$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: NpCvnDyvGAK+k8x7arKKWs10e9oZsYs7FuPU6x4KfAM= Subject key identifier: 1C:D1:F9:14:15:48:98:B8:63:01:53:D4:19:20:5C:1A:72:86:3F:3E Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 03AC Signing time: Wed 05 Nov 2025 00:49:26 +0000 Manifest this update: Wed 05 Nov 2025 00:49:26 +0000 Manifest next update: Wed 12 Nov 2025 00:49:26 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: HaBZ+tuH2alch+Kat6bxufxL7ckPsYXJqLGXd9O1Mqg=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 952 (0x3b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Nov 5 00:49:26 2025 GMT Not After : Nov 12 00:49:26 2025 GMT Subject: CN=690a9f16-2dff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:17:46:00:fd:7e:1e:3b:f0:3b:04:9e:05:63: cb:c6:44:8d:ee:88:15:a4:9a:6f:aa:05:b4:3e:43: 69:44:d5:42:3f:ee:16:ae:d2:ee:58:b9:26:38:27: da:73:0e:3a:60:0b:aa:b2:e5:02:40:8e:c0:12:45: 3e:d6:a0:be:91:b9:94:98:78:93:2f:7d:50:47:a9: c4:da:72:cb:f0:4a:79:31:42:bb:5f:d0:9a:88:85: 31:a8:eb:2b:c2:99:fc:e2:68:cd:4c:9f:f6:7c:c7: b5:08:89:2b:ad:de:9e:d0:7c:9c:54:d0:81:c1:a5: 4e:f1:e4:95:8f:f9:cf:17:24:40:d3:31:4a:29:19: 76:a6:99:94:79:61:d6:b4:0d:d9:2c:aa:b2:5a:05: 00:80:c2:95:4d:5e:cb:79:fb:ed:2f:c7:bc:d8:8b: 33:cf:ef:42:05:47:cd:34:ae:03:ca:d9:1d:88:3b: a8:13:18:a3:10:b3:e3:99:bd:47:83:48:4a:50:47: c1:c2:02:c3:d7:b6:01:04:8c:9e:d6:01:df:0e:f4: 5b:e7:c0:7b:0d:63:ba:27:0d:cd:72:94:5f:dd:2f: d0:55:83:09:a4:30:85:1d:dc:03:e5:54:ff:a6:6b: ae:8f:64:7a:bb:a1:0d:a8:ba:73:f6:ac:b3:03:f5: be:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D1:F9:14:15:48:98:B8:63:01:53:D4:19:20:5C:1A:72:86:3F:3E X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:38:54:6d:69:04:ce:f1:2d:9b:a2:bc:a6:17:a3:83:90:36: b0:d7:33:a2:e9:d1:f8:a2:cb:b0:a4:66:5b:79:47:92:19:8f: c3:92:1e:92:1d:64:b6:54:4b:0c:8a:f3:c9:6c:47:d4:f3:96: c4:ae:1e:26:7d:b7:b7:95:de:6a:9c:54:0a:f7:30:e0:f4:11: d7:f8:de:4f:ff:15:b1:ac:8f:9e:a7:a7:be:0b:17:d7:6e:59: 8c:b3:42:0e:6d:1c:1c:59:ad:ea:8c:56:10:57:cf:46:90:f2: c8:04:b0:84:82:eb:33:53:59:06:27:e9:3b:a8:1b:c8:8f:6a: 28:62:f4:85:77:8e:ca:95:f9:fb:18:0b:92:3c:2e:38:d7:b9: 5e:8f:8d:8d:74:b9:58:b4:01:38:b8:fb:6d:72:6a:b5:41:95: ea:b4:d2:c0:ce:3c:8d:ad:ce:6e:59:af:9a:92:99:18:b3:e2: b1:9d:f0:4a:88:36:80:03:bb:56:80:21:ed:6a:87:e1:b5:b5: 8d:3d:fa:1f:30:fd:a7:4d:17:77:0b:05:24:e3:d0:e4:48:2a: 5d:51:3e:06:0d:77:71:04:09:e7:2a:f0:17:87:ba:97:e6:e9: 7e:f4:8f:53:18:d7:00:a2:a9:07:b4:b0:0e:e0:3e:a7:39:4a: 9f:c8:38:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUxMTA1MDA0OTI2WhcNMjUxMTEyMDA0OTI2WjAYMRYwFAYD VQQDEw02OTBhOWYxNi0yZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBdGAP1+HjvwOwSeBWPLxkSN7ogVpJpvqgW0PkNpRNVCP+4WrtLuWLkmOCfa cw46YAuqsuUCQI7AEkU+1qC+kbmUmHiTL31QR6nE2nLL8Ep5MUK7X9CaiIUxqOsr wpn84mjNTJ/2fMe1CIkrrd6e0HycVNCBwaVO8eSVj/nPFyRA0zFKKRl2ppmUeWHW tA3ZLKqyWgUAgMKVTV7LefvtL8e82Iszz+9CBUfNNK4DytkdiDuoExijELPjmb1H g0hKUEfBwgLD17YBBIye1gHfDvRb58B7DWO6Jw3NcpRf3S/QVYMJpDCFHdwD5VT/ pmuuj2R6u6ENqLpz9qyzA/W+FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzR+RQV SJi4YwFT1BkgXBpyhj8+MB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtOFRtaQTO8S2borymF6ODkDaw1zOi6dH4osuwpGZbeUeSGY/Dkh6S HWS2VEsMivPJbEfU85bErh4mfbe3ld5qnFQK9zDg9BHX+N5P/xWxrI+ep6e+CxfX blmMs0IObRwcWa3qjFYQV89GkPLIBLCEguszU1kGJ+k7qBvIj2ooYvSFd47Klfn7 GAuSPC4417lej42NdLlYtAE4uPttcmq1QZXqtNLAzjyNrc5uWa+akpkYs+KxnfBK iDaAA7tWgCHtaofhtbWNPfofMP2nTRd3CwUk49DkSCpdUT4GDXdxBAnnKvAXh7qX 5ul+9I9TGNcAoqkHtLAO4D6nOUqfyDjd -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:41 2025 by rpki-client