$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft File: bMOGDamHeDpQBVpRk5gw980cgms.mft (raw, json) Hash identifier: blJwf/RYl36pUAxPULCUNOKerCV4VftW1Oc9CDfy7KY= Subject key identifier: 34:64:0B:1F:15:4E:15:49:9C:C9:D3:2D:11:A3:A0:17:CF:81:E5:61 Authority key identifier: 6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B Certificate issuer: /CN=A91EA623/serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Certificate serial: 056A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft Manifest number: 0564 Signing time: Sat 25 Oct 2025 01:51:48 +0000 Manifest this update: Sat 25 Oct 2025 01:51:47 +0000 Manifest next update: Sat 01 Nov 2025 01:51:47 +0000 Files and hashes: 1: bMOGDamHeDpQBVpRk5gw980cgms.crl (hash: ZaU7u58NG7qfLV9xcW0p1W8vCs0JVxEi/TJS2dedB2Q=) 2: A6C3D8721A9711EC88A50A2CC4F9AE02.roa (hash: V99zGIESWxaCWwIsK3BcjNwowjB6iy3p26jrLpwkePQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 01:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=6CC3860DA987783A50055A51939830F7CD1C826B Validity Not Before: Oct 25 01:51:47 2025 GMT Not After : Nov 1 01:51:47 2025 GMT Subject: CN=68fc2d34-ebd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:26:ed:0a:19:66:41:55:b1:a8:ec:ef:e2: 1e:a2:e3:5a:ae:b3:ef:25:96:21:29:a6:21:01:0a: f1:0b:57:87:b1:fa:0b:ef:b6:e4:cc:7f:42:ad:54: bd:d7:7e:7c:cc:b9:98:10:7d:8a:6a:c4:a3:2b:e9: d7:72:d5:f6:10:7d:8f:da:13:c7:e1:e1:47:6f:ff: 33:30:91:3b:3e:e5:a0:30:a9:96:8d:2d:8f:8c:e8: 26:d2:d5:96:69:03:c3:8d:a7:27:cc:79:ff:94:62: 35:82:1e:7b:df:e0:c2:70:17:26:ea:41:71:87:38: 02:79:50:38:82:88:5b:88:3f:e4:d9:92:61:46:cc: 3f:65:5a:2c:2c:ab:75:60:b5:31:37:5a:c8:b9:13: 34:a6:d3:74:fe:85:33:7c:e8:2c:db:97:43:b7:e6: f1:c7:40:fe:89:06:42:bb:75:f4:f7:3e:eb:25:b1: 79:8c:2d:2a:5e:eb:6e:fa:bc:62:34:df:ee:ca:d2: ae:c2:bc:98:b0:53:f5:02:63:f9:99:3a:b2:59:c4: 87:09:e6:44:c5:49:b9:4e:cd:05:20:17:1a:ca:f2: 36:0c:2d:df:9e:2b:ff:ed:42:76:85:78:42:21:2f: a9:99:45:24:fb:e0:19:2b:eb:a2:e1:1e:62:67:04: 00:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:64:0B:1F:15:4E:15:49:9C:C9:D3:2D:11:A3:A0:17:CF:81:E5:61 X509v3 Authority Key Identifier: keyid:6C:C3:86:0D:A9:87:78:3A:50:05:5A:51:93:98:30:F7:CD:1C:82:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bMOGDamHeDpQBVpRk5gw980cgms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/DD6B7528060C11ECAF675043C4F9AE02/bMOGDamHeDpQBVpRk5gw980cgms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:48:43:9b:dd:e8:71:49:88:24:b5:d2:6d:5a:2f:e5:2f:bd: d3:3b:0f:40:95:ce:7d:85:3a:31:18:ff:2b:61:c7:71:5b:7a: dc:0c:af:ef:88:14:50:88:21:e5:3d:dc:ff:db:7b:48:de:09: d1:74:24:77:2f:aa:41:68:a1:99:c0:e5:77:5f:d3:7c:5c:78: 64:da:52:3f:2d:6b:fe:22:3c:cf:53:20:3f:3e:d9:e0:1f:f2: 3f:f2:0b:45:06:52:9a:e6:c8:1b:8f:a1:6f:09:52:e1:e5:68: 8f:f9:5a:4d:ab:66:2e:2e:60:1a:c9:28:ed:c9:c5:3d:18:54: 84:a2:d4:05:0e:81:1a:8e:d3:83:88:4a:13:26:36:65:31:fd: 77:15:af:f4:f5:43:a6:e6:92:a2:3c:8e:86:e6:29:3a:5a:65: 66:56:12:9d:0e:4b:c8:6b:c7:bd:a7:85:87:1d:0b:75:d2:75: cb:e4:57:6a:49:b3:17:f4:2a:b7:2d:f1:db:51:ee:f2:4c:5b: 1a:ae:d3:f2:a1:06:2b:41:f5:1a:e5:6c:6e:f3:d0:8a:67:35: e4:5c:98:ed:9c:5d:e3:be:84:30:98:92:fb:d1:4a:66:34:38: 24:b7:31:61:d6:41:d4:ca:99:70:f4:44:5b:b8:d9:7f:34:77: a8:67:d1:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKDZDQzM4NjBEQTk4Nzc4M0E1MDA1NUE1MTkzOTgzMEY3 Q0QxQzgyNkIwHhcNMjUxMDI1MDE1MTQ3WhcNMjUxMTAxMDE1MTQ3WjAYMRYwFAYD VQQDEw02OGZjMmQzNC1lYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUAm7QoZZkFVsajs7+IeouNarrPvJZYhKaYhAQrxC1eHsfoL77bkzH9CrVS9 1358zLmYEH2KasSjK+nXctX2EH2P2hPH4eFHb/8zMJE7PuWgMKmWjS2PjOgm0tWW aQPDjacnzHn/lGI1gh573+DCcBcm6kFxhzgCeVA4gohbiD/k2ZJhRsw/ZVosLKt1 YLUxN1rIuRM0ptN0/oUzfOgs25dDt+bxx0D+iQZCu3X09z7rJbF5jC0qXutu+rxi NN/uytKuwryYsFP1AmP5mTqyWcSHCeZExUm5Ts0FIBcayvI2DC3fniv/7UJ2hXhC IS+pmUUk++AZK+ui4R5iZwQAZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRkCx8V ThVJnMnTLRGjoBfPgeVhMB8GA1UdIwQYMBaAFGzDhg2ph3g6UAVaUZOYMPfNHIJr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9ERDZCNzUyODA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVEcFFCVnBSazVndzk4MGNn bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JNT0dEYW1IZURwUUJWcFJrNWd3OTgwY2dtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9ERDZCNzUyODA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi9iTU9HRGFtSGVE cFFCVnBSazVndzk4MGNnbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjSEOb3ehxSYgktdJtWi/lL73TOw9Alc59hToxGP8rYcdxW3rcDK/v iBRQiCHlPdz/23tI3gnRdCR3L6pBaKGZwOV3X9N8XHhk2lI/LWv+IjzPUyA/Ptng H/I/8gtFBlKa5sgbj6FvCVLh5WiP+VpNq2YuLmAaySjtycU9GFSEotQFDoEajtOD iEoTJjZlMf13Fa/09UOm5pKiPI6G5ik6WmVmVhKdDkvIa8e9p4WHHQt10nXL5Fdq SbMX9Cq3LfHbUe7yTFsartPyoQYrQfUa5Wxu89CKZzXkXJjtnF3jvoQwmJL70Upm NDgktzFh1kHUyplw9ERbuNl/NHeoZ9Eb -----END CERTIFICATE-----Generated at Sat Oct 25 17:21:25 2025 by rpki-client