$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft File: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft (raw, json) Hash identifier: V/Ou28awj7utekbYD2Yng59OPHg9us3VvWLSgO/qF4I= Subject key identifier: B1:23:62:80:10:39:C1:28:A2:72:74:5B:9C:79:D4:3E:A3:8F:79:11 Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 Certificate issuer: /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft Manifest number: 44 Signing time: Sun 19 Oct 2025 10:51:27 +0000 Manifest this update: Sun 19 Oct 2025 10:51:26 +0000 Manifest next update: Sun 26 Oct 2025 10:51:26 +0000 Files and hashes: 1: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl (hash: MWLFiKWaKFqQPp7zir/js0p/IBQpsjgyFdhi45b8V5E=) 2: D922E45E468D11F0B5D0835EC4F9AE02.roa (hash: RqRFm0koAI1zOC0qjZBwbHn7EgeV9Uebi2RR1Lc++cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Validity Not Before: Oct 19 10:51:26 2025 GMT Not After : Oct 26 10:51:26 2025 GMT Subject: CN=68f4c2af-9a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:cf:2d:a6:b4:41:d2:25:ca:4f:d2:da:74: fa:32:cc:39:f9:15:b1:c9:c1:3f:b3:d8:c6:f6:c5: fc:ad:49:13:72:99:a6:48:5a:20:c5:bf:3a:b0:00: 86:2f:33:0e:46:03:ba:d9:74:d2:c8:0d:f8:20:82: 9a:24:5a:3a:07:10:05:9d:3e:ec:a7:f0:98:62:2a: ca:15:3e:63:ba:b7:1c:b9:d3:59:66:61:54:4a:87: b2:d4:3b:f4:49:60:66:43:ea:93:32:81:06:9e:a1: a9:b5:3c:82:6e:e2:3a:c5:2d:b1:74:ee:5d:02:ad: 98:f0:0c:34:7d:56:0c:27:ca:5d:6c:1d:aa:b9:fa: 50:c2:42:d0:69:76:d9:64:bd:3a:fe:85:96:1f:44: 72:71:df:05:56:7a:f8:f0:a7:f2:e8:76:b6:fb:fc: 9c:3b:ac:f5:86:56:c4:89:ec:79:f9:1f:a0:4d:36: 34:56:a2:5e:72:0d:68:eb:95:13:7d:a4:52:2f:26: de:fe:f0:c9:2b:6a:95:28:b6:c6:1c:06:aa:a2:7d: bd:90:42:b7:ff:4f:19:f8:eb:33:22:dc:10:0c:83: bd:05:37:9a:bc:68:5c:c3:ce:cf:69:f2:c2:41:5c: 9a:f0:6c:42:a5:44:2f:d2:f0:40:b5:09:98:c1:53: f2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:23:62:80:10:39:C1:28:A2:72:74:5B:9C:79:D4:3E:A3:8F:79:11 X509v3 Authority Key Identifier: keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ad:ae:44:e3:11:03:c7:8e:41:f6:ec:6c:79:69:16:bf:6e: d6:30:12:05:87:37:86:42:0b:43:a7:ce:d3:a0:80:53:cc:a8: 85:a3:37:0e:27:ab:6b:4b:28:7a:2c:a8:ae:e2:f1:05:40:c9: 1d:36:31:b1:3c:e7:74:60:a5:9c:58:a0:d3:ed:94:e1:f4:40: c2:38:ad:18:66:70:98:c1:85:54:22:b3:c5:b6:1a:29:99:b9: 8c:47:fc:ee:62:ae:c3:08:e1:b1:12:1e:98:d8:46:6e:b0:b4: a2:2a:5b:02:fd:ae:2e:ae:d7:e9:c6:a8:07:b1:6b:ec:45:9d: 48:0d:94:d2:35:75:82:e4:86:2a:41:fa:ef:d7:2b:92:99:15: cd:77:70:31:bf:bf:48:96:36:78:72:1f:11:3d:d9:88:fb:9b: fd:be:71:9e:ae:ee:1a:8e:9f:b4:44:f4:be:95:76:b0:8b:b6: 70:ca:1c:ec:9f:a6:99:72:1a:48:8f:9e:72:ee:30:98:e3:a9: 05:24:3b:64:b8:cd:e4:5e:b6:87:95:65:c5:1c:f1:54:c9:11: 37:fb:4d:11:eb:4c:a5:40:b4:c2:91:55:10:f4:90:e4:0c:80: 1f:59:dc:cd:f6:c1:46:84:e1:bc:2f:b6:ea:bb:70:77:13:04: 2b:e9:af:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoM0I4MzU4NTM1QkM2Mjg1NjRBRjU2RjMxRDg3NTg2NDhF MUQwNDMwNDAeFw0yNTEwMTkxMDUxMjZaFw0yNTEwMjYxMDUxMjZaMBgxFjAUBgNV BAMTDTY4ZjRjMmFmLTlhNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/J88tprRB0iXKT9LadPoyzDn5FbHJwT+z2Mb2xfytSRNymaZIWiDFvzqwAIYv Mw5GA7rZdNLIDfgggpokWjoHEAWdPuyn8JhiKsoVPmO6txy501lmYVRKh7LUO/RJ YGZD6pMygQaeoam1PIJu4jrFLbF07l0CrZjwDDR9Vgwnyl1sHaq5+lDCQtBpdtlk vTr+hZYfRHJx3wVWevjwp/Lodrb7/Jw7rPWGVsSJ7Hn5H6BNNjRWol5yDWjrlRN9 pFIvJt7+8MkrapUotsYcBqqifb2QQrf/Txn46zMi3BAMg70FN5q8aFzDzs9p8sJB XJrwbEKlRC/S8EC1CZjBU/JLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsSNigBA5 wSiicnRbnHnUPqOPeREwHwYDVR0jBBgwFoAUO4NYU1vGKFZK9W8x2HWGSOHQQwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzY0RDA3NzQ4NDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0ZaSzlXOHgySFdHU09IUVF3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTzROWVUxdkdLRlpLOVc4eDJIV0dTT0hRUXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NTBCLzY0RDA3NzQ4NDY4QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0Za SzlXOHgySFdHU09IUVF3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALOtrkTjEQPHjkH27Gx5aRa/btYwEgWHN4ZCC0OnztOggFPMqIWjNw4n q2tLKHosqK7i8QVAyR02MbE853RgpZxYoNPtlOH0QMI4rRhmcJjBhVQis8W2GimZ uYxH/O5irsMI4bESHpjYRm6wtKIqWwL9ri6u1+nGqAexa+xFnUgNlNI1dYLkhipB +u/XK5KZFc13cDG/v0iWNnhyHxE92Yj7m/2+cZ6u7hqOn7RE9L6VdrCLtnDKHOyf pplyGkiPnnLuMJjjqQUkO2S4zeRetoeVZcUc8VTJETf7TRHrTKVAtMKRVRD0kOQM gB9Z3M32wUaE4bwvtuq7cHcTBCvpr50= -----END CERTIFICATE-----Generated at Mon Oct 20 08:00:05 2025 by rpki-client