$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: nBQvFkW1XvKsXe4GVenag4/vyYrr7OkGJyUnKMChttg= Subject key identifier: FE:0B:E5:FD:F8:88:40:B7:4E:D0:DB:5F:4D:19:A1:62:FB:9F:9E:E9 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 10B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 10AC Signing time: Sun 02 Nov 2025 17:21:07 +0000 Manifest this update: Sun 02 Nov 2025 17:21:07 +0000 Manifest next update: Sun 09 Nov 2025 17:21:07 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: VUBppoRkEyvId1hNKeC2ZjM6ezHZfMX2Ur036JvndOY=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4277 (0x10b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Nov 2 17:21:07 2025 GMT Not After : Nov 9 17:21:07 2025 GMT Subject: CN=69079303-779f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4c:1f:1c:1f:67:cf:59:01:a2:47:74:49:55: 18:00:b9:4a:fe:60:85:6f:f5:da:ed:5e:99:ff:0b: 9d:69:04:f1:34:6a:61:2a:7c:b3:e8:53:e1:18:77: 1f:df:db:64:c0:3b:6b:39:0a:ff:b3:d8:2f:5a:f3: 71:55:30:ac:b4:13:aa:3f:f4:60:61:e2:c7:81:10: 61:70:c5:f6:3f:1c:4e:ae:22:74:5e:2e:fb:f4:6b: 41:58:be:28:85:9b:3e:28:b6:84:25:c8:44:cf:e9: 30:ea:3e:6b:11:53:07:34:07:76:42:a5:0e:df:3c: 0b:0e:b8:d2:90:90:5c:cd:90:55:a5:a9:e2:4a:df: 3b:30:d1:bf:3c:2a:d1:51:a9:80:d7:7c:66:9a:34: df:3a:72:09:ae:1d:9a:0d:03:94:aa:db:2d:5a:2b: 77:71:0c:3e:3a:d4:02:68:ad:fb:c7:5a:12:06:08: f7:cd:60:a9:e5:ef:e0:a4:d5:90:56:3b:47:47:80: cc:6e:ff:9a:e9:09:fb:44:f1:3e:9a:40:10:a8:9e: a1:da:1e:4a:b2:61:a8:a4:5b:26:8e:3c:ed:f2:40: c1:65:6f:d7:4d:d6:60:16:ee:25:f0:9d:16:5f:50: eb:3c:4a:6a:16:3b:bc:6d:51:5b:c3:c6:a4:5c:16: 6d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:0B:E5:FD:F8:88:40:B7:4E:D0:DB:5F:4D:19:A1:62:FB:9F:9E:E9 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:99:5c:70:d2:4d:f4:d7:9a:fc:98:31:5b:35:21:b4:d4:36: e9:5b:c0:bc:1e:b5:ea:4c:4b:04:e1:c3:9e:bc:22:70:c2:18: 3d:83:5d:b3:bf:3a:d0:56:c4:a9:50:a0:a0:e5:6b:ea:b4:bf: 6a:82:96:3b:98:1b:e9:25:9c:91:7b:5f:04:17:23:10:7f:41: a1:b4:31:3b:83:7c:d7:c5:0d:59:32:f1:51:28:48:85:42:1e: 76:34:77:bf:25:14:95:63:2f:70:7a:90:a4:74:da:6a:67:fb: 82:ce:4d:6c:de:f6:05:27:e0:23:b4:05:bf:e1:59:e7:89:f8: b4:19:0f:54:14:47:e5:71:b1:b1:5d:f0:93:cc:33:b1:d5:27: 8a:25:b5:86:e9:8e:7a:2f:fd:2e:5e:99:1e:c0:73:d0:6c:3f: c9:65:6f:60:ce:55:3a:c8:97:80:79:f4:22:0f:a1:d4:be:a6: 9f:45:8e:92:d2:07:9d:af:e1:b5:d0:c0:07:1e:01:f3:37:02: 77:f0:06:bb:d1:34:ac:e6:2e:cb:1f:d1:99:38:3c:bf:4f:fb: 39:61:a9:dc:b9:31:20:5c:58:83:82:3b:c1:7d:69:f4:8f:28: 15:c2:20:56:68:eb:ff:8e:5e:c1:7e:2d:45:0d:63:9a:54:a0: 35:d6:a2:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUxMTAyMTcyMTA3WhcNMjUxMTA5MTcyMTA3WjAYMRYwFAYD VQQDEw02OTA3OTMwMy03NzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUwfHB9nz1kBokd0SVUYALlK/mCFb/Xa7V6Z/wudaQTxNGphKnyz6FPhGHcf 39tkwDtrOQr/s9gvWvNxVTCstBOqP/RgYeLHgRBhcMX2PxxOriJ0Xi779GtBWL4o hZs+KLaEJchEz+kw6j5rEVMHNAd2QqUO3zwLDrjSkJBczZBVpaniSt87MNG/PCrR UamA13xmmjTfOnIJrh2aDQOUqtstWit3cQw+OtQCaK37x1oSBgj3zWCp5e/gpNWQ VjtHR4DMbv+a6Qn7RPE+mkAQqJ6h2h5KsmGopFsmjjzt8kDBZW/XTdZgFu4l8J0W X1DrPEpqFju8bVFbw8akXBZtEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4L5f34 iEC3TtDbX00ZoWL7n57pMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApmVxw0k3015r8mDFbNSG01DbpW8C8HrXqTEsE4cOevCJwwhg9g12z vzrQVsSpUKCg5WvqtL9qgpY7mBvpJZyRe18EFyMQf0GhtDE7g3zXxQ1ZMvFRKEiF Qh52NHe/JRSVYy9wepCkdNpqZ/uCzk1s3vYFJ+AjtAW/4Vnnifi0GQ9UFEflcbGx XfCTzDOx1SeKJbWG6Y56L/0uXpkewHPQbD/JZW9gzlU6yJeAefQiD6HUvqafRY6S 0gedr+G10MAHHgHzNwJ38Aa70TSs5i7LH9GZODy/T/s5YancuTEgXFiDgjvBfWn0 jygVwiBWaOv/jl7Bfi1FDWOaVKA11qIB -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:11 2025 by rpki-client