$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft File: SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft (raw, json) Hash identifier: 61HPqYwtXeNKvG/1Pl6lZrVsv8Mg08bVTIQsl/5brkQ= Subject key identifier: F4:A6:FC:8F:34:BD:C3:BD:7B:3D:48:B0:04:82:66:9F:9F:81:55:C7 Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 0983 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft Manifest number: 097C Signing time: Sun 02 Nov 2025 20:02:46 +0000 Manifest this update: Sun 02 Nov 2025 20:02:46 +0000 Manifest next update: Sun 09 Nov 2025 20:02:46 +0000 Files and hashes: 1: SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl (hash: yWJ8rk5vMUKY5IiNKXPlXqB3Ar+/y/cBQakSrV906G4=) 2: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (hash: SCNejdxnpcaaKKmMwjhiNM0xWAEADnWJttQDspq42Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2435 (0x983) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364, serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Nov 2 20:02:46 2025 GMT Not After : Nov 9 20:02:46 2025 GMT Subject: CN=6907b8e6-f325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:17:16:e4:96:7d:99:ff:55:f1:47:5c:16: f8:86:55:fe:de:62:ac:b0:ff:79:4e:5e:6c:ee:0f: 97:20:5a:39:24:3f:c5:d0:97:e4:2c:e0:f9:d5:e7: 4b:6a:3b:e0:7b:15:b5:87:d8:5c:e0:60:59:32:46: 22:83:4b:79:97:7e:18:e3:a3:9f:a2:c6:5c:68:cb: 0a:5d:57:8d:6e:a3:90:aa:a6:4b:c1:7d:68:1b:06: 06:c0:90:bc:0d:1f:72:99:3d:62:d1:6f:f9:b6:fc: 4f:88:f1:46:80:c7:37:47:5d:44:2c:cd:c9:cc:78: 4b:ee:85:20:7f:1f:31:9e:ec:b6:87:13:c6:a6:ea: 2f:8a:30:4e:2f:6f:d1:bb:a3:ae:bd:da:31:56:4c: 1c:e0:19:81:7f:9a:26:32:60:db:f4:29:df:20:8a: 6e:9b:c0:62:ba:a7:f7:c8:16:5f:43:bb:d7:9d:b2: 5f:c1:7a:e7:ea:c7:22:c9:c5:54:95:1c:73:88:8a: a1:86:a1:6b:a7:72:ca:77:65:5f:c5:2b:70:8c:0c: 07:d4:5e:36:09:ac:34:7f:b9:dd:0e:c5:1f:19:65: 21:d3:f4:62:de:12:7c:27:3c:38:a4:25:02:ef:60: 01:d3:d3:a5:63:eb:df:4e:47:90:b7:19:97:67:ee: fb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A6:FC:8F:34:BD:C3:BD:7B:3D:48:B0:04:82:66:9F:9F:81:55:C7 X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:6e:d0:13:75:e6:13:49:d2:46:3b:37:32:59:43:4e:73:b0: 54:7b:3d:05:03:98:ae:bd:32:8c:46:d0:04:e8:f4:06:dc:70: 27:fb:20:09:a7:e2:8b:55:0d:5f:8e:59:59:4c:fc:c3:7d:3e: 4f:ff:a8:11:14:bd:f9:64:8f:aa:4e:40:19:a9:86:ad:33:e1: 07:73:24:9f:51:35:43:9e:6a:66:eb:ef:95:d8:a5:d7:5d:d4: bd:57:a7:6c:a7:32:89:94:ae:36:81:89:55:9f:b4:98:ee:6c: 5c:13:7b:8e:d8:2a:7f:5c:be:2b:23:f1:c8:af:77:af:2a:bb: b4:c1:50:a6:17:60:82:85:37:7e:10:0d:7b:bd:82:73:dd:0c: 74:27:9e:b1:6f:f6:34:a8:50:04:eb:b3:d8:e5:70:7e:b0:9e: 66:3d:d7:05:16:46:45:a8:58:26:89:c9:5f:ad:21:8f:22:62: be:f2:33:11:e6:cf:4e:43:8a:f2:9e:97:98:ae:d7:f4:af:e0: 93:8f:e9:bc:76:c4:72:ae:10:73:be:17:0c:10:fe:1e:c4:13: 91:cd:1f:e2:4a:40:0f:20:e7:a9:00:ef:f1:73:07:a0:6d:a1: e9:26:98:a1:e2:16:86:07:53:3e:16:13:b3:27:a9:5f:ff:86: b8:fe:2f:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjUxMTAyMjAwMjQ2WhcNMjUxMTA5MjAwMjQ2WjAYMRYwFAYD VQQDEw02OTA3YjhlNi1mMzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGYXFuSWfZn/VfFHXBb4hlX+3mKssP95Tl5s7g+XIFo5JD/F0JfkLOD51edL ajvgexW1h9hc4GBZMkYig0t5l34Y46OfosZcaMsKXVeNbqOQqqZLwX1oGwYGwJC8 DR9ymT1i0W/5tvxPiPFGgMc3R11ELM3JzHhL7oUgfx8xnuy2hxPGpuovijBOL2/R u6OuvdoxVkwc4BmBf5omMmDb9CnfIIpum8Biuqf3yBZfQ7vXnbJfwXrn6sciycVU lRxziIqhhqFrp3LKd2VfxStwjAwH1F42Caw0f7ndDsUfGWUh0/Ri3hJ8Jzw4pCUC 72AB09OlY+vfTkeQtxmXZ+778wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSm/I80 vcO9ez1IsASCZp+fgVXHMB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjM2NC83MTZBNTlBQzlGODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZj MU1QOEM5WVFrY1NKQlQxRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVbtATdeYTSdJGOzcyWUNOc7BUez0FA5iuvTKMRtAE6PQG3HAn+yAJ p+KLVQ1fjllZTPzDfT5P/6gRFL35ZI+qTkAZqYatM+EHcySfUTVDnmpm6++V2KXX XdS9V6dspzKJlK42gYlVn7SY7mxcE3uO2Cp/XL4rI/HIr3evKru0wVCmF2CChTd+ EA17vYJz3Qx0J56xb/Y0qFAE67PY5XB+sJ5mPdcFFkZFqFgmiclfrSGPImK+8jMR 5s9OQ4rynpeYrtf0r+CTj+m8dsRyrhBzvhcMEP4exBORzR/iSkAPIOepAO/xcweg baHpJpih4haGB1M+FhOzJ6lf/4a4/i/R -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:29 2025 by rpki-client