$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft File: owQJVBg5BUscPhXRmD19vYp9ZII.mft (raw, json) Hash identifier: xgEVTuFD6rZUYBKWEDcD5+YmxgGn3zXE+bPgNVHaymM= Subject key identifier: 6B:2C:9D:A1:AD:91:E3:2D:1D:B9:A9:2A:B7:1B:74:2E:4F:71:7E:A9 Authority key identifier: A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 Certificate issuer: /CN=A91D9E03/serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Certificate serial: 03EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft Manifest number: 03E6 Signing time: Mon 03 Nov 2025 00:29:13 +0000 Manifest this update: Mon 03 Nov 2025 00:29:12 +0000 Manifest next update: Mon 10 Nov 2025 00:29:12 +0000 Files and hashes: 1: owQJVBg5BUscPhXRmD19vYp9ZII.crl (hash: W7K2T4hyOWZIN/tXmuQ/lkVkseZGIxHENjDHAZd5BbU=) 2: 521DCED89C5911EC97E58855C4F9AE02.roa (hash: K/6Sxmjn7Y9RMsh3D/CkcDPEvNJggoP2DR+Gq8xtxL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E03, serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Validity Not Before: Nov 3 00:29:12 2025 GMT Not After : Nov 10 00:29:12 2025 GMT Subject: CN=6907f758-ec0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:d9:70:99:b8:43:e6:fe:87:55:89:f5:17: 44:17:23:9f:93:bf:a0:e5:71:5b:e5:91:c5:f8:ce: 53:1a:1d:66:ee:14:22:13:c0:8c:f5:92:f2:b7:67: 6e:be:50:e7:b4:42:b4:6c:ac:c9:37:d9:eb:e7:f9: c9:82:ff:8a:ae:52:dc:26:e0:c7:f5:52:d4:4b:e6: 9e:84:11:7f:ea:55:43:e3:a8:ca:b9:44:d7:55:e6: 1d:90:73:33:c4:ed:cf:02:52:c8:73:a0:2f:7d:38: 1c:64:d7:fb:9d:55:16:50:4b:cc:08:44:98:e1:d1: 4f:e5:f1:15:fb:1d:87:a8:85:88:f0:c2:dc:44:ed: 6b:25:91:35:58:e9:b3:ae:7f:61:17:41:48:bf:c2: 50:23:69:32:01:ff:b0:26:97:af:3d:d0:d7:6f:32: 23:59:c4:df:68:1f:76:e5:72:81:29:fe:e5:dc:52: 97:04:2b:ba:ab:9f:07:49:dd:27:c9:b3:0c:24:b9: b9:66:37:ea:39:9e:a6:9b:3f:f8:d9:f7:55:88:89: 6b:3d:61:9f:ce:14:97:f2:9d:ba:58:20:64:90:b7: c6:c5:9f:b1:ce:5c:2e:4d:41:6b:62:92:23:2c:e4: a3:ef:f4:ce:25:13:85:49:5f:1a:40:3a:0f:e0:b2: c6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2C:9D:A1:AD:91:E3:2D:1D:B9:A9:2A:B7:1B:74:2E:4F:71:7E:A9 X509v3 Authority Key Identifier: keyid:A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:55:01:9c:3f:49:4c:3b:a2:34:70:a8:5e:b1:03:94:bf:6d: 16:da:ee:fe:bc:e2:78:5b:3d:d7:35:86:0e:ed:b8:0e:80:ca: f1:55:56:26:11:44:fa:bc:4a:32:7e:e9:6e:a5:e0:85:08:dd: 62:b9:59:96:8d:3a:5e:97:ee:cf:50:0e:0b:c7:77:88:1f:a8: 0a:9e:35:de:00:fb:ae:54:97:db:65:33:91:d1:bd:2f:bc:e3: c7:35:06:ef:83:a1:03:1b:e1:56:bf:ae:fd:ac:36:0b:5f:6e: a8:33:2c:ab:55:47:7f:19:c6:9c:18:67:5d:d2:ec:38:b5:6e: a0:f0:9a:d1:40:26:9d:94:c7:a2:18:4d:18:31:e3:a9:1d:5c: 8f:5e:9f:26:34:3f:7a:30:00:b4:07:1e:1e:6f:18:fa:60:bd: 66:b1:1d:fe:69:0f:7d:4a:4f:32:f9:6a:83:6e:ef:f7:15:c9: 5e:4c:b0:b5:d3:8e:4d:9a:20:c2:e8:fb:7e:a2:3e:91:33:18: f3:7e:6c:ff:49:d3:2c:16:dc:a7:b0:27:81:0e:1e:c8:4c:8c: 38:e0:96:cc:2d:6d:af:69:f4:48:6f:33:4b:b8:23:57:0b:1b: bc:34:56:ba:8c:92:b1:d6:c2:8e:0a:be:e5:89:8d:49:a8:93: c9:5f:99:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFMDMxMTAvBgNVBAUTKEEzMDQwOTU0MTgzOTA1NEIxQzNFMTVEMTk4M0Q3REJE OEE3RDY0ODIwHhcNMjUxMTAzMDAyOTEyWhcNMjUxMTEwMDAyOTEyWjAYMRYwFAYD VQQDEw02OTA3Zjc1OC1lYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2bZcJm4Q+b+h1WJ9RdEFyOfk7+g5XFb5ZHF+M5TGh1m7hQiE8CM9ZLyt2du vlDntEK0bKzJN9nr5/nJgv+KrlLcJuDH9VLUS+aehBF/6lVD46jKuUTXVeYdkHMz xO3PAlLIc6AvfTgcZNf7nVUWUEvMCESY4dFP5fEV+x2HqIWI8MLcRO1rJZE1WOmz rn9hF0FIv8JQI2kyAf+wJpevPdDXbzIjWcTfaB925XKBKf7l3FKXBCu6q58HSd0n ybMMJLm5ZjfqOZ6mmz/42fdViIlrPWGfzhSX8p26WCBkkLfGxZ+xzlwuTUFrYpIj LOSj7/TOJROFSV8aQDoP4LLG2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGssnaGt keMtHbmpKrcbdC5PcX6pMB8GA1UdIwQYMBaAFKMECVQYOQVLHD4V0Zg9fb2KfWSC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUUwMy85OTZBN0U4ODlD NTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJVc2NQaFhSbUQxOXZZcDla SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293UUpWQmc1QlVzY1BoWFJtRDE5dllwOVpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUUwMy85OTZBN0U4ODlDNTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJV c2NQaFhSbUQxOXZZcDlaSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+VQGcP0lMO6I0cKhesQOUv20W2u7+vOJ4Wz3XNYYO7bgOgMrxVVYm EUT6vEoyfulupeCFCN1iuVmWjTpel+7PUA4Lx3eIH6gKnjXeAPuuVJfbZTOR0b0v vOPHNQbvg6EDG+FWv679rDYLX26oMyyrVUd/GcacGGdd0uw4tW6g8JrRQCadlMei GE0YMeOpHVyPXp8mND96MAC0Bx4ebxj6YL1msR3+aQ99Sk8y+WqDbu/3FcleTLC1 045NmiDC6Pt+oj6RMxjzfmz/SdMsFtynsCeBDh7ITIw44JbMLW2vafRIbzNLuCNX Cxu8NFa6jJKx1sKOCr7liY1JqJPJX5lG -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:55 2025 by rpki-client