$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: xrHQU12sItlSXiOvJM+NvTVt/GIQ+mNz7CzNq85rIsE= Subject key identifier: 72:5F:03:F4:1F:CD:8C:20:02:4E:5D:D3:68:11:3C:3E:8E:8B:9C:7F Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0257 Signing time: Mon 03 Nov 2025 01:40:28 +0000 Manifest this update: Mon 03 Nov 2025 01:40:27 +0000 Manifest next update: Mon 10 Nov 2025 01:40:27 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: 5zJr9irZpVZoqBgavevuCaxL2ewdAt5HDGgYIqlZovs=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: PfkrPDG++/2Nz9EpQDe53DnK5uMvt85T4k9+4QpNzFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Nov 3 01:40:27 2025 GMT Not After : Nov 10 01:40:27 2025 GMT Subject: CN=6908080b-6336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:67:c7:e2:1c:fa:92:43:d3:5e:11:71:f6:01: cc:83:fe:ee:f9:cd:1d:09:92:39:3d:06:2a:ce:d6: 15:7f:8e:a3:c1:71:96:74:da:52:d0:6f:ab:16:fa: 67:63:96:0f:7f:bf:27:ee:d5:12:77:99:95:b9:1f: 2b:7b:40:7f:d4:ff:86:fb:5c:78:d1:e1:e4:c4:20: cc:83:5c:93:ec:cb:2a:46:bc:e7:85:79:fb:a5:83: 68:0b:ad:7b:0a:01:5d:a6:da:ca:a4:e3:5d:63:1a: c1:36:56:fb:64:d6:7a:3a:24:a5:3c:67:5b:89:c3: f4:0b:c9:c5:e9:0d:63:be:8d:62:4d:bc:0b:2d:d4: 9b:fe:4d:a5:ac:0e:99:e0:70:2c:b5:4b:45:65:b1: c8:ed:ad:0d:dc:3c:d0:36:f9:2f:68:3c:d6:85:ca: f0:37:4e:d3:08:05:99:c1:9d:7e:19:f9:4c:c1:85: 0e:18:ee:15:87:58:5b:32:e2:c5:32:06:f4:c1:87: 1c:6b:72:10:58:08:4f:64:12:f7:23:86:db:af:4c: 13:ad:fa:54:a9:3b:aa:ef:ea:53:92:da:2a:05:9a: 86:1b:9b:53:7c:d1:f6:9d:a5:8d:b9:07:69:b1:26: ae:68:ce:9a:cc:00:70:7a:c1:19:22:1f:ba:2d:4a: 1f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5F:03:F4:1F:CD:8C:20:02:4E:5D:D3:68:11:3C:3E:8E:8B:9C:7F X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:f8:85:01:19:80:a4:fa:d3:86:ff:f0:75:e2:94:45:33:fb: 82:3a:16:e8:0b:1b:30:0a:48:9d:4b:6d:f6:bb:2c:7b:92:f7: ba:07:d3:6e:23:c2:a2:9f:60:e1:88:51:dd:3f:04:12:95:e0: 66:5e:66:8c:80:26:71:dd:52:bb:f4:71:66:19:8b:2c:74:15: 06:88:eb:50:9a:33:f2:a8:c0:be:6b:94:77:2a:5d:cc:5f:97: 7c:f4:cc:49:3a:e5:c6:63:11:74:ac:a5:61:4a:5d:8e:cf:d8: 26:c3:2b:16:58:c0:54:9e:5a:3c:17:87:61:bf:38:94:8d:d5: af:d4:33:4e:5b:b5:4d:42:8a:ec:8b:bd:29:1a:ba:ce:8c:f0: bb:80:05:b0:eb:22:d8:6a:70:c9:5f:e6:21:17:05:b0:12:a2: 7e:1b:ce:a5:0e:3d:6c:2f:b0:e0:50:8c:ca:56:ca:77:c3:b4: b7:31:49:83:9b:a3:a8:4c:38:76:3a:f8:75:ae:b2:cc:94:e9: 13:90:28:62:2a:b3:e9:30:8c:5d:93:28:91:82:71:a6:6e:ee: 0f:b8:e2:1f:a3:b7:bf:07:c7:4a:e9:82:c4:89:ca:6d:59:bf: 7d:92:33:32:a1:62:fa:c8:75:a0:c2:a1:10:03:e3:30:a8:ec: 4e:78:29:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUxMTAzMDE0MDI3WhcNMjUxMTEwMDE0MDI3WjAYMRYwFAYD VQQDEw02OTA4MDgwYi02MzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+mfH4hz6kkPTXhFx9gHMg/7u+c0dCZI5PQYqztYVf46jwXGWdNpS0G+rFvpn Y5YPf78n7tUSd5mVuR8re0B/1P+G+1x40eHkxCDMg1yT7MsqRrznhXn7pYNoC617 CgFdptrKpONdYxrBNlb7ZNZ6OiSlPGdbicP0C8nF6Q1jvo1iTbwLLdSb/k2lrA6Z 4HAstUtFZbHI7a0N3DzQNvkvaDzWhcrwN07TCAWZwZ1+GflMwYUOGO4Vh1hbMuLF Mgb0wYcca3IQWAhPZBL3I4bbr0wTrfpUqTuq7+pTktoqBZqGG5tTfNH2naWNuQdp sSauaM6azABwesEZIh+6LUofgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJfA/Qf zYwgAk5d02gRPD6Oi5x/MB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF+IUBGYCk+tOG//B14pRFM/uCOhboCxswCkidS232uyx7kve6B9Nu I8Kin2DhiFHdPwQSleBmXmaMgCZx3VK79HFmGYssdBUGiOtQmjPyqMC+a5R3Kl3M X5d89MxJOuXGYxF0rKVhSl2Oz9gmwysWWMBUnlo8F4dhvziUjdWv1DNOW7VNQors i70pGrrOjPC7gAWw6yLYanDJX+YhFwWwEqJ+G86lDj1sL7DgUIzKVsp3w7S3MUmD m6OoTDh2Ovh1rrLMlOkTkChiKrPpMIxdkyiRgnGmbu4PuOIfo7e/B8dK6YLEicpt Wb99kjMyoWL6yHWgwqEQA+MwqOxOeCm5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:34 2025 by rpki-client