDMt/6fRP5/049jdozzzHMY8GxVxtHwKR1cEbij +lHUI/xz4YBZ49LlZJebCeq/pbGxH2br/CdKGb0QyI0XwIUO035uKGUquTWlO5jf K0Inx2gPGWagCS6+PD4mO36o+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+QKxq1 UqiJPUf2Gd7R6f5mDPfFMB8GA1UdIwQYMBaAFODsp7xbJaDKN02ag8xM+Q3WzyIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzRCNS85ODA0MzU2RTM0 QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9NbzNUWnFEekV6NURkYlBJ Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPeW52RnNsb01vM1RacUR6RXo1RGRiUElnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzRCNS85ODA0MzU2RTM0QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9N bzNUWnFEekV6NURkYlBJZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf+/vfeH0rXSmxIf/69ZkXHIwTWQ7XONVJsHTbZFDijFfLH6G4SIlg CZZDPSSs/Z1BLM7V7Wm3HfJc7oS5ymzls7KIFwwI51nUJgXFhOpBkccAdEn9YVB3 icd2dVAw0kpoClae5OlVUGeL9F64xpXzTUy5/l/y24WRec4kTkI/PgHcawnE6cy8 sQkGYrt+ETXngEfi2skm6mVGGzZlisE+2EMErFOMNEbzWYmADBXQBqiRvzfm8R6J 7du/zbcuTw0+9zRdKzAgldlS57DIiSdVJHuCu8FGNPeLKbXsmzXg+A5cLUPJjQEq A0+RpXEvCDemVxM+ybon2fxFq2adj9Vs -----END CERTIFICATE-----Generated at Sun Oct 26 06:19:04 2025 by rpki-client