$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: /XSzyXBIHh+XeDn9q0zBSw1ytTVReJVKDv3p9h+Cl54= Subject key identifier: 6E:C1:58:4D:75:8E:DA:2E:C3:AA:8B:69:7B:67:30:76:50:43:1C:85 Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 34DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 34D7 Signing time: Sun 02 Nov 2025 14:52:50 +0000 Manifest this update: Sun 02 Nov 2025 14:52:49 +0000 Manifest next update: Sun 09 Nov 2025 14:52:49 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: hfZ3mmQLa+BQP4aJS3Y81qQiPsxM8Yrob2OUm6yu/84=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13531 (0x34db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Nov 2 14:52:49 2025 GMT Not After : Nov 9 14:52:49 2025 GMT Subject: CN=69077042-d6ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d5:07:dd:db:fb:78:01:29:e7:57:f1:62:6e: e4:b3:33:45:a5:4b:eb:18:e9:d7:ba:56:8a:e3:8a: 07:10:6e:66:6a:d6:ad:05:54:49:a2:e6:28:a2:ff: dc:cc:8c:46:d2:a6:4b:0a:7f:5f:28:a6:ec:a5:e0: c9:de:73:cd:16:9d:4d:8a:63:57:a5:ec:4a:5c:90: 43:d9:fb:89:eb:6e:78:48:cd:69:4b:14:5a:fb:df: bf:f9:b3:42:0e:bc:d1:f3:70:80:30:06:b5:41:11: c6:27:35:e9:a5:2d:b6:e3:14:df:e0:24:d1:c3:a5: 0e:4a:23:85:8b:3d:8c:3b:a2:6f:70:69:1b:99:aa: 16:3b:06:66:2a:eb:e2:36:45:85:fb:e8:8c:37:bc: fd:d9:e2:53:f1:bf:2d:e6:41:93:07:c2:c7:77:98: 67:87:b1:30:54:ae:7b:b1:23:91:72:70:85:80:af: b5:8b:1b:b6:ff:4e:52:3b:64:55:6e:22:53:69:ca: 58:14:a3:41:ff:a5:9e:55:96:24:1e:35:b4:e6:bb: 71:52:fc:f0:1e:7c:a5:57:0a:67:db:11:f1:c8:b8: 2f:3f:b0:25:da:d8:6d:61:a4:bb:ff:d9:20:f2:e4: 08:1e:6a:e0:f5:f0:f6:bd:44:2a:ac:b0:ff:7e:9e: 7b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C1:58:4D:75:8E:DA:2E:C3:AA:8B:69:7B:67:30:76:50:43:1C:85 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:a5:44:b7:a9:3e:11:fd:47:0e:9f:8a:ec:c8:3c:8b:59:65: a5:31:98:37:e1:b0:9c:02:2d:86:b4:40:e7:0e:46:02:d8:b0: 2e:60:1d:55:55:40:ee:aa:5a:79:f7:78:ee:3a:27:96:a1:9e: 2c:3d:7e:a4:fb:aa:67:e5:7d:aa:27:1e:89:15:8b:87:8e:75: 2c:8e:f7:32:5d:5d:42:15:a5:80:f5:a2:73:a8:b0:15:1b:79: ce:67:4d:04:ed:89:9d:ed:ab:65:a1:f0:ce:09:5e:ea:ab:68: 33:77:a7:ab:71:13:f6:ed:0c:fc:64:01:c9:f3:fa:75:d7:e4: df:14:f6:83:2f:60:63:25:22:37:48:36:5d:0b:ab:52:24:fb: c0:db:ab:76:68:08:50:63:da:f1:a1:bb:c7:f2:dc:f4:d2:e7: 76:e4:be:ce:58:e3:04:ea:89:4b:f6:64:0a:43:1c:7b:61:16: 33:1b:ba:4e:02:1b:5d:60:56:9d:bb:dc:62:e3:30:0d:06:63: eb:ed:cc:46:e4:91:66:dc:68:67:19:e1:20:9f:b1:f1:6b:e5: c8:9f:23:6a:4d:94:d2:e1:8e:cd:07:97:1f:37:23:a7:d4:7c: bb:ee:4e:99:24:d0:bc:51:85:fe:7f:fb:54:10:5d:e2:94:05: 92:ef:f1:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUxMTAyMTQ1MjQ5WhcNMjUxMTA5MTQ1MjQ5WjAYMRYwFAYD VQQDEw02OTA3NzA0Mi1kNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29UH3dv7eAEp51fxYm7kszNFpUvrGOnXulaK44oHEG5matatBVRJouYoov/c zIxG0qZLCn9fKKbspeDJ3nPNFp1NimNXpexKXJBD2fuJ6254SM1pSxRa+9+/+bNC DrzR83CAMAa1QRHGJzXppS224xTf4CTRw6UOSiOFiz2MO6JvcGkbmaoWOwZmKuvi NkWF++iMN7z92eJT8b8t5kGTB8LHd5hnh7EwVK57sSORcnCFgK+1ixu2/05SO2RV biJTacpYFKNB/6WeVZYkHjW05rtxUvzwHnylVwpn2xHxyLgvP7Al2thtYaS7/9kg 8uQIHmrg9fD2vUQqrLD/fp578wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7BWE11 jtouw6qLaXtnMHZQQxyFMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0pUS3qT4R/UcOn4rsyDyLWWWlMZg34bCcAi2GtEDnDkYC2LAuYB1V VUDuqlp593juOieWoZ4sPX6k+6pn5X2qJx6JFYuHjnUsjvcyXV1CFaWA9aJzqLAV G3nOZ00E7Ymd7atlofDOCV7qq2gzd6ercRP27Qz8ZAHJ8/p11+TfFPaDL2BjJSI3 SDZdC6tSJPvA26t2aAhQY9rxobvH8tz00ud25L7OWOME6olL9mQKQxx7YRYzG7pO AhtdYFadu9xi4zANBmPr7cxG5JFm3GhnGeEgn7Hxa+XInyNqTZTS4Y7NB5cfNyOn 1Hy77k6ZJNC8UYX+f/tUEF3ilAWS7/G4 -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:31 2025 by rpki-client