$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: 8O6BJxwlo8G3JKxu98//eBQg4rZq1GCofxOlZAYVQBw= Subject key identifier: F6:E0:8D:F2:22:04:2C:08:0E:EF:12:01:39:C5:1B:0B:38:97:98:00 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 109E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 1095 Signing time: Thu 18 Sep 2025 17:30:30 +0000 Manifest this update: Thu 18 Sep 2025 17:30:29 +0000 Manifest next update: Thu 25 Sep 2025 17:30:29 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: GFx4fCH1mbgnKrnPhUwjfDxfTnIhFk355G7DGQlATR0=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4254 (0x109e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Sep 18 17:30:29 2025 GMT Not After : Sep 25 17:30:29 2025 GMT Subject: CN=68cc41b6-c1c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:3c:bf:6e:eb:14:41:f3:da:d2:ac:e5:50: 86:ec:11:37:78:d3:b8:d0:8b:f2:37:f9:96:99:f7: c3:00:59:cc:b5:a9:2d:7b:d6:89:b8:2c:51:73:fd: 71:32:3b:a0:ef:8a:e0:31:40:14:90:e6:9d:ee:ab: 31:a5:00:68:79:61:26:4e:8c:1f:04:b0:3a:54:26: 67:8f:d2:e5:3d:19:77:26:d7:a3:ce:93:b7:66:4f: 70:b3:a2:fc:20:34:17:18:0d:11:26:a9:bf:56:df: 3e:b3:d8:2f:5a:74:33:64:b9:e3:eb:cd:dc:51:51: 2a:cb:bb:07:ad:1e:0e:91:19:5a:ee:c9:ca:1f:92: 1f:a8:ed:f7:5c:7d:ed:9d:ac:0b:e1:7d:9a:2e:1b: 9c:30:07:dc:ac:08:f3:7f:04:ce:64:0b:4b:0f:b3: 01:7a:44:81:c2:6c:f9:a0:90:d3:7e:68:e3:42:80: a7:11:d5:f6:70:c7:3b:88:29:ec:e8:6e:12:0c:ff: 81:93:4c:49:72:c0:ad:69:a3:2c:43:de:30:bd:66: 40:14:85:5b:83:46:f0:c9:01:78:42:72:3d:a3:0d: 14:52:17:72:2d:23:79:c4:00:34:fc:58:db:6d:c3: 49:cd:14:77:ff:b7:20:1f:de:7e:c8:52:c9:92:fd: 91:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:E0:8D:F2:22:04:2C:08:0E:EF:12:01:39:C5:1B:0B:38:97:98:00 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:16:af:3d:6b:9e:9b:91:26:1c:30:9a:e9:17:e1:18:65:84: 43:34:9e:20:d1:fb:5e:6d:e4:e9:e7:42:ae:45:68:94:26:6a: fb:d6:3b:ab:89:6b:e2:9d:be:d0:1e:a0:8f:dd:76:7f:0d:28: 2a:ab:a5:8f:ed:5e:1e:77:60:a4:f2:c6:97:e0:31:d5:44:a3: 38:63:51:69:a5:de:dc:96:bb:0f:10:a2:d3:a1:be:39:84:0c: 3a:ef:4b:e0:7e:c0:92:50:c0:e8:50:71:bf:c9:ba:8a:92:d4: 78:74:d7:7f:58:82:5e:39:dd:4a:cb:18:d5:79:3e:ac:77:2b: 49:73:1c:9f:2f:a6:f0:b4:3d:af:dd:01:18:4b:27:46:8f:0e: 2b:6e:77:90:35:63:6c:f6:de:4d:3b:62:52:b4:e5:13:a3:ec: 26:6d:07:fe:7a:c4:11:89:36:30:b6:2c:fc:b2:ae:2e:03:4b: c6:63:f1:d8:ad:6c:8f:2c:61:60:ff:d9:2d:50:95:8a:62:21: cb:fe:ec:d0:1d:e5:b3:86:6f:5c:32:13:b2:49:4a:6c:e0:f1: 6d:cc:23:da:15:bb:a7:68:c1:8e:74:9e:38:79:d9:1d:d2:1c: ca:7c:6c:0f:0a:9d:8e:62:99:a5:e6:c7:fa:79:ec:67:42:94: 2d:8d:59:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUwOTE4MTczMDI5WhcNMjUwOTI1MTczMDI5WjAYMRYwFAYD VQQDEw02OGNjNDFiNi1jMWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzg8v27rFEHz2tKs5VCG7BE3eNO40IvyN/mWmffDAFnMtakte9aJuCxRc/1x Mjug74rgMUAUkOad7qsxpQBoeWEmTowfBLA6VCZnj9LlPRl3JtejzpO3Zk9ws6L8 IDQXGA0RJqm/Vt8+s9gvWnQzZLnj683cUVEqy7sHrR4OkRla7snKH5IfqO33XH3t nawL4X2aLhucMAfcrAjzfwTOZAtLD7MBekSBwmz5oJDTfmjjQoCnEdX2cMc7iCns 6G4SDP+Bk0xJcsCtaaMsQ94wvWZAFIVbg0bwyQF4QnI9ow0UUhdyLSN5xAA0/Fjb bcNJzRR3/7cgH95+yFLJkv2R5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbgjfIi BCwIDu8SATnFGws4l5gAMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNFq89a56bkSYcMJrpF+EYZYRDNJ4g0ftebeTp50KuRWiUJmr71jur iWvinb7QHqCP3XZ/DSgqq6WP7V4ed2Ck8saX4DHVRKM4Y1Fppd7clrsPEKLTob45 hAw670vgfsCSUMDoUHG/ybqKktR4dNd/WIJeOd1KyxjVeT6sdytJcxyfL6bwtD2v 3QEYSydGjw4rbneQNWNs9t5NO2JStOUTo+wmbQf+esQRiTYwtiz8sq4uA0vGY/HY rWyPLGFg/9ktUJWKYiHL/uzQHeWzhm9cMhOySUps4PFtzCPaFbunaMGOdJ44edkd 0hzKfGwPCp2OYpml5sf6eexnQpQtjVlk -----END CERTIFICATE-----Generated at Fri Sep 19 04:07:01 2025 by rpki-client